Report - valacjdk.com/

Report Overview

Submitted URL
valacjdk.com/
IP
207.60.142.116
ASN
#0
Submitted
2022-12-08 08:10:40
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
86

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.gemevog.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	993 kB	210.92.18.38
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
www.valacjdk.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	40 kB	1.4 MB	207.60.142.116
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	51 kB	34.120.237.76
www.sogou.com	39670	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	408 B	3.8 kB	118.191.216.57
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.1 kB	139 kB	142.250.74.35
hm.baidu.com	8254	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	12 kB	103.235.46.191
valacjdk.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	344 B	369 B	207.60.142.116
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.39.57.61
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	686 B	1.4 kB	216.58.211.3
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	5.7 kB	104.18.20.226
img.baidu.com	426376	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	272 B	1.1 kB	182.61.200.83
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.7 kB	12 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	796 B	93.184.220.29
p1.qhimg.com	250383	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	274 B	3.5 kB	54.230.111.65

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-08	medium	valacjdk.com/	Phishing
2022-12-08	medium	www.valacjdk.com/	Phishing
2022-12-08	medium	www.valacjdk.com/js/jquery.3.0.0.min.bc.js	Phishing
2022-12-08	medium	www.valacjdk.com/ads/gouwan/index.html	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-shbp-header-legacy.min.css?ver=7.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-sh-cbp.min.css?ver=7.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/uploads/2021/02/icon-extraction-equipment.svg	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/uploads/2019/09/icon-compliance.svg	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/uploads/2019/09/icon-installation-training.svg	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/uploads/2019/09/icon-tech-support.svg	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/uploads/2021/12/top100-companies-hover-1.svg	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/uploads/2021/12/top100-leaders-hover.svg	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.ttf	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-640-social-sharing.min.css?ver=7.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-shbp-header-legacy.min.css?ver=7.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-p.min.css?ver=7.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-3c-max-4c.css?ver=3.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/max-2c.css?ver=3.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-2c-max-3c.css?ver=3.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-l.min.css?ver=7.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-640.min.css?ver=7.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-640-social-sharing.min.css?ver=7.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-5c-max-6c.min.css?ver=7.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/max-1c.css?ver=3.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-640.min.css?ver=7.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-4c-max-5c.css?ver=3.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-5c-max-6c.css?ver=3.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-shbp-header-legacy.min.css?ver=7.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-3c-max-4c.min.css?ver=7.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp-sliders.min.css?ver=7.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-640-sliders.min.css?ver=7.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-2c.min.css?ver=7.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-4c-max-5c.min.css?ver=7.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp.min.css?ver=7.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-p-social-sharing.min.css?ver=7.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-768-max-1024-p.min.css?ver=3.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-1c.min.css?ver=7.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-2c-max-3c.min.css?ver=7.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp-social-sharing.min.css?ver=7.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-cbp.min.css?ver=7.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-sbp.min.css?ver=7.2.1	Phishing
2022-12-08	medium	www.valacjdk.com/wp-content/uploads/2021/12/top-extraction-companies-mobile-logos.svg	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (5)

	URL	Size	First Seen	Last Seen
	www.valacjdk.com/js/jquery.3.0.0.min.bc.js	6.2 kB	2023-03-08	2023-03-13
Pretty URL www.valacjdk.com/js/jquery.3.0.0.min.bc.js IP 207.60.142.116 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:52:55 Last Seen2023-03-13 05:28:25 Times Seen1 Hash 53b29a4c51cca5cd18999b7b624007d6 6bf24b951867bd6b47a8606276024cc77474c5af 3b0832e6b52f6804276571e5e4a3f44228c70ad96dacb524637ab1097509fc82 Loading...

	www.valacjdk.com/	31 B	2023-03-08	2023-03-08
Pretty URL www.valacjdk.com/ IP 207.60.142.116 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:52:55 Last Seen2023-03-08 21:52:55 Times Seen1 Hash f52602c55354a2c6681ab3f5ff38b57b 7c7f85a41c026d8814505e205fc4186247be3883 b5e3a4919ed77796cd82d2dcc5976a2cc189222c66e33f1e7fb93a72d649fd1a Loading...

	hm.baidu.com/hm.js?38214bbc403b2dd09c2d707c6dedfdb8	30 kB	2023-03-08	2023-03-08
Pretty URL hm.baidu.com/hm.js?38214bbc403b2dd09c2d707c6dedfdb8 IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:52:55 Last Seen2023-03-08 21:52:55 Times Seen1 Hash 9b994c24c864d6c61c0370123d921b59 fd6ee0fc65408f869d3a93164d3484859c01d3ea de73a72e48af5bba2d2a1162e74acebb6d1e28f2a6cda874a552bfbe8f3656c3 Loading...

		Size	First Seen	Last Seen
	#1 Eval - ea9f58a50ea3f4b5acb969ce5ef34da4	9.7 kB	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 21:52:55 Last Seen2023-03-13 05:28:25 Times Seen1 Hash ea9f58a50ea3f4b5acb969ce5ef34da4 9300a8a3080c249267ed7e73431309cb9f33e754 d3a6bb7aee76252e0903fac56e26d15a8279ec766061d00ca8192a9cebab426e Loading...

		Size	First Seen	Last Seen
	#1 Write - 05c934f5322dc78679adc96316fc13f9	286 B	2023-03-08	2023-03-29
Pretty Observations First Seen2023-03-08 21:52:55 Last Seen2023-03-29 21:21:42 Times Seen3 Hash 05c934f5322dc78679adc96316fc13f9 08218657b771117f14a6c55fc52ec9ad34b92d95 a8dbf68ce682d9817d22ddc5871c496bd0c40d4cc908dcfebec94960a032d5eb Loading...

HTTP Transactions (142)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21343
Expires: Thu, 08 Dec 2022 14:06:11 GMT
Date: Thu, 08 Dec 2022 08:10:28 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10233
Expires: Thu, 08 Dec 2022 11:01:01 GMT
Date: Thu, 08 Dec 2022 08:10:28 GMT
Connection: keep-alive

valacjdk.com/

207.60.142.116

301 Moved Permanently

178 B

URL HTTP/1.1
valacjdk.com/
IP
207.60.142.116:0
ASN
#0

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
178 B (178 bytes)
Hash
cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 08 Dec 2022 08:10:28 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://www.valacjdk.com/

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 08 Dec 2022 08:08:11 GMT
content-type: application/json
age: 137
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
00e7703bd74975689fc9050356aaca6b
9788fe6a36d6f278e8da329ebc5dd87bcd212317
593bc437ff8a8233516c62613d50220fcb25b9f967ed5fb384c253f0db135103

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "593BC437FF8A8233516C62613D50220FCB25B9F967ED5FB384C253F0DB135103"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7753
Expires: Thu, 08 Dec 2022 10:19:41 GMT
Date: Thu, 08 Dec 2022 08:10:28 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: zYo8Mg5c+2sduKzg+T2sdIJ9pqjLee9oJ+qbS6NwKPU4P6hcsUNoRGSU+R6gVrvS8Zfbgru9gYc=
x-amz-request-id: A9AZKM9VCEEXQYHR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 07:49:42 GMT
age: 1246
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 08:10:28 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 08 Dec 2022 08:07:58 GMT
age: 150
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
36ac912c40d6b47746f095aa5bdb4d45
4de7995ac06e8956ccb5b806eb37a1156d7c4e62
1737fa51171532a6b2b2030639ec056a3eed7763045640be4cad7371889a6264

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1737FA51171532A6B2B2030639EC056A3EED7763045640BE4CAD7371889A6264"
Last-Modified: Thu, 08 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 08 Dec 2022 14:10:29 GMT
Date: Thu, 08 Dec 2022 08:10:29 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
053aff7451e55d4269dd9610ab070f3f
b3376256d11d159b0c7280ba1515b78d7d9e12ca
24114ca560fe70d03185bd66985603fd5a03dc310aa9a8ea7a7b3723ed46ce3e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5289
Cache-Control: max-age=95069
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 08:10:29 GMT
Etag: "639057aa-1d7"
Expires: Fri, 09 Dec 2022 10:34:58 GMT
Last-Modified: Wed, 07 Dec 2022 09:06:50 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.39.57.61

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.39.57.61:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: SY2AQtvVco5fkdVvovgNcA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EKRPsGUszL7eEsGpnpQoXyJGMnY=

www.valacjdk.com/

207.60.142.116

200 OK

157 kB

URL HTTP/1.1
www.valacjdk.com/
IP
207.60.142.116:0
ASN
#0

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (37739), with CRLF, LF line terminators
Size
157 kB (157233 bytes)
Hash
48df16f118e87cecf6d5357da440f990
d926ff09b800e81d3a597792213283d99015b1bf
ac26d8d23b69402002cb18434cb0b04ee021b51c42442ab3181100173a0268b9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:29 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-shbp.min.css?ver=7.2.1

207.60.142.116

200 OK

69 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-shbp.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text
Size
69 B (69 bytes)
Hash
c46c7dba3fe31a7db3f4efbe54b06e0b
1d3200a8633ceadcaed0b6d14a89a0f1c707b8c9
a2654d792960c3b7da23e237f50fc41d21ad8e828127b7ca467efc048e5baecb

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/min-shbp.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/js/jquery.3.0.0.min.bc.js

207.60.142.116

200 OK

6.2 kB

URL HTTP/1.1
www.valacjdk.com/js/jquery.3.0.0.min.bc.js
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (6151)
Size
6.2 kB (6152 bytes)
Hash
53b29a4c51cca5cd18999b7b624007d6
6bf24b951867bd6b47a8606276024cc77474c5af
3b0832e6b52f6804276571e5e4a3f44228c70ad96dacb524637ab1097509fc82

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/jquery.3.0.0.min.bc.js HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: application/javascript
Content-Length: 6152
Last-Modified: Tue, 15 Nov 2022 07:40:59 GMT
Connection: keep-alive
ETag: "6373428b-1808"
Accept-Ranges: bytes

www.valacjdk.com/ads/gouwan/index.html

207.60.142.116

200 OK

533 B

URL HTTP/1.1
www.valacjdk.com/ads/gouwan/index.html
IP
207.60.142.116:0
ASN
#0

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
533 B (533 bytes)
Hash
5a028f78f44a594a7bf8eb38910fb68b
29f1873fe960b08cd469296d9440d8a5f9154ad2
67c6fa917c3f9eaddf91dddda218f6f9511a84013451892aadcb94d1dadf2a75

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /ads/gouwan/index.html HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: text/html
Last-Modified: Tue, 15 Nov 2022 07:40:59 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6373428b-705"
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-shbp-header-legacy.min.css?ver=7.2.1

207.60.142.116

200 OK

844 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-shbp-header-legacy.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (4106)
Size
844 B (844 bytes)
Hash
d0a1a7875533d5d750c49cb6507b6b3f
81dd8a89137ff62955d87a9d848a9fd898e400e2
bc594ef23fcc0deda7891d8fcdaef862eed99809577222543e7fc13a1b2c9be3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/min-shbp-header-legacy.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-sh-cbp.min.css?ver=7.2.1

207.60.142.116

200 OK

387 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-sh-cbp.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (1233)
Size
387 B (387 bytes)
Hash
3b099548fcfbc0d8ed117aa11cd94c89
7c4429b6535d873c5abc94da3f315bfce5895a79
7b39d3b073981506efd9ca82f1373cd24f946a093f796c8b3f47a14301e3bfec

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/min-sh-cbp.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/cache/min/1/e8aa63dd890845209725567d0a2e8f4e.css

207.60.142.116

200 OK

46 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/cache/min/1/e8aa63dd890845209725567d0a2e8f4e.css
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (65536), with no line terminators
Size
46 kB (45700 bytes)
Hash
e1acda6d5f19d5104fede7d99641a439
7b5e2731fdbba0579a0a8d8dbd6fd839a1a9e9be
39ecc6165f427c4b2f4f27a7316d47aab360d8a5ffb04d5e84eca8cc02c46ca8

HTTP Headers

GET /wp-content/cache/min/1/e8aa63dd890845209725567d0a2e8f4e.css HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

p1.qhimg.com/d/_onebox/search.png

54.230.111.65

200 OK

2.9 kB

URL HTTP/1.1
p1.qhimg.com/d/_onebox/search.png
IP
54.230.111.65:0
ASN
#16509 AMAZON-02

File type
PNG image data, 260 x 43, 8-bit colormap, non-interlaced\012- data
Size
2.9 kB (2941 bytes)
Hash
996729035d9ea7dbd1dcf49bf99e78d9
aba797d529929ca0c864eaf7d3261aee61f3ad78
f7b46e16e323b71d7e8308e8aa62ab36453dd3b57935424f4b4166947f0e5863

HTTP Headers

GET /d/_onebox/search.png HTTP/1.1
Host: p1.qhimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2941
Connection: keep-alive
Date: Mon, 21 Nov 2022 18:05:46 GMT
Last-Modified: Tue, 05 Jan 2021 11:28:00 GMT
xzp: zhkbrquvsxaf
Expires: Sun, 19 Feb 2023 18:05:46 GMT
Cache-Control: max-age=7776000
Access-Control-Allow-Origin: *
XCS: HIT
KCS-Via: MISS from w-fc03.lato;MISS from w-sc02.bjyt
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 2Wn5yAjvBhLK-XBZMGwq0Vh9_IER_6I_b6QMTvvVnUCpnWCfnfbZmw==
Age: 1433084

www.valacjdk.com/wp-content/uploads/2020/05/fireline-logo-grey-200px.png

207.60.142.116

200 OK

7.4 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/05/fireline-logo-grey-200px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
7.4 kB (7393 bytes)
Hash
ea65a2f00b133c5086b6140e8e1dccac
1f08bfcf486615c9a9e4da06a3f0027e78afb64a
bc99e1da4ab59ee66363128dd4ca2d05d360aa9bb15a4eadef7395079b3e6239

HTTP Headers

GET /wp-content/uploads/2020/05/fireline-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2021/09/vacuum-purge-bho-gallery-400x390.jpg

207.60.142.116

200 OK

28 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2021/09/vacuum-purge-bho-gallery-400x390.jpg
IP
207.60.142.116:0
ASN
#0

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x390, components 3\012- data
Size
28 kB (27590 bytes)
Hash
e8505b7ec9e3715a6d6ac4403a0c7ea6
f19b16d116c734360c5913e948d9bc313e64d817
641024ced2cc844e9dadb3fea42a5aedb799b1ddb1906ca353215e98b906ae90

HTTP Headers

GET /wp-content/uploads/2021/09/vacuum-purge-bho-gallery-400x390.jpg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2020/05/extract-outfitters-logo-grey-200px.png

207.60.142.116

200 OK

16 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/05/extract-outfitters-logo-grey-200px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
16 kB (16029 bytes)
Hash
88f2d1796621b51eff6dc34916e5428d
abc5ae2f267e2d0ecb6fc75c50001db85e440969
2161500440d30c551e54ab653f4e21d95d3997d753031f9e0e629b3cf37a28ec

HTTP Headers

GET /wp-content/uploads/2020/05/extract-outfitters-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2020/05/denver-logo-grey-200px.png

207.60.142.116

200 OK

18 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/05/denver-logo-grey-200px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
18 kB (17850 bytes)
Hash
e9c2dcbff2348046cc57f104c818738b
9de0605b2547677f53764e72fcc1c6714e82cf17
51eaa7d42fc476c1b71e0b0a81e89fd72d65bf7ad49c84d26bd340eb80e89e02

HTTP Headers

GET /wp-content/uploads/2020/05/denver-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2020/05/critical-logo-grey-200px.png

207.60.142.116

200 OK

18 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/05/critical-logo-grey-200px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
18 kB (18032 bytes)
Hash
64d48a17d34d541275b964da0d9b7919
2b1a46e3966e8416cab4bad0e78fa06c83e3c9ba
521bae75d3564a01211e2c9371003bd498bf4e501f824ed60df1f1be814433df

HTTP Headers

GET /wp-content/uploads/2020/05/critical-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2021/11/THC-for-Blog-400x390.jpg

207.60.142.116

200 OK

15 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2021/11/THC-for-Blog-400x390.jpg
IP
207.60.142.116:0
ASN
#0

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x390, components 3\012- data
Size
15 kB (15420 bytes)
Hash
94689b24921ed3c12700ac12bef2a631
6420c3388dcb2c74cea3799136cb1c8c897557fd
6b207c40571284ddf4808d796fdb3d08d6b87d19574b19ca8eb0afd81aaf22b9

HTTP Headers

GET /wp-content/uploads/2021/11/THC-for-Blog-400x390.jpg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0e9eef4ed41ef94e9ea175ad243e294e
b6f83e508270413dabe55e2884b5409ca7978e24
0e741ca8d92717128bca7aed937bca43519a8d20a9d3dd8670da656ad51a695e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 08:10:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXx-p7K4GLs.woff

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXx-p7K4GLs.woff
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format, TrueType, length 16364, version 1.1\012- data
Size
16 kB (16364 bytes)
Hash
7a442739544439a189d4f9b178c98c6b
2c06693a4729f9cac9fce202543682b9b2719c99
5f7a28913dfaf24ae02d546cda0a3e2cb28df0b83757e1bb8383baac7ed72460

HTTP Headers

GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXx-p7K4GLs.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.valacjdk.com
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16364
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 04 Dec 2022 03:27:13 GMT
expires: Mon, 04 Dec 2023 03:27:13 GMT
cache-control: public, max-age=31536000
age: 362598
last-modified: Mon, 11 Jul 2022 18:59:51 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq3p6WXh0oJC8MLnrtQ.woff

142.250.74.35

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq3p6WXh0oJC8MLnrtQ.woff
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format, TrueType, length 16884, version 1.1\012- data
Size
17 kB (16884 bytes)
Hash
f90141705c3ad40495e13af4aaf7376e
c28407a339b900e278a955ad39c00f77a3bf759a
fd02eccbb8a9c90cee0c68a140b65892c61dfae2304d34d60f05d4c10a28a29c

HTTP Headers

GET /s/montserrat/v25/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq3p6WXh0oJC8MLnrtQ.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.valacjdk.com
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 14:59:59 GMT
expires: Wed, 06 Dec 2023 14:59:59 GMT
cache-control: public, max-age=31536000
age: 148232
last-modified: Mon, 11 Jul 2022 19:00:25 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.globalsign.com/gsrsaovsslca2018

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
bc53d60438af7be528a563f2ac93188c
ac73ee4391ef200c4c6298956edcf7d14545e71f
80d08117362b359512fe9976341d7357d85797f1e5b9ae136e386f2fe8ca3a54

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 12 Dec 2022 04:26:08 GMT
ETag: "ac73ee4391ef200c4c6298956edcf7d14545e71f"
Last-Modified: Thu, 08 Dec 2022 04:26:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2214
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7764066a0aafb515-OSL

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7740
Expires: Thu, 08 Dec 2022 10:19:31 GMT
Date: Thu, 08 Dec 2022 08:10:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7740
Expires: Thu, 08 Dec 2022 10:19:31 GMT
Date: Thu, 08 Dec 2022 08:10:31 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d27bcd3-7b4f-4d99-8f0d-b7b98bfaa8d7.jpeg

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d27bcd3-7b4f-4d99-8f0d-b7b98bfaa8d7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5620 bytes)
Hash
ce35df4fe4f77c950e40dc44b311bab4
aadf97d040e3577599581e892ee20f88d191bf91
f9c4cfc384213f77c0bbb252f3d6fbc22be60e1ecc158eece857d5050c8ced3c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d27bcd3-7b4f-4d99-8f0d-b7b98bfaa8d7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5620
x-amzn-requestid: fadda084-c7fc-4ec0-bad0-27e97b8349d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4gHGIMIAMFy_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6391079a-5dc824963fe82ab927205128;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:37:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ITQgs0jVosYx5zvT7j4YLqGZ1HEmsNgartV3g8uaNuJHs4VqVs50OQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 21:47:24 GMT
age: 37387
etag: "aadf97d040e3577599581e892ee20f88d191bf91"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5382e616-602f-4e00-bed7-d95c66a5000d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5245 bytes)
Hash
43fdc85bfd574fa803f0bcdc216ef622
27f558d5cdc150a50f080c054423500666b63d74
fafd2a81cddacdb4e5fd7c9963a784e6e56d06ac98f0bd4124fd74fa3ba015e0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5382e616-602f-4e00-bed7-d95c66a5000d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5245
x-amzn-requestid: 9770ebcd-fb1e-4b81-bb87-1e98ef024741
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy-E8HugoAMFsKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911085-54eb7a48323113d52329abf5;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 22:15:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: d2DHUS5fGT4uoPPdjDXmHUOQVF93ULtO4zSHRmrx7KMu3lO0y0K9ag==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:24:13 GMT
age: 35178
etag: "27f558d5cdc150a50f080c054423500666b63d74"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7740
Expires: Thu, 08 Dec 2022 10:19:31 GMT
Date: Thu, 08 Dec 2022 08:10:31 GMT
Connection: keep-alive

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8659 bytes)
Hash
b87d6543345f73653ed4a49b37d7c959
c4f26846b8b72293368ff16915d49297cf12bbb9
aee6aa42e4b5b83b81f74801ff8f0039fc6d38036f42ee81875813c856cf5eef

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8659
x-amzn-requestid: 6f420d07-65d5-4bb2-9f1f-e56025de497b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFSYFArIAMF46w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c0f-0a295e5c48228d5806b4f107;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TSh1BNzzIPhWCfYEiqvQJckSPAyhHobe-HK6msEVeEJ1ruX-_rMSSA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:33:19 GMT
age: 31032
etag: "c4f26846b8b72293368ff16915d49297cf12bbb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCs16Hw5aXx-p7K4GLs.woff

142.250.74.35

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCs16Hw5aXx-p7K4GLs.woff
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format, TrueType, length 16596, version 1.1\012- data
Size
17 kB (16596 bytes)
Hash
e3d80c62891d44be009202b0906385cd
4e8acc275f2f8dc48433f34ad30dc284a0205c1e
c2128a252f37c95b8b530ca208f4e020d0f20fae8b60480974ddd04683c37351

HTTP Headers

GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCs16Hw5aXx-p7K4GLs.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.valacjdk.com
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16596
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 06:07:26 GMT
expires: Sat, 02 Dec 2023 06:07:26 GMT
cache-control: public, max-age=31536000
age: 525785
last-modified: Mon, 11 Jul 2022 18:55:59 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.valacjdk.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff

207.60.142.116

200 OK

21 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff
IP
207.60.142.116:0
ASN
#0

File type
Web Open Font Format, TrueType, length 20908, version 1.0\012- data
Size
21 kB (20915 bytes)
Hash
b359a102e976a7223cea18dfaecd120d
e7e34ea4db9438ef5ad8ea76944bc82f7f24f2c9
15f739cdf76525c18061c2380673b3dde4f17b305354e264c3d46898634ed30a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7740
Expires: Thu, 08 Dec 2022 10:19:31 GMT
Date: Thu, 08 Dec 2022 08:10:31 GMT
Connection: keep-alive

fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXx-p7K4GLs.woff

142.250.74.35

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXx-p7K4GLs.woff
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format, TrueType, length 16556, version 1.1\012- data
Size
17 kB (16556 bytes)
Hash
204229ac29208812c364bd69a5873249
827aa06d1fb96d497ea39a9a313f0535972a0d45
1e86591b39be2da705365b6095091b6597c65de407663af7fdd93425f8bcfb2c

HTTP Headers

GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXx-p7K4GLs.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.valacjdk.com
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16556
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 04 Dec 2022 02:29:35 GMT
expires: Mon, 04 Dec 2023 02:29:35 GMT
cache-control: public, max-age=31536000
age: 366056
last-modified: Mon, 11 Jul 2022 18:56:01 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

img.baidu.com/img/logo-80px.gif

182.61.200.83

200 OK

866 B

URL HTTP/1.1
img.baidu.com/img/logo-80px.gif
IP
182.61.200.83:0
ASN
#38365 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 80 x 29\012- data
Size
866 B (866 bytes)
Hash
6f5433724f999a096e8a76e6d5918803
6ed88cb4676d384b6b3c7d8ceee5f48aa1bbb524
c3523c84b03a264ff85e541415f945c4c44705c454234274c78d63afd1c278b9

HTTP Headers

GET /img/logo-80px.gif HTTP/1.1
Host: img.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=311040000
Content-Length: 866
Content-Type: image/gif
Date: Thu, 08 Dec 2022 08:10:31 GMT
Etag: "1211028879"
Expires: Sat, 16 Oct 2032 08:10:31 GMT
Last-Modified: Sun, 15 Aug 2010 16:00:00 GMT
Server: BWS/1.0

34.120.237.76

200 OK

3.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9367069b-64ab-4e4d-b8c9-fa115e0681a9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.7 kB (3744 bytes)
Hash
bdf4703f3372054a7aadce1cb0e11bd0
84d060f66accd412503d52c385ee47cb35795c07
c5853b653ee328e567e2456be12450e04c1704ed64fb6234f008532e4b6c8363

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9367069b-64ab-4e4d-b8c9-fa115e0681a9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3744
x-amzn-requestid: 73eab74b-e50c-46d1-adde-3ef85fb772f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlj7FDiIAMFmsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb618-70ffb1925e3a9ef6081d1cd1;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:37:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: F-LcglSz1NX1Q2t84r1dv0vQzONyYMhlGB6TdS6CeKf9I8Krk1mDUg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:05:24 GMT
age: 36307
etag: "84d060f66accd412503d52c385ee47cb35795c07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Hw5aXx-p7K4GLs.woff

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Hw5aXx-p7K4GLs.woff
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format, TrueType, length 16524, version 1.1\012- data
Size
16 kB (16524 bytes)
Hash
6d7eada12e52c17e7489a10407450079
f5acea8e791c20555b5c5631abd44c4bca096a94
4aa3db8cfd366be018ce81a276825ca0b837a1e5fcfaaa381101866a94d19c4c

HTTP Headers

GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Hw5aXx-p7K4GLs.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.valacjdk.com
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 03:38:08 GMT
expires: Sat, 02 Dec 2023 03:38:08 GMT
cache-control: public, max-age=31536000
age: 534743
last-modified: Mon, 11 Jul 2022 18:59:59 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7740
Expires: Thu, 08 Dec 2022 10:19:31 GMT
Date: Thu, 08 Dec 2022 08:10:31 GMT
Connection: keep-alive

ocsp.globalsign.com/gsrsaovsslca2018

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
a1e9680e5cfa3e165e0ae15fb0ff0c76
1a7c70ac415d2ff40e3b36245df346f56b6ad21c
3bce87771a4ff4226547d573b8b268d7d7a9c4586df7687c4f2ee87ca7912ef1

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 12 Dec 2022 05:44:28 GMT
ETag: "1a7c70ac415d2ff40e3b36245df346f56b6ad21c"
Last-Modified: Thu, 08 Dec 2022 05:44:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1955
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7764066a8b59b515-OSL

fonts.gstatic.com/s/montserrat/v25/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq_p9WXh0oJC8MLnrtQ.woff

142.250.74.35

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq_p9WXh0oJC8MLnrtQ.woff
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format, TrueType, length 17096, version 1.1\012- data
Size
17 kB (17096 bytes)
Hash
ca252d109abef523d6a89029a9eb81a3
7ddab7526a91f6973798bc02ecadf8713122e130
554b15652eb93d0f083c069afeeac6c08b34162666e9f5b805e9f74691d2945d

HTTP Headers

GET /s/montserrat/v25/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq_p9WXh0oJC8MLnrtQ.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.valacjdk.com
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17096
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 14:15:07 GMT
expires: Sat, 02 Dec 2023 14:15:07 GMT
cache-control: public, max-age=31536000
age: 496524
last-modified: Mon, 11 Jul 2022 18:56:13 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXx-p7K4GLs.woff

142.250.74.35

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXx-p7K4GLs.woff
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format, TrueType, length 16568, version 1.1\012- data
Size
17 kB (16568 bytes)
Hash
23facbf845d56af99e5a7d8d6eb0b74e
b0270e9c1081ba45dc2d7bee632e30770ac1fe1b
06740bed37ae127653a71aafd5ef45de0238e7622639a9ab6dbf1f2144890a0c

HTTP Headers

GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXx-p7K4GLs.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.valacjdk.com
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16568
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 05:48:06 GMT
expires: Tue, 05 Dec 2023 05:48:06 GMT
cache-control: public, max-age=31536000
age: 267745
last-modified: Mon, 11 Jul 2022 18:56:10 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2019d3bc-b4a4-4afc-ad84-3ab33b8036ec.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10861 bytes)
Hash
fbdf939d23b987fd36a86b7a1258b10d
2cad45ad8e56699db3457501cf1e488fe85d479a
285a8a3d3ec439f493ca5d586477c3e3ed3b9e5d7a0133da73c426b69e112cb1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2019d3bc-b4a4-4afc-ad84-3ab33b8036ec.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10861
x-amzn-requestid: ad568a35-9eba-4c6d-a09d-97e518fbf503
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4gIFN4oAMFqrw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6391079a-434ca8281e48538e69e72e05;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:37:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4MrxT27cyrFqR70ofprhh4FbJAfVpKb787jT3TsH0l7BxQOf2tWh6g==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 21:51:32 GMT
age: 37139
etag: "2cad45ad8e56699db3457501cf1e488fe85d479a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.globalsign.com/gsrsaovsslca2018

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
a1e9680e5cfa3e165e0ae15fb0ff0c76
1a7c70ac415d2ff40e3b36245df346f56b6ad21c
3bce87771a4ff4226547d573b8b268d7d7a9c4586df7687c4f2ee87ca7912ef1

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 12 Dec 2022 05:44:28 GMT
ETag: "1a7c70ac415d2ff40e3b36245df346f56b6ad21c"
Last-Modified: Thu, 08 Dec 2022 05:44:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1955
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7764066a9b75b515-OSL

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a21d707-1bf7-4b7f-a23b-7e8f38dd40c5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10164 bytes)
Hash
3d44d17585c9a536c8da0e75ed90d175
9dc35d0f6b251004bc1ddc83aea9ee71c95aedd1
6d14a5b5c43b39244434560a83a2bfea6604a4d072943b6147293b7adfd1b7b7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a21d707-1bf7-4b7f-a23b-7e8f38dd40c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10164
x-amzn-requestid: a0cb7259-0a07-44f5-91cd-e96b8d9c9cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cnAPOGSnoAMFUUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c472e-799b6ee425e29fb70ff7e4ea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 07:07:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5Q2LRCrEYVZz_KldQARUQ26O1mv0G7rMAPQXGkBzUnERF-WjtZPMJA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 10:23:11 GMT
age: 78440
etag: "9dc35d0f6b251004bc1ddc83aea9ee71c95aedd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.valacjdk.com/wp-content/uploads/2021/02/icon-extraction-equipment.svg

207.60.142.116

200 OK

2.2 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2021/02/icon-extraction-equipment.svg
IP
207.60.142.116:0
ASN
#0

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (3655)
Size
2.2 kB (2199 bytes)
Hash
320377ef16c144528848831311873e22
64f055150fab0ee6ba732d0877d6ddc699da786a
ed718f753f752c8b0dec06569e31ace2340564ff697115e7d965db23d48ec085

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2021/02/icon-extraction-equipment.svg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/uploads/2019/09/icon-compliance.svg

207.60.142.116

200 OK

1.4 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2019/09/icon-compliance.svg
IP
207.60.142.116:0
ASN
#0

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (1666)
Size
1.4 kB (1425 bytes)
Hash
1b0d3cbdcc24c7f5e6482362204445a4
ddf22b12bb432de63b85b865bc6f5eceb10bb51d
c054df559760da6b28c86aa99d02ee4afdf6a2f032ce30afb627ced1215049fa

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2019/09/icon-compliance.svg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCs16Hw3aXx-p7K4GLvztg.woff

142.250.74.35

200 OK

15 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCs16Hw3aXx-p7K4GLvztg.woff
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format, TrueType, length 15096, version 1.1\012- data
Size
15 kB (15096 bytes)
Hash
82f2239fc382c48fd2e23c35f0e8bbb3
499ddae8f646980bd0a22e357852fafdaba3151b
fede0200b6521956fc0525097883a97f2749a46b5a39fbafdf2669947a783ac7

HTTP Headers

GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCs16Hw3aXx-p7K4GLvztg.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.valacjdk.com
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15096
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Dec 2022 07:09:29 GMT
expires: Sun, 03 Dec 2023 07:09:29 GMT
cache-control: public, max-age=31536000
age: 435662
last-modified: Mon, 11 Jul 2022 18:56:33 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.valacjdk.com/wp-content/uploads/2019/09/icon-installation-training.svg

207.60.142.116

200 OK

2.9 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2019/09/icon-installation-training.svg
IP
207.60.142.116:0
ASN
#0

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (3428)
Size
2.9 kB (2921 bytes)
Hash
5a0f398f3aa05a9f331dab3cc52bb1d2
23e1a10b9e9c7af561e1eb6d5d422e6cb4d050ee
db5247e5fdbb4777dae5a9d11893bc8ec9fd2f9ff554adc541c3d0a02b3f1392

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2019/09/icon-installation-training.svg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0e9eef4ed41ef94e9ea175ad243e294e
b6f83e508270413dabe55e2884b5409ca7978e24
0e741ca8d92717128bca7aed937bca43519a8d20a9d3dd8670da656ad51a695e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 08:10:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.valacjdk.com/wp-content/uploads/2019/09/icon-tech-support.svg

207.60.142.116

200 OK

2.1 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2019/09/icon-tech-support.svg
IP
207.60.142.116:0
ASN
#0

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (2099)
Size
2.1 kB (2053 bytes)
Hash
58c7220e63a3edf2e160de7a9b59c808
ed210d4dddc87f1d81e706a136b7b5a9954ecd86
5d9924e4d67f2da754dfae3aadab088e6d89069e9bf098d3e55b58f7159464a5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2019/09/icon-tech-support.svg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/uploads/2021/12/top100-companies-hover-1.svg

207.60.142.116

200 OK

5.4 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2021/12/top100-companies-hover-1.svg
IP
207.60.142.116:0
ASN
#0

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (3402)
Size
5.4 kB (5399 bytes)
Hash
15cb31ee37e1d3946d9be0d320bd848c
fb2afeca7ac3c6d973163c2a8e03b0d7d769479d
77968bbec5078c59f8838a31b2b8555a3c9d70573d0d4338e825049bdb5b332f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2021/12/top100-companies-hover-1.svg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/uploads/2021/12/top100-leaders-hover.svg

207.60.142.116

200 OK

5.5 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2021/12/top100-leaders-hover.svg
IP
207.60.142.116:0
ASN
#0

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (3404)
Size
5.5 kB (5466 bytes)
Hash
1434606db137256bab3d148dad582f27
043a6b4936fc39989ea15bdfab2306692b3f2ae8
457f0a90f51357d153574a122dc6cf96da14b8596bebc84411fde7f207134403

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2021/12/top100-leaders-hover.svg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.ttf

207.60.142.116

200 OK

13 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.ttf
IP
207.60.142.116:0
ASN
#0

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Size
13 kB (13216 bytes)
Hash
e61360da05c176c9d9b28f51510e61a6
d40c410c3521a878c6b8e1de2ae19920ec6a7098
7276bbee8164b50801ccfeaac65aab7d57da277d50a92effdaf5f7642f596402

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.ttf HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/uploads/2019/09/commercial-hover-300x300.jpg

207.60.142.116

200 OK

7.6 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2019/09/commercial-hover-300x300.jpg
IP
207.60.142.116:0
ASN
#0

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Size
7.6 kB (7620 bytes)
Hash
dd2c4eb88929f27edccc2b69278537c8
21dc3a7f52598b28757e394cf7065e62156e75a7
faff6829fcbaee40e4132d874b8520dfa98a01d782d7a8777e4cc0e81682807f

HTTP Headers

GET /wp-content/uploads/2019/09/commercial-hover-300x300.jpg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2019/10/industrial-hover-1-300x300.jpg

207.60.142.116

200 OK

8.6 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2019/10/industrial-hover-1-300x300.jpg
IP
207.60.142.116:0
ASN
#0

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 300x300, components 3\012- data
Size
8.6 kB (8638 bytes)
Hash
37f371bbba6549d71db3697c4812d81e
0ca47e4b128d9fd5078b46f5b114f0931362118f
7159a119ef07f513a327f1e2df418594defe7712b8c51d93297a0bb1cec4bceb

HTTP Headers

GET /wp-content/uploads/2019/10/industrial-hover-1-300x300.jpg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive

www.sogou.com/web/index/images/logo_440x140.v.4.png

118.191.216.57

200 OK

3.0 kB

URL HTTP/1.1
www.sogou.com/web/index/images/logo_440x140.v.4.png
IP
118.191.216.57:0
ASN
#59045 Guangzhou navigation information technology co., LTD

File type
PNG image data, 440 x 140, 8-bit colormap, non-interlaced\012- data
Size
3.0 kB (2950 bytes)
Hash
31de1d2fa7d918fab2f59984391db1c8
4f4b78796b3fbf19971f182175bcd92b01ee470f
29f87d6615f36a54e3edc8c7f05eb9b480d1f2989dec8da68e82747d060aea85

HTTP Headers

GET /web/index/images/logo_440x140.v.4.png HTTP/1.1
Host: www.sogou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: image/png
Content-Length: 2950
Connection: keep-alive
Last-Modified: Mon, 10 Feb 2020 03:11:55 GMT
Set-Cookie: ABTEST=5|1670487031|v17; expires=Sat, 07-Jan-23 08:10:31 GMT; path=/
IPLOC=NO; expires=Fri, 08-Dec-23 08:10:31 GMT; domain=.sogou.com; path=/
SUID=9A2A5A5B7E1A910A0000000063919BF7; expires=Wed, 03-Dec-2042 08:10:31 GMT; domain=.sogou.com; path=/
P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR", CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR", CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
ETag: "5e40c9fb-b86"
Expires: Tue, 06 Jun 2023 08:10:31 GMT
Cache-Control: max-age=15552000
UUID: 6a15f484-2d36-48b4-acfc-ea064802bdc9
Accept-Ranges: bytes

www.valacjdk.com/wp-content/uploads/2019/09/distillation-hover-300x300.jpg

207.60.142.116

200 OK

7.8 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2019/09/distillation-hover-300x300.jpg
IP
207.60.142.116:0
ASN
#0

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3\012- data
Size
7.8 kB (7831 bytes)
Hash
da4c1c3dfb5f97de3472f72594602106
014ac0df9701c4c068cf2bac0399cd32d0540835
d9f7629079b60513b1239925b6f561d4f72e76617176326df71ba9d982d18fdf

HTTP Headers

GET /wp-content/uploads/2019/09/distillation-hover-300x300.jpg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2019/09/ancillary-hover-300x300.jpg

207.60.142.116

200 OK

8.3 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2019/09/ancillary-hover-300x300.jpg
IP
207.60.142.116:0
ASN
#0

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3\012- data
Size
8.3 kB (8288 bytes)
Hash
b17c723145f6de3c28a6a7b1f01fc319
febc1c6c24c4d7494b4f23c4fd06e0083198f6db
94b64db1c4cece7ea1f8eeb7559486eabdfdcbc2c12cf2b9dad4dec5fff7fa7e

HTTP Headers

GET /wp-content/uploads/2019/09/ancillary-hover-300x300.jpg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8a7976d53e4aa25ffcaa5f08cf252cc2
3d5af847e619d7a2a890336f421839ff3311821a
5f9863d9cc69bb74ef154cda745d473e630ae9b4fab558d7b69a8f9b2a90fe0b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F9863D9CC69BB74EF154CDA745D473E630AE9B4FAB558D7B69A8F9B2A90FE0B"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9707
Expires: Thu, 08 Dec 2022 10:52:18 GMT
Date: Thu, 08 Dec 2022 08:10:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8a7976d53e4aa25ffcaa5f08cf252cc2
3d5af847e619d7a2a890336f421839ff3311821a
5f9863d9cc69bb74ef154cda745d473e630ae9b4fab558d7b69a8f9b2a90fe0b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F9863D9CC69BB74EF154CDA745D473E630AE9B4FAB558D7B69A8F9B2A90FE0B"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9784
Expires: Thu, 08 Dec 2022 10:53:35 GMT
Date: Thu, 08 Dec 2022 08:10:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8a7976d53e4aa25ffcaa5f08cf252cc2
3d5af847e619d7a2a890336f421839ff3311821a
5f9863d9cc69bb74ef154cda745d473e630ae9b4fab558d7b69a8f9b2a90fe0b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F9863D9CC69BB74EF154CDA745D473E630AE9B4FAB558D7B69A8F9B2A90FE0B"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21555
Expires: Thu, 08 Dec 2022 14:09:46 GMT
Date: Thu, 08 Dec 2022 08:10:31 GMT
Connection: keep-alive

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-640-social-sharing.min.css?ver=7.2.1

207.60.142.116

200 OK

208 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-640-social-sharing.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (332)
Size
208 B (208 bytes)
Hash
86452c68bad761a2603f9ec0cc47f8ab
6a155738fe17a48d485f64ce234bea673de576b1
dd355ff70229a8de52ddf66231b2df8d3a5b3c5b05fe9df3d0c6af7ab9c00954

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-sh-640-social-sharing.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8a7976d53e4aa25ffcaa5f08cf252cc2
3d5af847e619d7a2a890336f421839ff3311821a
5f9863d9cc69bb74ef154cda745d473e630ae9b4fab558d7b69a8f9b2a90fe0b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F9863D9CC69BB74EF154CDA745D473E630AE9B4FAB558D7B69A8F9B2A90FE0B"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 08 Dec 2022 14:10:31 GMT
Date: Thu, 08 Dec 2022 08:10:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8a7976d53e4aa25ffcaa5f08cf252cc2
3d5af847e619d7a2a890336f421839ff3311821a
5f9863d9cc69bb74ef154cda745d473e630ae9b4fab558d7b69a8f9b2a90fe0b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F9863D9CC69BB74EF154CDA745D473E630AE9B4FAB558D7B69A8F9B2A90FE0B"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21548
Expires: Thu, 08 Dec 2022 14:09:39 GMT
Date: Thu, 08 Dec 2022 08:10:31 GMT
Connection: keep-alive

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-shbp-header-legacy.min.css?ver=7.2.1

207.60.142.116

200 OK

1.5 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-shbp-header-legacy.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (7259)
Size
1.5 kB (1496 bytes)
Hash
5814d3a82f39a40d3f408cf2a1c8bec0
333b78337b5e130acbe03b6f807ab7d6d8f82826
130dc4c35d4fdc5e735678f14605610452717dd216689fcb1e2cf9a48fd5311b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-shbp-header-legacy.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-p.min.css?ver=7.2.1

207.60.142.116

200 OK

2.7 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-p.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (11968)
Size
2.7 kB (2676 bytes)
Hash
9c1f1d6bb765b11b086000bca69ee302
e9f482c9aa58bacd44883c1610b98baedf9e07f5
94ff4fe3d38a39f500afeeceefb7d4ba3449cd8936d5b243583ef726496ad092

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/min-768-max-1024-p.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-p-header-legacy.min.css?ver=7.2.1

207.60.142.116

200 OK

277 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-p-header-legacy.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (1584)
Size
277 B (277 bytes)
Hash
8d98dfae194621571692b58e84159c85
005e363c15c5173a95322895956c82a82c2b5f0a
1ec05d0854f16f6297e595dd2673fef0606258e11d91577c6d359d34acd6d763

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/min-768-max-1024-p-header-legacy.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-3c-max-4c.css?ver=3.2.1

207.60.142.116

200 OK

152 B

URL HTTP/1.1
www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-3c-max-4c.css?ver=3.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text
Size
152 B (152 bytes)
Hash
c39263d2c385d3b8787980dee73a0684
1662c4c395bcf4aebb069d0631e3f9d9b217a0d0
d97f948aab8cf772b65e0840d71582d802310553141a9943a910da50e9ce92ab

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/min-3c-max-4c.css?ver=3.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/max-2c.css?ver=3.2.1

207.60.142.116

200 OK

117 B

URL HTTP/1.1
www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/max-2c.css?ver=3.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text
Size
117 B (117 bytes)
Hash
5a42b4b87b95a54de99ef6a0638fc69f
f7b5ad01bdc292ce4dc6abe69c9fb2f229d212e1
9420ef7cd82da0b54ae7f4d5a7074b221a837a8de4a76bf3654f614e0064391c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/max-2c.css?ver=3.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-2c-max-3c.css?ver=3.2.1

207.60.142.116

200 OK

164 B

URL HTTP/1.1
www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-2c-max-3c.css?ver=3.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text
Size
164 B (164 bytes)
Hash
319f964b2b0d423c8cd520a5bdfd35f1
30146ba28d689087caf727d23e42d8d95d88d752
a77c4d5b6b30d221a8750aa44a7515619e4bf83f207b9dff33b93a523112bd66

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/min-2c-max-3c.css?ver=3.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-l.min.css?ver=7.2.1

207.60.142.116

200 OK

184 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-l.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (379)
Size
184 B (184 bytes)
Hash
6693dcd1cf4ed559e2b1fe71019ac845
a5d78b772edc04d99c5040950b5bd12291e4c672
e8406aa188d3f2fa09c544e55364d1a0b59b7d7c2245842eefc1e51b408c8d1d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/min-768-max-1024-l.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-main.min.css?ver=7.2.1

207.60.142.116

200 OK

271 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-main.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (583)
Size
271 B (271 bytes)
Hash
60beeff87694b22a55ef11b411a77355
572950d9843ca9741595e10e829f7be150990d29
f8559e6c039dcfdf9e36e0710f1d915d04b200677e58a23cbb84bba6131e074b

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-main.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/max-640.min.css?ver=3.2.1

207.60.142.116

200 OK

411 B

URL HTTP/1.1
www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/max-640.min.css?ver=3.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (1215)
Size
411 B (411 bytes)
Hash
b40f0ea639460484ffb72862668ec6d9
d64b600b5c7afbbc28d102841f513547571b3bf6
50b2f04b810801ad8d05980a653a350710355ee49914504e338b1a3f7dd26a44

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/max-640.min.css?ver=3.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-640.min.css?ver=7.2.1

207.60.142.116

200 OK

1.0 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-640.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (2958)
Size
1.0 kB (1045 bytes)
Hash
38d155239fab5a286b2e07786f481c82
f7772d9c64f31eb73aee0b496911e2b7249c85f9
bce0335bce5a76fc552be076ec36eed4ed29a6866f662e695ff608881867459b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-640.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-640-social-sharing.min.css?ver=7.2.1

207.60.142.116

200 OK

163 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-640-social-sharing.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text
Size
163 B (163 bytes)
Hash
983f5f0d488d79629ebb63fc7aa95844
80f0dd5774e61fe1bad9c6cfc01cb2aee5b3210a
96c493d77a4bbfcd1664607794bb191e9c152feae70d6ab7deecf8287d0ced83

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-640-social-sharing.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-5c-max-6c.min.css?ver=7.2.1

207.60.142.116

200 OK

232 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-5c-max-6c.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (918)
Size
232 B (232 bytes)
Hash
1ebe12b1fe17bdc79325c533c3055e9c
b3728e64170d98e0ffbb270a294f16b5d4d9fc15
481bf66ba38ff0ac58dea905d36bef929ab877ee83071b5c819200fdf1d90631

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/min-5c-max-6c.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/max-1c.css?ver=3.2.1

207.60.142.116

200 OK

87 B

URL HTTP/1.1
www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/max-1c.css?ver=3.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text
Size
87 B (87 bytes)
Hash
26b9060afe1fb2c52ed29da0e0e525d1
4eb0bf71730f909994bd32958fc6153568d15da4
171daea053a49a604478132507001b96a46215099559ab9d6b30e24ca36d8de7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/max-1c.css?ver=3.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-shbp-18.min.css?ver=7.2.1

207.60.142.116

200 OK

189 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-shbp-18.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text
Size
189 B (189 bytes)
Hash
136d5a1f06b5ccc822fad20282c51e71
70e8999fe3efadbd435bfbeac4c6e2d9888b7679
d987cee8775b0285558565e7225ae6e3c5adea7ad4d737d184f954e6e377896a

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-shbp-18.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-640.min.css?ver=7.2.1

207.60.142.116

200 OK

780 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-640.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (2331)
Size
780 B (780 bytes)
Hash
34a2bf32e787b26c84d4eeb914f138e0
a49087309c54eaedcc63461013a57e6f22ea50fa
cb6808a578dfe07eb00fd40f279f861ca2faa88313e995400baa4f53882861b0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-sh-640.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-shbp-32.min.css?ver=7.2.1

207.60.142.116

200 OK

80 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-shbp-32.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text
Size
80 B (80 bytes)
Hash
70e5f2a9b197f993477d857777fde7de
7dc4fd9b8365512eb151baa52502b031d9302d75
1de7baf28233fa7f21d1aca3d6ea4a9fb4b3b1c4bae39ad174679690740c4c51

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-shbp-32.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-4c-max-5c.css?ver=3.2.1

207.60.142.116

200 OK

147 B

URL HTTP/1.1
www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-4c-max-5c.css?ver=3.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text
Size
147 B (147 bytes)
Hash
85ab97bba76b7d1a16eb328bea3ad76a
3661b949d077b3964a3605770cf0da7cce70aa9d
09cd0b12a66aad894f4ee223c9ed5f5e7c67f87c4be3edfbe5af0708d7d83b76

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/min-4c-max-5c.css?ver=3.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-5c-max-6c.css?ver=3.2.1

207.60.142.116

200 OK

128 B

URL HTTP/1.1
www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-5c-max-6c.css?ver=3.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text
Size
128 B (128 bytes)
Hash
807311b23b2c206e398e9e5423f59b76
18ebe2a82110034c039e6c92bc283dc4bca7d3ce
7c12a7ab71b29de14474e6a4ab1fab0bcf36b31819c66304e85013d1f1ead065

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/min-5c-max-6c.css?ver=3.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-shbp-header-legacy.min.css?ver=7.2.1

207.60.142.116

200 OK

2.7 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-shbp-header-legacy.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (23663)
Size
2.7 kB (2728 bytes)
Hash
8283eb4c1b5089e6e4a10ae637848a2a
55b96b7ad750337eb02a34dcaa15baa10d6718cc
398953e24998a567643e463ed5dbcc2d1790436de012cc2f6904c17c0d89871b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-sh-shbp-header-legacy.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-3c-max-4c.min.css?ver=7.2.1

207.60.142.116

200 OK

308 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-3c-max-4c.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (1809)
Size
308 B (308 bytes)
Hash
68b2f38756df4f93957df4d23d6dcf9b
fcec7279c66a0672b7af6083883d994e75614bef
ccb33b7f3f32e84b8c628e7ba15ef6ef64f0a35686d622502c5e292f2fea918f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/min-3c-max-4c.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/max-sh-cbp.min.css?ver=3.2.1

207.60.142.116

200 OK

553 B

URL HTTP/1.1
www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/max-sh-cbp.min.css?ver=3.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (1730)
Size
553 B (553 bytes)
Hash
5688e34e038e02c5f91f16e43c0e8324
33f276da1977d00650f34348ffd9eff521d8d226
cc748e823453a98ea54169dccc1c4ec9f345145e94139d3b2ff4e5382321ee68

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/max-sh-cbp.min.css?ver=3.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

hm.baidu.com/hm.js?38214bbc403b2dd09c2d707c6dedfdb8

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?38214bbc403b2dd09c2d707c6dedfdb8
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (623)
Size
11 kB (11261 bytes)
Hash
0198ebd41bf8a68f008bbf29fb33ddf0
b37bad44976625f2580251994cbe38feb028f08e
dab2801efdae492cbbbe20ea501a2808cf62e609318ef29b9244e17136176b47

HTTP Headers

GET /hm.js?38214bbc403b2dd09c2d707c6dedfdb8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11261
Content-Type: application/javascript
Date: Thu, 08 Dec 2022 08:10:31 GMT
Etag: 1316ebcf8401e3fd4241915aabd4733a
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=7D8668D917BAC79F; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp-sliders.min.css?ver=7.2.1

207.60.142.116

200 OK

520 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp-sliders.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (3244)
Size
520 B (520 bytes)
Hash
c6d21dcc241a4f72fac01e668726eb10
b2c39d7b5f39b487a9c0a0ea5be3db47ae703bd7
a482b9892454b1e49b581c2f98989457dba706aab24bb1c82602a4d4982bbce9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-sh-cbp-sliders.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-640-sliders.min.css?ver=7.2.1

207.60.142.116

200 OK

484 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-640-sliders.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (3158)
Size
484 B (484 bytes)
Hash
14478a225949f807663e0c625e064b4e
5479ecc3916c1e963ff66aa261f68228e13b5764
75850b5428863a6ee67d67df59ea07299d9c89540329dc12ab9693cc1a1ec932

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-640-sliders.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-2c.min.css?ver=7.2.1

207.60.142.116

200 OK

324 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-2c.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (1476)
Size
324 B (324 bytes)
Hash
eb5acebd9f329f7439b59ba38603a59b
7776338d4c2305fc89528e95022cfbe6de134467
0555653a250eb6c035826e18089b1868fb4bc9e8f24421df3addd1c9d10eb7c1

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-2c.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-l-header-legacy.min.css?ver=7.2.1

207.60.142.116

200 OK

173 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-l-header-legacy.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (883)
Size
173 B (173 bytes)
Hash
7d38faca797e9a999efd9cb397aa0929
6dab80951d01eb7d0af1581e3fef32b2411d50db
7c924563f6b43b3de45d35c1cc07d41ba04954fe7cb5cee348f1052d0ce0cad3

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/min-768-max-1024-l-header-legacy.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-4c-max-5c.min.css?ver=7.2.1

207.60.142.116

200 OK

275 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-4c-max-5c.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (1371)
Size
275 B (275 bytes)
Hash
99620579d724d62fc066bbdc334aa9b9
7a844e6e71d3d2e15ed6fcd748deaaa2383cf01c
1ea70ae915ce2a1e48755c50bd938082ad0c69b2915a6f581d67c8be1aaffc5d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/min-4c-max-5c.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp.min.css?ver=7.2.1

207.60.142.116

200 OK

2.4 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (9109)
Size
2.4 kB (2351 bytes)
Hash
999df13b33deae05a188ee4444967abb
f8f6b2ed297f47082f28a95e2237d348e9cb2ed3
3d8119c06401543aac19b3b0ca68db2b16c00237f6ab6228a095707b8c59c3cc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-sh-cbp.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-p-social-sharing.min.css?ver=7.2.1

207.60.142.116

200 OK

256 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-p-social-sharing.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (477)
Size
256 B (256 bytes)
Hash
2720b18d056fb637c7ed1130197642dd
6c4b5aeae0883bdb498ff506666c9ac5d597064e
38dbc70619a6de712756acb8b5f8db1e18f56b243814b78096ef8af2f18b6e70

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/min-768-max-1024-p-social-sharing.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-768-max-1024-p.min.css?ver=3.2.1

207.60.142.116

200 OK

930 B

URL HTTP/1.1
www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-768-max-1024-p.min.css?ver=3.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (5060)
Size
930 B (930 bytes)
Hash
1f350e121c8c17b6c2053cbe9d505700
b9146b1ebb7fcd71f930e98e1c03066477b1f65f
e339c2216a0d20f99cb33e4273bb56285b594a3c9f0bfdd135a0b5aafa5747db

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/fusion-builder/assets/css/media/min-768-max-1024-p.min.css?ver=3.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.gemevog.com/gouwan/images/top.jpg

210.92.18.38

200 OK

44 kB

URL HTTP/1.1
www.gemevog.com/gouwan/images/top.jpg
IP
210.92.18.38:0
ASN
#45382 EHOSTICT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x140, components 3\012- data
Size
44 kB (43816 bytes)
Hash
c9ee135fb05dad0d66c716df43c95c5d
ef6a2fd91b705a7ae834da50c5b06c0660811989
1abb15323fe360a4e1268fe45c45dbbc8d5db3c42eb165144157dbebbf355f39

HTTP Headers

GET /gouwan/images/top.jpg HTTP/1.1
Host: www.gemevog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:29:13 GMT
Content-Type: image/jpeg
Content-Length: 43816
Last-Modified: Tue, 06 Jun 2017 06:55:39 GMT
Connection: keep-alive
Expires: Sat, 07 Jan 2023 08:29:13 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-1c.min.css?ver=7.2.1

207.60.142.116

200 OK

219 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-1c.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (1021)
Size
219 B (219 bytes)
Hash
186b08fc20d1c90ed8fac2bb0638a77f
76560f8fcf163e434cae3610f5021174d46ba28f
6f48ad1a1d0de372df5cd8440a80391ba7ddcdbf66833deceb4d290b239087aa

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-1c.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-2c-max-3c.min.css?ver=7.2.1

207.60.142.116

200 OK

327 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-2c-max-3c.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text, with very long lines (1954)
Size
327 B (327 bytes)
Hash
96ab42b4f388acc029a591584ca9153c
571d8d818c177df7ba1af51d7deb2b189e046269
19ade83b0b8d74450bbf3ecba78b4387b979068fb0ae994003f27f8f45ce9540

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/min-2c-max-3c.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp-social-sharing.min.css?ver=7.2.1

207.60.142.116

200 OK

176 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp-social-sharing.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text
Size
176 B (176 bytes)
Hash
23f60957f590b4f7fb0ff3c8baa8a370
00619dab5e2994c20e0d5fcfb2aecf7814e08a7c
31b0eaf1511fbd5b314cdaf0123b27e34509645378de65453478325754287e75

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-sh-cbp-social-sharing.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-cbp.min.css?ver=7.2.1

207.60.142.116

200 OK

111 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-cbp.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text
Size
111 B (111 bytes)
Hash
f01a74c79e1fde637a17845e8fdef814
a56ca388d43aa9bb3a5adac37652b9d342bd8e36
ec9ba51f6e91a2883f86ef6fdea03c58f4674f9e08928389ba8939d0d5b42862

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-cbp.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-sbp.min.css?ver=7.2.1

207.60.142.116

200 OK

137 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-sbp.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text
Size
137 B (137 bytes)
Hash
1cd12ef4fe0b2cbeadfea999e05c419b
433227533afea48a61d027acc5a6917de609727d
208cc1b83a2734e12e9da9a3eaf22b9b601d5da4794ebab3a9bc9a0d79a67374

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-sh-sbp.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1317510827&si=38214bbc403b2dd09c2d707c6dedfdb8&v=1.3.0&lv=1&sn=65417&r=0&ww=1280&u=https%3A%2F%2Fwww.valacjdk.com%2F&tt=%E4%B8%87%E5%8D%9A%E5%AE%98%E7%BD%91%E6%89%8B%E6%9C%BAapp%E7%99%BB%E5%BD%95_manbetx%E4%B8%87%E5%8D%9A

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1317510827&si=38214bbc403b2dd09c2d707c6dedfdb8&v=1.3.0&lv=1&sn=65417&r=0&ww=1280&u=https%3A%2F%2Fwww.valacjdk.com%2F&tt=%E4%B8%87%E5%8D%9A%E5%AE%98%E7%BD%91%E6%89%8B%E6%9C%BAapp%E7%99%BB%E5%BD%95_manbetx%E4%B8%87%E5%8D%9A
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1317510827&si=38214bbc403b2dd09c2d707c6dedfdb8&v=1.3.0&lv=1&sn=65417&r=0&ww=1280&u=https%3A%2F%2Fwww.valacjdk.com%2F&tt=%E4%B8%87%E5%8D%9A%E5%AE%98%E7%BD%91%E6%89%8B%E6%9C%BAapp%E7%99%BB%E5%BD%95_manbetx%E4%B8%87%E5%8D%9A HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Thu, 08 Dec 2022 08:10:32 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=882A72DB1BD864FB; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-shbp.min.css?ver=7.2.1

207.60.142.116

200 OK

93 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-shbp.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text
Size
93 B (93 bytes)
Hash
d99e9e263cf153f0cc80172ac4688a70
13df9d6485ae868f670824d2c0f1a835aad4d4a0
310c33b516fe0ecd3fd14fee1b036eef31ad6df68bfed79ae8b428facf1179e9

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-sh-shbp.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-shbp.min.css?ver=7.2.1

207.60.142.116

200 OK

119 B

URL HTTP/1.1
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-shbp.min.css?ver=7.2.1
IP
207.60.142.116:0
ASN
#0

File type
ASCII text
Size
119 B (119 bytes)
Hash
b376756ecd5bcfaf38819d97cc453508
7c3f4fc4f51435e83fa888898d450c6873cd103a
decfb0d96e89b81aa3277f6deda198968fe901436fc4d216af473cb675060bbc

HTTP Headers

GET /wp-content/themes/Avada/assets/css/media/max-shbp.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.gemevog.com/images/r.gif

210.92.18.38

200 OK

58 kB

URL HTTP/1.1
www.gemevog.com/images/r.gif
IP
210.92.18.38:0
ASN
#45382 EHOSTICT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=11, height=700, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=250], baseline, precision 8, 250x700, components 3\012- data
Size
58 kB (58244 bytes)
Hash
dafc0c8e4b75df059062479d4e3d1240
8121a745bfcda354665b00dded91670fc3665b69
65c00a5bf171d63d0e2649fa8662db961c0ded544dff2187ba4745f83e5f816f

HTTP Headers

GET /images/r.gif HTTP/1.1
Host: www.gemevog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:29:13 GMT
Content-Type: image/gif
Content-Length: 58244
Last-Modified: Mon, 16 Jul 2018 08:25:40 GMT
Connection: keep-alive
Expires: Sat, 07 Jan 2023 08:29:13 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

www.valacjdk.com/wp-content/uploads/2022/08/precision-extraction-logo-e1660072502124.png

207.60.142.116

200 OK

7.8 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2022/08/precision-extraction-logo-e1660072502124.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 220 x 71, 8-bit/color RGBA, non-interlaced\012- data
Size
7.8 kB (7801 bytes)
Hash
df4cf9089c5c40fac193a9bcb97aae6c
bd38a9704ce3720774973c86e1bc2f575dd2f9c9
0f496a74ceca848b5ec68ed966d0a617c7f70312268f4854cfb98b4066d422b8

HTTP Headers

GET /wp-content/uploads/2022/08/precision-extraction-logo-e1660072502124.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/plugins/revslider/public/assets/assets/dummy.png

207.60.142.116

200 OK

75 B

URL HTTP/1.1
www.valacjdk.com/wp-content/plugins/revslider/public/assets/assets/dummy.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size
75 B (75 bytes)
Hash
b078384966631b615d719c7e7769f391
00f435da390f71f22a3635a156b8eca058931640
6c3bcc8f30109604fb65de2535448b88c3f5fb146ac296745ddb436fe41ed4ec

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/assets/dummy.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2020/05/columbia-logo-grey-200px.png

207.60.142.116

200 OK

12 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/05/columbia-logo-grey-200px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (12034 bytes)
Hash
943f2e458a1c22ee16a960a30f3a9322
a05a203065200a32bd09ecacbab8e505955f22fc
922bd477f3e108379626d947a10d900836dbc6762a0ca820b3ba3f2bd8ba3115

HTTP Headers

GET /wp-content/uploads/2020/05/columbia-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2020/05/bliss-logo-grey-200px.png

207.60.142.116

200 OK

16 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/05/bliss-logo-grey-200px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
16 kB (15480 bytes)
Hash
1f019d32a45b4e20ba2032b528872334
f7979a57c8f70cd2a04af52d5e1ba6fc709be5aa
5c8f314ceb1cc9a52c9ecbd360e9a8a3d58fe9d54b86a95abb3ab804f3d9c7ff

HTTP Headers

GET /wp-content/uploads/2020/05/bliss-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2020/05/binske-logo-grey-200px.png

207.60.142.116

200 OK

23 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/05/binske-logo-grey-200px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
23 kB (23356 bytes)
Hash
1c89338f354ecef6cf84ebec1f7dcd1e
882770e1b6c11eae7931f5b8a729460822c35365
6d037fd6a28ff816f7b83a2c9af8d3c2f7e0ebc2633f0ed3eb09e590748995d4

HTTP Headers

GET /wp-content/uploads/2020/05/binske-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2020/06/ascendv2-logo-grey-200px.png

207.60.142.116

200 OK

3.8 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/06/ascendv2-logo-grey-200px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
3.8 kB (3843 bytes)
Hash
373f6730a56f8f9cc5af39b5fc7305dd
335ae216dd16bbf43f9ea0bf63ff740b17a5168e
af5586abda88dae57e8078c95189177e428b6bfb6b4d386451b3445435e789ac

HTTP Headers

GET /wp-content/uploads/2020/06/ascendv2-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2020/05/aphira-logo-grey-200px.png

207.60.142.116

200 OK

11 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/05/aphira-logo-grey-200px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (10892 bytes)
Hash
0cd175816fa94d4b8ded91033aec73f9
8f26ef74ee8105c04d07f7a3fd3e6ee025c52f93
8e40332fc28be43efe31b92a709b66b436890420750ce8b3188876d4fdaac9c5

HTTP Headers

GET /wp-content/uploads/2020/05/aphira-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2020/05/aether-logo-grey-200px.png

207.60.142.116

200 OK

22 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/05/aether-logo-grey-200px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
22 kB (22239 bytes)
Hash
6199e23dbd4da8820fc3f77f82f491dc
399b30859f55dc1212fcca139ada0a0a5a78fa7b
3601fee0e62d38ba961661f24842f96686faba10ceb53aa69d31d09b04bce3e2

HTTP Headers

GET /wp-content/uploads/2020/05/aether-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2020/05/absolute-logo-grey-200px.png

207.60.142.116

200 OK

18 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/05/absolute-logo-grey-200px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
18 kB (17661 bytes)
Hash
66aa893d365f527eb6e4edf16cd9e9bd
db31c11482c4c55889cb3c66c6f90a6c6dc91ffa
2f6b8dd94b5bc6771c84c5895df7f15b8b9f9e609730398bbd8244a68ec21e90

HTTP Headers

GET /wp-content/uploads/2020/05/absolute-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2021/12/c1d1-extraction-container-outdoor-home-page.png

207.60.142.116

200 OK

65 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2021/12/c1d1-extraction-container-outdoor-home-page.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 800 x 277, 8-bit colormap, non-interlaced\012- data
Size
65 kB (65210 bytes)
Hash
e8aaabc2bb926eb8891a684e00cb69b1
310ee78d462232c851c1925c56b9443b8d066683
5f9a2d1b975f8cf66e6fa11ad48adf9462237322471fb255dd1bf9eb87ea48b4

HTTP Headers

GET /wp-content/uploads/2021/12/c1d1-extraction-container-outdoor-home-page.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2020/05/verano-logo-gray-200px.png

207.60.142.116

200 OK

13 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/05/verano-logo-gray-200px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
13 kB (12823 bytes)
Hash
f852fd75eca4dfd2d91abb188bfc9b3b
4c74681d38e85e3ea585f15e522849921dab8e3e
b1a11788db2e8487093e5867361ee9f06256b00b114b2e97fe448f56b1724faa

HTTP Headers

GET /wp-content/uploads/2020/05/verano-logo-gray-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.gemevog.com/gouwan/images/app.jpg

210.92.18.38

200 OK

138 kB

URL HTTP/1.1
www.gemevog.com/gouwan/images/app.jpg
IP
210.92.18.38:0
ASN
#45382 EHOSTICT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x427, components 3\012- data
Size
138 kB (138145 bytes)
Hash
d7b27a7cdfd7450c1980fc0ebe56f7a7
e06324cfff44954367890f42f53896f155fd616a
65dab7d5005c61321826ef38f47d62292bae11801fbe53c398f8455908a9d967

HTTP Headers

GET /gouwan/images/app.jpg HTTP/1.1
Host: www.gemevog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:29:13 GMT
Content-Type: image/jpeg
Content-Length: 138145
Last-Modified: Fri, 30 Nov 2018 13:32:08 GMT
Connection: keep-alive
Expires: Sat, 07 Jan 2023 08:29:13 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

www.valacjdk.com/wp-content/uploads/2020/05/tree-top-logo-grey-200px.png

207.60.142.116

200 OK

16 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/05/tree-top-logo-grey-200px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
16 kB (16527 bytes)
Hash
8e0e77e9fd937a76340bc78b1284598d
813fe2f19988a372416d0f6d0a79a4584aab917e
2e370420a1b8949eb1aa9ec2f24945e6c97bf043686a607efad85e3345a8ae50

HTTP Headers

GET /wp-content/uploads/2020/05/tree-top-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2020/05/terrapin-logo-grey-200px.png

207.60.142.116

200 OK

16 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/05/terrapin-logo-grey-200px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
16 kB (15793 bytes)
Hash
e2799f63cdeb4422f90eb6e0ba598e71
c2dd0d82df924bb5ceedc29213b5c9a58d881795
1ba51c624880d1963df882393aa0c3d8b6a1785c2c367ea5b63658bca1ac85b4

HTTP Headers

GET /wp-content/uploads/2020/05/terrapin-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2020/05/terrascend-logo-grey-200px.png

207.60.142.116

200 OK

5.8 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/05/terrascend-logo-grey-200px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
5.8 kB (5798 bytes)
Hash
986311d3864226358e90ca279bd1bd81
420d0358e57b2c12b8ebfc9d33f47da98d45d1da
5c7a7f9894c86b58741a4db4bed52d7b4ec70df7070dae78207ada2403017a3b

HTTP Headers

GET /wp-content/uploads/2020/05/terrascend-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2020/05/natures-lab-logo-grey-200px.png

207.60.142.116

200 OK

15 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/05/natures-lab-logo-grey-200px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
15 kB (14716 bytes)
Hash
be1512cc61b409857c8b33ea3c7081de
6ca031fd66eb08b39bd5fa490ab1ee3094c561e7
15fe221d05d243741d169c39c19bf14a800f71b8751c54bc65f595dfb1ad86f4

HTTP Headers

GET /wp-content/uploads/2020/05/natures-lab-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2020/05/mpx-logo-grey-200px.png

207.60.142.116

200 OK

19 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/05/mpx-logo-grey-200px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
19 kB (18929 bytes)
Hash
0fb10f905bd39f4b44cf7ea0e5395a56
8a828f75e9812a27513cb8c4a5b55978267307a0
2995157a4b0d3bba69c96f4926ba37a86368bf34ef414517f2f4528436c4cdcd

HTTP Headers

GET /wp-content/uploads/2020/05/mpx-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2020/05/illera-logo-grey-200px.png

207.60.142.116

200 OK

11 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/05/illera-logo-grey-200px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (11368 bytes)
Hash
6dd9244089d54780ce04b1019d6d0c75
32f7c236cf0296431d73daa2b28575d6cef0210f
587e555684d6517e7ae09877154a40bba958e1c866843db5d63985c830471018

HTTP Headers

GET /wp-content/uploads/2020/05/illera-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2020/05/moxie-logo-grey-200px.png

207.60.142.116

200 OK

14 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/05/moxie-logo-grey-200px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (14238 bytes)
Hash
f9f02e0f8df3cc20b4c34e99d3877577
2d12e271b65c033ba5586065f7f4cb2646a1bb85
c72a44562f048cedb2d1bd007940f62c8c392314b41a0d8cd06c219ad6aed36a

HTTP Headers

GET /wp-content/uploads/2020/05/moxie-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2022/06/G3XR-20L-800x800.png

207.60.142.116

200 OK

378 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2022/06/G3XR-20L-800x800.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data
Size
378 kB (377524 bytes)
Hash
eead1e1b9d2a5acb7d2a2b4ee18d0bb8
a0e5fc1e43f3e863f4517c1f772949e1bb57df69
ca99b7c5f5158700ed777471943047717be79543e114e555ff6114996c83351c

HTTP Headers

GET /wp-content/uploads/2022/06/G3XR-20L-800x800.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2020/05/media-edies-logo-grey-200px.png

207.60.142.116

200 OK

6.5 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/05/media-edies-logo-grey-200px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
6.5 kB (6476 bytes)
Hash
438afec7a739e34c10b7b402163af680
334888c7b6c5be985d8b6d29e6050a09f3aa6166
3902cfd8b0bb5d593f591b99aea277befa7a217589dfd9715241eaba53e6f6b5

HTTP Headers

GET /wp-content/uploads/2020/05/media-edies-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2020/05/holistic-logo-grey-200px.png

207.60.142.116

200 OK

8.4 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/05/holistic-logo-grey-200px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
8.4 kB (8423 bytes)
Hash
b193f0b9d2c68b0cb4254f72aa360ab6
1ca28fa595c5b901bfcffc723a1cc53e37995a0e
6ccd234d4ac0bf7d74c03b883808ab791969225db278e98ea5ee0980970ca309

HTTP Headers

GET /wp-content/uploads/2020/05/holistic-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2020/05/green-therapeutics-logo-grey-200px.png

207.60.142.116

200 OK

15 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/05/green-therapeutics-logo-grey-200px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
15 kB (14595 bytes)
Hash
3b795ee6351a264ee0187b185034d881
e4b318b0d098875739f45337f37a68f90d0c4bc7
8145e32a2e70aba9b99313303b032c1beec8b4b94aca126b7a09c9f264c98a7b

HTTP Headers

GET /wp-content/uploads/2020/05/green-therapeutics-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.gemevog.com/gouwan/images/youhui.gif

210.92.18.38

200 OK

283 kB

URL HTTP/1.1
www.gemevog.com/gouwan/images/youhui.gif
IP
210.92.18.38:0
ASN
#45382 EHOSTICT

File type
GIF image data, version 89a, 970 x 150\012- data
Size
283 kB (283175 bytes)
Hash
896f85cf0b8e708cd14bf1bef2ae712b
45b51b08eb5e789494a1d6af7f7b13c8de6b8c53
b5eb98ab3aa374eb1b4d59b2f622743284b26341348d3c325504fee968a2c6c3

HTTP Headers

GET /gouwan/images/youhui.gif HTTP/1.1
Host: www.gemevog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:29:13 GMT
Content-Type: image/gif
Content-Length: 283175
Last-Modified: Tue, 06 Jun 2017 02:18:10 GMT
Connection: keep-alive
Expires: Sat, 07 Jan 2023 08:29:13 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

www.valacjdk.com/wp-content/uploads/2020/05/grassroots-logo-grey-200px.png

207.60.142.116

200 OK

24 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/05/grassroots-logo-grey-200px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
24 kB (23478 bytes)
Hash
00624af8b8a68af153de8aeccfc96a74
84498a11b040004c3dfa02f404b913d645f55dc0
df920073e5534ee6ccf14535ce4d0cc944f514a6d728dfd8197beae0e638af3b

HTTP Headers

GET /wp-content/uploads/2020/05/grassroots-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2021/09/extracting-terpenes-400x390.jpg

207.60.142.116

200 OK

68 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2021/09/extracting-terpenes-400x390.jpg
IP
207.60.142.116:0
ASN
#0

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x390, components 3\012- data
Size
68 kB (68116 bytes)
Hash
f8cf75168feb0c424c402040cfeb16fd
d7795b7b0ff91223d5465e377159de58561d3142
521e4e4d0a8a6d4664ebd282fd9097b6074fddd7f1733f08ac9a21f71ee4ad41

HTTP Headers

GET /wp-content/uploads/2021/09/extracting-terpenes-400x390.jpg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2020/06/read-blog-icon2-205px.png

207.60.142.116

200 OK

3.9 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2020/06/read-blog-icon2-205px.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 267 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size
3.9 kB (3859 bytes)
Hash
7741fc7cf5d359de8f61bb8b2abdea89
094825e9d211b1b316895c00cf1d4be5c16c81d5
69b859942e922b2f131f013f9d51f4540999ffd41c571bb1a0f5ab14c1e508c2

HTTP Headers

GET /wp-content/uploads/2020/06/read-blog-icon2-205px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2022/08/precision-extraction-logo-light-300x97.png

207.60.142.116

200 OK

8.3 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2022/08/precision-extraction-logo-light-300x97.png
IP
207.60.142.116:0
ASN
#0

File type
PNG image data, 300 x 97, 8-bit/color RGBA, non-interlaced\012- data
Size
8.3 kB (8298 bytes)
Hash
2e197b190720fb64754f308121e7729d
55c993da486d33b25e8a11c5635f80a52bdd26c4
a24301f2927beaf142e8cba17e0db57536d3e51f27c3133ec4e2fd0b656d0ba9

HTTP Headers

GET /wp-content/uploads/2022/08/precision-extraction-logo-light-300x97.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive

www.valacjdk.com/wp-content/uploads/2021/12/top-extraction-companies-mobile-logos.svg

207.60.142.116

200 OK

8.7 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2021/12/top-extraction-companies-mobile-logos.svg
IP
207.60.142.116:0
ASN
#0

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (3160)
Size
8.7 kB (8663 bytes)
Hash
bb58f7cdd425b9c5201a1438cacd1a67
89347a5391c84cdedf6a9fede81da4de79283815
2b05675d933324b36785ff19150105d7fc0cd3155461c5fcb6ecc5caaefa8450

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2021/12/top-extraction-companies-mobile-logos.svg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.valacjdk.com/wp-content/uploads/2022/10/popup-banner-croptober-1200x711.jpg

207.60.142.116

200 OK

142 kB

URL HTTP/1.1
www.valacjdk.com/wp-content/uploads/2022/10/popup-banner-croptober-1200x711.jpg
IP
207.60.142.116:0
ASN
#0

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x711, components 3\012- data
Size
142 kB (141746 bytes)
Hash
78e8d95a3a802b22f20ec6d17bffdac0
bb1edcb1aeea78579d81334c7e9c296471666512
224c1f4669c6045cbdbd4f83b03546280679ed5e2cf6d5031587027ef81042bf

HTTP Headers

GET /wp-content/uploads/2022/10/popup-banner-croptober-1200x711.jpg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive

www.gemevog.com/images/l.gif

210.92.18.38

200 OK

468 kB

URL HTTP/1.1
www.gemevog.com/images/l.gif
IP
210.92.18.38:0
ASN
#45382 EHOSTICT

File type
GIF image data, version 89a, 250 x 700\012- data
Size
468 kB (468232 bytes)
Hash
9db5cd45521bb4f46c59ea838f763c5e
453228fed8cb602dda5299f7167c9879f763705c
19ec6cedebafcafdada8367f98b236120143121bb6fe3d6b543f2371fce03f12

HTTP Headers

GET /images/l.gif HTTP/1.1
Host: www.gemevog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:29:13 GMT
Content-Type: image/gif
Content-Length: 468232
Last-Modified: Mon, 16 Jul 2018 07:08:24 GMT
Connection: keep-alive
Expires: Sat, 07 Jan 2023 08:29:13 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

www.gemevog.com/gouwan/images/2.png

210.92.18.38

200 OK

0 B

URL HTTP/1.1
www.gemevog.com/gouwan/images/2.png
IP
210.92.18.38:0
ASN
#45382 EHOSTICT

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /gouwan/images/2.png HTTP/1.1
Host: www.gemevog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:29:13 GMT
Content-Type: image/png
Content-Length: 3243357
Last-Modified: Tue, 15 Nov 2022 06:16:55 GMT
Connection: keep-alive
Expires: Sat, 07 Jan 2023 08:29:13 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

www.valacjdk.com/favicon.ico

207.60.142.116

200 OK

0 B

URL HTTP/1.1
www.valacjdk.com/favicon.ico
IP
207.60.142.116:0
ASN
#0

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Cookie: Hm_lvt_38214bbc403b2dd09c2d707c6dedfdb8=1670487032; Hm_lpvt_38214bbc403b2dd09c2d707c6dedfdb8=1670487032
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:37 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

HTTP Transactions (142)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers