meragamou.com/
72.10.36.24301 Moved Permanently 162 B IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 04 Jan 2023 14:13:24 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://meragamou.com/
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 16803ffa29e10ee999c43eb4e4acfe92
a5ede865a388fa440f20994b43c417d403e9a493
08de8f6abb622e84d2cb6e88dee8fc7c408147ac43da9c24d4cde510ed36b53a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08DE8F6ABB622E84D2CB6E88DEE8FC7C408147AC43DA9C24D4CDE510ED36B53A"
Last-Modified: Mon, 02 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4153
Expires: Wed, 04 Jan 2023 15:22:38 GMT
Date: Wed, 04 Jan 2023 14:13:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b5997a492d3d161c9009d95add566733
9db765ae549ebe4aa859ca27abe365cf7f62dc4d
1ec0de25b0afd3b402c728b9c6b47c4fcf25fb989052427886841a3f52510a0e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1EC0DE25B0AFD3B402C728B9C6B47C4FCF25FB989052427886841A3F52510A0E"
Last-Modified: Wed, 04 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14153
Expires: Wed, 04 Jan 2023 18:09:18 GMT
Date: Wed, 04 Jan 2023 14:13:25 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 04 Jan 2023 13:47:44 GMT
content-type: application/json
age: 1541
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 225d42543c0190cdb3686bf236533f4f
13a0940800fce078487372b6b3ca614dd1ab6c31
766bbe15eb1642ac39e9b71669fbb44252471c8de5adb555cd1a76db44fbe7bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "766BBE15EB1642AC39E9B71669FBB44252471C8DE5ADB555CD1A76DB44FBE7BC"
Last-Modified: Mon, 02 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18040
Expires: Wed, 04 Jan 2023 19:14:05 GMT
Date: Wed, 04 Jan 2023 14:13:25 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: HhyTfLib6+7zdmMCM5Pr7gQ4/t+hflYc4YR/YBSItqhnfmBxD+6loqEczG2PfVjj/8TJAKfkyg0birTXno4jBQ==
x-amz-request-id: BVVVF8WATCVNN5YY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 04 Jan 2023 14:01:20 GMT
age: 725
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:25 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 47be242c40a1aaabd0ae121c14d05da1
d7186e1fe183c5bb93f1e785b4ec3d1140f0c2d9
2d135045d48dcceb934ce93335f90b181295003406283aa3471c800d65d11ff5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2D135045D48DCCEB934CE93335F90B181295003406283AA3471C800D65D11FF5"
Last-Modified: Wed, 04 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21542
Expires: Wed, 04 Jan 2023 20:12:27 GMT
Date: Wed, 04 Jan 2023 14:13:25 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 04 Jan 2023 14:08:11 GMT
age: 314
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fe74c226e54f2f382d278b594df930ae
4e4ebc661443f56b74d7c924ddae50bcb107f0af
511f11fe968867447f6d7e5862d8003e3a5fc18bdb62496ea09d140e9a11f53b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3573
Cache-Control: max-age=157979
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 14:13:25 GMT
Etag: "63b541ab-1d7"
Expires: Fri, 06 Jan 2023 10:06:24 GMT
Last-Modified: Wed, 04 Jan 2023 09:06:51 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.218.164.174101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.218.164.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6MBJti0AoGCYhyqAKLbx+A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0k5JAT2sqWSGzTUCxXE/ewOp4v4=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e8b6c328643ac286f1949225731fb845
377ed2f2c0ef3b2266e7fed6df92f2a1bf559eaf
83ea86de3611890895c9d27c2314ebbf498cd95729792f493d6af8e9b7a04633
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 14:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2de4d7e51964d03dfa8f0c6e3979bee2
e513e915c70c92b05bb5d2d3db32cc1542301634
a0f8c063c6d999641753296981e10d9cafb341efe8a8578160a85260fd5fa08e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 14:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2de4d7e51964d03dfa8f0c6e3979bee2
e513e915c70c92b05bb5d2d3db32cc1542301634
a0f8c063c6d999641753296981e10d9cafb341efe8a8578160a85260fd5fa08e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 14:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js
142.250.74.164200 OK 552 B URL HTTP/2 www.google.com/recaptcha/api.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (850), with no line terminators
Hash 760f8751978f13903fbb5b593bea05c7
3c463f9d47be6cafa5acd0c828a42054054debd3
ba7b03872b122ab1d52e67ee1d6ad77d7749c5504b0c733bd90392d16c509410
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Wed, 04 Jan 2023 14:13:26 GMT
date: Wed, 04 Jan 2023 14:13:26 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 552
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
meragamou.com/
72.10.36.24200 OK 19 kB IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1902), with CRLF, LF line terminators
Hash c323c2daa15b18e21196f65a1c2e84c3
e8a3bdf17c8dcc9056ae341951e1873620ff552b
847c974508603e38e36d554518a585e8598b55f39cfa8d26e3dbb2eac9f65dbe
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:25 GMT
content-type: text/html; charset=UTF-8
link: <https://meragamou.com/wp-json/>; rel="https://api.w.org/", <https://meragamou.com/>; rel=shortlink
x-powered-by: PHP/7.3.33, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jqueryui/1.11.4/jquery-ui.min.js
142.250.74.74200 OK 64 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jqueryui/1.11.4/jquery-ui.min.js
IP 142.250.74.74:0
File type ASCII text, with very long lines (32035)
Hash d42e0db378c3b7ae639f482be65ca7e0
febb6ba0cb20fbf345e42afbb194f557de4fdb3b
9a978650fc7920f6ce184b5febda53dfadb49086ee56326e0f7ca999b7e802ef
GET /ajax/libs/jqueryui/1.11.4/jquery-ui.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 64481
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Dec 2022 13:02:01 GMT
expires: Sat, 30 Dec 2023 13:02:01 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 436285
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2de4d7e51964d03dfa8f0c6e3979bee2
e513e915c70c92b05bb5d2d3db32cc1542301634
a0f8c063c6d999641753296981e10d9cafb341efe8a8578160a85260fd5fa08e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 14:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bd5977f4aa55d3b85eb4f69f5d451e18
09718f75359ff17a91d19fc8686de7154d6d7506
07e8ded9ec36b09fa080939323b4b51995abb0525a8103052eda1c1e76459345
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 14:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2de4d7e51964d03dfa8f0c6e3979bee2
e513e915c70c92b05bb5d2d3db32cc1542301634
a0f8c063c6d999641753296981e10d9cafb341efe8a8578160a85260fd5fa08e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 14:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
meragamou.com/wp-content/uploads/2016/06/wdmockup.jpg
72.10.36.24301 Moved Permanently 162 B URL HTTP/1.1 meragamou.com/wp-content/uploads/2016/06/wdmockup.jpg
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /wp-content/uploads/2016/06/wdmockup.jpg HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 04 Jan 2023 14:13:26 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://meragamou.com/wp-content/uploads/2016/06/wdmockup.jpg
meragamou.com/assets/images/logo.png
72.10.36.24200 OK 4.5 kB URL HTTP/2 meragamou.com/assets/images/logo.png
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
File type PNG image data, 277 x 86, 8-bit/color RGBA, non-interlaced\012- data
Hash 79463afd17e70c72d3ec5ca4a81b009c
6068f800d4ed889b550b6c61f918bee831525ed4
1ac8a9e6643039b48c3f64d29eefcab2ad40f5506cc6835f59e0ae6865ab5f50
GET /assets/images/logo.png HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: image/png
content-length: 4465
last-modified: Mon, 06 Jun 2016 08:18:27 GMT
etag: "575531d3-1171"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
meragamou.com/wp-content/plugins/buddypress/bp-core/js/confirm.min.js?ver=5.1.0
72.10.36.24200 OK 571 B URL HTTP/2 meragamou.com/wp-content/plugins/buddypress/bp-core/js/confirm.min.js?ver=5.1.0
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
File type ASCII text, with no line terminators
Hash c8dc013dfb6bbea4aaa75a0ecef219dd
614e534568cb474aab9a2751479d194d8194e5b9
0710484a5d4599aaef164a2e0b4f59c7006029eb08bf76181a1c022b1a201994
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/buddypress/bp-core/js/confirm.min.js?ver=5.1.0 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Sat, 21 Dec 2019 09:17:25 GMT
etag: W/"87-59a334334f1fc"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-content/plugins/post-hit-counter/assets/css/frontend.css?ver=1.3.2
72.10.36.24200 OK 536 B URL HTTP/2 meragamou.com/wp-content/plugins/post-hit-counter/assets/css/frontend.css?ver=1.3.2
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
File type ASCII text, with no line terminators
Hash e023b3acf072d99a537c67cc1a65ce28
b2429112929f766ca5120efd7bcd35f552358c25
71b32ac34c9c30fc7881893e086ebfb427f7d02d83960d4b05333d6f07c5733b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/post-hit-counter/assets/css/frontend.css?ver=1.3.2 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Thu, 09 Jun 2016 08:55:14 GMT
etag: W/"42-534d494942080"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-includes/js/jquery/ui/sortable.min.js?ver=1.11.4
72.10.36.24200 OK 6.6 kB URL HTTP/2 meragamou.com/wp-includes/js/jquery/ui/sortable.min.js?ver=1.11.4
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
File type HTML document, ASCII text, with very long lines (24607)
Hash e757e94774fc825e6a46853f60295a46
93f464fd771001a746da0bacdbcfae1e3fc36507
ec2d177218b0e77d910d7978ddf0b45d29a0f48e5873961edf595f426d340966
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/sortable.min.js?ver=1.11.4 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 15:36:28 GMT
etag: W/"60785d7c-60fc"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://meragamou.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Dec 2022 19:33:54 GMT
expires: Thu, 28 Dec 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 585572
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cbad870248cb8172be5849309582b77f
3e12044d8bf5e6df81ac6260b186ecce175dba86
dc5b6747fdf685bd97307ee6584a5d8109258199ca81a8ddf2e6f1471b6f0cda
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 14:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4WxKOzY.woff2
142.250.74.35200 OK 7.1 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4WxKOzY.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 7112, version 1.0\012- data
Hash 28668857bef1b85c5748a482cf9b74af
7cfbc415c45b2274a5997255fbec0fb53bbe327d
daf51ab540602b2d0b87646621637bac38889bb34effb8a432ae739aca78b5c0
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4WxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://meragamou.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7112
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Dec 2022 19:34:28 GMT
expires: Thu, 28 Dec 2023 19:34:28 GMT
cache-control: public, max-age=31536000
age: 585538
last-modified: Wed, 11 May 2022 19:24:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cbad870248cb8172be5849309582b77f
3e12044d8bf5e6df81ac6260b186ecce175dba86
dc5b6747fdf685bd97307ee6584a5d8109258199ca81a8ddf2e6f1471b6f0cda
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 14:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
meragamou.com/assets/css/owl.carousel.css
72.10.36.24200 OK 37 kB URL HTTP/2 meragamou.com/assets/css/owl.carousel.css
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
Hash c6c7e32904c4de19d41d7ab3d67beb05
b3c8871046b4c2f0863fa390c98db8d9f8c4c97a
9202a8bb28be2b1d2f8217cecb9534adc1f7b7734852aa0de739db9482cf9762
GET /assets/css/owl.carousel.css HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/assets/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: text/css
last-modified: Tue, 31 May 2016 12:26:02 GMT
etag: W/"574d82da-ea7"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/assets/css/unsemantic.css
72.10.36.24200 OK 19 kB URL HTTP/2 meragamou.com/assets/css/unsemantic.css
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1492)
Hash 9b73507728f7b4f38b26d992cbd41b29
c8f733a0ba503cf6c4c2d6c80e2d269d5ceeda2a
3eea524349fc9a40333e5f0bd96336ffefcb44e4f4ceda21962a2c0462823ebc
GET /assets/css/unsemantic.css HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/assets/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: text/css
last-modified: Mon, 06 Jun 2016 10:51:19 GMT
etag: W/"575555a7-ff2e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/assets/css/buddy.css
72.10.36.24200 OK 18 kB URL HTTP/2 meragamou.com/assets/css/buddy.css
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (34158), with CRLF line terminators
Hash 97dcfe385b93d14c00fdf1f2f66f3a25
df2088005fe8f1f76783f2a99373f16f42bd15b4
8a299127ae1d29b3a7ce9db21b8d5ef96adf1971c895f830d582de9a0c349273
GET /assets/css/buddy.css HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/assets/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: text/css
last-modified: Mon, 13 Jun 2016 19:37:59 GMT
etag: W/"575f0b97-1194d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cbad870248cb8172be5849309582b77f
3e12044d8bf5e6df81ac6260b186ecce175dba86
dc5b6747fdf685bd97307ee6584a5d8109258199ca81a8ddf2e6f1471b6f0cda
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 14:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
meragamou.com/wp-content/uploads/2021/04/1-2.jpg
72.10.36.24200 OK 23 kB URL HTTP/2 meragamou.com/wp-content/uploads/2021/04/1-2.jpg
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x600, components 3\012- data
Hash 1566717f998a4fe880181a5563f4bbac
5bdba2351b0390d4747f4a3369bd1d1c564d477f
2601de97694b5d8505be60243d99517073295adbbaf11082540e6c5f0c379943
GET /wp-content/uploads/2021/04/1-2.jpg HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: image/jpeg
content-length: 22659
last-modified: Mon, 12 Apr 2021 12:34:37 GMT
etag: "60743e5d-5883"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 662e422c6fde3dc220f161db663ebd05
a135e8f46465984451122bb04433e8f805a8a7af
924a754a48808e33695334079145f3428dc6716d8d65ae8309d543a85ba2be9c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3946
Cache-Control: max-age=165529
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 14:13:26 GMT
Etag: "63b55db5-1d7"
Expires: Fri, 06 Jan 2023 12:12:15 GMT
Last-Modified: Wed, 04 Jan 2023 11:06:29 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
meragamou.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4
72.10.36.24200 OK 1.1 kB URL HTTP/2 meragamou.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (2927)
Hash 48bbd54d04a71a6b160bd151b3347fd6
4299560f537ca1b89f6caec9b4ec5c3a90e60cea
859918aef7ee7a61e46b466fa0a4a240a3c2b1125827abba2440a0335f087e68
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 15:36:28 GMT
etag: W/"60785d7c-c46"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-content/plugins/buddypress/bp-core/js/widget-members.min.js?ver=5.1.0
72.10.36.24200 OK 902 B URL HTTP/2 meragamou.com/wp-content/plugins/buddypress/bp-core/js/widget-members.min.js?ver=5.1.0
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1214), with no line terminators
Hash 2064476aecb7687aa514d0c95c7d5264
c7d7914f6f24e849c2e498fa3697dfe0d0610e33
e3e9973b6fa3f70f42da9d3d784c62c7b0163fe0bf4738c506fb3137fc628148
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/buddypress/bp-core/js/widget-members.min.js?ver=5.1.0 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
last-modified: Sat, 21 Dec 2019 09:17:25 GMT
etag: W/"5dfde325-4be"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-content/uploads/2016/06/wdmockup.jpg
72.10.36.24200 OK 95 kB URL HTTP/2 meragamou.com/wp-content/uploads/2016/06/wdmockup.jpg
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1600x347, components 3\012- data
Hash cf2a274a5f465b92fcaf55185b17cb63
c73892b7e20ff688508aa08ee0696214beb5dc57
fa3b50c835a524cb3d68c5878550490e116dbe77936076556f40d85ff11300be
GET /wp-content/uploads/2016/06/wdmockup.jpg HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: image/jpeg
content-length: 94722
last-modified: Mon, 20 Jun 2016 08:46:50 GMT
etag: "5767ad7a-17202"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
meragamou.com/wp-content/uploads/2016/06/first-dance.jpg
72.10.36.24200 OK 184 kB URL HTTP/2 meragamou.com/wp-content/uploads/2016/06/first-dance.jpg
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1200x600, components 3\012- data
Size 184 kB (183664 bytes)
Hash 6331c26f88626ecd52f8989bfe6f9a62
00bbbbb786113cefcbd1c29b6da989ad16e00c3b
eb66bf213958762c0ecbc85de9b6bcd791aabdd921b78dd2e816f9b63642e59c
GET /wp-content/uploads/2016/06/first-dance.jpg HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: image/jpeg
content-length: 183664
last-modified: Fri, 15 Jul 2016 16:09:25 GMT
etag: "57890ab5-2cd70"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
meragamou.com/wp-content/uploads/2016/06/maxresdefault.jpg
72.10.36.24200 OK 238 kB URL HTTP/2 meragamou.com/wp-content/uploads/2016/06/maxresdefault.jpg
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1200x675, components 3\012- data
Size 238 kB (238407 bytes)
Hash 9d2f1f90fd944a35d3f8efec9c6a8ebe
1f19eb8d5d5476225a1bfb7c101be37be82259d5
7e075a4848f26114ccd2ca7a5d55374414fb08c4d874c615e45362bbd28c18e3
GET /wp-content/uploads/2016/06/maxresdefault.jpg HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: image/jpeg
content-length: 238407
last-modified: Mon, 27 Jun 2016 20:11:37 GMT
etag: "57718879-3a347"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 872ad13c3966689cbd481bebca0b21f8
2a052c414b68b9e71b00fa3903995e8bdd22a81c
bd2222d291deec7ba01875b7ddfd0d27de71e68fc600057fb3d1fa9394aa46fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD2222D291DEEC7BA01875B7DDFD0D27DE71E68FC600057FB3D1FA9394AA46FA"
Last-Modified: Wed, 04 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19559
Expires: Wed, 04 Jan 2023 19:39:26 GMT
Date: Wed, 04 Jan 2023 14:13:27 GMT
Connection: keep-alive
meragamou.com/wp-includes/js/comment-reply.min.js?ver=5.3.14
72.10.36.24200 OK 1.5 kB URL HTTP/2 meragamou.com/wp-includes/js/comment-reply.min.js?ver=5.3.14
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (2337), with no line terminators
Hash fede66e0515e195c7124394259239bca
443e6a7cffc1b0e1d549486e94728296a0e2f4a3
44cf5ec2f6497b32f47933db839293fce1072163a0fb1b149796e22f5f6b4348
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/comment-reply.min.js?ver=5.3.14 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 15:36:28 GMT
etag: W/"60785d7c-921"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-content/plugins/mailchimp-for-wp/assets/js/forms-api.min.js?ver=4.7.4
72.10.36.24200 OK 4.3 kB URL HTTP/2 meragamou.com/wp-content/plugins/mailchimp-for-wp/assets/js/forms-api.min.js?ver=4.7.4
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (10234)
Hash c74ada1ac93b11bc6f2ead2a8cda80e3
23ac0686155b75ca642a44de4be0c6235dd1120b
e69497968e0f3c90209243474e6a89c7a2aeac8259326da8903c8824de611a83
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/mailchimp-for-wp/assets/js/forms-api.min.js?ver=4.7.4 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
last-modified: Sat, 21 Dec 2019 09:00:37 GMT
etag: W/"5dfddf35-2825"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-content/themes/weddingday/js/skip-link-focus-fix.js?ver=20151215
72.10.36.24200 OK 884 B URL HTTP/2 meragamou.com/wp-content/themes/weddingday/js/skip-link-focus-fix.js?ver=20151215
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
Hash 3d88d83caed25bdfc266f9ee5198e04d
9a8f0c2ee381153fbc2e7bb9fa4c8e9d0793089c
2b802afffb839066a9543b181602ad6cb16efd927b2a13f373346fb46034f6e0
GET /wp-content/themes/weddingday/js/skip-link-focus-fix.js?ver=20151215 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Wed, 25 May 2016 08:12:36 GMT
etag: W/"370-533a63c7d8500"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-content/themes/weddingday/js/navigation.js?ver=20151215
72.10.36.24200 OK 1.3 kB URL HTTP/2 meragamou.com/wp-content/themes/weddingday/js/navigation.js?ver=20151215
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
Hash 1e2ad79afeeff4b5d17218d7e6b59d93
27c2bd4f2f328fe70c63d8833afb7511b7cbe7be
7f5b02af4eff8402a98a75f5fa697acc18db5c6b4a7c05d18e0139a08837d7c8
GET /wp-content/themes/weddingday/js/navigation.js?ver=20151215 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2016 08:12:35 GMT
etag: W/"57455e73-900"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e832123ea0c92a446b5894e75efc86ae
bb438ca635b43819701067ef07a3d910ad29a0c7
e1b0c6cd873f304de15664f96af6b6914e13fbbfb3e2179ba43369e116446773
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5578
x-amzn-requestid: 93353c3e-1b26-424c-b4c6-0d113703edd6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eFvpBFGvIAMFobw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b22c9f-1d07cff31ae39320693642f0;Sampled=0
x-amzn-remapped-date: Mon, 02 Jan 2023 01:00:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: V8_4JXT2EDqqzVxBjZK7SUVVS9Pez_EbpGP8BCMX0FrS2x2srUr2Ug==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 04 Jan 2023 02:06:31 GMT
age: 43616
etag: "bb438ca635b43819701067ef07a3d910ad29a0c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc03ececd-3935-4a1b-ae41-45a5aea9ebe3.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc03ececd-3935-4a1b-ae41-45a5aea9ebe3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash af78916e285d0f6c5c5a5ff33894e108
96df0d8c10c666811cfeb98187ca93e65480c2ff
7bcb20dc641e46d033dee76b3d92b701b31aecfbf88241a5a95dfdc1c5e95885
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc03ececd-3935-4a1b-ae41-45a5aea9ebe3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5018
x-amzn-requestid: 7a68cfb1-dedd-4f08-8d99-4678c1087422
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eL3HtFHkoAMFwYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b49efd-7880e5f93c99cc794f9a03bb;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 21:32:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MvV5dXthUr0Qo499_5eG6Z_yW0gmflen3kRBrse7ngQjUgOVA0OMvg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 03 Jan 2023 21:50:49 GMT
age: 58958
etag: "96df0d8c10c666811cfeb98187ca93e65480c2ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
meragamou.com/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
72.10.36.24200 OK 11 kB URL HTTP/2 meragamou.com/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (3704)
Hash 433db7a5af28e3aa603def4e848b5395
fa2e1f7c9b5378cc2e991c0d2ab5802bf946eab5
15a87323ee9f9738ba8fea1de96b20875643d9e5d1764fc7ca9e9d3ee0383e9a
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 15:36:28 GMT
etag: W/"60785d7c-f59"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4
72.10.36.24200 OK 14 kB URL HTTP/2 meragamou.com/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (6603)
Hash e1920fcd3181fdcf2430c05964d9d958
c53fe29b0b12ddbe2477bb81265699da8da264c1
33ad88b498872b06a77c7cbc722b3f8b7118de6c0c451d69587f9c14e6a1697a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 15:36:28 GMT
etag: W/"60785d7c-1aab"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0fae0836-a888-409d-9ad4-e4791536b146.png
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0fae0836-a888-409d-9ad4-e4791536b146.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a8a37f8d46e8ab1478a0347c1de2d647
4547e54e620a8f45bd76d55f78eb05d5ad175f1f
176804e5630d33ded9d117504d63dbb718c8e682afdf8cbc18390d0f25790a80
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0fae0836-a888-409d-9ad4-e4791536b146.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9531
x-amzn-requestid: 18053309-6970-4993-92b2-1c567542baa2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eL4N2EoNoAMFafA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b4a0be-5030fcc056a4cd26341f1bcd;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 21:40:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: M-JtEYOFV8yssEu0dxlrDPoY_BSlARR3Pu8lfC3dYV4sL_Xg_wYAdA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 03 Jan 2023 21:50:43 GMT
etag: "4547e54e620a8f45bd76d55f78eb05d5ad175f1f"
content-type: image/jpeg
age: 58964
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8476606b-7383-49cb-8c93-76705bedbbb8.webp
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8476606b-7383-49cb-8c93-76705bedbbb8.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0f7ef195ef59caf6b47f13ceae04987f
dbff30aac035b502e27a3a538dbdfd475d3fc1d4
b31c198d6b76827201a870da6f9fe9b28c2cffe0d3f7f3d8e0530223ea8fc9d9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8476606b-7383-49cb-8c93-76705bedbbb8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8148
x-amzn-requestid: 7712cf7e-ea08-47da-876a-ba70c723b68b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eL33cHXsIAMFhhw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b4a02f-3c965abb517a33ce31cbdf4c;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 21:37:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oJ4e7NUOg62KQDiD04fLCiSoQgBO_AQGw6mrIYbqcgdrylEMwoDQUA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 03 Jan 2023 21:50:17 GMT
age: 58990
etag: "dbff30aac035b502e27a3a538dbdfd475d3fc1d4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
meragamou.com/wp-content/uploads/2016/07/violin.jpg
72.10.36.24200 OK 380 kB URL HTTP/2 meragamou.com/wp-content/uploads/2016/07/violin.jpg
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2016:07:06 17:37:17], baseline, precision 8, 1200x600, components 3\012- data
Size 380 kB (380203 bytes)
Hash 4e99d8449d8dca1eb239bf1c4207e102
b8111958d03fa1b5a86506a23a69555067dd66e8
3df7264dab37c3b9db33bf7f09f4b0ed90c28caf95ed8f575136ef247721c5b3
GET /wp-content/uploads/2016/07/violin.jpg HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: image/jpeg
content-length: 380203
last-modified: Wed, 06 Jul 2016 14:37:51 GMT
etag: "577d17bf-5cd2b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
meragamou.com/wp-content/uploads/2016/06/gamilio-papoutsi.jpg
72.10.36.24200 OK 468 kB URL HTTP/2 meragamou.com/wp-content/uploads/2016/06/gamilio-papoutsi.jpg
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2016:06:25 08:24:05], baseline, precision 8, 1200x600, components 3\012- data
Size 468 kB (468309 bytes)
Hash c96477c6e658c8311ac58c447e29ee34
466f70fe3d8bea71a760f994bd8f5c3cdf99b47e
40f089cf0acea0a8db4d2ee73caf90e28412278b2c1e85ff351bd55c966b5a80
GET /wp-content/uploads/2016/06/gamilio-papoutsi.jpg HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: image/jpeg
content-length: 468309
last-modified: Sat, 25 Jun 2016 05:25:00 GMT
etag: "576e15ac-72555"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
meragamou.com/wp-content/uploads/2016/06/wedding-song-dance.jpg
72.10.36.24200 OK 431 kB URL HTTP/2 meragamou.com/wp-content/uploads/2016/06/wedding-song-dance.jpg
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2016:06:28 19:47:20], baseline, precision 8, 1200x600, components 3\012- data
Size 431 kB (431088 bytes)
Hash e86094ce2aa194876072d2ab5e60557c
af7f73117352d8a4aab371db599c994aa0a420b1
e10a6577765faa6bcb1481c751b89cfc62d543ded9302a5a941d33d6fa7a0d26
GET /wp-content/uploads/2016/06/wedding-song-dance.jpg HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: image/jpeg
content-length: 431088
last-modified: Tue, 28 Jun 2016 16:47:52 GMT
etag: "5772aa38-693f0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
meragamou.com/wp-content/uploads/2016/06/alfa.jpg
72.10.36.24200 OK 476 kB URL HTTP/2 meragamou.com/wp-content/uploads/2016/06/alfa.jpg
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2016:06:28 21:32:56], baseline, precision 8, 1200x600, components 3\012- data
Size 476 kB (476213 bytes)
Hash 606991a97763e337d2d5110ef1f7cd90
27e6b2579c8d36715d5ad84d9b51e281ae0ace11
f008e04be633a2418e2a0d2f1ad0b9734570beb2f306ea9211ed2cedec9189c5
GET /wp-content/uploads/2016/06/alfa.jpg HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: image/jpeg
content-length: 476213
last-modified: Tue, 28 Jun 2016 18:33:29 GMT
etag: "5772c2f9-74435"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f239920b11acb26d109b7a1b8cf58e46
f7bab98d3c21794c3e3d08d88c4331ef48420c13
c580620be129f2651f775f95daaeae659d6e62cdf2b8eb2277e6c794c7e53673
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 14:13:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js
216.58.211.3200 OK 165 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js
IP 216.58.211.3:0
File type ASCII text, with very long lines (658)
Size 165 kB (164706 bytes)
Hash 0b7fccb24ee065a01fdde10928c03c3f
9b198014f81844820588c202cc24bf5e03bf3dd7
68756de8f0d6742525ddaca56ab350e34d822777e86939fea27eb704ae013280
GET /recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://meragamou.com
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 164706
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 31 Dec 2022 02:17:53 GMT
expires: Sun, 31 Dec 2023 02:17:53 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Dec 2022 05:24:10 GMT
content-type: text/javascript
age: 388534
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f239920b11acb26d109b7a1b8cf58e46
f7bab98d3c21794c3e3d08d88c4331ef48420c13
c580620be129f2651f775f95daaeae659d6e62cdf2b8eb2277e6c794c7e53673
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 14:13:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
meragamou.com/favicon.ico
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/favicon.ico
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Cookie: bp-activity-oldestpage=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:27 GMT
content-type: image/vnd.microsoft.icon
content-length: 0
x-powered-by: PHP/7.3.33, PleskLin
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j98&a=1193113302&t=pageview&_s=1&dl=https%3A%2F%2Fmeragamou.com%2F&ul=en-us&de=UTF-8&dt=%CE%93%CE%AC%CE%BC%CE%BF%CF%82%3A%20%CE%97%20%CE%BF%CF%81%CE%B3%CE%AC%CE%BD%CF%89%CF%83%CE%B7%20%CF%84%CE%BF%CF%85%20%CE%B3%CE%AC%CE%BC%CE%BF%CF%85%20%CF%83%CE%BF%CF%85%20%CE%BE%CE%B5%CE%BA%CE%B9%CE%BD%CE%AC%CE%B5%CE%B9%20%CE%B1%CF%80%CF%8C%20%CE%B5%CE%B4%CF%8E!&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1982084092&gjid=695666487&cid=727348332.1672841598&tid=UA-79257208-1&_gid=1979782804.1672841598&_r=1&_slc=1&z=1304570410
142.250.74.110200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=1193113302&t=pageview&_s=1&dl=https%3A%2F%2Fmeragamou.com%2F&ul=en-us&de=UTF-8&dt=%CE%93%CE%AC%CE%BC%CE%BF%CF%82%3A%20%CE%97%20%CE%BF%CF%81%CE%B3%CE%AC%CE%BD%CF%89%CF%83%CE%B7%20%CF%84%CE%BF%CF%85%20%CE%B3%CE%AC%CE%BC%CE%BF%CF%85%20%CF%83%CE%BF%CF%85%20%CE%BE%CE%B5%CE%BA%CE%B9%CE%BD%CE%AC%CE%B5%CE%B9%20%CE%B1%CF%80%CF%8C%20%CE%B5%CE%B4%CF%8E!&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1982084092&gjid=695666487&cid=727348332.1672841598&tid=UA-79257208-1&_gid=1979782804.1672841598&_r=1&_slc=1&z=1304570410
IP 142.250.74.110:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j98&a=1193113302&t=pageview&_s=1&dl=https%3A%2F%2Fmeragamou.com%2F&ul=en-us&de=UTF-8&dt=%CE%93%CE%AC%CE%BC%CE%BF%CF%82%3A%20%CE%97%20%CE%BF%CF%81%CE%B3%CE%AC%CE%BD%CF%89%CF%83%CE%B7%20%CF%84%CE%BF%CF%85%20%CE%B3%CE%AC%CE%BC%CE%BF%CF%85%20%CF%83%CE%BF%CF%85%20%CE%BE%CE%B5%CE%BA%CE%B9%CE%BD%CE%AC%CE%B5%CE%B9%20%CE%B1%CF%80%CF%8C%20%CE%B5%CE%B4%CF%8E!&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1982084092&gjid=695666487&cid=727348332.1672841598&tid=UA-79257208-1&_gid=1979782804.1672841598&_r=1&_slc=1&z=1304570410 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://meragamou.com
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://meragamou.com
date: Wed, 04 Jan 2023 14:13:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
meragamou.com/wp-content/plugins/buddypress/bp-templates/bp-legacy/css/buddypress.min.css?ver=5.1.0
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/wp-content/plugins/buddypress/bp-templates/bp-legacy/css/buddypress.min.css?ver=5.1.0
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
GET /wp-content/plugins/buddypress/bp-templates/bp-legacy/css/buddypress.min.css?ver=5.1.0 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: text/css
last-modified: Sat, 21 Dec 2019 09:17:25 GMT
etag: W/"5dfde325-900b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-content/plugins/post-hit-counter/assets/css/widget.css?ver=1.3.2
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/wp-content/plugins/post-hit-counter/assets/css/widget.css?ver=1.3.2
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
GET /wp-content/plugins/post-hit-counter/assets/css/widget.css?ver=1.3.2 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Thu, 09 Jun 2016 08:55:14 GMT
etag: W/"2e-534d494942080"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-content/plugins/advanced-advertising-system/js/frontend.js?ver=5.3.14
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/wp-content/plugins/advanced-advertising-system/js/frontend.js?ver=5.3.14
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/advanced-advertising-system/js/frontend.js?ver=5.3.14 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
last-modified: Sat, 24 Nov 2018 06:07:23 GMT
etag: W/"5bf8ea9b-71a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/assets/js/plugins.js
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/assets/js/plugins.js
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/plugins.js HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
last-modified: Tue, 21 Jun 2016 08:39:11 GMT
etag: W/"5768fd2f-3761b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-content/plugins/buddypress/bp-templates/bp-legacy/js/buddypress.min.js?ver=5.1.0
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/wp-content/plugins/buddypress/bp-templates/bp-legacy/js/buddypress.min.js?ver=5.1.0
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/buddypress/bp-templates/bp-legacy/js/buddypress.min.js?ver=5.1.0 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
last-modified: Sat, 21 Dec 2019 09:17:25 GMT
etag: W/"5dfde325-83ab"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-content/plugins/buddypress-like/assets/js/bp-like.js?ver=0.3.0
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/wp-content/plugins/buddypress-like/assets/js/bp-like.js?ver=0.3.0
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/buddypress-like/assets/js/bp-like.js?ver=0.3.0 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
last-modified: Tue, 12 Jul 2016 05:39:04 GMT
etag: W/"57848278-139f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-content/plugins/seed-social/seed-social.js?ver=2016-1
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/wp-content/plugins/seed-social/seed-social.js?ver=2016-1
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
GET /wp-content/plugins/seed-social/seed-social.js?ver=2016-1 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
last-modified: Sun, 07 Jul 2019 19:38:59 GMT
etag: W/"5d224a53-10f1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/assets/css/seedsocial.css
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/assets/css/seedsocial.css
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
GET /assets/css/seedsocial.css HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/assets/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: text/css
last-modified: Thu, 09 Jun 2016 09:11:42 GMT
etag: W/"575932ce-c0a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/assets/js/app.js
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/assets/js/app.js
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/app.js HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
last-modified: Tue, 21 Jun 2016 07:16:55 GMT
etag: W/"5768e9e7-12c2c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/assets/css/style.css
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/assets/css/style.css
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
GET /assets/css/style.css HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: text/css
last-modified: Sat, 21 Dec 2019 09:31:52 GMT
etag: W/"5dfde688-6d93"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
use.fontawesome.com/340c15902a.js
172.64.132.15200 OK 0 B URL HTTP/2 use.fontawesome.com/340c15902a.js
IP 172.64.132.15:0
GET /340c15902a.js HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: text/javascript
x-amz-id-2: xgDbvioErrEIVrUyxoxGxbUh2R7ilD8cejHhTK2PqCry+JZ61fnRZPJ7UI7+iTY4gh1WiJHyl7w=
x-amz-request-id: TXTMSATBC77PED09
last-modified: Thu, 01 Jul 2021 19:04:45 GMT
etag: W/"278589f5c62cbfa1fb1adc7f345c9be0"
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f%2BDWz1XwX%2BJmj0XFlxzBnzlnLc%2FFQm6EE35Sh8mJA3X37dsrbwzLpSAXpvb%2FgW7sXpeQhg0aG13ekc4n8jPqe0LNYEV6EDrdrOFxhbs1JYwfCZUN%2BHPHpgULBJ4QTvvkcqt4%2FBOi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 784493268e3172fc-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
meragamou.com/wp-content/plugins/seed-social/seed-social.css?ver=5.3.14
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/wp-content/plugins/seed-social/seed-social.css?ver=5.3.14
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seed-social/seed-social.css?ver=5.3.14 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: text/css
last-modified: Sun, 07 Jul 2019 19:38:59 GMT
etag: W/"5d224a53-c00"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
last-modified: Thu, 05 Apr 2018 01:14:35 GMT
etag: W/"5ac5787b-2748"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-content/plugins/buddypress/bp-core/js/jquery-query.min.js?ver=5.1.0
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/wp-content/plugins/buddypress/bp-core/js/jquery-query.min.js?ver=5.1.0
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
GET /wp-content/plugins/buddypress/bp-core/js/jquery-query.min.js?ver=5.1.0 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Sat, 21 Dec 2019 09:17:24 GMT
etag: W/"77-59a33432d319c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-includes/js/jquery/ui/progressbar.min.js?ver=1.11.4
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/wp-includes/js/jquery/ui/progressbar.min.js?ver=1.11.4
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/progressbar.min.js?ver=1.11.4 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
last-modified: Sat, 21 Dec 2019 08:58:50 GMT
etag: W/"5dfddeca-9a4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-includes/css/dist/block-library/style.min.css?ver=5.3.14
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/wp-includes/css/dist/block-library/style.min.css?ver=5.3.14
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.3.14 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: text/css
last-modified: Thu, 11 Jun 2020 03:35:40 GMT
etag: W/"5ee1a68c-a055"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-content/themes/weddingday/style.css?ver=5.3.14
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/wp-content/themes/weddingday/style.css?ver=5.3.14
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/weddingday/style.css?ver=5.3.14 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Sat, 02 Mar 2019 18:53:39 GMT
etag: W/"323-583210aad22e9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-includes/js/wp-embed.min.js?ver=5.3.14
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/wp-includes/js/wp-embed.min.js?ver=5.3.14
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
GET /wp-includes/js/wp-embed.min.js?ver=5.3.14 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 15:36:28 GMT
etag: W/"60785d7c-56f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: text/css
last-modified: Sat, 14 Dec 2019 08:07:00 GMT
etag: W/"5df49824-66d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-content/plugins/buddypress/bp-core/js/vendor/jquery-scroll-to.min.js?ver=5.1.0
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/wp-content/plugins/buddypress/bp-core/js/vendor/jquery-scroll-to.min.js?ver=5.1.0
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/buddypress/bp-core/js/vendor/jquery-scroll-to.min.js?ver=5.1.0 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
last-modified: Sat, 21 Dec 2019 09:17:25 GMT
etag: W/"5dfde325-88d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
last-modified: Sat, 14 Dec 2019 08:07:00 GMT
etag: W/"5df49824-3868"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-content/plugins/advanced-advertising-system/js/carouFredSel-6.2.1/jquery.carouFredSel-6.2.1-packed.js?ver=5.3.14
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/wp-content/plugins/advanced-advertising-system/js/carouFredSel-6.2.1/jquery.carouFredSel-6.2.1-packed.js?ver=5.3.14
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/advanced-advertising-system/js/carouFredSel-6.2.1/jquery.carouFredSel-6.2.1-packed.js?ver=5.3.14 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
last-modified: Sat, 24 Nov 2018 06:07:23 GMT
etag: W/"5bf8ea9b-d5fc"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/assets/css/owl.theme.default.css
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/assets/css/owl.theme.default.css
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
GET /assets/css/owl.theme.default.css HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/assets/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: text/css
last-modified: Tue, 31 May 2016 13:19:47 GMT
etag: W/"574d8f73-55a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
last-modified: Sat, 21 Dec 2019 08:43:55 GMT
etag: W/"5dfddb4b-17a69"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/wp-content/plugins/buddypress/bp-core/js/vendor/jquery-cookie.min.js?ver=5.1.0
72.10.36.24200 OK 0 B URL HTTP/2 meragamou.com/wp-content/plugins/buddypress/bp-core/js/vendor/jquery-cookie.min.js?ver=5.1.0
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/buddypress/bp-core/js/vendor/jquery-cookie.min.js?ver=5.1.0 HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 14:13:26 GMT
content-type: application/javascript
last-modified: Sat, 21 Dec 2019 09:17:25 GMT
etag: W/"5dfde325-4ec"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
meragamou.com/apple-touch-icon.png
72.10.36.24404 Not Found 0 B URL HTTP/2 meragamou.com/apple-touch-icon.png
IP 72.10.36.24:0
ASN #398110 GO-DADDY-COM-LLC
GET /apple-touch-icon.png HTTP/1.1
Host: meragamou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meragamou.com/
Cookie: bp-activity-oldestpage=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 04 Jan 2023 14:13:28 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.3.33
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://meragamou.com/wp-json/>; rel="https://api.w.org/"
content-encoding: br
X-Firefox-Spdy: h2