r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21343
Expires: Thu, 08 Dec 2022 14:06:11 GMT
Date: Thu, 08 Dec 2022 08:10:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10233
Expires: Thu, 08 Dec 2022 11:01:01 GMT
Date: Thu, 08 Dec 2022 08:10:28 GMT
Connection: keep-alive
valacjdk.com/
207.60.142.116301 Moved Permanently 178 B IP 207.60.142.116:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 08 Dec 2022 08:10:28 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://www.valacjdk.com/
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 08 Dec 2022 08:08:11 GMT
content-type: application/json
age: 137
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 00e7703bd74975689fc9050356aaca6b
9788fe6a36d6f278e8da329ebc5dd87bcd212317
593bc437ff8a8233516c62613d50220fcb25b9f967ed5fb384c253f0db135103
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "593BC437FF8A8233516C62613D50220FCB25B9F967ED5FB384C253F0DB135103"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7753
Expires: Thu, 08 Dec 2022 10:19:41 GMT
Date: Thu, 08 Dec 2022 08:10:28 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: zYo8Mg5c+2sduKzg+T2sdIJ9pqjLee9oJ+qbS6NwKPU4P6hcsUNoRGSU+R6gVrvS8Zfbgru9gYc=
x-amz-request-id: A9AZKM9VCEEXQYHR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 07:49:42 GMT
age: 1246
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 08:10:28 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 08 Dec 2022 08:07:58 GMT
age: 150
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 36ac912c40d6b47746f095aa5bdb4d45
4de7995ac06e8956ccb5b806eb37a1156d7c4e62
1737fa51171532a6b2b2030639ec056a3eed7763045640be4cad7371889a6264
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1737FA51171532A6B2B2030639EC056A3EED7763045640BE4CAD7371889A6264"
Last-Modified: Thu, 08 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 08 Dec 2022 14:10:29 GMT
Date: Thu, 08 Dec 2022 08:10:29 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 053aff7451e55d4269dd9610ab070f3f
b3376256d11d159b0c7280ba1515b78d7d9e12ca
24114ca560fe70d03185bd66985603fd5a03dc310aa9a8ea7a7b3723ed46ce3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5289
Cache-Control: max-age=95069
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 08:10:29 GMT
Etag: "639057aa-1d7"
Expires: Fri, 09 Dec 2022 10:34:58 GMT
Last-Modified: Wed, 07 Dec 2022 09:06:50 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.39.57.61101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.57.61:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: SY2AQtvVco5fkdVvovgNcA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EKRPsGUszL7eEsGpnpQoXyJGMnY=
www.valacjdk.com/
207.60.142.116200 OK 157 kB IP 207.60.142.116:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (37739), with CRLF, LF line terminators
Size 157 kB (157233 bytes)
Hash 48df16f118e87cecf6d5357da440f990
d926ff09b800e81d3a597792213283d99015b1bf
ac26d8d23b69402002cb18434cb0b04ee021b51c42442ab3181100173a0268b9
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:29 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-shbp.min.css?ver=7.2.1
207.60.142.116200 OK 69 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-shbp.min.css?ver=7.2.1
IP 207.60.142.116:0
Hash c46c7dba3fe31a7db3f4efbe54b06e0b
1d3200a8633ceadcaed0b6d14a89a0f1c707b8c9
a2654d792960c3b7da23e237f50fc41d21ad8e828127b7ca467efc048e5baecb
GET /wp-content/themes/Avada/assets/css/media/min-shbp.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/js/jquery.3.0.0.min.bc.js
207.60.142.116200 OK 6.2 kB URL HTTP/1.1 www.valacjdk.com/js/jquery.3.0.0.min.bc.js
IP 207.60.142.116:0
File type ASCII text, with very long lines (6151)
Hash 53b29a4c51cca5cd18999b7b624007d6
6bf24b951867bd6b47a8606276024cc77474c5af
3b0832e6b52f6804276571e5e4a3f44228c70ad96dacb524637ab1097509fc82
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.3.0.0.min.bc.js HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: application/javascript
Content-Length: 6152
Last-Modified: Tue, 15 Nov 2022 07:40:59 GMT
Connection: keep-alive
ETag: "6373428b-1808"
Accept-Ranges: bytes
www.valacjdk.com/ads/gouwan/index.html
207.60.142.116200 OK 533 B URL HTTP/1.1 www.valacjdk.com/ads/gouwan/index.html
IP 207.60.142.116:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 5a028f78f44a594a7bf8eb38910fb68b
29f1873fe960b08cd469296d9440d8a5f9154ad2
67c6fa917c3f9eaddf91dddda218f6f9511a84013451892aadcb94d1dadf2a75
Analyzer Verdict Alert fortinet Phishing
GET /ads/gouwan/index.html HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: text/html
Last-Modified: Tue, 15 Nov 2022 07:40:59 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6373428b-705"
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-shbp-header-legacy.min.css?ver=7.2.1
207.60.142.116200 OK 844 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-shbp-header-legacy.min.css?ver=7.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (4106)
Hash d0a1a7875533d5d750c49cb6507b6b3f
81dd8a89137ff62955d87a9d848a9fd898e400e2
bc594ef23fcc0deda7891d8fcdaef862eed99809577222543e7fc13a1b2c9be3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/css/media/min-shbp-header-legacy.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-sh-cbp.min.css?ver=7.2.1
207.60.142.116200 OK 387 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-sh-cbp.min.css?ver=7.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (1233)
Hash 3b099548fcfbc0d8ed117aa11cd94c89
7c4429b6535d873c5abc94da3f315bfce5895a79
7b39d3b073981506efd9ca82f1373cd24f946a093f796c8b3f47a14301e3bfec
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/css/media/min-sh-cbp.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/cache/min/1/e8aa63dd890845209725567d0a2e8f4e.css
207.60.142.116200 OK 46 kB URL HTTP/1.1 www.valacjdk.com/wp-content/cache/min/1/e8aa63dd890845209725567d0a2e8f4e.css
IP 207.60.142.116:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash e1acda6d5f19d5104fede7d99641a439
7b5e2731fdbba0579a0a8d8dbd6fd839a1a9e9be
39ecc6165f427c4b2f4f27a7316d47aab360d8a5ffb04d5e84eca8cc02c46ca8
GET /wp-content/cache/min/1/e8aa63dd890845209725567d0a2e8f4e.css HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
p1.qhimg.com/d/_onebox/search.png
54.230.111.65200 OK 2.9 kB URL HTTP/1.1 p1.qhimg.com/d/_onebox/search.png
IP 54.230.111.65:0
File type PNG image data, 260 x 43, 8-bit colormap, non-interlaced\012- data
Hash 996729035d9ea7dbd1dcf49bf99e78d9
aba797d529929ca0c864eaf7d3261aee61f3ad78
f7b46e16e323b71d7e8308e8aa62ab36453dd3b57935424f4b4166947f0e5863
GET /d/_onebox/search.png HTTP/1.1
Host: p1.qhimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2941
Connection: keep-alive
Date: Mon, 21 Nov 2022 18:05:46 GMT
Last-Modified: Tue, 05 Jan 2021 11:28:00 GMT
xzp: zhkbrquvsxaf
Expires: Sun, 19 Feb 2023 18:05:46 GMT
Cache-Control: max-age=7776000
Access-Control-Allow-Origin: *
XCS: HIT
KCS-Via: MISS from w-fc03.lato;MISS from w-sc02.bjyt
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 2Wn5yAjvBhLK-XBZMGwq0Vh9_IER_6I_b6QMTvvVnUCpnWCfnfbZmw==
Age: 1433084
www.valacjdk.com/wp-content/uploads/2020/05/fireline-logo-grey-200px.png
207.60.142.116200 OK 7.4 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/05/fireline-logo-grey-200px.png
IP 207.60.142.116:0
File type PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash ea65a2f00b133c5086b6140e8e1dccac
1f08bfcf486615c9a9e4da06a3f0027e78afb64a
bc99e1da4ab59ee66363128dd4ca2d05d360aa9bb15a4eadef7395079b3e6239
GET /wp-content/uploads/2020/05/fireline-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2021/09/vacuum-purge-bho-gallery-400x390.jpg
207.60.142.116200 OK 28 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2021/09/vacuum-purge-bho-gallery-400x390.jpg
IP 207.60.142.116:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x390, components 3\012- data
Hash e8505b7ec9e3715a6d6ac4403a0c7ea6
f19b16d116c734360c5913e948d9bc313e64d817
641024ced2cc844e9dadb3fea42a5aedb799b1ddb1906ca353215e98b906ae90
GET /wp-content/uploads/2021/09/vacuum-purge-bho-gallery-400x390.jpg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2020/05/extract-outfitters-logo-grey-200px.png
207.60.142.116200 OK 16 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/05/extract-outfitters-logo-grey-200px.png
IP 207.60.142.116:0
File type PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash 88f2d1796621b51eff6dc34916e5428d
abc5ae2f267e2d0ecb6fc75c50001db85e440969
2161500440d30c551e54ab653f4e21d95d3997d753031f9e0e629b3cf37a28ec
GET /wp-content/uploads/2020/05/extract-outfitters-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2020/05/denver-logo-grey-200px.png
207.60.142.116200 OK 18 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/05/denver-logo-grey-200px.png
IP 207.60.142.116:0
File type PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash e9c2dcbff2348046cc57f104c818738b
9de0605b2547677f53764e72fcc1c6714e82cf17
51eaa7d42fc476c1b71e0b0a81e89fd72d65bf7ad49c84d26bd340eb80e89e02
GET /wp-content/uploads/2020/05/denver-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2020/05/critical-logo-grey-200px.png
207.60.142.116200 OK 18 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/05/critical-logo-grey-200px.png
IP 207.60.142.116:0
File type PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash 64d48a17d34d541275b964da0d9b7919
2b1a46e3966e8416cab4bad0e78fa06c83e3c9ba
521bae75d3564a01211e2c9371003bd498bf4e501f824ed60df1f1be814433df
GET /wp-content/uploads/2020/05/critical-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2021/11/THC-for-Blog-400x390.jpg
207.60.142.116200 OK 15 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2021/11/THC-for-Blog-400x390.jpg
IP 207.60.142.116:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x390, components 3\012- data
Hash 94689b24921ed3c12700ac12bef2a631
6420c3388dcb2c74cea3799136cb1c8c897557fd
6b207c40571284ddf4808d796fdb3d08d6b87d19574b19ca8eb0afd81aaf22b9
GET /wp-content/uploads/2021/11/THC-for-Blog-400x390.jpg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:30 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 0e9eef4ed41ef94e9ea175ad243e294e
b6f83e508270413dabe55e2884b5409ca7978e24
0e741ca8d92717128bca7aed937bca43519a8d20a9d3dd8670da656ad51a695e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 08:10:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXx-p7K4GLs.woff
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXx-p7K4GLs.woff
IP 142.250.74.35:0
File type Web Open Font Format, TrueType, length 16364, version 1.1\012- data
Hash 7a442739544439a189d4f9b178c98c6b
2c06693a4729f9cac9fce202543682b9b2719c99
5f7a28913dfaf24ae02d546cda0a3e2cb28df0b83757e1bb8383baac7ed72460
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXx-p7K4GLs.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.valacjdk.com
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16364
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 04 Dec 2022 03:27:13 GMT
expires: Mon, 04 Dec 2023 03:27:13 GMT
cache-control: public, max-age=31536000
age: 362598
last-modified: Mon, 11 Jul 2022 18:59:51 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq3p6WXh0oJC8MLnrtQ.woff
142.250.74.35200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq3p6WXh0oJC8MLnrtQ.woff
IP 142.250.74.35:0
File type Web Open Font Format, TrueType, length 16884, version 1.1\012- data
Hash f90141705c3ad40495e13af4aaf7376e
c28407a339b900e278a955ad39c00f77a3bf759a
fd02eccbb8a9c90cee0c68a140b65892c61dfae2304d34d60f05d4c10a28a29c
GET /s/montserrat/v25/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq3p6WXh0oJC8MLnrtQ.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.valacjdk.com
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 14:59:59 GMT
expires: Wed, 06 Dec 2023 14:59:59 GMT
cache-control: public, max-age=31536000
age: 148232
last-modified: Mon, 11 Jul 2022 19:00:25 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash bc53d60438af7be528a563f2ac93188c
ac73ee4391ef200c4c6298956edcf7d14545e71f
80d08117362b359512fe9976341d7357d85797f1e5b9ae136e386f2fe8ca3a54
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 12 Dec 2022 04:26:08 GMT
ETag: "ac73ee4391ef200c4c6298956edcf7d14545e71f"
Last-Modified: Thu, 08 Dec 2022 04:26:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2214
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7764066a0aafb515-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7740
Expires: Thu, 08 Dec 2022 10:19:31 GMT
Date: Thu, 08 Dec 2022 08:10:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7740
Expires: Thu, 08 Dec 2022 10:19:31 GMT
Date: Thu, 08 Dec 2022 08:10:31 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d27bcd3-7b4f-4d99-8f0d-b7b98bfaa8d7.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d27bcd3-7b4f-4d99-8f0d-b7b98bfaa8d7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ce35df4fe4f77c950e40dc44b311bab4
aadf97d040e3577599581e892ee20f88d191bf91
f9c4cfc384213f77c0bbb252f3d6fbc22be60e1ecc158eece857d5050c8ced3c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d27bcd3-7b4f-4d99-8f0d-b7b98bfaa8d7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5620
x-amzn-requestid: fadda084-c7fc-4ec0-bad0-27e97b8349d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4gHGIMIAMFy_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6391079a-5dc824963fe82ab927205128;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:37:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ITQgs0jVosYx5zvT7j4YLqGZ1HEmsNgartV3g8uaNuJHs4VqVs50OQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 21:47:24 GMT
age: 37387
etag: "aadf97d040e3577599581e892ee20f88d191bf91"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5382e616-602f-4e00-bed7-d95c66a5000d.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5382e616-602f-4e00-bed7-d95c66a5000d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43fdc85bfd574fa803f0bcdc216ef622
27f558d5cdc150a50f080c054423500666b63d74
fafd2a81cddacdb4e5fd7c9963a784e6e56d06ac98f0bd4124fd74fa3ba015e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5382e616-602f-4e00-bed7-d95c66a5000d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5245
x-amzn-requestid: 9770ebcd-fb1e-4b81-bb87-1e98ef024741
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy-E8HugoAMFsKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911085-54eb7a48323113d52329abf5;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 22:15:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: d2DHUS5fGT4uoPPdjDXmHUOQVF93ULtO4zSHRmrx7KMu3lO0y0K9ag==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:24:13 GMT
age: 35178
etag: "27f558d5cdc150a50f080c054423500666b63d74"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7740
Expires: Thu, 08 Dec 2022 10:19:31 GMT
Date: Thu, 08 Dec 2022 08:10:31 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b87d6543345f73653ed4a49b37d7c959
c4f26846b8b72293368ff16915d49297cf12bbb9
aee6aa42e4b5b83b81f74801ff8f0039fc6d38036f42ee81875813c856cf5eef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8659
x-amzn-requestid: 6f420d07-65d5-4bb2-9f1f-e56025de497b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFSYFArIAMF46w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c0f-0a295e5c48228d5806b4f107;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TSh1BNzzIPhWCfYEiqvQJckSPAyhHobe-HK6msEVeEJ1ruX-_rMSSA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:33:19 GMT
age: 31032
etag: "c4f26846b8b72293368ff16915d49297cf12bbb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCs16Hw5aXx-p7K4GLs.woff
142.250.74.35200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCs16Hw5aXx-p7K4GLs.woff
IP 142.250.74.35:0
File type Web Open Font Format, TrueType, length 16596, version 1.1\012- data
Hash e3d80c62891d44be009202b0906385cd
4e8acc275f2f8dc48433f34ad30dc284a0205c1e
c2128a252f37c95b8b530ca208f4e020d0f20fae8b60480974ddd04683c37351
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCs16Hw5aXx-p7K4GLs.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.valacjdk.com
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16596
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 06:07:26 GMT
expires: Sat, 02 Dec 2023 06:07:26 GMT
cache-control: public, max-age=31536000
age: 525785
last-modified: Mon, 11 Jul 2022 18:55:59 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.valacjdk.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff
207.60.142.116200 OK 21 kB URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff
IP 207.60.142.116:0
File type Web Open Font Format, TrueType, length 20908, version 1.0\012- data
Hash b359a102e976a7223cea18dfaecd120d
e7e34ea4db9438ef5ad8ea76944bc82f7f24f2c9
15f739cdf76525c18061c2380673b3dde4f17b305354e264c3d46898634ed30a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7740
Expires: Thu, 08 Dec 2022 10:19:31 GMT
Date: Thu, 08 Dec 2022 08:10:31 GMT
Connection: keep-alive
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXx-p7K4GLs.woff
142.250.74.35200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXx-p7K4GLs.woff
IP 142.250.74.35:0
File type Web Open Font Format, TrueType, length 16556, version 1.1\012- data
Hash 204229ac29208812c364bd69a5873249
827aa06d1fb96d497ea39a9a313f0535972a0d45
1e86591b39be2da705365b6095091b6597c65de407663af7fdd93425f8bcfb2c
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXx-p7K4GLs.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.valacjdk.com
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16556
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 04 Dec 2022 02:29:35 GMT
expires: Mon, 04 Dec 2023 02:29:35 GMT
cache-control: public, max-age=31536000
age: 366056
last-modified: Mon, 11 Jul 2022 18:56:01 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img.baidu.com/img/logo-80px.gif
182.61.200.83200 OK 866 B URL HTTP/1.1 img.baidu.com/img/logo-80px.gif
IP 182.61.200.83:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 80 x 29\012- data
Hash 6f5433724f999a096e8a76e6d5918803
6ed88cb4676d384b6b3c7d8ceee5f48aa1bbb524
c3523c84b03a264ff85e541415f945c4c44705c454234274c78d63afd1c278b9
GET /img/logo-80px.gif HTTP/1.1
Host: img.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=311040000
Content-Length: 866
Content-Type: image/gif
Date: Thu, 08 Dec 2022 08:10:31 GMT
Etag: "1211028879"
Expires: Sat, 16 Oct 2032 08:10:31 GMT
Last-Modified: Sun, 15 Aug 2010 16:00:00 GMT
Server: BWS/1.0
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9367069b-64ab-4e4d-b8c9-fa115e0681a9.jpeg
34.120.237.76200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9367069b-64ab-4e4d-b8c9-fa115e0681a9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bdf4703f3372054a7aadce1cb0e11bd0
84d060f66accd412503d52c385ee47cb35795c07
c5853b653ee328e567e2456be12450e04c1704ed64fb6234f008532e4b6c8363
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9367069b-64ab-4e4d-b8c9-fa115e0681a9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3744
x-amzn-requestid: 73eab74b-e50c-46d1-adde-3ef85fb772f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlj7FDiIAMFmsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb618-70ffb1925e3a9ef6081d1cd1;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:37:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: F-LcglSz1NX1Q2t84r1dv0vQzONyYMhlGB6TdS6CeKf9I8Krk1mDUg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:05:24 GMT
age: 36307
etag: "84d060f66accd412503d52c385ee47cb35795c07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Hw5aXx-p7K4GLs.woff
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Hw5aXx-p7K4GLs.woff
IP 142.250.74.35:0
File type Web Open Font Format, TrueType, length 16524, version 1.1\012- data
Hash 6d7eada12e52c17e7489a10407450079
f5acea8e791c20555b5c5631abd44c4bca096a94
4aa3db8cfd366be018ce81a276825ca0b837a1e5fcfaaa381101866a94d19c4c
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Hw5aXx-p7K4GLs.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.valacjdk.com
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 03:38:08 GMT
expires: Sat, 02 Dec 2023 03:38:08 GMT
cache-control: public, max-age=31536000
age: 534743
last-modified: Mon, 11 Jul 2022 18:59:59 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7740
Expires: Thu, 08 Dec 2022 10:19:31 GMT
Date: Thu, 08 Dec 2022 08:10:31 GMT
Connection: keep-alive
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash a1e9680e5cfa3e165e0ae15fb0ff0c76
1a7c70ac415d2ff40e3b36245df346f56b6ad21c
3bce87771a4ff4226547d573b8b268d7d7a9c4586df7687c4f2ee87ca7912ef1
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 12 Dec 2022 05:44:28 GMT
ETag: "1a7c70ac415d2ff40e3b36245df346f56b6ad21c"
Last-Modified: Thu, 08 Dec 2022 05:44:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1955
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7764066a8b59b515-OSL
fonts.gstatic.com/s/montserrat/v25/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq_p9WXh0oJC8MLnrtQ.woff
142.250.74.35200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq_p9WXh0oJC8MLnrtQ.woff
IP 142.250.74.35:0
File type Web Open Font Format, TrueType, length 17096, version 1.1\012- data
Hash ca252d109abef523d6a89029a9eb81a3
7ddab7526a91f6973798bc02ecadf8713122e130
554b15652eb93d0f083c069afeeac6c08b34162666e9f5b805e9f74691d2945d
GET /s/montserrat/v25/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq_p9WXh0oJC8MLnrtQ.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.valacjdk.com
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17096
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 14:15:07 GMT
expires: Sat, 02 Dec 2023 14:15:07 GMT
cache-control: public, max-age=31536000
age: 496524
last-modified: Mon, 11 Jul 2022 18:56:13 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXx-p7K4GLs.woff
142.250.74.35200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXx-p7K4GLs.woff
IP 142.250.74.35:0
File type Web Open Font Format, TrueType, length 16568, version 1.1\012- data
Hash 23facbf845d56af99e5a7d8d6eb0b74e
b0270e9c1081ba45dc2d7bee632e30770ac1fe1b
06740bed37ae127653a71aafd5ef45de0238e7622639a9ab6dbf1f2144890a0c
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXx-p7K4GLs.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.valacjdk.com
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16568
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 05:48:06 GMT
expires: Tue, 05 Dec 2023 05:48:06 GMT
cache-control: public, max-age=31536000
age: 267745
last-modified: Mon, 11 Jul 2022 18:56:10 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2019d3bc-b4a4-4afc-ad84-3ab33b8036ec.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2019d3bc-b4a4-4afc-ad84-3ab33b8036ec.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fbdf939d23b987fd36a86b7a1258b10d
2cad45ad8e56699db3457501cf1e488fe85d479a
285a8a3d3ec439f493ca5d586477c3e3ed3b9e5d7a0133da73c426b69e112cb1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2019d3bc-b4a4-4afc-ad84-3ab33b8036ec.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10861
x-amzn-requestid: ad568a35-9eba-4c6d-a09d-97e518fbf503
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4gIFN4oAMFqrw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6391079a-434ca8281e48538e69e72e05;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:37:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4MrxT27cyrFqR70ofprhh4FbJAfVpKb787jT3TsH0l7BxQOf2tWh6g==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 21:51:32 GMT
age: 37139
etag: "2cad45ad8e56699db3457501cf1e488fe85d479a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash a1e9680e5cfa3e165e0ae15fb0ff0c76
1a7c70ac415d2ff40e3b36245df346f56b6ad21c
3bce87771a4ff4226547d573b8b268d7d7a9c4586df7687c4f2ee87ca7912ef1
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 12 Dec 2022 05:44:28 GMT
ETag: "1a7c70ac415d2ff40e3b36245df346f56b6ad21c"
Last-Modified: Thu, 08 Dec 2022 05:44:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1955
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7764066a9b75b515-OSL
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a21d707-1bf7-4b7f-a23b-7e8f38dd40c5.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a21d707-1bf7-4b7f-a23b-7e8f38dd40c5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3d44d17585c9a536c8da0e75ed90d175
9dc35d0f6b251004bc1ddc83aea9ee71c95aedd1
6d14a5b5c43b39244434560a83a2bfea6604a4d072943b6147293b7adfd1b7b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a21d707-1bf7-4b7f-a23b-7e8f38dd40c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10164
x-amzn-requestid: a0cb7259-0a07-44f5-91cd-e96b8d9c9cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cnAPOGSnoAMFUUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c472e-799b6ee425e29fb70ff7e4ea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 07:07:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5Q2LRCrEYVZz_KldQARUQ26O1mv0G7rMAPQXGkBzUnERF-WjtZPMJA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 10:23:11 GMT
age: 78440
etag: "9dc35d0f6b251004bc1ddc83aea9ee71c95aedd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.valacjdk.com/wp-content/uploads/2021/02/icon-extraction-equipment.svg
207.60.142.116200 OK 2.2 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2021/02/icon-extraction-equipment.svg
IP 207.60.142.116:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (3655)
Hash 320377ef16c144528848831311873e22
64f055150fab0ee6ba732d0877d6ddc699da786a
ed718f753f752c8b0dec06569e31ace2340564ff697115e7d965db23d48ec085
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2021/02/icon-extraction-equipment.svg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/uploads/2019/09/icon-compliance.svg
207.60.142.116200 OK 1.4 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2019/09/icon-compliance.svg
IP 207.60.142.116:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (1666)
Hash 1b0d3cbdcc24c7f5e6482362204445a4
ddf22b12bb432de63b85b865bc6f5eceb10bb51d
c054df559760da6b28c86aa99d02ee4afdf6a2f032ce30afb627ced1215049fa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/09/icon-compliance.svg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCs16Hw3aXx-p7K4GLvztg.woff
142.250.74.35200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCs16Hw3aXx-p7K4GLvztg.woff
IP 142.250.74.35:0
File type Web Open Font Format, TrueType, length 15096, version 1.1\012- data
Hash 82f2239fc382c48fd2e23c35f0e8bbb3
499ddae8f646980bd0a22e357852fafdaba3151b
fede0200b6521956fc0525097883a97f2749a46b5a39fbafdf2669947a783ac7
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCs16Hw3aXx-p7K4GLvztg.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.valacjdk.com
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15096
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Dec 2022 07:09:29 GMT
expires: Sun, 03 Dec 2023 07:09:29 GMT
cache-control: public, max-age=31536000
age: 435662
last-modified: Mon, 11 Jul 2022 18:56:33 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.valacjdk.com/wp-content/uploads/2019/09/icon-installation-training.svg
207.60.142.116200 OK 2.9 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2019/09/icon-installation-training.svg
IP 207.60.142.116:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (3428)
Hash 5a0f398f3aa05a9f331dab3cc52bb1d2
23e1a10b9e9c7af561e1eb6d5d422e6cb4d050ee
db5247e5fdbb4777dae5a9d11893bc8ec9fd2f9ff554adc541c3d0a02b3f1392
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/09/icon-installation-training.svg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 0e9eef4ed41ef94e9ea175ad243e294e
b6f83e508270413dabe55e2884b5409ca7978e24
0e741ca8d92717128bca7aed937bca43519a8d20a9d3dd8670da656ad51a695e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 08:10:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.valacjdk.com/wp-content/uploads/2019/09/icon-tech-support.svg
207.60.142.116200 OK 2.1 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2019/09/icon-tech-support.svg
IP 207.60.142.116:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (2099)
Hash 58c7220e63a3edf2e160de7a9b59c808
ed210d4dddc87f1d81e706a136b7b5a9954ecd86
5d9924e4d67f2da754dfae3aadab088e6d89069e9bf098d3e55b58f7159464a5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/09/icon-tech-support.svg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/uploads/2021/12/top100-companies-hover-1.svg
207.60.142.116200 OK 5.4 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2021/12/top100-companies-hover-1.svg
IP 207.60.142.116:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (3402)
Hash 15cb31ee37e1d3946d9be0d320bd848c
fb2afeca7ac3c6d973163c2a8e03b0d7d769479d
77968bbec5078c59f8838a31b2b8555a3c9d70573d0d4338e825049bdb5b332f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2021/12/top100-companies-hover-1.svg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/uploads/2021/12/top100-leaders-hover.svg
207.60.142.116200 OK 5.5 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2021/12/top100-leaders-hover.svg
IP 207.60.142.116:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (3404)
Hash 1434606db137256bab3d148dad582f27
043a6b4936fc39989ea15bdfab2306692b3f2ae8
457f0a90f51357d153574a122dc6cf96da14b8596bebc84411fde7f207134403
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2021/12/top100-leaders-hover.svg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.ttf
207.60.142.116200 OK 13 kB URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.ttf
IP 207.60.142.116:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Hash e61360da05c176c9d9b28f51510e61a6
d40c410c3521a878c6b8e1de2ae19920ec6a7098
7276bbee8164b50801ccfeaac65aab7d57da277d50a92effdaf5f7642f596402
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.ttf HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/uploads/2019/09/commercial-hover-300x300.jpg
207.60.142.116200 OK 7.6 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2019/09/commercial-hover-300x300.jpg
IP 207.60.142.116:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Hash dd2c4eb88929f27edccc2b69278537c8
21dc3a7f52598b28757e394cf7065e62156e75a7
faff6829fcbaee40e4132d874b8520dfa98a01d782d7a8777e4cc0e81682807f
GET /wp-content/uploads/2019/09/commercial-hover-300x300.jpg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2019/10/industrial-hover-1-300x300.jpg
207.60.142.116200 OK 8.6 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2019/10/industrial-hover-1-300x300.jpg
IP 207.60.142.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 300x300, components 3\012- data
Hash 37f371bbba6549d71db3697c4812d81e
0ca47e4b128d9fd5078b46f5b114f0931362118f
7159a119ef07f513a327f1e2df418594defe7712b8c51d93297a0bb1cec4bceb
GET /wp-content/uploads/2019/10/industrial-hover-1-300x300.jpg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
www.sogou.com/web/index/images/logo_440x140.v.4.png
118.191.216.57200 OK 3.0 kB URL HTTP/1.1 www.sogou.com/web/index/images/logo_440x140.v.4.png
IP 118.191.216.57:0
ASN #59045 Guangzhou navigation information technology co., LTD
File type PNG image data, 440 x 140, 8-bit colormap, non-interlaced\012- data
Hash 31de1d2fa7d918fab2f59984391db1c8
4f4b78796b3fbf19971f182175bcd92b01ee470f
29f87d6615f36a54e3edc8c7f05eb9b480d1f2989dec8da68e82747d060aea85
GET /web/index/images/logo_440x140.v.4.png HTTP/1.1
Host: www.sogou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: image/png
Content-Length: 2950
Connection: keep-alive
Last-Modified: Mon, 10 Feb 2020 03:11:55 GMT
Set-Cookie: ABTEST=5|1670487031|v17; expires=Sat, 07-Jan-23 08:10:31 GMT; path=/
IPLOC=NO; expires=Fri, 08-Dec-23 08:10:31 GMT; domain=.sogou.com; path=/
SUID=9A2A5A5B7E1A910A0000000063919BF7; expires=Wed, 03-Dec-2042 08:10:31 GMT; domain=.sogou.com; path=/
P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR", CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR", CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
ETag: "5e40c9fb-b86"
Expires: Tue, 06 Jun 2023 08:10:31 GMT
Cache-Control: max-age=15552000
UUID: 6a15f484-2d36-48b4-acfc-ea064802bdc9
Accept-Ranges: bytes
www.valacjdk.com/wp-content/uploads/2019/09/distillation-hover-300x300.jpg
207.60.142.116200 OK 7.8 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2019/09/distillation-hover-300x300.jpg
IP 207.60.142.116:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3\012- data
Hash da4c1c3dfb5f97de3472f72594602106
014ac0df9701c4c068cf2bac0399cd32d0540835
d9f7629079b60513b1239925b6f561d4f72e76617176326df71ba9d982d18fdf
GET /wp-content/uploads/2019/09/distillation-hover-300x300.jpg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2019/09/ancillary-hover-300x300.jpg
207.60.142.116200 OK 8.3 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2019/09/ancillary-hover-300x300.jpg
IP 207.60.142.116:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3\012- data
Hash b17c723145f6de3c28a6a7b1f01fc319
febc1c6c24c4d7494b4f23c4fd06e0083198f6db
94b64db1c4cece7ea1f8eeb7559486eabdfdcbc2c12cf2b9dad4dec5fff7fa7e
GET /wp-content/uploads/2019/09/ancillary-hover-300x300.jpg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8a7976d53e4aa25ffcaa5f08cf252cc2
3d5af847e619d7a2a890336f421839ff3311821a
5f9863d9cc69bb74ef154cda745d473e630ae9b4fab558d7b69a8f9b2a90fe0b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F9863D9CC69BB74EF154CDA745D473E630AE9B4FAB558D7B69A8F9B2A90FE0B"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9707
Expires: Thu, 08 Dec 2022 10:52:18 GMT
Date: Thu, 08 Dec 2022 08:10:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8a7976d53e4aa25ffcaa5f08cf252cc2
3d5af847e619d7a2a890336f421839ff3311821a
5f9863d9cc69bb74ef154cda745d473e630ae9b4fab558d7b69a8f9b2a90fe0b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F9863D9CC69BB74EF154CDA745D473E630AE9B4FAB558D7B69A8F9B2A90FE0B"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9784
Expires: Thu, 08 Dec 2022 10:53:35 GMT
Date: Thu, 08 Dec 2022 08:10:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8a7976d53e4aa25ffcaa5f08cf252cc2
3d5af847e619d7a2a890336f421839ff3311821a
5f9863d9cc69bb74ef154cda745d473e630ae9b4fab558d7b69a8f9b2a90fe0b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F9863D9CC69BB74EF154CDA745D473E630AE9B4FAB558D7B69A8F9B2A90FE0B"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21555
Expires: Thu, 08 Dec 2022 14:09:46 GMT
Date: Thu, 08 Dec 2022 08:10:31 GMT
Connection: keep-alive
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-640-social-sharing.min.css?ver=7.2.1
207.60.142.116200 OK 208 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-640-social-sharing.min.css?ver=7.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (332)
Hash 86452c68bad761a2603f9ec0cc47f8ab
6a155738fe17a48d485f64ce234bea673de576b1
dd355ff70229a8de52ddf66231b2df8d3a5b3c5b05fe9df3d0c6af7ab9c00954
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/css/media/max-sh-640-social-sharing.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8a7976d53e4aa25ffcaa5f08cf252cc2
3d5af847e619d7a2a890336f421839ff3311821a
5f9863d9cc69bb74ef154cda745d473e630ae9b4fab558d7b69a8f9b2a90fe0b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F9863D9CC69BB74EF154CDA745D473E630AE9B4FAB558D7B69A8F9B2A90FE0B"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 08 Dec 2022 14:10:31 GMT
Date: Thu, 08 Dec 2022 08:10:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8a7976d53e4aa25ffcaa5f08cf252cc2
3d5af847e619d7a2a890336f421839ff3311821a
5f9863d9cc69bb74ef154cda745d473e630ae9b4fab558d7b69a8f9b2a90fe0b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F9863D9CC69BB74EF154CDA745D473E630AE9B4FAB558D7B69A8F9B2A90FE0B"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21548
Expires: Thu, 08 Dec 2022 14:09:39 GMT
Date: Thu, 08 Dec 2022 08:10:31 GMT
Connection: keep-alive
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-shbp-header-legacy.min.css?ver=7.2.1
207.60.142.116200 OK 1.5 kB URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-shbp-header-legacy.min.css?ver=7.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (7259)
Hash 5814d3a82f39a40d3f408cf2a1c8bec0
333b78337b5e130acbe03b6f807ab7d6d8f82826
130dc4c35d4fdc5e735678f14605610452717dd216689fcb1e2cf9a48fd5311b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/css/media/max-shbp-header-legacy.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-p.min.css?ver=7.2.1
207.60.142.116200 OK 2.7 kB URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-p.min.css?ver=7.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (11968)
Hash 9c1f1d6bb765b11b086000bca69ee302
e9f482c9aa58bacd44883c1610b98baedf9e07f5
94ff4fe3d38a39f500afeeceefb7d4ba3449cd8936d5b243583ef726496ad092
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/css/media/min-768-max-1024-p.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-p-header-legacy.min.css?ver=7.2.1
207.60.142.116200 OK 277 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-p-header-legacy.min.css?ver=7.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (1584)
Hash 8d98dfae194621571692b58e84159c85
005e363c15c5173a95322895956c82a82c2b5f0a
1ec05d0854f16f6297e595dd2673fef0606258e11d91577c6d359d34acd6d763
GET /wp-content/themes/Avada/assets/css/media/min-768-max-1024-p-header-legacy.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-3c-max-4c.css?ver=3.2.1
207.60.142.116200 OK 152 B URL HTTP/1.1 www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-3c-max-4c.css?ver=3.2.1
IP 207.60.142.116:0
Hash c39263d2c385d3b8787980dee73a0684
1662c4c395bcf4aebb069d0631e3f9d9b217a0d0
d97f948aab8cf772b65e0840d71582d802310553141a9943a910da50e9ce92ab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/fusion-builder/assets/css/media/min-3c-max-4c.css?ver=3.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/max-2c.css?ver=3.2.1
207.60.142.116200 OK 117 B URL HTTP/1.1 www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/max-2c.css?ver=3.2.1
IP 207.60.142.116:0
Hash 5a42b4b87b95a54de99ef6a0638fc69f
f7b5ad01bdc292ce4dc6abe69c9fb2f229d212e1
9420ef7cd82da0b54ae7f4d5a7074b221a837a8de4a76bf3654f614e0064391c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/fusion-builder/assets/css/media/max-2c.css?ver=3.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-2c-max-3c.css?ver=3.2.1
207.60.142.116200 OK 164 B URL HTTP/1.1 www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-2c-max-3c.css?ver=3.2.1
IP 207.60.142.116:0
Hash 319f964b2b0d423c8cd520a5bdfd35f1
30146ba28d689087caf727d23e42d8d95d88d752
a77c4d5b6b30d221a8750aa44a7515619e4bf83f207b9dff33b93a523112bd66
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/fusion-builder/assets/css/media/min-2c-max-3c.css?ver=3.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-l.min.css?ver=7.2.1
207.60.142.116200 OK 184 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-l.min.css?ver=7.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (379)
Hash 6693dcd1cf4ed559e2b1fe71019ac845
a5d78b772edc04d99c5040950b5bd12291e4c672
e8406aa188d3f2fa09c544e55364d1a0b59b7d7c2245842eefc1e51b408c8d1d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/css/media/min-768-max-1024-l.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-main.min.css?ver=7.2.1
207.60.142.116200 OK 271 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-main.min.css?ver=7.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (583)
Hash 60beeff87694b22a55ef11b411a77355
572950d9843ca9741595e10e829f7be150990d29
f8559e6c039dcfdf9e36e0710f1d915d04b200677e58a23cbb84bba6131e074b
GET /wp-content/themes/Avada/assets/css/media/max-main.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/max-640.min.css?ver=3.2.1
207.60.142.116200 OK 411 B URL HTTP/1.1 www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/max-640.min.css?ver=3.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (1215)
Hash b40f0ea639460484ffb72862668ec6d9
d64b600b5c7afbbc28d102841f513547571b3bf6
50b2f04b810801ad8d05980a653a350710355ee49914504e338b1a3f7dd26a44
GET /wp-content/plugins/fusion-builder/assets/css/media/max-640.min.css?ver=3.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-640.min.css?ver=7.2.1
207.60.142.116200 OK 1.0 kB URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-640.min.css?ver=7.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (2958)
Hash 38d155239fab5a286b2e07786f481c82
f7772d9c64f31eb73aee0b496911e2b7249c85f9
bce0335bce5a76fc552be076ec36eed4ed29a6866f662e695ff608881867459b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/css/media/max-640.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:31 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-640-social-sharing.min.css?ver=7.2.1
207.60.142.116200 OK 163 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-640-social-sharing.min.css?ver=7.2.1
IP 207.60.142.116:0
Hash 983f5f0d488d79629ebb63fc7aa95844
80f0dd5774e61fe1bad9c6cfc01cb2aee5b3210a
96c493d77a4bbfcd1664607794bb191e9c152feae70d6ab7deecf8287d0ced83
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/css/media/max-640-social-sharing.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-5c-max-6c.min.css?ver=7.2.1
207.60.142.116200 OK 232 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-5c-max-6c.min.css?ver=7.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (918)
Hash 1ebe12b1fe17bdc79325c533c3055e9c
b3728e64170d98e0ffbb270a294f16b5d4d9fc15
481bf66ba38ff0ac58dea905d36bef929ab877ee83071b5c819200fdf1d90631
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/css/media/min-5c-max-6c.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/max-1c.css?ver=3.2.1
207.60.142.116200 OK 87 B URL HTTP/1.1 www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/max-1c.css?ver=3.2.1
IP 207.60.142.116:0
Hash 26b9060afe1fb2c52ed29da0e0e525d1
4eb0bf71730f909994bd32958fc6153568d15da4
171daea053a49a604478132507001b96a46215099559ab9d6b30e24ca36d8de7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/fusion-builder/assets/css/media/max-1c.css?ver=3.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-shbp-18.min.css?ver=7.2.1
207.60.142.116200 OK 189 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-shbp-18.min.css?ver=7.2.1
IP 207.60.142.116:0
Hash 136d5a1f06b5ccc822fad20282c51e71
70e8999fe3efadbd435bfbeac4c6e2d9888b7679
d987cee8775b0285558565e7225ae6e3c5adea7ad4d737d184f954e6e377896a
GET /wp-content/themes/Avada/assets/css/media/max-shbp-18.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-640.min.css?ver=7.2.1
207.60.142.116200 OK 780 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-640.min.css?ver=7.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (2331)
Hash 34a2bf32e787b26c84d4eeb914f138e0
a49087309c54eaedcc63461013a57e6f22ea50fa
cb6808a578dfe07eb00fd40f279f861ca2faa88313e995400baa4f53882861b0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/css/media/max-sh-640.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-shbp-32.min.css?ver=7.2.1
207.60.142.116200 OK 80 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-shbp-32.min.css?ver=7.2.1
IP 207.60.142.116:0
Hash 70e5f2a9b197f993477d857777fde7de
7dc4fd9b8365512eb151baa52502b031d9302d75
1de7baf28233fa7f21d1aca3d6ea4a9fb4b3b1c4bae39ad174679690740c4c51
GET /wp-content/themes/Avada/assets/css/media/max-shbp-32.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-4c-max-5c.css?ver=3.2.1
207.60.142.116200 OK 147 B URL HTTP/1.1 www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-4c-max-5c.css?ver=3.2.1
IP 207.60.142.116:0
Hash 85ab97bba76b7d1a16eb328bea3ad76a
3661b949d077b3964a3605770cf0da7cce70aa9d
09cd0b12a66aad894f4ee223c9ed5f5e7c67f87c4be3edfbe5af0708d7d83b76
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/fusion-builder/assets/css/media/min-4c-max-5c.css?ver=3.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-5c-max-6c.css?ver=3.2.1
207.60.142.116200 OK 128 B URL HTTP/1.1 www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-5c-max-6c.css?ver=3.2.1
IP 207.60.142.116:0
Hash 807311b23b2c206e398e9e5423f59b76
18ebe2a82110034c039e6c92bc283dc4bca7d3ce
7c12a7ab71b29de14474e6a4ab1fab0bcf36b31819c66304e85013d1f1ead065
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/fusion-builder/assets/css/media/min-5c-max-6c.css?ver=3.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-shbp-header-legacy.min.css?ver=7.2.1
207.60.142.116200 OK 2.7 kB URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-shbp-header-legacy.min.css?ver=7.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (23663)
Hash 8283eb4c1b5089e6e4a10ae637848a2a
55b96b7ad750337eb02a34dcaa15baa10d6718cc
398953e24998a567643e463ed5dbcc2d1790436de012cc2f6904c17c0d89871b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/css/media/max-sh-shbp-header-legacy.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-3c-max-4c.min.css?ver=7.2.1
207.60.142.116200 OK 308 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-3c-max-4c.min.css?ver=7.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (1809)
Hash 68b2f38756df4f93957df4d23d6dcf9b
fcec7279c66a0672b7af6083883d994e75614bef
ccb33b7f3f32e84b8c628e7ba15ef6ef64f0a35686d622502c5e292f2fea918f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/css/media/min-3c-max-4c.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/max-sh-cbp.min.css?ver=3.2.1
207.60.142.116200 OK 553 B URL HTTP/1.1 www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/max-sh-cbp.min.css?ver=3.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (1730)
Hash 5688e34e038e02c5f91f16e43c0e8324
33f276da1977d00650f34348ffd9eff521d8d226
cc748e823453a98ea54169dccc1c4ec9f345145e94139d3b2ff4e5382321ee68
GET /wp-content/plugins/fusion-builder/assets/css/media/max-sh-cbp.min.css?ver=3.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
hm.baidu.com/hm.js?38214bbc403b2dd09c2d707c6dedfdb8
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?38214bbc403b2dd09c2d707c6dedfdb8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (623)
Hash 0198ebd41bf8a68f008bbf29fb33ddf0
b37bad44976625f2580251994cbe38feb028f08e
dab2801efdae492cbbbe20ea501a2808cf62e609318ef29b9244e17136176b47
GET /hm.js?38214bbc403b2dd09c2d707c6dedfdb8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11261
Content-Type: application/javascript
Date: Thu, 08 Dec 2022 08:10:31 GMT
Etag: 1316ebcf8401e3fd4241915aabd4733a
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=7D8668D917BAC79F; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp-sliders.min.css?ver=7.2.1
207.60.142.116200 OK 520 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp-sliders.min.css?ver=7.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (3244)
Hash c6d21dcc241a4f72fac01e668726eb10
b2c39d7b5f39b487a9c0a0ea5be3db47ae703bd7
a482b9892454b1e49b581c2f98989457dba706aab24bb1c82602a4d4982bbce9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/css/media/max-sh-cbp-sliders.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-640-sliders.min.css?ver=7.2.1
207.60.142.116200 OK 484 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-640-sliders.min.css?ver=7.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (3158)
Hash 14478a225949f807663e0c625e064b4e
5479ecc3916c1e963ff66aa261f68228e13b5764
75850b5428863a6ee67d67df59ea07299d9c89540329dc12ab9693cc1a1ec932
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/css/media/max-640-sliders.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-2c.min.css?ver=7.2.1
207.60.142.116200 OK 324 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-2c.min.css?ver=7.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (1476)
Hash eb5acebd9f329f7439b59ba38603a59b
7776338d4c2305fc89528e95022cfbe6de134467
0555653a250eb6c035826e18089b1868fb4bc9e8f24421df3addd1c9d10eb7c1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/css/media/max-2c.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-l-header-legacy.min.css?ver=7.2.1
207.60.142.116200 OK 173 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-l-header-legacy.min.css?ver=7.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (883)
Hash 7d38faca797e9a999efd9cb397aa0929
6dab80951d01eb7d0af1581e3fef32b2411d50db
7c924563f6b43b3de45d35c1cc07d41ba04954fe7cb5cee348f1052d0ce0cad3
GET /wp-content/themes/Avada/assets/css/media/min-768-max-1024-l-header-legacy.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-4c-max-5c.min.css?ver=7.2.1
207.60.142.116200 OK 275 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-4c-max-5c.min.css?ver=7.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (1371)
Hash 99620579d724d62fc066bbdc334aa9b9
7a844e6e71d3d2e15ed6fcd748deaaa2383cf01c
1ea70ae915ce2a1e48755c50bd938082ad0c69b2915a6f581d67c8be1aaffc5d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/css/media/min-4c-max-5c.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp.min.css?ver=7.2.1
207.60.142.116200 OK 2.4 kB URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp.min.css?ver=7.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (9109)
Hash 999df13b33deae05a188ee4444967abb
f8f6b2ed297f47082f28a95e2237d348e9cb2ed3
3d8119c06401543aac19b3b0ca68db2b16c00237f6ab6228a095707b8c59c3cc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/css/media/max-sh-cbp.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-p-social-sharing.min.css?ver=7.2.1
207.60.142.116200 OK 256 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-768-max-1024-p-social-sharing.min.css?ver=7.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (477)
Hash 2720b18d056fb637c7ed1130197642dd
6c4b5aeae0883bdb498ff506666c9ac5d597064e
38dbc70619a6de712756acb8b5f8db1e18f56b243814b78096ef8af2f18b6e70
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/css/media/min-768-max-1024-p-social-sharing.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-768-max-1024-p.min.css?ver=3.2.1
207.60.142.116200 OK 930 B URL HTTP/1.1 www.valacjdk.com/wp-content/plugins/fusion-builder/assets/css/media/min-768-max-1024-p.min.css?ver=3.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (5060)
Hash 1f350e121c8c17b6c2053cbe9d505700
b9146b1ebb7fcd71f930e98e1c03066477b1f65f
e339c2216a0d20f99cb33e4273bb56285b594a3c9f0bfdd135a0b5aafa5747db
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/fusion-builder/assets/css/media/min-768-max-1024-p.min.css?ver=3.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.gemevog.com/gouwan/images/top.jpg
210.92.18.38200 OK 44 kB URL HTTP/1.1 www.gemevog.com/gouwan/images/top.jpg
IP 210.92.18.38:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x140, components 3\012- data
Hash c9ee135fb05dad0d66c716df43c95c5d
ef6a2fd91b705a7ae834da50c5b06c0660811989
1abb15323fe360a4e1268fe45c45dbbc8d5db3c42eb165144157dbebbf355f39
GET /gouwan/images/top.jpg HTTP/1.1
Host: www.gemevog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:29:13 GMT
Content-Type: image/jpeg
Content-Length: 43816
Last-Modified: Tue, 06 Jun 2017 06:55:39 GMT
Connection: keep-alive
Expires: Sat, 07 Jan 2023 08:29:13 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-1c.min.css?ver=7.2.1
207.60.142.116200 OK 219 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-1c.min.css?ver=7.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (1021)
Hash 186b08fc20d1c90ed8fac2bb0638a77f
76560f8fcf163e434cae3610f5021174d46ba28f
6f48ad1a1d0de372df5cd8440a80391ba7ddcdbf66833deceb4d290b239087aa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/css/media/max-1c.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-2c-max-3c.min.css?ver=7.2.1
207.60.142.116200 OK 327 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/min-2c-max-3c.min.css?ver=7.2.1
IP 207.60.142.116:0
File type ASCII text, with very long lines (1954)
Hash 96ab42b4f388acc029a591584ca9153c
571d8d818c177df7ba1af51d7deb2b189e046269
19ade83b0b8d74450bbf3ecba78b4387b979068fb0ae994003f27f8f45ce9540
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/css/media/min-2c-max-3c.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp-social-sharing.min.css?ver=7.2.1
207.60.142.116200 OK 176 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-cbp-social-sharing.min.css?ver=7.2.1
IP 207.60.142.116:0
Hash 23f60957f590b4f7fb0ff3c8baa8a370
00619dab5e2994c20e0d5fcfb2aecf7814e08a7c
31b0eaf1511fbd5b314cdaf0123b27e34509645378de65453478325754287e75
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/css/media/max-sh-cbp-social-sharing.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-cbp.min.css?ver=7.2.1
207.60.142.116200 OK 111 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-cbp.min.css?ver=7.2.1
IP 207.60.142.116:0
Hash f01a74c79e1fde637a17845e8fdef814
a56ca388d43aa9bb3a5adac37652b9d342bd8e36
ec9ba51f6e91a2883f86ef6fdea03c58f4674f9e08928389ba8939d0d5b42862
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/css/media/max-cbp.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-sbp.min.css?ver=7.2.1
207.60.142.116200 OK 137 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-sbp.min.css?ver=7.2.1
IP 207.60.142.116:0
Hash 1cd12ef4fe0b2cbeadfea999e05c419b
433227533afea48a61d027acc5a6917de609727d
208cc1b83a2734e12e9da9a3eaf22b9b601d5da4794ebab3a9bc9a0d79a67374
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/css/media/max-sh-sbp.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1317510827&si=38214bbc403b2dd09c2d707c6dedfdb8&v=1.3.0&lv=1&sn=65417&r=0&ww=1280&u=https%3A%2F%2Fwww.valacjdk.com%2F&tt=%E4%B8%87%E5%8D%9A%E5%AE%98%E7%BD%91%E6%89%8B%E6%9C%BAapp%E7%99%BB%E5%BD%95_manbetx%E4%B8%87%E5%8D%9A
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1317510827&si=38214bbc403b2dd09c2d707c6dedfdb8&v=1.3.0&lv=1&sn=65417&r=0&ww=1280&u=https%3A%2F%2Fwww.valacjdk.com%2F&tt=%E4%B8%87%E5%8D%9A%E5%AE%98%E7%BD%91%E6%89%8B%E6%9C%BAapp%E7%99%BB%E5%BD%95_manbetx%E4%B8%87%E5%8D%9A
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1317510827&si=38214bbc403b2dd09c2d707c6dedfdb8&v=1.3.0&lv=1&sn=65417&r=0&ww=1280&u=https%3A%2F%2Fwww.valacjdk.com%2F&tt=%E4%B8%87%E5%8D%9A%E5%AE%98%E7%BD%91%E6%89%8B%E6%9C%BAapp%E7%99%BB%E5%BD%95_manbetx%E4%B8%87%E5%8D%9A HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Thu, 08 Dec 2022 08:10:32 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=882A72DB1BD864FB; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-shbp.min.css?ver=7.2.1
207.60.142.116200 OK 93 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-sh-shbp.min.css?ver=7.2.1
IP 207.60.142.116:0
Hash d99e9e263cf153f0cc80172ac4688a70
13df9d6485ae868f670824d2c0f1a835aad4d4a0
310c33b516fe0ecd3fd14fee1b036eef31ad6df68bfed79ae8b428facf1179e9
GET /wp-content/themes/Avada/assets/css/media/max-sh-shbp.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-shbp.min.css?ver=7.2.1
207.60.142.116200 OK 119 B URL HTTP/1.1 www.valacjdk.com/wp-content/themes/Avada/assets/css/media/max-shbp.min.css?ver=7.2.1
IP 207.60.142.116:0
Hash b376756ecd5bcfaf38819d97cc453508
7c3f4fc4f51435e83fa888898d450c6873cd103a
decfb0d96e89b81aa3277f6deda198968fe901436fc4d216af473cb675060bbc
GET /wp-content/themes/Avada/assets/css/media/max-shbp.min.css?ver=7.2.1 HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.gemevog.com/images/r.gif
210.92.18.38200 OK 58 kB URL HTTP/1.1 www.gemevog.com/images/r.gif
IP 210.92.18.38:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=11, height=700, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=250], baseline, precision 8, 250x700, components 3\012- data
Hash dafc0c8e4b75df059062479d4e3d1240
8121a745bfcda354665b00dded91670fc3665b69
65c00a5bf171d63d0e2649fa8662db961c0ded544dff2187ba4745f83e5f816f
GET /images/r.gif HTTP/1.1
Host: www.gemevog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:29:13 GMT
Content-Type: image/gif
Content-Length: 58244
Last-Modified: Mon, 16 Jul 2018 08:25:40 GMT
Connection: keep-alive
Expires: Sat, 07 Jan 2023 08:29:13 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.valacjdk.com/wp-content/uploads/2022/08/precision-extraction-logo-e1660072502124.png
207.60.142.116200 OK 7.8 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2022/08/precision-extraction-logo-e1660072502124.png
IP 207.60.142.116:0
File type PNG image data, 220 x 71, 8-bit/color RGBA, non-interlaced\012- data
Hash df4cf9089c5c40fac193a9bcb97aae6c
bd38a9704ce3720774973c86e1bc2f575dd2f9c9
0f496a74ceca848b5ec68ed966d0a617c7f70312268f4854cfb98b4066d422b8
GET /wp-content/uploads/2022/08/precision-extraction-logo-e1660072502124.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/plugins/revslider/public/assets/assets/dummy.png
207.60.142.116200 OK 75 B URL HTTP/1.1 www.valacjdk.com/wp-content/plugins/revslider/public/assets/assets/dummy.png
IP 207.60.142.116:0
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash b078384966631b615d719c7e7769f391
00f435da390f71f22a3635a156b8eca058931640
6c3bcc8f30109604fb65de2535448b88c3f5fb146ac296745ddb436fe41ed4ec
GET /wp-content/plugins/revslider/public/assets/assets/dummy.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2020/05/columbia-logo-grey-200px.png
207.60.142.116200 OK 12 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/05/columbia-logo-grey-200px.png
IP 207.60.142.116:0
File type PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash 943f2e458a1c22ee16a960a30f3a9322
a05a203065200a32bd09ecacbab8e505955f22fc
922bd477f3e108379626d947a10d900836dbc6762a0ca820b3ba3f2bd8ba3115
GET /wp-content/uploads/2020/05/columbia-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2020/05/bliss-logo-grey-200px.png
207.60.142.116200 OK 16 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/05/bliss-logo-grey-200px.png
IP 207.60.142.116:0
File type PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash 1f019d32a45b4e20ba2032b528872334
f7979a57c8f70cd2a04af52d5e1ba6fc709be5aa
5c8f314ceb1cc9a52c9ecbd360e9a8a3d58fe9d54b86a95abb3ab804f3d9c7ff
GET /wp-content/uploads/2020/05/bliss-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2020/05/binske-logo-grey-200px.png
207.60.142.116200 OK 23 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/05/binske-logo-grey-200px.png
IP 207.60.142.116:0
File type PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash 1c89338f354ecef6cf84ebec1f7dcd1e
882770e1b6c11eae7931f5b8a729460822c35365
6d037fd6a28ff816f7b83a2c9af8d3c2f7e0ebc2633f0ed3eb09e590748995d4
GET /wp-content/uploads/2020/05/binske-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2020/06/ascendv2-logo-grey-200px.png
207.60.142.116200 OK 3.8 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/06/ascendv2-logo-grey-200px.png
IP 207.60.142.116:0
File type PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash 373f6730a56f8f9cc5af39b5fc7305dd
335ae216dd16bbf43f9ea0bf63ff740b17a5168e
af5586abda88dae57e8078c95189177e428b6bfb6b4d386451b3445435e789ac
GET /wp-content/uploads/2020/06/ascendv2-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2020/05/aphira-logo-grey-200px.png
207.60.142.116200 OK 11 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/05/aphira-logo-grey-200px.png
IP 207.60.142.116:0
File type PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash 0cd175816fa94d4b8ded91033aec73f9
8f26ef74ee8105c04d07f7a3fd3e6ee025c52f93
8e40332fc28be43efe31b92a709b66b436890420750ce8b3188876d4fdaac9c5
GET /wp-content/uploads/2020/05/aphira-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2020/05/aether-logo-grey-200px.png
207.60.142.116200 OK 22 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/05/aether-logo-grey-200px.png
IP 207.60.142.116:0
File type PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash 6199e23dbd4da8820fc3f77f82f491dc
399b30859f55dc1212fcca139ada0a0a5a78fa7b
3601fee0e62d38ba961661f24842f96686faba10ceb53aa69d31d09b04bce3e2
GET /wp-content/uploads/2020/05/aether-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2020/05/absolute-logo-grey-200px.png
207.60.142.116200 OK 18 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/05/absolute-logo-grey-200px.png
IP 207.60.142.116:0
File type PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash 66aa893d365f527eb6e4edf16cd9e9bd
db31c11482c4c55889cb3c66c6f90a6c6dc91ffa
2f6b8dd94b5bc6771c84c5895df7f15b8b9f9e609730398bbd8244a68ec21e90
GET /wp-content/uploads/2020/05/absolute-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2021/12/c1d1-extraction-container-outdoor-home-page.png
207.60.142.116200 OK 65 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2021/12/c1d1-extraction-container-outdoor-home-page.png
IP 207.60.142.116:0
File type PNG image data, 800 x 277, 8-bit colormap, non-interlaced\012- data
Hash e8aaabc2bb926eb8891a684e00cb69b1
310ee78d462232c851c1925c56b9443b8d066683
5f9a2d1b975f8cf66e6fa11ad48adf9462237322471fb255dd1bf9eb87ea48b4
GET /wp-content/uploads/2021/12/c1d1-extraction-container-outdoor-home-page.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2020/05/verano-logo-gray-200px.png
207.60.142.116200 OK 13 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/05/verano-logo-gray-200px.png
IP 207.60.142.116:0
File type PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash f852fd75eca4dfd2d91abb188bfc9b3b
4c74681d38e85e3ea585f15e522849921dab8e3e
b1a11788db2e8487093e5867361ee9f06256b00b114b2e97fe448f56b1724faa
GET /wp-content/uploads/2020/05/verano-logo-gray-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.gemevog.com/gouwan/images/app.jpg
210.92.18.38200 OK 138 kB URL HTTP/1.1 www.gemevog.com/gouwan/images/app.jpg
IP 210.92.18.38:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x427, components 3\012- data
Size 138 kB (138145 bytes)
Hash d7b27a7cdfd7450c1980fc0ebe56f7a7
e06324cfff44954367890f42f53896f155fd616a
65dab7d5005c61321826ef38f47d62292bae11801fbe53c398f8455908a9d967
GET /gouwan/images/app.jpg HTTP/1.1
Host: www.gemevog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:29:13 GMT
Content-Type: image/jpeg
Content-Length: 138145
Last-Modified: Fri, 30 Nov 2018 13:32:08 GMT
Connection: keep-alive
Expires: Sat, 07 Jan 2023 08:29:13 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.valacjdk.com/wp-content/uploads/2020/05/tree-top-logo-grey-200px.png
207.60.142.116200 OK 16 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/05/tree-top-logo-grey-200px.png
IP 207.60.142.116:0
File type PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash 8e0e77e9fd937a76340bc78b1284598d
813fe2f19988a372416d0f6d0a79a4584aab917e
2e370420a1b8949eb1aa9ec2f24945e6c97bf043686a607efad85e3345a8ae50
GET /wp-content/uploads/2020/05/tree-top-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2020/05/terrapin-logo-grey-200px.png
207.60.142.116200 OK 16 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/05/terrapin-logo-grey-200px.png
IP 207.60.142.116:0
File type PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash e2799f63cdeb4422f90eb6e0ba598e71
c2dd0d82df924bb5ceedc29213b5c9a58d881795
1ba51c624880d1963df882393aa0c3d8b6a1785c2c367ea5b63658bca1ac85b4
GET /wp-content/uploads/2020/05/terrapin-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2020/05/terrascend-logo-grey-200px.png
207.60.142.116200 OK 5.8 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/05/terrascend-logo-grey-200px.png
IP 207.60.142.116:0
File type PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash 986311d3864226358e90ca279bd1bd81
420d0358e57b2c12b8ebfc9d33f47da98d45d1da
5c7a7f9894c86b58741a4db4bed52d7b4ec70df7070dae78207ada2403017a3b
GET /wp-content/uploads/2020/05/terrascend-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2020/05/natures-lab-logo-grey-200px.png
207.60.142.116200 OK 15 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/05/natures-lab-logo-grey-200px.png
IP 207.60.142.116:0
File type PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash be1512cc61b409857c8b33ea3c7081de
6ca031fd66eb08b39bd5fa490ab1ee3094c561e7
15fe221d05d243741d169c39c19bf14a800f71b8751c54bc65f595dfb1ad86f4
GET /wp-content/uploads/2020/05/natures-lab-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2020/05/mpx-logo-grey-200px.png
207.60.142.116200 OK 19 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/05/mpx-logo-grey-200px.png
IP 207.60.142.116:0
File type PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash 0fb10f905bd39f4b44cf7ea0e5395a56
8a828f75e9812a27513cb8c4a5b55978267307a0
2995157a4b0d3bba69c96f4926ba37a86368bf34ef414517f2f4528436c4cdcd
GET /wp-content/uploads/2020/05/mpx-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2020/05/illera-logo-grey-200px.png
207.60.142.116200 OK 11 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/05/illera-logo-grey-200px.png
IP 207.60.142.116:0
File type PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash 6dd9244089d54780ce04b1019d6d0c75
32f7c236cf0296431d73daa2b28575d6cef0210f
587e555684d6517e7ae09877154a40bba958e1c866843db5d63985c830471018
GET /wp-content/uploads/2020/05/illera-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2020/05/moxie-logo-grey-200px.png
207.60.142.116200 OK 14 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/05/moxie-logo-grey-200px.png
IP 207.60.142.116:0
File type PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash f9f02e0f8df3cc20b4c34e99d3877577
2d12e271b65c033ba5586065f7f4cb2646a1bb85
c72a44562f048cedb2d1bd007940f62c8c392314b41a0d8cd06c219ad6aed36a
GET /wp-content/uploads/2020/05/moxie-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2022/06/G3XR-20L-800x800.png
207.60.142.116200 OK 378 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2022/06/G3XR-20L-800x800.png
IP 207.60.142.116:0
File type PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data
Size 378 kB (377524 bytes)
Hash eead1e1b9d2a5acb7d2a2b4ee18d0bb8
a0e5fc1e43f3e863f4517c1f772949e1bb57df69
ca99b7c5f5158700ed777471943047717be79543e114e555ff6114996c83351c
GET /wp-content/uploads/2022/06/G3XR-20L-800x800.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:32 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2020/05/media-edies-logo-grey-200px.png
207.60.142.116200 OK 6.5 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/05/media-edies-logo-grey-200px.png
IP 207.60.142.116:0
File type PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash 438afec7a739e34c10b7b402163af680
334888c7b6c5be985d8b6d29e6050a09f3aa6166
3902cfd8b0bb5d593f591b99aea277befa7a217589dfd9715241eaba53e6f6b5
GET /wp-content/uploads/2020/05/media-edies-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2020/05/holistic-logo-grey-200px.png
207.60.142.116200 OK 8.4 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/05/holistic-logo-grey-200px.png
IP 207.60.142.116:0
File type PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash b193f0b9d2c68b0cb4254f72aa360ab6
1ca28fa595c5b901bfcffc723a1cc53e37995a0e
6ccd234d4ac0bf7d74c03b883808ab791969225db278e98ea5ee0980970ca309
GET /wp-content/uploads/2020/05/holistic-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2020/05/green-therapeutics-logo-grey-200px.png
207.60.142.116200 OK 15 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/05/green-therapeutics-logo-grey-200px.png
IP 207.60.142.116:0
File type PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash 3b795ee6351a264ee0187b185034d881
e4b318b0d098875739f45337f37a68f90d0c4bc7
8145e32a2e70aba9b99313303b032c1beec8b4b94aca126b7a09c9f264c98a7b
GET /wp-content/uploads/2020/05/green-therapeutics-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.gemevog.com/gouwan/images/youhui.gif
210.92.18.38200 OK 283 kB URL HTTP/1.1 www.gemevog.com/gouwan/images/youhui.gif
IP 210.92.18.38:0
File type GIF image data, version 89a, 970 x 150\012- data
Size 283 kB (283175 bytes)
Hash 896f85cf0b8e708cd14bf1bef2ae712b
45b51b08eb5e789494a1d6af7f7b13c8de6b8c53
b5eb98ab3aa374eb1b4d59b2f622743284b26341348d3c325504fee968a2c6c3
GET /gouwan/images/youhui.gif HTTP/1.1
Host: www.gemevog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:29:13 GMT
Content-Type: image/gif
Content-Length: 283175
Last-Modified: Tue, 06 Jun 2017 02:18:10 GMT
Connection: keep-alive
Expires: Sat, 07 Jan 2023 08:29:13 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.valacjdk.com/wp-content/uploads/2020/05/grassroots-logo-grey-200px.png
207.60.142.116200 OK 24 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/05/grassroots-logo-grey-200px.png
IP 207.60.142.116:0
File type PNG image data, 200 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash 00624af8b8a68af153de8aeccfc96a74
84498a11b040004c3dfa02f404b913d645f55dc0
df920073e5534ee6ccf14535ce4d0cc944f514a6d728dfd8197beae0e638af3b
GET /wp-content/uploads/2020/05/grassroots-logo-grey-200px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2021/09/extracting-terpenes-400x390.jpg
207.60.142.116200 OK 68 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2021/09/extracting-terpenes-400x390.jpg
IP 207.60.142.116:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x390, components 3\012- data
Hash f8cf75168feb0c424c402040cfeb16fd
d7795b7b0ff91223d5465e377159de58561d3142
521e4e4d0a8a6d4664ebd282fd9097b6074fddd7f1733f08ac9a21f71ee4ad41
GET /wp-content/uploads/2021/09/extracting-terpenes-400x390.jpg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2020/06/read-blog-icon2-205px.png
207.60.142.116200 OK 3.9 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2020/06/read-blog-icon2-205px.png
IP 207.60.142.116:0
File type PNG image data, 267 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 7741fc7cf5d359de8f61bb8b2abdea89
094825e9d211b1b316895c00cf1d4be5c16c81d5
69b859942e922b2f131f013f9d51f4540999ffd41c571bb1a0f5ab14c1e508c2
GET /wp-content/uploads/2020/06/read-blog-icon2-205px.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2022/08/precision-extraction-logo-light-300x97.png
207.60.142.116200 OK 8.3 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2022/08/precision-extraction-logo-light-300x97.png
IP 207.60.142.116:0
File type PNG image data, 300 x 97, 8-bit/color RGBA, non-interlaced\012- data
Hash 2e197b190720fb64754f308121e7729d
55c993da486d33b25e8a11c5635f80a52bdd26c4
a24301f2927beaf142e8cba17e0db57536d3e51f27c3133ec4e2fd0b656d0ba9
GET /wp-content/uploads/2022/08/precision-extraction-logo-light-300x97.png HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.valacjdk.com/wp-content/uploads/2021/12/top-extraction-companies-mobile-logos.svg
207.60.142.116200 OK 8.7 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2021/12/top-extraction-companies-mobile-logos.svg
IP 207.60.142.116:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (3160)
Hash bb58f7cdd425b9c5201a1438cacd1a67
89347a5391c84cdedf6a9fede81da4de79283815
2b05675d933324b36785ff19150105d7fc0cd3155461c5fcb6ecc5caaefa8450
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2021/12/top-extraction-companies-mobile-logos.svg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.valacjdk.com/wp-content/uploads/2022/10/popup-banner-croptober-1200x711.jpg
207.60.142.116200 OK 142 kB URL HTTP/1.1 www.valacjdk.com/wp-content/uploads/2022/10/popup-banner-croptober-1200x711.jpg
IP 207.60.142.116:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x711, components 3\012- data
Size 142 kB (141746 bytes)
Hash 78e8d95a3a802b22f20ec6d17bffdac0
bb1edcb1aeea78579d81334c7e9c296471666512
224c1f4669c6045cbdbd4f83b03546280679ed5e2cf6d5031587027ef81042bf
GET /wp-content/uploads/2022/10/popup-banner-croptober-1200x711.jpg HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:33 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
www.gemevog.com/images/l.gif
210.92.18.38200 OK 468 kB URL HTTP/1.1 www.gemevog.com/images/l.gif
IP 210.92.18.38:0
File type GIF image data, version 89a, 250 x 700\012- data
Size 468 kB (468232 bytes)
Hash 9db5cd45521bb4f46c59ea838f763c5e
453228fed8cb602dda5299f7167c9879f763705c
19ec6cedebafcafdada8367f98b236120143121bb6fe3d6b543f2371fce03f12
GET /images/l.gif HTTP/1.1
Host: www.gemevog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:29:13 GMT
Content-Type: image/gif
Content-Length: 468232
Last-Modified: Mon, 16 Jul 2018 07:08:24 GMT
Connection: keep-alive
Expires: Sat, 07 Jan 2023 08:29:13 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.gemevog.com/gouwan/images/2.png
210.92.18.38200 OK 0 B URL HTTP/1.1 www.gemevog.com/gouwan/images/2.png
IP 210.92.18.38:0
GET /gouwan/images/2.png HTTP/1.1
Host: www.gemevog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:29:13 GMT
Content-Type: image/png
Content-Length: 3243357
Last-Modified: Tue, 15 Nov 2022 06:16:55 GMT
Connection: keep-alive
Expires: Sat, 07 Jan 2023 08:29:13 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.valacjdk.com/favicon.ico
207.60.142.116200 OK 0 B URL HTTP/1.1 www.valacjdk.com/favicon.ico
IP 207.60.142.116:0
GET /favicon.ico HTTP/1.1
Host: www.valacjdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.valacjdk.com/
Cookie: Hm_lvt_38214bbc403b2dd09c2d707c6dedfdb8=1670487032; Hm_lpvt_38214bbc403b2dd09c2d707c6dedfdb8=1670487032
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 08:10:37 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip