firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 12 Sep 2022 21:08:21 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QObGZIR2eaK33dgeWiPFBHtjuCPh74nfDEsJFWviBAOcw9yhCVJbag==
Age: 989
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 76d5eb597558e3dee0d99719d17e71e0
f3a0f3932fa8059f27dc9422d523b938fa9a7d09
d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12176
Expires: Tue, 13 Sep 2022 00:47:46 GMT
Date: Mon, 12 Sep 2022 21:24:50 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 12 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HAOwsKzJgjgvNn9-jKotNtg2Bf06KBT6h890BrO8oD7k4O3hXbXzTw==
age: 50858
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 12 Sep 2022 21:24:50 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
301 Moved Permanently 0 B URL HTTP/1.1 www.cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert openphish PostFinance
fortinet Phishing
quad9 Sinkholed
GET /.tmb/swiss/swiss/swi/clients/details.php HTTP/1.1
Host: www.cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 12 Sep 2022 21:24:49 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
Content-Length: 0
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Mon, 12 Sep 2022 20:56:07 GMT
Expires: Mon, 12 Sep 2022 21:36:09 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ImZw2CSPPgCbGsTlSC9ODjAz_TpCdaMtMLAuTsmY7sagBiM1nJelgQ==
Age: 1723
ocsp.digicert.com/
200 OK 471 B IP
Hash cb674936db4af4be99c3c397eff8c6ae
de79d76bac3fae5799b0ff35ecc19360595dfb06
992b884b64f9f6fdb76a6ba91c48fed329325b95b99d8003b282879a52093c08
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4086
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 21:24:50 GMT
Last-Modified: Mon, 12 Sep 2022 20:16:44 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
404 Not Found 36 kB URL HTTP/1.1 cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047)
Hash c1416fda6ac816c75aadd109228b83f8
fb0a3e0201fae4f90585a2981b813e93e582f192
5d5bcc68446060e8bcd369e07bc7ecd4572810fd8a0f9b7dbcc4aceb8c281ce4
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /.tmb/swiss/swiss/swi/clients/details.php HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Date: Mon, 12 Sep 2022 21:24:49 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://cafepositive.co.in/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6526c70eb74c821b7a95487ad9a4e13d
0b8c610a7755437ab815b845f52cbb27e6c95008
059d15ca6ac7cb1830286ae635731e03b56c01d7d050291dabe2b3f3db866c9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 21:24:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: e9M+V8prsVSCbgrbi5tc8A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: DF77vaGhW6hXJElBdffeq/vYcUk=
cafepositive.co.in/wp-content/themes/cafepositive/genericons/genericons.css?ver=3.2
200 OK 28 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/genericons/genericons.css?ver=3.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19226)
Hash c4a5f119c255c653e1ff74af2b021baf
6a7afc061f96d3726c6cf2b430d806fba596e867
e1dd4857cf68611937202e97ed063f7f3bd401d5300f807795ee504aa5e98450
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/themes/cafepositive/genericons/genericons.css?ver=3.2 HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:50 GMT
Server: Apache
Last-Modified: Wed, 10 Dec 2014 05:09:24 GMT
Accept-Ranges: bytes
Content-Length: 27519
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: text/css
cafepositive.co.in/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
200 OK 2.7 kB URL HTTP/1.1 cafepositive.co.in/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:50 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 05:05:15 GMT
Accept-Ranges: bytes
Content-Length: 2731
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6526c70eb74c821b7a95487ad9a4e13d
0b8c610a7755437ab815b845f52cbb27e6c95008
059d15ca6ac7cb1830286ae635731e03b56c01d7d050291dabe2b3f3db866c9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 21:24:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/css/settings.css
200 OK 30 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/css/settings.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (29418), with CRLF line terminators
Hash 9f4f00ef6543d1605d902f51fe083c2d
ee85e1283c695be178cf766524aa61ea36372a57
2e81985d6b2a407b4760c2c85a2cdfebeb13dfa8c07781162c429f7e8381aa45
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/revolution/css/settings.css HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:50 GMT
Server: Apache
Last-Modified: Fri, 17 Feb 2017 01:43:58 GMT
Accept-Ranges: bytes
Content-Length: 29789
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: text/css
cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/css/navigation.css
200 OK 60 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/css/navigation.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash c8f8666090883e07c43c886896157556
0a8f9fe0f46c959954bd69173062d8b042a2db70
c9c5f901eeef711f631164c4cd4108b433cf07adfa16cf1d544bc6f8505bf128
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/revolution/css/navigation.css HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:50 GMT
Server: Apache
Last-Modified: Mon, 24 Oct 2016 19:53:00 GMT
Accept-Ranges: bytes
Content-Length: 59576
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: text/css
cafepositive.co.in/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
200 OK 89 kB URL HTTP/1.1 cafepositive.co.in/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (43771)
Hash b7915926fe42d76e9c802353ab01dae4
3a8192a4312f25f53de25b100d62829c0f14d67c
d7705700d24d5919255576642ad2c28bfc790390b7183a369038ff5c1e814d51
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:50 GMT
Server: Apache
Last-Modified: Mon, 04 Jul 2022 12:10:37 GMT
Accept-Ranges: bytes
Content-Length: 88932
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: text/css
cafepositive.co.in/wp-content/themes/cafepositive/assets/css/external.css
200 OK 217 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/css/external.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (17768), with CRLF line terminators
Size 217 kB (217383 bytes)
Hash 6a8621db6df940656f74e702966168ab
96e412afae8988a7ca7d9c03e2a53a8812f5fb15
04f59e4e4bcff40db43f5ddd16f2cd93c0c6e2fa62f6b1ca660e910990badbac
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/css/external.css HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:50 GMT
Server: Apache
Last-Modified: Thu, 21 Dec 2017 23:57:12 GMT
Accept-Ranges: bytes
Content-Length: 217383
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: text/css
cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/css/layers.css
200 OK 147 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/css/layers.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Size 147 kB (146597 bytes)
Hash 67b50bc0d49c4b80742a835113b03562
29ce5433ed65387f6f6ef97159071e5987ae1599
cc830234af8b0e2ac01ad515ff209c43b29ba78d5145505a1088b18beefd2ac9
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/revolution/css/layers.css HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:50 GMT
Server: Apache
Last-Modified: Fri, 24 Jun 2016 19:58:56 GMT
Accept-Ranges: bytes
Content-Length: 146597
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: text/css
cafepositive.co.in/wp-content/themes/cafepositive/style.css?ver=6.0.2
200 OK 97 B URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/style.css?ver=6.0.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash b8abc568d36237dd97b5296c476347a8
d40d0fcdd6e2e0d207d584fcdb66905a545d398f
aca587042f0e9ef0a576132e9754021e3b081d4a8672e49fbbae61b586889e02
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/cafepositive/style.css?ver=6.0.2 HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:50 GMT
Server: Apache
Last-Modified: Tue, 26 Jul 2022 05:30:17 GMT
Accept-Ranges: bytes
Content-Length: 97
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: text/css
cafepositive.co.in/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
200 OK 90 kB URL HTTP/1.1 cafepositive.co.in/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:50 GMT
Server: Apache
Last-Modified: Wed, 10 Mar 2021 15:07:24 GMT
Accept-Ranges: bytes
Content-Length: 89521
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: application/javascript
cafepositive.co.in/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 11 kB URL HTTP/1.1 cafepositive.co.in/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:50 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
Accept-Ranges: bytes
Content-Length: 11224
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: application/javascript
cafepositive.co.in/wp-content/themes/cafepositive/assets/css/style.css
200 OK 231 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/css/style.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type assembler source, Unicode text, UTF-8 text, with CRLF line terminators
Size 231 kB (231265 bytes)
Hash 57311eb8a69b2870ed34af6554103eba
431733003a98d185556792e86a52ca45234a11b0
8b016fa314693b3cca5ec7140344ba072ba6de94e6fde430b530733c657823c1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/css/style.css HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:50 GMT
Server: Apache
Last-Modified: Mon, 05 Sep 2022 13:37:41 GMT
Accept-Ranges: bytes
Content-Length: 231265
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: text/css
cafepositive.co.in/wp-content/themes/cafepositive/assets/js/jquery-2.2.4.min.js
200 OK 86 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/js/jquery-2.2.4.min.js
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32065)
Hash 2f6b11a7e914718e0290410e85366fe9
69bb69e25ca7d5ef0935317584e6153f3fd9a88c
05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/js/jquery-2.2.4.min.js HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:50 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2016 19:48:50 GMT
Accept-Ranges: bytes
Content-Length: 85578
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: application/javascript
cafepositive.co.in/wp-content/themes/cafepositive/assets/css/bootstrap.min.css
200 OK 121 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/css/bootstrap.min.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65371)
Size 121 kB (121260 bytes)
Hash 2f624089c65f12185e79925bc5a7fc42
8eb176c70b9cfa6871b76d6dc98fb526e7e9b3de
eece6e0c65b7007ab0eb1b4998d36dafe381449525824349128efc3f86f4c91c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/css/bootstrap.min.css HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:50 GMT
Server: Apache
Last-Modified: Wed, 25 Nov 2015 04:04:20 GMT
Accept-Ranges: bytes
Content-Length: 121260
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: text/css
cafepositive.co.in/wp-content/themes/cafepositive/assets/js/functions.js
200 OK 29 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/js/functions.js
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (323), with CRLF line terminators
Hash 2ba20a1c67b637a8249550c23f2fd9d2
51c8fc0a668b094b4fdd38630467992bbdda095b
96af04a1a917a6a05393530df26af95b2ecdb4b31a7bc5b709f61e44ae8065c0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/js/functions.js HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:50 GMT
Server: Apache
Last-Modified: Wed, 28 Feb 2018 22:31:56 GMT
Accept-Ranges: bytes
Content-Length: 28855
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: application/javascript
cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/js/jquery.themepunch.tools.min.js?rev=5.0
200 OK 108 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/js/jquery.themepunch.tools.min.js?rev=5.0
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (27184), with CRLF line terminators
Size 108 kB (107534 bytes)
Hash ee418e8ccccf81d244d1e84e5f16a6cc
c3006d009fc528a5cd144e923ce9065c57eb6264
09b680f7684309e36e21b59242470b16a0ae396ba6d2ea465d28220db3de6c90
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/revolution/js/jquery.themepunch.tools.min.js?rev=5.0 HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:50 GMT
Server: Apache
Last-Modified: Fri, 10 Mar 2017 06:10:20 GMT
Accept-Ranges: bytes
Content-Length: 107534
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: application/javascript
cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/js/jquery.themepunch.revolution.min.js?rev=5.0
200 OK 63 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/js/jquery.themepunch.revolution.min.js?rev=5.0
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32003), with CRLF line terminators
Hash b4b495a7dc7db64771070c7f67813615
f36b9f296e3fa9eb6d6e18841540129ea95861fd
1dfd5afa2f6a618d8b7450ddc586413e1b75499322d6534e01accd990ae66925
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/revolution/js/jquery.themepunch.revolution.min.js?rev=5.0 HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:50 GMT
Server: Apache
Last-Modified: Fri, 10 Mar 2017 06:10:20 GMT
Accept-Ranges: bytes
Content-Length: 63323
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: application/javascript
cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.video.min.js
200 OK 24 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.video.min.js
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (23657), with CRLF line terminators
Hash 344d81c503e6596625c14ddb45d3730e
294111844fa7da2791c57e38bb20b55864100a68
38021482d7e921d71110ae92417a3ce529367560ccdb6c0f5f80047c2b3b2911
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.video.min.js HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:50 GMT
Server: Apache
Last-Modified: Fri, 10 Mar 2017 06:10:20 GMT
Accept-Ranges: bytes
Content-Length: 23903
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: application/javascript
cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.actions.min.js
200 OK 8.9 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.actions.min.js
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8630), with CRLF line terminators
Hash 5f6ac1db3dfc6b765f1bf0059442b64f
dfa0c3e2167332021dd3f4d00831e87990653832
0f82577aad69a031d612a654f6da434ac65652e6bb9659940f03bd7fcc1f125d
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.actions.min.js HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:51 GMT
Server: Apache
Last-Modified: Fri, 10 Mar 2017 06:10:20 GMT
Accept-Ranges: bytes
Content-Length: 8866
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: application/javascript
cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.slideanims.min.js
200 OK 28 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.slideanims.min.js
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (28035), with CRLF line terminators
Hash 62e9b0f64eb4c0ed5d87e637a347203b
617c5bccc9d602450a1ab065100d5b921ceb08b9
a5a28fb693f5bf0af78fdcda6d764889db470110f3ee10c036bc44b527103ed1
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.slideanims.min.js HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:51 GMT
Server: Apache
Last-Modified: Fri, 10 Mar 2017 06:10:20 GMT
Accept-Ranges: bytes
Content-Length: 28285
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: application/javascript
cafepositive.co.in/wp-content/uploads/2022/07/logo-light.png
200 OK 3.5 kB URL HTTP/1.1 cafepositive.co.in/wp-content/uploads/2022/07/logo-light.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 107 x 39, 8-bit/color RGBA, non-interlaced\012- data
Hash aba77d48d707ffeb81a0af4bbd324c34
9ca8aba6f02b21517792deb1a05a2e767c70492d
d39158265094bb36ff6b5099b509b9f192d5de9029b6dc84f54cb4f379ab907b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/07/logo-light.png HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cafepositive.co.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:51 GMT
Server: Apache
Last-Modified: Fri, 29 Jul 2022 08:09:27 GMT
Accept-Ranges: bytes
Content-Length: 3450
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: image/png
ocsp.digicert.com/
200 OK 471 B IP
Hash d0b93bf10aa6a1c704f00fe526ad647b
0a19767b3b99aa79469aadc9b88ec5d3df93d442
852466649bb58710c5a9a42d6fcc2ada0d5062ba42351cc503ed2fdd46588e33
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2614
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 21:24:52 GMT
Last-Modified: Mon, 12 Sep 2022 20:41:18 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.layeranimation.min.js
200 OK 54 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.layeranimation.min.js
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32060), with CRLF line terminators
Hash 45b3c06b714f813d6c5fc8f2f3a92e02
7a736acd213ea0a1b379c943b1a3961efd77ef1f
258aae408e454bbed0e57b0e13cee383bcf5ae625470d379f0e4a7d73445d99f
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.layeranimation.min.js HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:51 GMT
Server: Apache
Last-Modified: Fri, 10 Mar 2017 06:10:20 GMT
Accept-Ranges: bytes
Content-Length: 54044
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash bd7b5eb635d48acf1428c326eaa892a1
ba9f6c0db831a88b7d6dbdd98f19e76b4b501258
557466a3b642e90e352898073ff23f6a034c3b233e8aee0f0f69cd6ca83d49f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 21:24:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cafepositive.co.in
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:34:08 GMT
expires: Thu, 07 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 438644
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash bd7b5eb635d48acf1428c326eaa892a1
ba9f6c0db831a88b7d6dbdd98f19e76b4b501258
557466a3b642e90e352898073ff23f6a034c3b233e8aee0f0f69cd6ca83d49f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 21:24:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.kenburn.min.js
200 OK 3.7 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.kenburn.min.js
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3467), with CRLF line terminators
Hash 317232853a1543be5417178c7a0d1802
cbee8e67a48f0b443dbc67384b9a34248a271a89
cf53ab3009c30319d43e2e5cc0219a2cf294a08ff7d590b94a600746218075f1
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.kenburn.min.js HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:51 GMT
Server: Apache
Last-Modified: Fri, 10 Mar 2017 06:10:20 GMT
Accept-Ranges: bytes
Content-Length: 3702
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: application/javascript
cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.navigation.min.js
200 OK 26 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.navigation.min.js
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (25664), with CRLF line terminators
Hash cda4d8e6aba8bd3b504127c9eae7afc1
752a7ab05dedeac86f6ec1c7ca3d314c48a7f8ca
e2cc08a7263b9ab7f6f5edb4c93bb671d60ec9a1521ad32f556db014fa4b97ed
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.navigation.min.js HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:51 GMT
Server: Apache
Last-Modified: Fri, 10 Mar 2017 06:10:20 GMT
Accept-Ranges: bytes
Content-Length: 25903
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.digicert.com/
200 OK 471 B IP
Hash d0b93bf10aa6a1c704f00fe526ad647b
0a19767b3b99aa79469aadc9b88ec5d3df93d442
852466649bb58710c5a9a42d6fcc2ada0d5062ba42351cc503ed2fdd46588e33
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2614
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 21:24:52 GMT
Last-Modified: Mon, 12 Sep 2022 20:41:18 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.migration.min.js
200 OK 6.1 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.migration.min.js
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5692), with CRLF line terminators
Hash ef29db0183f4c6cdc06f662b4cdc9ef5
c36dae319ecaa8f053b5256be6be52f57fe3f0c3
dfcf4132975ff14c2f1f9cfdc4ec7b689fc1ae093f7f988637c52a559e260b64
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.migration.min.js HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:51 GMT
Server: Apache
Last-Modified: Fri, 10 Mar 2017 06:10:20 GMT
Accept-Ranges: bytes
Content-Length: 6110
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: application/javascript
cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.parallax.min.js
200 OK 11 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.parallax.min.js
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10440), with CRLF line terminators
Hash 98f1ee062bb2f698eb228ecfb0c2b4a5
bbaab382e24523d10e1f4791b8054ac52538bca3
990a19934dde08fb93d2ef88c6e3c139ad73f382af87bc3ce5d120a5d0bba17c
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/revolution/js/extensions/revolution.extension.parallax.min.js HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:51 GMT
Server: Apache
Last-Modified: Fri, 10 Mar 2017 06:10:20 GMT
Accept-Ranges: bytes
Content-Length: 10679
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: application/javascript
cafepositive.co.in/wp-content/themes/cafepositive/assets/js/rsconfig.js
200 OK 1.9 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/js/rsconfig.js
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 747fe4eb05a4b92c8891b6b6c12e3f12
8b81faa5fd59d9bd5d59935af6b3fd96032a0f3b
b20d72f11e0269fa94b5f89a59a2dc5ccfdc673821253ba7e5dcff9bcfaf4fab
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/js/rsconfig.js HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:51 GMT
Server: Apache
Last-Modified: Thu, 21 Dec 2017 22:29:34 GMT
Accept-Ranges: bytes
Content-Length: 1920
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: application/javascript
static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
200 OK 827 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (724)
Hash 29973cf3b0ef9f16fe31ed981b2f6573
f22eb80b89b5e0ae9ace854aab6676d56eaef6a1
476822c80e0a0ee078edb7a74db59378f8b1d43d2de844e28a9e9c2f68a4c8d8
GET /rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 01:37:14 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KZc887Dvnxb+Me2YGy9lcw==
x-fb-debug: J76KZ7MIaG1WhOgdxMnU+bXxxoWUIgiX37FVFVHDsWMFmgPYtTQyiboxzc18qJkuGokCNkxSoV3uy6uswzXmPQ==
content-length: 827
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 21:24:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iLl54/yY/l/en_US/aNjKFj6YixL.js?_nc_x=Ij3Wp8lg5Kz
200 OK 8.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iLl54/yY/l/en_US/aNjKFj6YixL.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (2905)
Hash a7e668c44c1c44a7eb82bf24800ff5e9
6f2393e5cf5ef26d6a6d661b7856ffcd273a63a6
ad110540fa27e40a9cf3de4aa42ca9632f03a622b73fe41b19f633fe81d6eaea
GET /rsrc.php/v3iLl54/yY/l/en_US/aNjKFj6YixL.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 10 Sep 2023 04:01:40 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: p+ZoxEwcRKfrgr8kgA/16Q==
x-fb-debug: OXe2utu+T2tst3AhpXTyKaLDMHMngJlMYkXFjBOu0Eu8t+yvQTVlWrsPa4W6ugyVtyAm258OFEt+G6g/fYh6oQ==
content-length: 8358
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 21:24:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
200 OK 338 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (327)
Hash 76f593e842677f73cd0a06232874b2c3
25a13f79478d5a0e286a2299dca2f3b296463079
74dcbe026002f10b703960a500b50dabe518862e568a9e689dec7afa243fa44d
GET /rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 03:40:09 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dvWT6EJnf3PNCgYjKHSyww==
x-fb-debug: yvcHQcHgQfrcN31QwueWw7eqsNpNbWtAvIIpRMNbc1EWD9EWLcTQ586PSUdvC7roJbEBWK8NJm/xMHyMmQTyNw==
content-length: 338
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 21:24:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y9/r/JGf8H9KH1mW.js?_nc_x=Ij3Wp8lg5Kz
200 OK 9.0 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y9/r/JGf8H9KH1mW.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (9886)
Hash 12ee8cecac4344f91112c41bde25523c
ac8ea8f8b40bbaf2cf932ffdf67abb8b14d7ce0d
0558ee7b9742c0bdede937d19d585eec41b4011b9989f47264464eecb46caaa2
GET /rsrc.php/v3/y9/r/JGf8H9KH1mW.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 01:41:21 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Eu6M7KxDRPkREsQb3iVSPA==
x-fb-debug: mW89nwJcufv+cLN1k3e/fHvPIMYAiy1kKhinQ/UNsGjhKy3/LlF4QLMGhKDpLF+3Nki6+I71MVUxkm/yZkqV2g==
content-length: 9040
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 21:24:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yp/l/en_US/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz
200 OK 23 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yp/l/en_US/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (41977)
Hash 3ce46348c6edab150e0c6f8ce7cd0a0d
6aea70ed9afc6f514f89c0bca5a99f04c331bc24
8ac7aadd7e52746a466b2721699b1430ab4360c52d4c73dab9f51a849b73857d
GET /rsrc.php/v3iEpO4/yp/l/en_US/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 01:41:57 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: PORjSMbtqxUODG+M580KDQ==
x-fb-debug: NJQ12ZDBP34ZnXN4ZFSYVG844c14KE5zOeWLLhrmdptBmTh0Wtnh6A7qedPmNfkMESEwQvbFqZOlH0WpxqwSvQ==
priority: u=3,i
content-length: 23301
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 21:24:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz
200 OK 7.2 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (4061)
Hash d1ba68f146b01f4aef60d79aadb926ea
c6b4703c25d07fd2363e5d67d11e4846d9979b26
abbff04acf96f39a3121ed97505b5a23cbeee9057dd7040c58c4e423c899805d
GET /rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 03:18:20 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 0bpo8UawH0rvYNearbkm6g==
x-fb-debug: AxuBRMeecTqjG7KRWPqbLid14yKdY3m8h2KqMlAi9Ts8Zer7pJ2yodNVaiI5ulOtBZKd+VnBPzEaOc8SX9rrgg==
content-length: 7236
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 21:24:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cafepositive.co.in/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
200 OK 9.7 kB URL HTTP/1.1 cafepositive.co.in/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9680), with no line terminators
Hash 490c29d6776fc430c23403fd845b34b0
817129906b7fef1011895a76f047c7693a852e21
29e8de26576208c07ba0845f604e65c9273b93f9f4d1d66214eb4c586f9938c4
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:51 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 05:05:15 GMT
Accept-Ranges: bytes
Content-Length: 9680
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: application/javascript
cafepositive.co.in/wp-content/themes/cafepositive/assets/js/plugins.js
200 OK 682 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/js/plugins.js
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (32033), with CRLF line terminators
Size 682 kB (682368 bytes)
Hash b4d3728aad4836be62421eab27f5c756
9b0e032e6189acbd4381f03dd6b81346627e0359
be813d91d99d919ea30c9d011dc8dbbfd9a0ec5d2ff3d8b05a5d02bab8ff1213
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/js/plugins.js HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:50 GMT
Server: Apache
Last-Modified: Mon, 26 Feb 2018 23:03:34 GMT
Accept-Ranges: bytes
Content-Length: 682368
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: application/javascript
cafepositive.co.in/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
200 OK 12 kB URL HTTP/1.1 cafepositive.co.in/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (12211), with no line terminators
Hash 3f3fc23f477a3849aa5677c585b2a2b4
ccf0865ebd37f76c450c7a377a86ff2448288db3
985fdd42398281348ca133a44750a56fe4909a806b9c075c9443a5d0bd6d2e51
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:51 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 05:05:15 GMT
Accept-Ranges: bytes
Content-Length: 12211
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: application/javascript
cafepositive.co.in/wp-content/uploads/2022/07/logo-dark.png
200 OK 3.8 kB URL HTTP/1.1 cafepositive.co.in/wp-content/uploads/2022/07/logo-dark.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 107 x 39, 8-bit/color RGBA, non-interlaced\012- data
Hash 4868955927c66b85483da77c9a520a6b
abbd0df21399e7d96b94c323c2f1e75d4e288219
5a20a5272db1fe8fd03971e20c52d9dd8e3c638f3f92b3b161dc200dde3a7dc0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/07/logo-dark.png HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cafepositive.co.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:51 GMT
Server: Apache
Last-Modified: Fri, 29 Jul 2022 08:09:41 GMT
Accept-Ranges: bytes
Content-Length: 3799
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: image/png
cafepositive.co.in/wp-content/themes/cafepositive/js/functions.js?ver=20150330
200 OK 5.9 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/js/functions.js?ver=20150330
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash a76b662d0cca75d9012db66d1d2eb7c5
8101e1a3dd00cb4bf99563a749eae1335ecd3f45
5777a9b3fd1b52eaa86f0a4fcffe6e5c37d0c92bf0aca35db4346fa19c250282
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/cafepositive/js/functions.js?ver=20150330 HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:51 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2016 13:03:28 GMT
Accept-Ranges: bytes
Content-Length: 5920
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: application/javascript
static.xx.fbcdn.net/rsrc.php/v3/yH/r/Y88lOwaPq4F.js?_nc_x=Ij3Wp8lg5Kz
200 OK 91 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yH/r/Y88lOwaPq4F.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (18501)
Hash e712b0060a23b6c5ede3b67e0bb8639e
faf1f8ee5d679c27fb0fd418f63cf7d851344d26
0efe6b239b3fb45de4071c337078b2b43696cdccdf01024f527af941701239fd
GET /rsrc.php/v3/yH/r/Y88lOwaPq4F.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 03:30:01 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 5xKwBgojtsXt47Z+C7hjng==
x-fb-debug: 3c0szJoPJlw3vjUpY97f7O7xkRYg1sm5oRSI3yfowVeJWTVbFZE/6e7l9rVCMDvSXmxGXtVhnpsTmkqZudUKqQ==
priority: u=3,i
content-length: 90711
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 21:24:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yX/l/0,cross/WmJr1_luoTx.css?_nc_x=Ij3Wp8lg5Kz
200 OK 5.3 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yX/l/0,cross/WmJr1_luoTx.css?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (4093)
Hash 53d721865684811f74e6287d461271da
b8ea226e9f320b4a3f57fb9618b905322962ff11
e5c8dd9b49d068bf6f08d3ca93a0bb2d31c6fd1067c3f878a630aa1f36abeaaf
GET /rsrc.php/v3/yX/l/0,cross/WmJr1_luoTx.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 17:30:34 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: U9chhlaEgR905ih9RhJx2g==
x-fb-debug: inN9XQjNgp8zj0IFRbOGpfcHjM5sOVIZOocFNRFjVooWp/Xg5N6OD5oyrgBVfNCcvtq+EyNfyZa+Eb7YJUyN5g==
content-length: 5342
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 21:24:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fcafepositivekolkata&tabs=timeline&width=340&height=350&small_header=true&adapt_container_width=true&hide_cover=false&show_facepile=true&appId=697035587662981
200 OK 28 kB URL HTTP/2 www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fcafepositivekolkata&tabs=timeline&width=340&height=350&small_header=true&adapt_container_width=true&hide_cover=false&show_facepile=true&appId=697035587662981
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (21896)
Hash cbd8f9f9f28cfe269618e20e8cdcc083
d3e675124689af23072c8b514c59a66373d002c1
318195dfcf7c56deb0983c3dde67d29b8036d77f50c1ff9ef0d025a85d9ece57
GET /plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fcafepositivekolkata&tabs=timeline&width=340&height=350&small_header=true&adapt_container_width=true&hide_cover=false&show_facepile=true&appId=697035587662981 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cafepositive.co.in/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: LNU79peiOENJ8O09PCF1EqytjhfC+gf8aaniTp84XIugfs9Mv3Xmju+FYPhnW2mYo6+8XBB7JpDdtHCHLT/D0A==
date: Mon, 12 Sep 2022 21:24:52 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yx/r/9QJEUDJuAYR.js?_nc_x=Ij3Wp8lg5Kz
200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yx/r/9QJEUDJuAYR.js?_nc_x=Ij3Wp8lg5Kz
IP
File type C source, ASCII text, with very long lines (7299)
Hash 1626e8e828598e06ccd0c47e55b42304
af5c62af35bf22b593fdbe758a2feea6bc1b057f
3798dbb7df2694a222f65f4cadc92e6d133fc8f5fc2b00f326df521cd0c24b25
GET /rsrc.php/v3/yx/r/9QJEUDJuAYR.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 10 Sep 2023 23:17:01 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Fibo6ChZjgbM0MR+VbQjBA==
x-fb-debug: WZ717luA04eC0w9/UftRjzgVoR53s4cLWDM5YQJJl1SlHzDZq1EPRlrPMKpwUP59alRadSFaFlKs2dUrV42AgQ==
priority: u=3,i
content-length: 15844
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 21:24:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14024
Expires: Tue, 13 Sep 2022 01:18:36 GMT
Date: Mon, 12 Sep 2022 21:24:52 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14024
Expires: Tue, 13 Sep 2022 01:18:36 GMT
Date: Mon, 12 Sep 2022 21:24:52 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14024
Expires: Tue, 13 Sep 2022 01:18:36 GMT
Date: Mon, 12 Sep 2022 21:24:52 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14024
Expires: Tue, 13 Sep 2022 01:18:36 GMT
Date: Mon, 12 Sep 2022 21:24:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae1f7987-7b92-4cec-85ab-243250e02a06.webp
200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae1f7987-7b92-4cec-85ab-243250e02a06.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7ccc33ae0c85a906f2c17db281ec790
1904722d70348235d5472c54f888d2b4b991e2aa
f48edc03624f582b05b596694b76bd784f85eb9f2ca5dd025bbea9cc2ff1f096
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae1f7987-7b92-4cec-85ab-243250e02a06.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6999
x-amzn-requestid: 61e3e817-fb62-47c7-b938-2dfc6a134622
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO1mlG3XIAMFo5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3629-37c2c8982c4ccf891875c59a;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:00:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: S2TR552YpZeEbhTSAn4vdXexYpvR4Lrr-LaJmfNd7LnO0L4QM8w-Dg==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 03:38:55 GMT
age: 63957
etag: "1904722d70348235d5472c54f888d2b4b991e2aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6174529fff57758e958da5432344962f
05ec2076b32398d60ee77fab8c14345bc7dfe647
65284a76355864efa944dff5033575013c6d74a019a7b731e0236603f2f656a7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9466
x-amzn-requestid: ba3f7eac-61c9-4b5f-ae8a-b372906a25ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YOTeoHMKoAMFr5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bff90-1e70e2c444242a2d46387986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 03:08:00 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: u_jETr8miiFyuhq7R09yb0lAP-hUv_6eTRV81Xzd9gSqU31VXwC9CQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 03:15:48 GMT
age: 65344
etag: "05ec2076b32398d60ee77fab8c14345bc7dfe647"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a938fd0-09b1-4550-89f4-e81e9c6a8737.jpeg
200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a938fd0-09b1-4550-89f4-e81e9c6a8737.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b674daf3dc6e85ed054ab34d69979b86
47aaf5a3af2c25820d01d613c82b7f1279a298fc
7b9993ef69d4b77c1533ada040c85563b9cf7b1f5d007177c005f6cd7fdba1d3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a938fd0-09b1-4550-89f4-e81e9c6a8737.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4162
x-amzn-requestid: 9dc27e34-69e1-439d-8974-1297584ef4d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YSIhuHlWIAMFhOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d87a4-410e9ede524aa657609a057a;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 07:00:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: jGj2al3pBpze7UQnHild4DxKndrprY4pTG_EZScw2RukQlgFEvNMkw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 07:18:04 GMT
age: 50808
etag: "47aaf5a3af2c25820d01d613c82b7f1279a298fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6b50df-cdcd-4b44-9ed3-90a502ea29ad.jpeg
200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6b50df-cdcd-4b44-9ed3-90a502ea29ad.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 239262b6ab17cb19414c35cd4f761092
48eddcf9838e980e67cc8f9cbb05b475df2f0331
cd27cbce632d769288d9c33c5c8e887ba02df5677f10f7a6d03139b590ba24b4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6b50df-cdcd-4b44-9ed3-90a502ea29ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9815
x-amzn-requestid: 89243e57-94eb-4c6b-903f-aa01df030ecc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUIxnEAjoAMF_Ig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e54d6-199403e2695b214711f5117f;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:36:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: NKM6RRhJ5AuRF4NKSyBO6-KMkd1UGaw3DuZBkBao_8fzzpkMeDrn0w==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 21:55:40 GMT
etag: "48eddcf9838e980e67cc8f9cbb05b475df2f0331"
content-type: image/jpeg
age: 84552
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e407da4d97d497925b1ab523fd416787
166741631fb93d109b18dde6d316b3fa3276aa8f
707460c02438da6114e35e0b6569d42c0f3fb747f8cb51002f4d52bedbcffa61
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8485
x-amzn-requestid: a56c9282-2786-4ae7-9fc2-0468bcc820a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ1k_FM1oAMFZ2Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d02ec-753cc4f121c9b77d22bb82b5;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:34:36 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 2jR7F56GE_qqbRBWjNDiDBgWbCYv-Ac6kvC1LI0HciQkKGTeNDYlyw==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 21:57:43 GMT
age: 84429
etag: "166741631fb93d109b18dde6d316b3fa3276aa8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg
200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c14088c4ca0d576e087feed41b7f1565
172b23f2ef39b6c3fdebb5441b10a95712206d0a
2699efa811ceac5420f5bd26c35a6f48b51854e29cbce7cbb62efb613db7d6b9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8799
x-amzn-requestid: 1bcdf387-9ad2-449a-861e-3352b1744d23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUI-0G6vIAMFgbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e552b-42aa46af6315148106c4fdee;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:37:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: g2mxKK8L5T4YkeD8JqNUuV_KfsIq8ypRMvxhsyzSZSEIP4gDl4zLVQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 21:41:51 GMT
age: 85381
etag: "172b23f2ef39b6c3fdebb5441b10a95712206d0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cafepositive.co.in/wp-content/themes/cafepositive/assets/fonts/fontawesome-webfont.woff2?v=4.6.3
200 OK 72 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/fonts/fontawesome-webfont.woff2?v=4.6.3
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data
Hash e6cf7c6ec7c2d6f670ae9d762604cb0b
97e438cc545714309882fbceadbf344fcaddcec5
7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://cafepositive.co.in/wp-content/themes/cafepositive/assets/css/external.css
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:51 GMT
Server: Apache
Last-Modified: Fri, 29 Jul 2016 17:45:26 GMT
Accept-Ranges: bytes
Content-Length: 71896
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: font/woff2
cafepositive.co.in/wp-content/themes/cafepositive/assets/images/background/shapes/shape-10up.png
200 OK 15 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/images/background/shapes/shape-10up.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 92 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 4101066d2d785897b104f69832623c2a
166a2f775b0c2b9890ff2db9bd7c2a44d924ec45
5ed4eba1e714e249f533d7ae5ad30e872a10d56c342fc6ba26bccec9098b5109
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/images/background/shapes/shape-10up.png HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/wp-content/themes/cafepositive/assets/css/style.css
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:51 GMT
Server: Apache
Last-Modified: Sat, 09 Sep 2017 01:26:44 GMT
Accept-Ranges: bytes
Content-Length: 15331
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: image/png
cafepositive.co.in/wp-content/themes/cafepositive/assets/images/background/shapes/shape-10down.png
200 OK 15 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/images/background/shapes/shape-10down.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 92 x 21, 8-bit/color RGBA, non-interlaced\012- data
Hash df2ad82702ab2ceaaf0ab493166af6e5
731c1622f564aa29367050c958a4a7d9c85a25e8
c869909c56054080e66f4a6897c536d259ae1f00838e595a55f8589815ee8371
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/images/background/shapes/shape-10down.png HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/wp-content/themes/cafepositive/assets/css/style.css
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:51 GMT
Server: Apache
Last-Modified: Sat, 09 Sep 2017 00:13:26 GMT
Accept-Ranges: bytes
Content-Length: 15354
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: image/png
fonts.googleapis.com/css2?family=Roboto&display=swap
200 OK 16 kB URL HTTP/2 fonts.googleapis.com/css2?family=Roboto&display=swap
IP
Hash 79f284e3cde2376bdedf63812cb98343
5b1faf031a4ef23236c24ecb1bb212804c5f8fd3
af0381ad1b6e10e193747082d199b1afa1218fc3fb53f2b846315161039f631e
GET /css2?family=Roboto&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cafepositive.co.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 12 Sep 2022 21:24:51 GMT
date: Mon, 12 Sep 2022 21:24:51 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cafepositive.co.in/wp-content/themes/cafepositive/assets/images/blog/thumb/1.jpg
200 OK 3.8 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/images/blog/thumb/1.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 49x49, components 3\012- data
Hash 4d0ea78e9bf4145dfe10684c8783f01f
a7c457b8bd2ae4325a2c7b8333c19b64b1333e9a
3f50eb2e885203b5ad8b1be26f43a1df41e1b1fbe20c2d3ee7a820aba654114d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/images/blog/thumb/1.jpg HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:51 GMT
Server: Apache
Last-Modified: Mon, 25 Jul 2022 20:26:02 GMT
Accept-Ranges: bytes
Content-Length: 3777
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: image/jpeg
cafepositive.co.in/wp-content/themes/cafepositive/assets/images/blog/thumb/2.jpg
200 OK 3.6 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/images/blog/thumb/2.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 49x49, components 3\012- data
Hash 43593bff0ee148bfbcb661a61e4199e1
bfa0c3bbb518e161c4ae54aa71f6dafe98ce912d
58fae893646c151a75835bd43cb45a4b500674bfb332439e035cc94066ffcb07
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/images/blog/thumb/2.jpg HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:51 GMT
Server: Apache
Last-Modified: Mon, 25 Jul 2022 20:26:10 GMT
Accept-Ranges: bytes
Content-Length: 3599
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.digicert.com/
200 OK 471 B IP
Hash 016b7dfa643b66e3a70a36d3a3c91b22
6b6a9c197aa11d6fcf4a1efef15fd2f1979f632c
4516b562a63231692957a72c823623f61cb65e08284e457e12b1bc120ce2fd14
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2508
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 21:24:52 GMT
Last-Modified: Mon, 12 Sep 2022 20:43:05 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
cafepositive.co.in/wp-content/themes/cafepositive/assets/images/favicon/favicon.png
200 OK 1.8 kB URL HTTP/1.1 cafepositive.co.in/wp-content/themes/cafepositive/assets/images/favicon/favicon.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash f577bc7dfa3b027c9cf8ba7b7ea122c9
e566ebbacb76bee7a43d1ec5235c60d01a1a5fee
38baaa6e866eeafc9b487625a0bb42e5080175f5de821445af066c1dedadd024
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/cafepositive/assets/images/favicon/favicon.png HTTP/1.1
Host: cafepositive.co.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafepositive.co.in/.tmb/swiss/swiss/swi/clients/details.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 21:24:51 GMT
Server: Apache
Last-Modified: Mon, 25 Jul 2022 21:22:02 GMT
Accept-Ranges: bytes
Content-Length: 1770
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: image/png
static.xx.fbcdn.net/rsrc.php/v3/yH/r/xgVgalBG80z.png
200 OK 1.3 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yH/r/xgVgalBG80z.png
IP
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash ac1e1c4d6f16359701b059ed4e8246b4
ff19b30a3b3d8d1765c239b25dbc98cb3263786a
45444d590a67d30e8b2fde01bb6482f829383b64bf14a4b19b86e22fdc319fbb
GET /rsrc.php/v3/yH/r/xgVgalBG80z.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.xx.fbcdn.net/rsrc.php/v3/yX/l/0,cross/WmJr1_luoTx.css?_nc_x=Ij3Wp8lg5Kz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: rB4cTW8WNZcBsFntToJGtA==
expires: Mon, 11 Sep 2023 04:07:27 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
x-fb-debug: ca+Ya+fe8jFRFrlvuBzTUShdnWWAgO/pWIGNYgXNXLmAA6zl47A6B+PYYQgzLgMRF0qcIfvavRo8FEnA13QndQ==
priority: u=3,i
content-length: 1315
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 21:24:52 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ya/r/OZcLupMIkEN.js?_nc_x=Ij3Wp8lg5Kz
200 OK 728 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ya/r/OZcLupMIkEN.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (920), with no line terminators
Hash 3478aefabc003acd27bc63fb2b35e55d
f66dd136bd39072512bb13e7412baa33fe6f8f0b
2b9f71f933be51f2131dc254b34894afd57bf73de3842afebae7a772edf274d1
GET /rsrc.php/v3/ya/r/OZcLupMIkEN.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 10 Sep 2023 09:17:30 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: QusOzUJEj2HVYgmawONobw==
x-fb-debug: D2ZpLMsQAeWs+DRrGjtW3lL8ZJGUvD4qAak+PkLgRcAFXxRIWhvt+WJx4KwZAYcBp2O+R2vXxeDxnunv65trJA==
priority: u=3,i
content-length: 189
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 21:24:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 016b7dfa643b66e3a70a36d3a3c91b22
6b6a9c197aa11d6fcf4a1efef15fd2f1979f632c
4516b562a63231692957a72c823623f61cb65e08284e457e12b1bc120ce2fd14
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2509
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 21:24:53 GMT
Last-Modified: Mon, 12 Sep 2022 20:43:05 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
api.instagram.com/v1/users/6069962191/media/recent?access_token=6069962191.1677ed0.2378d7ca8d274dae89847215f19cc93f&count=8&callback=instafeedCache0170aeb41c57d128.parse
404 Not Found 0 B URL HTTP/2 api.instagram.com/v1/users/6069962191/media/recent?access_token=6069962191.1677ed0.2378d7ca8d274dae89847215f19cc93f&count=8&callback=instafeedCache0170aeb41c57d128.parse
IP
GET /v1/users/6069962191/media/recent?access_token=6069962191.1677ed0.2378d7ca8d274dae89847215f19cc93f&count=8&callback=instafeedCache0170aeb41c57d128.parse HTTP/1.1
Host: api.instagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cafepositive.co.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html; charset=utf-8
vary: Accept-Language, Cookie
content-language: en
date: Mon, 12 Sep 2022 21:24:53 GMT
strict-transport-security: max-age=31536000
cache-control: private, no-cache, no-store, must-revalidate
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-frame-options: SAMEORIGIN
content-security-policy: report-uri https://www.instagram.com/security/csp_report/; default-src 'self' https://www.instagram.com; img-src data: blob: https://*.fbcdn.net https://*.instagram.com https://*.cdninstagram.com https://*.facebook.com https://*.fbsbx.com; font-src data: https://*.fbcdn.net https://*.instagram.com https://*.cdninstagram.com; media-src 'self' blob: https://www.instagram.com https://*.cdninstagram.com https://*.fbcdn.net; manifest-src 'self' https://www.instagram.com; script-src 'self' https://instagram.com https://www.instagram.com https://*.www.instagram.com https://*.cdninstagram.com wss://www.instagram.com https://*.facebook.com https://*.fbcdn.net https://*.facebook.net 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https://*.www.instagram.com https://www.instagram.com 'unsafe-inline'; connect-src 'self' https://instagram.com https://www.instagram.com https://*.www.instagram.com https://graph.instagram.com https://*.graph.instagram.com https://i.instagram.com/graphql_www https://graphql.instagram.com https://*.cdninstagram.com https://api.instagram.com https://i.instagram.com https://*.i.instagram.com https://*.od.instagram.com wss://www.instagram.com wss://edge-chat.instagram.com https://*.facebook.com https://*.fbcdn.net https://*.facebook.net chrome-extension://boadgeojelhgndaghljhdicfkmllpafd blob:; worker-src 'self' blob: https://www.instagram.com; frame-src 'self' https://instagram.com https://www.instagram.com https://*.instagram.com https://staticxx.facebook.com https://www.facebook.com https://web.facebook.com https://connect.facebook.net https://m.facebook.com https://*.fbsbx.com; object-src 'none'; upgrade-insecure-requests
cross-origin-embedder-policy-report-only: require-corp;report-to="coep"
report-to: {"group": "coep", "max_age": 86400, "endpoints": [{"url": "/security/coep_report/"}]},{"group": "coop", "max_age": 86400, "endpoints": [{"url": "/security/coop_report/"}]}
origin-trial: AuqWincgAuXeuu3KypEMnrrFEJHySaesyJS3EaIH40zvafzrU0Irhb7+5QwZpOqMZrPTjgvFl7Z5jJgy1dNAcQMAAAB6eyJvcmlnaW4iOiJodHRwczovL2luc3RhZ3JhbS5jb206NDQzIiwiZmVhdHVyZSI6IkNyb3NzT3JpZ2luT3BlbmVyUG9saWN5UmVwb3J0aW5nIiwiZXhwaXJ5IjoxNjEzNDExNjYyLCJpc1N1YmRvbWFpbiI6dHJ1ZX0=
cross-origin-opener-policy: same-origin-allow-popups;report-to="coop"
x-content-type-options: nosniff
x-xss-protection: 0
x-ig-push-state: c2
x-aed: 69
access-control-expose-headers: X-IG-Set-WWW-Claim
x-ig-request-elapsed-time-ms: 484
x-ig-peak-time: 0
content-length: 114576
x-ig-origin-region: rva
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Noto+Sans%3A400italic%2C700italic%2C400%2C700%7CNoto+Serif%3A400italic%2C700italic%2C400%2C700%7CInconsolata%3A400%2C700&subset=latin%2Clatin-ext
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Noto+Sans%3A400italic%2C700italic%2C400%2C700%7CNoto+Serif%3A400italic%2C700italic%2C400%2C700%7CInconsolata%3A400%2C700&subset=latin%2Clatin-ext
IP
GET /css?family=Noto+Sans%3A400italic%2C700italic%2C400%2C700%7CNoto+Serif%3A400italic%2C700italic%2C400%2C700%7CInconsolata%3A400%2C700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cafepositive.co.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 12 Sep 2022 21:24:51 GMT
date: Mon, 12 Sep 2022 21:24:51 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
162.241.114.39
95.101.11.115
157.240.200.14
93.184.220.29
0.0.0.0