r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3299
Expires: Tue, 27 Sep 2022 17:53:35 GMT
Date: Tue, 27 Sep 2022 16:58:36 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 16:15:30 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 7vPPVqvGTpEGIm7UvE2B-GKJ0fYNglG_5Yizwp7A_96QocqEa6camg==
Age: 2586
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HmFGYy5Wy6EWYwE97sKeW7cPrGnGESLmTbgNEDZbuizXF-Ez9J306A==
age: 27263
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 16:58:36 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 27 Sep 2022 16:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 27 Sep 2022 16:47:56 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Ux45shl0MxoSguvWWN2O-e7xxMKAxLwq_r9L0oHkgoKO_z94FaP_Lg==
Age: 2871
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c18823050f86339eaa73ddb1bf80d64c
ac4ee81f59f706cee8a74458d498bbc20d8d351a
9a505647517bd02d8ff994fd4ad98dc2f4b519916145b0c327691420c1084c46
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3599
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 16:58:37 GMT
Last-Modified: Tue, 27 Sep 2022 15:58:38 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.160.51.228101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.160.51.228:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JdWfc87ucL1dSILJqv7J6A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: mvt2jGwM0Gvwlj+SQT58ukMNo5s=
napalmbalms.com/
162.214.65.128301 Moved Permanently 0 B IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 27 Sep 2022 16:58:35 GMT
Server: Apache
X-Redirect-By: WordPress
Location: https://napalmbalms.com/
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7388
Expires: Tue, 27 Sep 2022 19:01:46 GMT
Date: Tue, 27 Sep 2022 16:58:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7388
Expires: Tue, 27 Sep 2022 19:01:46 GMT
Date: Tue, 27 Sep 2022 16:58:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7388
Expires: Tue, 27 Sep 2022 19:01:46 GMT
Date: Tue, 27 Sep 2022 16:58:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7388
Expires: Tue, 27 Sep 2022 19:01:46 GMT
Date: Tue, 27 Sep 2022 16:58:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7388
Expires: Tue, 27 Sep 2022 19:01:46 GMT
Date: Tue, 27 Sep 2022 16:58:38 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash deb8d1e3b6d7fbc8c8ba478269621676
84f5a4c8b38acde814bc790e5b514347718d5bb9
ed14fa766f0708b4166e83b61f160db5671af430917b7c67184bf18d9208742b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9163
x-amzn-requestid: 8ccd9b1f-bef9-4591-be32-e6dd98f4ee78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlKpEZrIAMFS1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bdd-4a40b9c8281b64c725fec0f1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:38:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: bs6HOUmHOoYKDuzBoVHhcr8d4HP4bBmwUF3EtOmwKXo7ozhfaIYEvw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:39:07 GMT
age: 69571
etag: "84f5a4c8b38acde814bc790e5b514347718d5bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 62e68c3cd08dd94d910507512a67e85f
3d4fa8701f17e8818c25584ef5f04bfbee8440cd
058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13213
x-amzn-requestid: fe9ec409-2757-4910-8443-5b4d3be7efd3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlATEp8oAMFd9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b9b-3230e97a4fe34413285eb578;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:37:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kRSg9NTTAgeAJgIZ_C9_rRodCX4bzGduJEvNPNHUya0Moa2vsmWSoQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:38:57 GMT
age: 69581
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14218a43c5e5bbce546735a780c8ccce
61676358cdbb2373bc644e66f8a84fbc8cc5daf6
905b1c30a2273aef69904f2eb1451c756fc1fdba02e86ea5c957629dd056aeda
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6390
x-amzn-requestid: b2681ff8-ab83-41e6-adef-3e6772c93c3f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGFJ6Gc_oAMF44g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63324f0c-3dbf9f4e2047567b5abdbe74;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 01:17:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8JXEBo_L_xKuKdeoOXEJ6FO7ZVsZVQzUmQFe7fYcxaHRQNEq1HWp6w==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:37:50 GMT
age: 55248
etag: "61676358cdbb2373bc644e66f8a84fbc8cc5daf6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff092f2d0-abd6-40d2-ad33-9fb0ded1ec0a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff092f2d0-abd6-40d2-ad33-9fb0ded1ec0a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91d97447a6a35813e57d942f685544c4
3b660de9902fbfcf2efb477f40480b08545ebc5f
08c1ea19c4918273da12c9a2e962edf4463c486a30f60c8a279a45e5edcf972a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff092f2d0-abd6-40d2-ad33-9fb0ded1ec0a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11881
x-amzn-requestid: 584a2270-56ef-4f46-8ab2-dc0e519b5f45
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YshLfEfoIAMFX9g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328157c-12f8e8e31318d2da70796520;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 07:08:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: bDpP2pZgrMz5bH_vy76SvyPojDGhPIHfOtv2i4dfHCs1GUuSZVC87w==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 22:33:24 GMT
age: 66314
etag: "3b660de9902fbfcf2efb477f40480b08545ebc5f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F171029d0-40d4-47b3-8936-8ba3b16b3212.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F171029d0-40d4-47b3-8936-8ba3b16b3212.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 347dca206e13a3b13953f0ab398310b4
be60bbc96c832ae385cc9ae5828bd32703011b21
f6da888a54a0c6c73466f2c2a72dd875514a39d81b760a6b0116b4dd56ef31dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F171029d0-40d4-47b3-8936-8ba3b16b3212.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10211
x-amzn-requestid: 3ea4ac84-2465-4bd1-8ade-863de3c9576e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfSuGoQoAMF9oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632145aa-7843b82728ead9a053c689d1;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:08:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p1vYTqYjOmYHjVmJ8f6qyT_nLIsyXsr7ZI-DI7JBF9RJa0ZJNPiluA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:56:23 GMT
age: 68535
etag: "be60bbc96c832ae385cc9ae5828bd32703011b21"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5274e770cb5a704916c8965659709f4a
1a26007f761e439db575fb80fb403031260aecf4
e36e8be75c92feb9b416a46c5918356d8f9694894a799b7c10de21034d33d5ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7455
x-amzn-requestid: 0887cd56-f324-46cf-a086-709e1c66f354
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGBTdHmhoAMFvIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633248e2-42391706084f335228fe3994;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 00:50:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: IWzfDNFlgYdqYnbQ9uWfOvqb5zl3I3mgTZrT5pU5P3EvetMRDN5P7w==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:06:47 GMT
age: 57111
etag: "1a26007f761e439db575fb80fb403031260aecf4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js
143.204.55.78200 OK 6.1 kB URL HTTP/2 widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js
IP 143.204.55.78:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (19239)
Hash 5add60196e5f96a414fb4b9586764e5d
633f471b3c2fcedeef9cad90cb5bf56f5fe55588
5370f4ba91dda790c7cae92817b812fcbd1ab367cbb4862f5669960ae4e2c9e0
GET /bootstrap/v5/tp.widget.bootstrap.min.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 6124
last-modified: Mon, 30 May 2022 14:38:02 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Tue, 27 Sep 2022 05:35:19 GMT
cache-control: max-age=86400
etag: "5add60196e5f96a414fb4b9586764e5d"
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0AduPkDWAOwP05xaI74tgINkkGRyHax5ym5NIjO4_58dBQmzC6Gwig==
age: 41002
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 16:58:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 538692a0cbeb2e09cd3af235e5553123
5a9231ebcec9889cf5b5e2450349ed4aee56fcbc
819ff8e41d20d247d0f4eaa714d072ad1a68e37eaba6fd663edea3ad1364998d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 16:58:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/plusone.js
142.250.74.174200 OK 20 kB URL HTTP/2 apis.google.com/js/plusone.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1277)
Hash 202067c443611dc148225b75c0e3d556
9e6be316508f5c2a2e4b8cecc561b0e7415bd38c
5d9db864eb7c211f62d61436846b80db003b0102c903dda9bc15af29e5eefa39
GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20362
date: Tue, 27 Sep 2022 16:58:40 GMT
expires: Tue, 27 Sep 2022 16:58:40 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "5f35d22782378ad2"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash be52dbe2d47697a7f007d69c486b77b4
fe445ea87749e97423e7865bc559ad78f672a62d
65d16df2b3095c658d2bdf39b06d57486967bba7b43c43108e5025d7af5b7ab6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 16:58:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napalmbalms.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.0.16
162.214.65.128200 OK 3.9 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.0.16
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3815)
Hash d310dc62e303c9679bae433ff59dafbb
37df27d919b1b1f851a19f5568ede15b11547000
1d69d06efd74af0e065864c46749e40a7017173291957f8e5a67009a1944a291
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.0.16 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:38 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:22:56 GMT
Accept-Ranges: bytes
Content-Length: 3855
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-includes/js/wp-emoji-release.min.js?ver=5.4.11
162.214.65.128200 OK 14 kB URL HTTP/1.1 napalmbalms.com/wp-includes/js/wp-emoji-release.min.js?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10927)
Hash c8d5a4cd14632bc2bdf15b5e45ca9d4d
cdf210b710c2792eda450a1a11e5dc1f8dae8594
956fa56f513e1a8025bc85f9314a1747eb061d434403393591145e4ae898c694
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:38 GMT
Server: Apache
Last-Modified: Fri, 16 Apr 2021 02:40:48 GMT
Accept-Ranges: bytes
Content-Length: 13884
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/
162.214.65.128200 OK 467 kB IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (50960)
Size 467 kB (466574 bytes)
Hash 79ad580a5339ab59db053a7e197ae144
ae0a9a5888d078624813657536196ef7cc8d95ac
89266395657eedf360aaa162d32494ef6ad06285430c5dd44eafc752effd7e5d
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:37 GMT
Server: Apache
Link: <https://napalmbalms.com/wp-json/>; rel="https://api.w.org/", <https://napalmbalms.com/>; rel=shortlink
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
napalmbalms.com/wp-content/uploads/elementor/css/post-4527.css?ver=1610652229
162.214.65.128200 OK 12 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/elementor/css/post-4527.css?ver=1610652229
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7917)
Hash 67e386957048eadb79bae5fb72abd4b8
7f95b5aeae1e8dbaed0be3f5387d665fbe705096
c81ee3cc8ff3fede6b2be58005b9cabda429e82782e8b9c64d424b17c14c93a3
GET /wp-content/uploads/elementor/css/post-4527.css?ver=1610652229 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:39 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:49 GMT
Accept-Ranges: bytes
Content-Length: 12507
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 16:58:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 16:58:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 16:58:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napalmbalms.com/wp-content/plugins/striz-core/assets/css/magnific-popup.css?ver=5.4.11
162.214.65.128200 OK 7.1 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/striz-core/assets/css/magnific-popup.css?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 03fb256e4dfc134f073e25036ddd5787
dafdecbb8e6206c3559879ac8ad9bea0c52c644e
2463e8404015cc56097236a43021f8b10bf52a2fab8ef0087d95002f78350358
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/striz-core/assets/css/magnific-popup.css?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:39 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:19 GMT
Accept-Ranges: bytes
Content-Length: 7054
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/themes/striz/assets/css/opal-boostrap.css?ver=5.4.11
162.214.65.128200 OK 109 kB URL HTTP/1.1 napalmbalms.com/wp-content/themes/striz/assets/css/opal-boostrap.css?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
Size 109 kB (108638 bytes)
Hash 2a3df6c7d175ddd0651bf406bc7925fd
e1398beee41a38420adc50299b7452cc0646bc9e
03f7fa253a27100034d24caa17e59d5276b2d47253397e00ef2f80c10f67a314
GET /wp-content/themes/striz/assets/css/opal-boostrap.css?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:38 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:40:15 GMT
Accept-Ranges: bytes
Content-Length: 108638
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.0.16
162.214.65.128200 OK 112 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.0.16
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65496)
Size 112 kB (112213 bytes)
Hash 30f12f11c39052d2cfdac5a625cf7071
b1061f27eff3012b7fb117ab6ab8808d592976ed
594c96b05f3fa16b438bd80956b27577f9df00f68100be9dcd0853365fccbe33
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.0.16 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:38 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:22:56 GMT
Accept-Ranges: bytes
Content-Length: 112213
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/themes/striz/style.css?ver=5.4.11
162.214.65.128200 OK 146 kB URL HTTP/1.1 napalmbalms.com/wp-content/themes/striz/style.css?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
Size 146 kB (146367 bytes)
Hash 91a7cad2b27bb1013f12c72e6b44cd50
fc12569132c68073f9c87134d50c894b4813e970
2a1fa6c87754c9977d0f6d7be72fc67d922c3f1b111f17b9ac2ce01177c3390d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/striz/style.css?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:38 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:40:15 GMT
Accept-Ranges: bytes
Content-Length: 146367
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/uploads/elementor/css/post-4734.css?ver=1610670148
162.214.65.128200 OK 28 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/elementor/css/post-4734.css?ver=1610670148
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (16813)
Hash d010064a7ad3f54dd63a80bffd786996
509a6afe887f300d48d20241eb9bcd128ebb68db
0e45735052689a360c5fb5f86ec5e074a529ab288967ddf409aa3d91ac92ac0e
GET /wp-content/uploads/elementor/css/post-4734.css?ver=1610670148 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:39 GMT
Server: Apache
Last-Modified: Fri, 15 Jan 2021 00:22:28 GMT
Accept-Ranges: bytes
Content-Length: 28389
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
162.214.65.128200 OK 31 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (30837)
Hash 008e0bb5ebfa7bc298a042f95944df25
93897ebc560b38a1d2bff43c22dd6a3b7ee90c0c
c4047043368afb4baf1aed25d358a5c2a333842a3b436b58491ab36aeee65b9d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:39 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:22:56 GMT
Accept-Ranges: bytes
Content-Length: 30999
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.16
162.214.65.128200 OK 18 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.16
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10019)
Hash 4601ba55044413706c2022cb6c1c3d05
5103ec2fbb389568ebf5cfe4fd721f3df2ff7aec
fe513ef974b767510d0a2b9f1b4d3afa53185b89ab617c869e5e3d6db960192c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.16 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:39 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:22:56 GMT
Accept-Ranges: bytes
Content-Length: 18468
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/striz-core/assets/css/elementor/style.css?ver=2.5.4
162.214.65.128200 OK 102 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/striz-core/assets/css/elementor/style.css?ver=2.5.4
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (1601)
Size 102 kB (102449 bytes)
Hash d820a210fa0dfbed89a9f00a6ffc39de
25e01d359b854cd5d4dc3391af8fa96f409b3bd5
c6becee1cca95c3b7147ec523ff41b6ba486b967810d12de352403610cab25a8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/striz-core/assets/css/elementor/style.css?ver=2.5.4 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:39 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:19 GMT
Accept-Ranges: bytes
Content-Length: 102449
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/uploads/elementor/css/global.css?ver=1610652230
162.214.65.128200 OK 29 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/elementor/css/global.css?ver=1610652230
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (13945)
Hash 89d513ee1bb0834b0ce1ce6f6beb7244
0d40a42fc4015f42541f82b9930578ba2d5d06ab
fb36a345bf668de2af9c1beee7d5d0f03b9a224363a190e122cf377bcb5a8478
GET /wp-content/uploads/elementor/css/global.css?ver=1610652230 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:39 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:50 GMT
Accept-Ranges: bytes
Content-Length: 29360
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-includes/css/dist/block-library/style.min.css?ver=5.4.11
162.214.65.128200 OK 54 kB URL HTTP/1.1 napalmbalms.com/wp-includes/css/dist/block-library/style.min.css?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (28088)
Hash 7d2051e6c59f3598b17877bf41637ec4
e3fbc1265f4cd1eacf83c045e4f21d5f9b92bf8d
bca7af0b45b6fc6a2064e8e7a34f2041f3e77261e63f0257209bcde6bc40545d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:39 GMT
Server: Apache
Last-Modified: Thu, 30 Apr 2020 06:41:56 GMT
Accept-Ranges: bytes
Content-Length: 53593
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/vendors-style.css?ver=4.0.0
162.214.65.128200 OK 3.3 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/vendors-style.css?ver=4.0.0
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3277), with no line terminators
Hash 04a01171ede91670f01d29d004167d78
c3d37391d9d239aaf2db83c3069bd89adec61e5e
d074f9ef65d3f402c639eb3c9ca3d0e792c3b6d9b50e179850619b03ac511e43
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/vendors-style.css?ver=4.0.0 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:39 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:07 GMT
Accept-Ranges: bytes
Content-Length: 3277
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=4.0.0
162.214.65.128200 OK 169 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=4.0.0
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size 169 kB (169320 bytes)
Hash 55b02f1866adac3f3a79ceab779cdf62
fb3192418070fb442213db76d37beb2068b37cf2
f3e1a2b991b7482c794af418e8bd88d4c27092ee823388f9b968ae4dad1754f6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=4.0.0 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:39 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:07 GMT
Accept-Ranges: bytes
Content-Length: 169320
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.3.2
162.214.65.128200 OK 1.9 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.3.2
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash a2e915fb21387a23a3578cb1b2b5a724
c3601301dacf90fc9eede9363f2698d922c05327
fbf8ab57db7f9981bd71d79c7daaa01a3c578ffa0aa8e9b4a9b2bfe2e9927427
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.3.2 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:39 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:22:53 GMT
Accept-Ranges: bytes
Content-Length: 1920
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/indeed-affiliate-pro/assets/css/font-awesome.css?ver=5.4.11
162.214.65.128200 OK 11 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/indeed-affiliate-pro/assets/css/font-awesome.css?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (372)
Hash 89ce70490e3c82c3e97e3dffffc47325
db92590a8206e5274c6052c49fd6d65f6db65d06
1f75555d9b16e4ac1412fedd02ab2fc3842bc4da98cef88b71835e04a1b52b24
GET /wp-content/plugins/indeed-affiliate-pro/assets/css/font-awesome.css?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:39 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 05:39:56 GMT
Accept-Ranges: bytes
Content-Length: 10581
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/indeed-affiliate-pro/assets/css/main_public.css?ver=5.4.11
162.214.65.128200 OK 55 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/indeed-affiliate-pro/assets/css/main_public.css?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 735ebe7a68f373a1d4ba041ebfd7e070
a118ca9f8c3b414bc30d66e1f96a67310a64609a
ab9ba910e1200eb1b8d7d5b478e7dbcfe19d3f07677b7deb33cc26d4a8c8ddeb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/indeed-affiliate-pro/assets/css/main_public.css?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:39 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 05:39:56 GMT
Accept-Ranges: bytes
Content-Length: 55233
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/indeed-affiliate-pro/assets/css/jquery-ui.min.css?ver=5.4.11
162.214.65.128200 OK 30 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/indeed-affiliate-pro/assets/css/jquery-ui.min.css?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (28415)
Hash 073d373949b52a9910af5c6b81f3902a
90f5f497a2e9dd4c32be1a85b57c637b9e982f80
e5aa7733c90c6c61c702ac7329d78428d66b9edf12c675ea63b6d9002ea1ada9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/indeed-affiliate-pro/assets/css/jquery-ui.min.css?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:39 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 05:39:56 GMT
Accept-Ranges: bytes
Content-Length: 30211
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/indeed-affiliate-pro/assets/css/select2.min.css?ver=5.4.11
162.214.65.128200 OK 15 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/indeed-affiliate-pro/assets/css/select2.min.css?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15252)
Hash 9eae8f4b8994b638114b0aa9bf42376c
4ed5a9d7665084b0d2bf7f2b7bfeec26aa3dd171
66e73ba9dd198cf602f1ea29f85ac7f2959806b61de770d6b730bc19629a5896
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/indeed-affiliate-pro/assets/css/select2.min.css?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:39 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 05:39:56 GMT
Accept-Ranges: bytes
Content-Length: 15253
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/indeed-social-media/social_follow/files/css/style-frond_end.css?ver=5.4.11
162.214.65.128200 OK 284 B URL HTTP/1.1 napalmbalms.com/wp-content/plugins/indeed-social-media/social_follow/files/css/style-frond_end.css?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash d80a0fafac19b99f44fad3997cea282d
2f272c4926de4d7a45e2ce559cf6d963f7a43ac9
0fe0001cb5ef01e2858b42ad8299804ba668014be7516aaf3b2c0ad6eadbcec2
GET /wp-content/plugins/indeed-social-media/social_follow/files/css/style-frond_end.css?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:39 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 06:28:54 GMT
Accept-Ranges: bytes
Content-Length: 284
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/indeed-social-media/social_follow/files/css/pack_social_follow.css?ver=5.4.11
162.214.65.128200 OK 17 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/indeed-social-media/social_follow/files/css/pack_social_follow.css?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash b5e21624ac813509c4a0cb4a11a4b601
eef5224442be312eddb16cb6057ee792fb74a441
8b6512ff034fe705ceffb260a545410b4a3198ceeedaf46d018adf0e4cd255dc
GET /wp-content/plugins/indeed-social-media/social_follow/files/css/pack_social_follow.css?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:39 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 06:28:54 GMT
Accept-Ranges: bytes
Content-Length: 16740
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/indeed-affiliate-pro/assets/css/templates.css?ver=5.4.11
162.214.65.128200 OK 178 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/indeed-affiliate-pro/assets/css/templates.css?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
Size 178 kB (178080 bytes)
Hash 60bee8461998f50149e336a2cc32c1ab
10879156dcfe1005f0e1ac7bcae2eb574543318a
6a37fecbb50eb89e8052629af8ff3d879193261675a0bf876b51728a747aae34
GET /wp-content/plugins/indeed-affiliate-pro/assets/css/templates.css?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:39 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 05:39:56 GMT
Accept-Ranges: bytes
Content-Length: 178080
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/indeed-social-media/files/css/font-awesome.css?ver=5.4.11
162.214.65.128200 OK 23 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/indeed-social-media/files/css/font-awesome.css?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10439), with CRLF line terminators
Hash b9798a0c422d346edf74ccc2737d6f23
a80ebdb7a59e8c5243dc0595fe1bd2a9b1e1dfa1
c6305a54301d32b0629ca214404dfde6a24cf7cf9a0e6574a2705304e57c1e36
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/indeed-social-media/files/css/font-awesome.css?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:39 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 06:28:54 GMT
Accept-Ranges: bytes
Content-Length: 22809
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/indeed-social-media/files/css/socicon.css?ver=5.4.11
162.214.65.128200 OK 6.4 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/indeed-social-media/files/css/socicon.css?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash b4b1ebd10c48564a2299b8d120c71b86
dbd29beb5f83ea88f176de6f8dbf0a3133b17979
7e5c49cce8fb8db2abc68b950135a6efb652cae6df9de798f43f94521c441faf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/indeed-social-media/files/css/socicon.css?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:39 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 06:28:54 GMT
Accept-Ranges: bytes
Content-Length: 6358
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/indeed-social-media/files/css/style-front_end.css?ver=5.4.11
162.214.65.128200 OK 49 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/indeed-social-media/files/css/style-front_end.css?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 33180057e2d95d6b991fe29c3aa1a3fa
e0c30e33debd5218a0c861d6e3224e87db3734a8
11d18ebf61d2022164cb90e15a66d4b5bb27d490329f7ae858d2c24d6bd0e15d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/indeed-social-media/files/css/style-front_end.css?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:39 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 06:28:54 GMT
Accept-Ranges: bytes
Content-Length: 48945
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/indeed-social-media/files/css/templates.css?ver=5.4.11
162.214.65.128200 OK 100 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/indeed-social-media/files/css/templates.css?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Size 100 kB (100513 bytes)
Hash 4fe1e730f5b55097716bbfd82083a8f1
e08f10b2d13cc62da2f6305ad487b3009952bb30
46ba0b760c3f5a41c7981619fd808b2aebc813a501061432dfe87ad3dda90545
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/indeed-social-media/files/css/templates.css?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:39 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 06:28:54 GMT
Accept-Ranges: bytes
Content-Length: 100513
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/indeed-social-media/files/css/animate.css?ver=5.4.11
162.214.65.128200 OK 67 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/indeed-social-media/files/css/animate.css?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (460), with CRLF, CR line terminators
Hash a54b3357da4a124d483f82c7a25f1281
b680eb00788996f67275350b2df10db14052d6a7
3d92b2104771bd52190567cb8e53862e8d43f60195c85f4d958c8d2e9f9dd6b5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/indeed-social-media/files/css/animate.css?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:39 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 06:28:54 GMT
Accept-Ranges: bytes
Content-Length: 66771
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/indeed-social-media/templates/pack_wb.css?ver=5.4.11
162.214.65.128200 OK 70 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/indeed-social-media/templates/pack_wb.css?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash daf469bd7485c1b26502e25c252611e0
b608f40f8ce72d10fa9c6444645592afac7539d9
50bccd97e53d64b036d7762705c4b87c19450e9bd4fbc6d2afc5cdb9e3d65ffc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/indeed-social-media/templates/pack_wb.css?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 06:28:54 GMT
Accept-Ranges: bytes
Content-Length: 70386
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/indeed-social-media/files/css/news-letter-themes-style.css?ver=5.4.11
162.214.65.128200 OK 7.2 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/indeed-social-media/files/css/news-letter-themes-style.css?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 93324d71095a47a699dc0d31aeb5d074
a028b7ac447cd50964ae08ea9a065c5c236b396a
bbfadf7dd9d8597f8de6b589ca8fc9978836e6e7b0c59dd69464af2e09c068ec
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/indeed-social-media/files/css/news-letter-themes-style.css?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 06:28:54 GMT
Accept-Ranges: bytes
Content-Length: 7200
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8
162.214.65.128200 OK 40 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (5178), with CRLF line terminators
Hash 3562402588e3bd6410012cf058d1948c
16685faf56b7ab684f50cd6876e4b2ac2c102545
23a57aed407545bd964231bcb511674996bdd28a4f2a57ca66bca72de0bf3d2d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:40:44 GMT
Accept-Ranges: bytes
Content-Length: 39750
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/yith-woocommerce-frequently-bought-together/assets/css/yith-wfbt.css?ver=5.4.11
162.214.65.128200 OK 856 B URL HTTP/1.1 napalmbalms.com/wp-content/plugins/yith-woocommerce-frequently-bought-together/assets/css/yith-wfbt.css?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 4ff92c82dc41782bc66ad8eedc6188a2
3f6dab323c6898def58cda78214115ecbffe85e1
f99d93bbbabb206e7da2b1a4a99d32e6361a59b7ddccf96285f530787cda0f9f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-frequently-bought-together/assets/css/yith-wfbt.css?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:22 GMT
Accept-Ranges: bytes
Content-Length: 856
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1
162.214.65.128200 OK 17 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (16591)
Hash 02f5d3618a9ca5e3063527265d39fbae
827b9d475645ae6891f427b3b20ce084444cca60
c6c2559bbfbd75165fa07056d46bf0403d126ed4cdb71e6de2e624b534a3bcd7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:22:56 GMT
Accept-Ranges: bytes
Content-Length: 16636
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/uploads/elementor/css/post-7063.css?ver=1610652230
162.214.65.128200 OK 1.1 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/elementor/css/post-7063.css?ver=1610652230
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1126), with no line terminators
Hash f7b5ee4f1b46e80f128096227ee1bd53
6c266fbce071ec5c2294e73b052932c0f41d1f15
0efcd448c8993d0d448da4436611c8174734097bd4e2e2c7b8ab7fbe4021066a
GET /wp-content/uploads/elementor/css/post-7063.css?ver=1610652230 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:50 GMT
Accept-Ranges: bytes
Content-Length: 1126
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/uploads/elementor/css/post-204.css?ver=1611106829
162.214.65.128200 OK 32 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/elementor/css/post-204.css?ver=1611106829
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (31566), with no line terminators
Hash 28fd9fb009572a74f895e799e11eac7c
fa9d318c224584feee46061db642f0360c06b6f9
a4270e9e247f410f50952ff653dcd783e1cc57dbdbc858398ed5d325dbd6a1bc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-204.css?ver=1611106829 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Wed, 20 Jan 2021 01:40:29 GMT
Accept-Ranges: bytes
Content-Length: 31566
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/themes/striz/assets/css/carousel.css?ver=5.4.11
162.214.65.128200 OK 6.6 kB URL HTTP/1.1 napalmbalms.com/wp-content/themes/striz/assets/css/carousel.css?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash f9daf1ab41a0c3c3f961e72a059a3a7e
bbed458b3a6a4ddaf2307f60a407dff0127c0cef
bc3baa81beba522126b8f162737deb44ecbb33a55254795e67765bc8bf79dfbe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/striz/assets/css/carousel.css?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:40:15 GMT
Accept-Ranges: bytes
Content-Length: 6563
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/themes/striz/assets/css/opal-icons.css?ver=5.4.11
162.214.65.128200 OK 40 kB URL HTTP/1.1 napalmbalms.com/wp-content/themes/striz/assets/css/opal-icons.css?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type troff or preprocessor input, Unicode text, UTF-8 text
Hash a04653cc24750f42424b94a855b19fd6
37ca04ba25b3f6ee597210657efe610588127677
7f07d3db4b902ddc5d8b5a773bcea0a4d82fe9481f58db16206b03173180ce30
GET /wp-content/themes/striz/assets/css/opal-icons.css?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:40:15 GMT
Accept-Ranges: bytes
Content-Length: 39715
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/themes/striz/assets/css/woocommerce.css?ver=5.4.11
162.214.65.128200 OK 181 kB URL HTTP/1.1 napalmbalms.com/wp-content/themes/striz/assets/css/woocommerce.css?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
Size 181 kB (180755 bytes)
Hash 31335d60f05b12ef7e1bfbd24bcfe439
12558ba660be8e2ceba2d3038ae0d0bf73049a19
3ef1d80ed5e748d7c7449e9a3a8d590368c86ab8a19e25089a43062f5f7556d0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/striz/assets/css/woocommerce.css?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:40:15 GMT
Accept-Ranges: bytes
Content-Length: 180755
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/striz-core/assets/css/plugin-update.css
162.214.65.128200 OK 1.6 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/striz-core/assets/css/plugin-update.css
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 3bf3c6bbd4cc1b27f4225d3ef539e681
3dcb9fd29662cb360f59b8e1385b00e319a2c145
c26d5fba8d2081e82724841ae32520743bf0bb052bb29ebfddf2e25527da6cf1
GET /wp-content/plugins/striz-core/assets/css/plugin-update.css HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:19 GMT
Accept-Ranges: bytes
Content-Length: 1585
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.12.0
162.214.65.128200 OK 56 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.12.0
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (55567)
Hash fc6ece0b999d414f53c25c3999397fee
c114a2225aa88cdd1bd3f6f58e22047709eab086
8a814f594ba0f0aa1b298a89c192f7afe2e7d22bfa6b5016d01fce2ce2941996
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.12.0 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:22:56 GMT
Accept-Ranges: bytes
Content-Length: 55753
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0
162.214.65.128200 OK 661 B URL HTTP/1.1 napalmbalms.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (475)
Hash db3b745079e4606a70685c661ea1324b
23bfc45721cc05a6aa4182bae9a8ba67d05fe16b
f2f6359c178cbd3efbd8710d9e811f70d788ab2a77fe8d2a90dfd1453b8d38a9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:22:56 GMT
Accept-Ranges: bytes
Content-Length: 661
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
162.214.65.128200 OK 10 kB URL HTTP/1.1 napalmbalms.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9959)
Hash 7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Fri, 20 May 2016 06:11:28 GMT
Accept-Ranges: bytes
Content-Length: 10056
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/striz-core/assets/js/libs/modernizr.custom.js?ver=2.5.4
162.214.65.128200 OK 9.0 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/striz-core/assets/js/libs/modernizr.custom.js?ver=2.5.4
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document, ASCII text, with very long lines (8820)
Hash 7a9ad736fcbd8d99ac7cb282e48f492d
bc9582612f11bf96bc56f75347cf54138339778a
8bf0280a5588514ef4978f8099d859364ba6d44dcfb9ee8c59d90486e3ec1267
GET /wp-content/plugins/striz-core/assets/js/libs/modernizr.custom.js?ver=2.5.4 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:19 GMT
Accept-Ranges: bytes
Content-Length: 9003
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/indeed-affiliate-pro/assets/js/public-functions.js?ver=1.1
162.214.65.128200 OK 19 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/indeed-affiliate-pro/assets/js/public-functions.js?ver=1.1
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 7802c171b069e02c560dd5b27645b1b8
607344db8b8bd99e77e2f3342cc06c8c56ab1d59
45fab80aa441138acbc2daa88bdbfdbcf0133ffca58be7466c93513bc4eea991
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/indeed-affiliate-pro/assets/js/public-functions.js?ver=1.1 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 05:39:56 GMT
Accept-Ranges: bytes
Content-Length: 19387
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/indeed-affiliate-pro/assets/js/jquery.form.js
162.214.65.128200 OK 44 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/indeed-affiliate-pro/assets/js/jquery.form.js
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash f9dcce540e0f08d07119c841b5232d0a
cfcf63e59f55139d00f794e22fbb86d9788a1cfa
53ba88b54ef92b3eda340351de84220a344eef9847ec4df0c78d848aa43fe8bc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/indeed-affiliate-pro/assets/js/jquery.form.js HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 05:39:56 GMT
Accept-Ranges: bytes
Content-Length: 43891
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/indeed-affiliate-pro/assets/js/jquery.uploadfile.min.js
162.214.65.128200 OK 15 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/indeed-affiliate-pro/assets/js/jquery.uploadfile.min.js
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14604)
Hash f27577f0703c84b0ebc3e5dfba5ef74d
825b73f12fdc008ece702a12ff143ebf2a83b34d
909565159d7251575fc2348ce0f9a00ba179b6e83820d02349eedc7253bc3ba0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/indeed-affiliate-pro/assets/js/jquery.uploadfile.min.js HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 05:39:56 GMT
Accept-Ranges: bytes
Content-Length: 14772
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
162.214.65.128200 OK 97 kB URL HTTP/1.1 napalmbalms.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (31997)
Hash 49edccea2e7ba985cadc9ba0531cbed1
f8747f8ee704d9af31d0950015e01d3f9635b070
1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Fri, 17 May 2019 17:08:53 GMT
Accept-Ranges: bytes
Content-Length: 96873
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/indeed-affiliate-pro/assets/js/select2.min.js
162.214.65.128200 OK 105 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/indeed-affiliate-pro/assets/js/select2.min.js
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (343)
Size 105 kB (105339 bytes)
Hash 24ff4f0c26b73c6edbdbaeeb8a259224
352910f65a9487ce9df4d100b74168833f6d9695
e19326b4b5b8b815e6c39cdc6860bc01fdea58f82d2b2bf3c7d975821ff56f72
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/indeed-affiliate-pro/assets/js/select2.min.js HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 05:39:56 GMT
Accept-Ranges: bytes
Content-Length: 105339
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/indeed-social-media/files/js/front_end_header.js
162.214.65.128200 OK 1.3 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/indeed-social-media/files/js/front_end_header.js
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF, CR line terminators
Hash 6670660676f716133b83812163cd3fe9
f4b5f690eea04f7cf501983501fa37328174948b
55527f1415052a5fcda348e673855ecde1293a7f951cc2da08bd428548d9ecda
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/indeed-social-media/files/js/front_end_header.js HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 06:28:54 GMT
Accept-Ranges: bytes
Content-Length: 1269
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 16:58:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napalmbalms.com/wp-content/plugins/indeed-social-media/files/js/json2.js
162.214.65.128200 OK 18 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/indeed-social-media/files/js/json2.js
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF, CR line terminators
Hash 5b2d6dae8d8d8684c16b3d6fb41a7417
0ad657668bd53c11234af3f4021c196f74f89086
5bcb6fe3b7dcdb5fffeaee1b7cdb0376b7fc9447b4626062bd1ac6b5e19298dc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/indeed-social-media/files/js/json2.js HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 06:28:54 GMT
Accept-Ranges: bytes
Content-Length: 18019
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/indeed-social-media/files/js/jstorage.js
162.214.65.128200 OK 32 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/indeed-social-media/files/js/jstorage.js
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF, CR line terminators
Hash ad47a72621087bb5e0c4ce2624d1e266
8e840edfbec96a384f9e2fffef09a33288e54fd0
1fdfbee8cd466e719758f0a1a73ddc6bf96915e36ae6ec831bc731d0f4d52756
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/indeed-social-media/files/js/jstorage.js HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 06:28:54 GMT
Accept-Ranges: bytes
Content-Length: 32472
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
142.250.74.163200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
IP 142.250.74.163:0
File type gzip compressed data, max compression\012- data
Hash d8ca2201ed139ad07c8e587ad3f525d9
edbfbcb43e474ff6606e76d424bb1a34dc59866f
2db42ff1c9eb47292c4bf291d75f81f0414fb680e50b1b28f9137fae20a7b18c
GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napalmbalms.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 21:08:19 GMT
expires: Tue, 26 Sep 2023 21:08:19 GMT
cache-control: public, max-age=31536000
age: 71422
last-modified: Mon, 18 Jul 2022 19:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
napalmbalms.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8
162.214.65.128200 OK 111 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (27287), with CRLF line terminators
Size 111 kB (110564 bytes)
Hash 67a9644e880e7a471d49c73bb7621932
2ac89b145da02402ce1877c580850e08076c5109
a1dff8b0c66227748951c4ff891f146f49c5a382ac8e3d6e3c2e9cf8aa560dc8
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:40:44 GMT
Accept-Ranges: bytes
Content-Length: 110564
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/themes/striz/assets/js/libs/owl.carousel.js?ver=2.2.1
162.214.65.128200 OK 104 kB URL HTTP/1.1 napalmbalms.com/wp-content/themes/striz/assets/js/libs/owl.carousel.js?ver=2.2.1
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
Size 104 kB (103727 bytes)
Hash 5931613d57f6ac2f00829eefd39a8b15
66304d3e2e5ae465ea3df42d582dd1ebcdf5aa6a
6e60e269abacf471d9157534945925d27747a831d86b5e55b0efc0bcfb152799
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/striz/assets/js/libs/owl.carousel.js?ver=2.2.1 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:40:15 GMT
Accept-Ranges: bytes
Content-Length: 103727
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 16:58:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napalmbalms.com/wp-content/plugins/striz-core/assets/js/carousel.js?ver=5.4.11
162.214.65.128200 OK 4.4 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/striz-core/assets/js/carousel.js?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4375)
Hash 7950b78be956eabcb0420c8832cc33bf
14ac6ba5b8a96c8ca7e7b4bec37b90d9997476d0
9cbbcbb1f4d510721683b8ecfbecdf20af2a397cbecd76cbeebb09e48a4e9ff3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/striz-core/assets/js/carousel.js?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:19 GMT
Accept-Ranges: bytes
Content-Length: 4413
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/striz-core/assets/css/tooltipster.bundle.min.css?ver=2.5.4
162.214.65.128200 OK 6.8 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/striz-core/assets/css/tooltipster.bundle.min.css?ver=2.5.4
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash e2bb7792e6575d5cc28c7b85f4e9798f
e4ea51b9bd17ece50a4601125ed7ea10eca4b354
b50550ca345cf1934954f31b86267ed97fd7ac4a239bb849dd099129ae92d3f4
GET /wp-content/plugins/striz-core/assets/css/tooltipster.bundle.min.css?ver=2.5.4 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:19 GMT
Accept-Ranges: bytes
Content-Length: 6841
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
napalmbalms.com/wp-content/plugins/striz-core/assets/js/libs/jquery.smartmenus.min.js?ver=2.5.4
162.214.65.128200 OK 24 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/striz-core/assets/js/libs/jquery.smartmenus.min.js?ver=2.5.4
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (24459)
Hash f37878df1d94bbea0dfb7e85612888ec
19df702835ff55ce5a9b76b9974f8597cc528c6a
2fe668f50e1b19f758d3a06ac0c60b0e869c6b31fa1ab43190b6af3dd4f46b8e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/striz-core/assets/js/libs/jquery.smartmenus.min.js?ver=2.5.4 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:19 GMT
Accept-Ranges: bytes
Content-Length: 24548
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/striz-core/assets/js/libs/jquery.magnific-popup.min.js?ver=5.4.11
162.214.65.128200 OK 20 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/striz-core/assets/js/libs/jquery.magnific-popup.min.js?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (20087)
Hash ba6cf724c8bb1cf5b084e79ff230626e
f455c5f153f872e52265f87a644ff89fe14a6fb6
3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4
GET /wp-content/plugins/striz-core/assets/js/libs/jquery.magnific-popup.min.js?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:19 GMT
Accept-Ranges: bytes
Content-Length: 20216
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/striz-core/assets/js/libs/mlpushmenu.js?ver=2.5.4
162.214.65.128200 OK 12 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/striz-core/assets/js/libs/mlpushmenu.js?ver=2.5.4
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2057)
Hash 1d707a963ae9bc0321161c1c137510bd
2783b94adc72cf2e7d561b03a6ef859ff30e957f
b4458e35496adb68f1e2f3cd38bf58459e95de9caa5004059fb6e27968083727
GET /wp-content/plugins/striz-core/assets/js/libs/mlpushmenu.js?ver=2.5.4 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:19 GMT
Accept-Ranges: bytes
Content-Length: 12333
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/barlowcondensed/v12/HTxwL3I-JCGChYJ8VI-L6OO_au7B46r2z3bWuQ.woff2
142.250.74.163200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/barlowcondensed/v12/HTxwL3I-JCGChYJ8VI-L6OO_au7B46r2z3bWuQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 21440, version 1.0\012- data
Hash 93674060037764a36d225e483fcc24b5
d639ff4a3ee9a0569f47b13d95e17a66c0bc9911
8320299532b4b81498d5b3714d49c9d5938883b55f4c2a1efe6f105bf4a942bd
GET /s/barlowcondensed/v12/HTxwL3I-JCGChYJ8VI-L6OO_au7B46r2z3bWuQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napalmbalms.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21440
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 17:25:33 GMT
expires: Fri, 22 Sep 2023 17:25:33 GMT
cache-control: public, max-age=31536000
age: 430389
last-modified: Tue, 19 Apr 2022 18:46:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
napalmbalms.com/wp-content/plugins/striz-core/assets/js/libs/classie.js?ver=2.5.4
162.214.65.128200 OK 1.8 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/striz-core/assets/js/libs/classie.js?ver=2.5.4
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash a9df1cfb76ce492afd9d13f3320272fd
782b9564f015a2ec7bdf9c89e238fab9b44bd587
717ad22aa426d024f6c9942949b49d9a20f4239b94dfee34f94c96d8778f2144
GET /wp-content/plugins/striz-core/assets/js/libs/classie.js?ver=2.5.4 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:19 GMT
Accept-Ranges: bytes
Content-Length: 1835
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/rubik/v21/iJWEBXyIfDnIV7nEnX661A.woff2
142.250.74.163200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v21/iJWEBXyIfDnIV7nEnX661A.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 34500, version 1.0\012- data
Hash faff0ee016116a366390902ac4445672
f0392ff9fc0b9fd3169662810504bb0108857e4a
7537368c23adecd664ec589e81d5279bbc5ff02c09d52247daf460e2046c4cdc
GET /s/rubik/v21/iJWEBXyIfDnIV7nEnX661A.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napalmbalms.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34500
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 03:36:37 GMT
expires: Wed, 27 Sep 2023 03:36:37 GMT
cache-control: public, max-age=31536000
age: 48125
last-modified: Mon, 18 Jul 2022 19:24:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/barlowcondensed/v12/HTxwL3I-JCGChYJ8VI-L6OO_au7B4-Lwz3bWuQ.woff2
142.250.74.163200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/barlowcondensed/v12/HTxwL3I-JCGChYJ8VI-L6OO_au7B4-Lwz3bWuQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 20432, version 1.0\012- data
Hash 41ee38ab778591b0491c84fbce8aecf3
4544df52042a0600d71ea12d7f95eaffa22e65cf
2d2c4912162eaa41299aaf5063ecb92a26d76071fe6d1f77742b32c833daab99
GET /s/barlowcondensed/v12/HTxwL3I-JCGChYJ8VI-L6OO_au7B4-Lwz3bWuQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napalmbalms.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 01:43:18 GMT
expires: Thu, 21 Sep 2023 01:43:18 GMT
cache-control: public, max-age=31536000
age: 573324
last-modified: Tue, 19 Apr 2022 18:38:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
napalmbalms.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2
162.214.65.128200 OK 14 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash f89263c0c2f24398a1df52eead69f5f8
850e9cfb1680eb1df4365889724e69f38df7bb9e
125ec330f66081e7dc9f2814e9ec18f4e2d0baa1936d497375eedfda7ac12e5c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:22:53 GMT
Accept-Ranges: bytes
Content-Length: 14280
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
162.214.65.128200 OK 3.9 kB URL HTTP/1.1 napalmbalms.com/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3704)
Hash e6784d91bf2c668bc4093063c5b15113
687e1d2e957a821280dbd205ae66182f16dfdc30
194ebae85ff853319e8668f23a4c5bf371a7d9f5d550a40980ab53026ddaaa17
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Fri, 16 Apr 2021 02:40:48 GMT
Accept-Ranges: bytes
Content-Length: 3929
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4
162.214.65.128200 OK 36 kB URL HTTP/1.1 napalmbalms.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (35947)
Hash a236bd4097fcbfb009f64238dc4443a1
ddbeeaa10749e4a74fe624ced0531b9243235dd2
2c3f3b95a692312d9b75815ecb949a40c2a701ff148fe865fde55556c810a22c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Fri, 16 Apr 2021 02:40:48 GMT
Accept-Ranges: bytes
Content-Length: 36172
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
162.214.65.128200 OK 9.6 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9172)
Hash 81b2be18696c4dfe620f7b6d0d75a566
0c3cd7bdf58a65b07e17be39cfe4e386571bb4bd
120aaf6681ca6d34a40c559779f0a0038582a79fce1b868ff901c94d27c89c72
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:07 GMT
Accept-Ranges: bytes
Content-Length: 9566
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=4.9.0
162.214.65.128200 OK 3.0 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=4.9.0
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash 8bc2109ef48cabf7a26b73d7c3536c5f
0e0dfee3a3975eafc3dd55f190d1deb3c6c55d3b
8634aa7a3ac0bc6d359b458c8922e9d3269f64c1355b329bfe215beb12773af8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=4.9.0 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:07 GMT
Accept-Ranges: bytes
Content-Length: 3037
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
162.214.65.128200 OK 1.8 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1680)
Hash 943f6eb962c25bd965e0f0e5a284fcd0
b050a98ebaef01d7597bf8c1acb995c0ef3bcbd9
50de09b0bb8d0ac656aa9b3a1e4ef58a3f2d1abd734cad68b0e12191e9d215ea
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:40 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:07 GMT
Accept-Ranges: bytes
Content-Length: 1846
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=4.9.0
162.214.65.128200 OK 2.1 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=4.9.0
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2057), with no line terminators
Hash 85d9c4e6df130502084fc3d8cf7d0af5
acd466495b7c1bd4a5d80bdc1d114774cd988771
723e0701a1d2e7f0d8bee5cbee1ef5295708ef423e3fc8397b669f43d1eeaa44
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=4.9.0 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:07 GMT
Accept-Ranges: bytes
Content-Length: 2057
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=4.9.0
162.214.65.128200 OK 2.9 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=4.9.0
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2938), with no line terminators
Hash 51af5d767f0300f23ecec6298b707395
5eb2d3d937fe0392a974937125d0420666b9396c
9c7c023f91428234ca0ea4df1199758686f4dcd04da96ba63571788fb3389c0b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=4.9.0 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:07 GMT
Accept-Ranges: bytes
Content-Length: 2938
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/mailchimp-for-woocommerce/public/js/mailchimp-woocommerce-public.min.js?ver=2.5.0
162.214.65.128200 OK 6.0 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/mailchimp-for-woocommerce/public/js/mailchimp-woocommerce-public.min.js?ver=2.5.0
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5977), with no line terminators
Hash 18794b22385df0493ce7f113abc9b723
67d68e3ed3c3c8a1a6a63268f5d953de848e2a31
00a390bc76c4ac07d5f6520c4bb2133bb493108ead46dff42286d7bd2af96ffb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/mailchimp-for-woocommerce/public/js/mailchimp-woocommerce-public.min.js?ver=2.5.0 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:22:59 GMT
Accept-Ranges: bytes
Content-Length: 5977
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2
162.214.65.128200 OK 23 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (22860), with no line terminators
Hash 1d1c3a543e81800edba04e6d940a538c
1ff70984362bc81c08bb90a5d3aa8a03fbbc11ad
1c5aa6e4bd2e7884c59e14c2240c6927397b4d320a97e00b11e6a4fec52e2ef7
GET /wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:07 GMT
Accept-Ranges: bytes
Content-Length: 22860
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-includes/js/underscore.min.js?ver=1.8.3
162.214.65.128200 OK 16 kB URL HTTP/1.1 napalmbalms.com/wp-includes/js/underscore.min.js?ver=1.8.3
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (16010)
Hash 203eeb8dd53e84fb53b7aeffb562d825
b4b4361a61ee78717bdcffe5c46ea79cdc3e04ae
6cd0d6897b3d4779f7d88ce72531f22fbf75851b195fb14e6f3f23d051b3d1e9
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/underscore.min.js?ver=1.8.3 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Fri, 16 Apr 2021 02:40:48 GMT
Accept-Ranges: bytes
Content-Length: 16045
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-includes/js/wp-util.min.js?ver=5.4.11
162.214.65.128200 OK 1.1 kB URL HTTP/1.1 napalmbalms.com/wp-includes/js/wp-util.min.js?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1042)
Hash 8852ab48e7d14f035a27f3c15d31c054
eed53bd391b539796dfe3b5bc5849170ab77c987
6d7c73e67cbb5215d633ce9ad65f0c0377004621fce62982568024178ac4b589
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-util.min.js?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Fri, 16 Apr 2021 02:40:48 GMT
Accept-Ranges: bytes
Content-Length: 1077
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/striz-core/assets/js/woocommerce/main.js?ver=5.4.11
162.214.65.128200 OK 12 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/striz-core/assets/js/woocommerce/main.js?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12447)
Hash 0e7b6cd6626ae5284e548439815c68c6
401b26a1ea25c6b3ff091590026bcf41bc540878
3dad5bf183ef66a808c7f9f3dd8c762b705b8c3412362a975aa54d201c999ce0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/striz-core/assets/js/woocommerce/main.js?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:19 GMT
Accept-Ranges: bytes
Content-Length: 12481
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/themes/striz/assets/js/theme.js?ver=1.0
162.214.65.128200 OK 20 kB URL HTTP/1.1 napalmbalms.com/wp-content/themes/striz/assets/js/theme.js?ver=1.0
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (564)
Hash 6d518a2b641a040c0922b32079255edb
c1c4fe7a197c0fb086ca762f6dcbd535a7450a83
60f0b0b52532f4b857b07b834758273b587ec618f01a51840c96e3942b347e93
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/striz/assets/js/theme.js?ver=1.0 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:40:15 GMT
Accept-Ranges: bytes
Content-Length: 20511
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/themes/striz/assets/js/sticky-layout.js?ver=5.4.11
162.214.65.128200 OK 4.7 kB URL HTTP/1.1 napalmbalms.com/wp-content/themes/striz/assets/js/sticky-layout.js?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4735), with no line terminators
Hash 41f5b14aa392d72270a4bf60648b0a90
de55012bf6550a265d1146413238c01d177022eb
73f692f4581faab09a2e57c9028df8e822c889a3d44ca59090f924f0f36a71ff
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/striz/assets/js/sticky-layout.js?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:40:15 GMT
Accept-Ranges: bytes
Content-Length: 4735
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/striz-core/assets/js/SmoothScroll.min.js?ver=1.4.8
162.214.65.128200 OK 26 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/striz-core/assets/js/SmoothScroll.min.js?ver=1.4.8
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash c5fa2e2c2009894937ca503c491dfc85
b017f47b271059c17a606d4904c4b27d639dd0b7
713ac72ba52daddc624b3d941080a423db914fd9a9eaf867fd6acd3bc5894f1b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/striz-core/assets/js/SmoothScroll.min.js?ver=1.4.8 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:19 GMT
Accept-Ranges: bytes
Content-Length: 25450
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-includes/js/wp-embed.min.js?ver=5.4.11
162.214.65.128200 OK 1.4 kB URL HTTP/1.1 napalmbalms.com/wp-includes/js/wp-embed.min.js?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1391)
Hash 905225d5711b559d3092387d5ffbedbd
6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d
5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-embed.min.js?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Fri, 16 Apr 2021 02:40:48 GMT
Accept-Ranges: bytes
Content-Length: 1426
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/striz-core/assets/js/libs/tooltipster.bundle.min.js?ver=2.5.4
162.214.65.128200 OK 40 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/striz-core/assets/js/libs/tooltipster.bundle.min.js?ver=2.5.4
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (39810), with no line terminators
Hash 9f0a35f19fdb169f5f1b46cae67c14b2
45c2b2a29f140edf1196645f19bd8b1844526592
4d9fda03ae8c7cd694517372e0688f9985ac4f06dbe80cd36de5044d6a5979d6
GET /wp-content/plugins/striz-core/assets/js/libs/tooltipster.bundle.min.js?ver=2.5.4 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:19 GMT
Accept-Ranges: bytes
Content-Length: 39810
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/elfsight-instagram-feed-cc/assets/elfsight-instagram-feed.js?ver=4.0.3
162.214.65.128200 OK 379 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/elfsight-instagram-feed-cc/assets/elfsight-instagram-feed.js?ver=4.0.3
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (65340)
Size 379 kB (379255 bytes)
Hash e6166f6a97fc67d7c18c70ce0c4108fb
d9f3709cdcfcacd3e898741c3b08182462553002
a807fb79a8bf55fc1b8738b3db6c2635d6cb7c3f718212dbc16486b8276ce279
GET /wp-content/plugins/elfsight-instagram-feed-cc/assets/elfsight-instagram-feed.js?ver=4.0.3 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Thu, 06 Jan 2022 13:36:01 GMT
Accept-Ranges: bytes
Content-Length: 379255
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/indeed-social-media/files/js/front_end_footer.js
162.214.65.128200 OK 39 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/indeed-social-media/files/js/front_end_footer.js
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 26d1ef236101b3f0aaab09e4aec23fa8
0d291535111cb0297f42e8812af3d4b6f3fd560c
c0e79faf6fe8f4a9bae5c765d52d52ee48c55d150dce847be1dad04604d7e87c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/indeed-social-media/files/js/front_end_footer.js HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 06:28:54 GMT
Accept-Ranges: bytes
Content-Length: 38952
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/mailchimp-for-wp/assets/js/forms.min.js?ver=4.8.1
162.214.65.128200 OK 6.8 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/mailchimp-for-wp/assets/js/forms.min.js?ver=4.8.1
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6806)
Hash 60d6b506270fe0c39407722fca879774
ca983fc9c30c3a017403001abd0220dd266e7afa
4a967a69edb3b1b523c71a86b0c665fa93436249640a987aead72a28ca348461
GET /wp-content/plugins/mailchimp-for-wp/assets/js/forms.min.js?ver=4.8.1 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:01 GMT
Accept-Ranges: bytes
Content-Length: 6845
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.16
162.214.65.128200 OK 64 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.16
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (47306), with LF, NEL line terminators
Hash 877841998ac57f6f0490f387baa7805c
7074c470cf9c8e6ba721bdf57f3de95de1f876de
acbcfa9ee0409566b89fe478514f29028b660f9dfb86de730f1246ae0879e32b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.16 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:22:56 GMT
Accept-Ranges: bytes
Content-Length: 64122
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-includes/js/jquery/ui/position.min.js?ver=1.11.4
162.214.65.128200 OK 6.4 kB URL HTTP/1.1 napalmbalms.com/wp-includes/js/jquery/ui/position.min.js?ver=1.11.4
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6217)
Hash d1c2e97eeca08ca067ccf2c5736f0390
5281985542fcc8c5a651d1991296e12c39bfcb82
0ce51090b148a45a0e3d652719ed6ef7f1a38e5d272dbf874f86a49664e897a3
GET /wp-includes/js/jquery/ui/position.min.js?ver=1.11.4 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Fri, 16 Apr 2021 02:40:48 GMT
Accept-Ranges: bytes
Content-Length: 6438
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
162.214.65.128200 OK 11 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10725)
Hash 58baf0f238d7afc7ab926b8d51e5b559
8515e5f578269e29c048450f78c107935d325dff
2989e0b9e836cb9de3274d641ec6a58c2052f039e790ddd59b22303930bfdeeb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:22:56 GMT
Accept-Ranges: bytes
Content-Length: 10863
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
162.214.65.128200 OK 12 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12198), with no line terminators
Hash 3819c3569da71daec283a75483735f7e
ecd40a5cc6f0b76200c454ca880210dc301cfab8
214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:22:56 GMT
Accept-Ranges: bytes
Content-Length: 12198
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
162.214.65.128200 OK 139 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65280)
Size 139 kB (139153 bytes)
Hash 15bb2b8491fc7e84137d65f610e1685a
cd76b70a5426893e9c022b9a75c50a7c1348e2d0
b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:22:56 GMT
Accept-Ranges: bytes
Content-Length: 139153
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.16
162.214.65.128200 OK 2.6 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.16
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2577)
Hash 9bb8540493a7fe11b229870eb37be165
d77f17cb9057dc8f622b8c0bf23f6acb739b3b8e
4a7ee62eb33f3bbb66c2151e5cac6bf4904e28302efc36128f3e3ccae6fde580
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.16 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:22:56 GMT
Accept-Ranges: bytes
Content-Length: 2578
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.16
162.214.65.128200 OK 120 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.16
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (47471), with LF, NEL line terminators
Size 120 kB (120225 bytes)
Hash 2feb29378cc90587b3b41b98afc6161f
a025923011166b2c3f6a9b4ae731841390ef1e05
e63f5ec5b15cda8224876406030aeb50dee09cc9b81203ad3156ca563ea06adf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.16 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:22:56 GMT
Accept-Ranges: bytes
Content-Length: 120225
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/striz-core/assets/js/elementor/frontend.js?ver=5.4.11
162.214.65.128200 OK 22 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/striz-core/assets/js/elementor/frontend.js?ver=5.4.11
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (21865)
Hash b4d25fe62864fa5654efff841023c677
0aa81641686581373284012227338d5a648d88aa
53d53a462b3c97460767e8e1d689fa365f006e608e3b80b35c48fa93539a51c2
GET /wp-content/plugins/striz-core/assets/js/elementor/frontend.js?ver=5.4.11 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:23:19 GMT
Accept-Ranges: bytes
Content-Length: 21903
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/themes/striz/assets/fonts/opal-icon.woff2
162.214.65.128200 OK 7.7 kB URL HTTP/1.1 napalmbalms.com/wp-content/themes/striz/assets/fonts/opal-icon.woff2
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 7676, version 1.0\012- data
Hash e40392c799d733c306b8be66712f9b2d
4d3704eb5f5f99d34f90e70dcbef7cc7c6448224
9204dc643d1ed01c8e2402b7dc86e136545a80ad94f3892f4d0af8138c5a40e6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/striz/assets/fonts/opal-icon.woff2 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://napalmbalms.com/wp-content/themes/striz/assets/css/opal-icons.css?ver=5.4.11
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:40:15 GMT
Accept-Ranges: bytes
Content-Length: 7676
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: font/woff2
napalmbalms.com/wp-content/themes/striz/assets/fonts/fontawesome-webfont.woff?v=4.7.0
162.214.65.128200 OK 98 kB URL HTTP/1.1 napalmbalms.com/wp-content/themes/striz/assets/fonts/fontawesome-webfont.woff?v=4.7.0
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 98024, version 4.7\012- data
Hash fee66e712a8a08eef5805a46892932ad
28b782240b3e76db824e12c02754a9731a167527
ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07
GET /wp-content/themes/striz/assets/fonts/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://napalmbalms.com/wp-content/themes/striz/assets/css/opal-icons.css?ver=5.4.11
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:40:15 GMT
Accept-Ranges: bytes
Content-Length: 98024
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: font/woff
napalmbalms.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
162.214.65.128200 OK 76 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 75936, version 330.-16253\012- data
Hash 822d94f19fe57477865209e1242a3c63
f356aa2e4d9b7245985d312d3bfba180f774e3b7
8e4560c16c7970efa47680450b2cf239d4a482c056d308acea12bb9022906c8b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://napalmbalms.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:22:56 GMT
Accept-Ranges: bytes
Content-Length: 75936
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: font/woff2
napalmbalms.com/wp-content/plugins/indeed-social-media/files/fonts/fontawesome-webfont.woff2?v=4.3.0
162.214.65.128200 OK 67 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/indeed-social-media/files/fonts/fontawesome-webfont.woff2?v=4.3.0
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 66624, version 4.262\012- data
Hash db812d8a70a4e88e888744c1c9a27e89
638c652d623280a58144f93e7b552c66d1667a11
ff82aeed6b9bb6701696c84d1b223d2e682eb78c89117a438ce6cfea8c498995
GET /wp-content/plugins/indeed-social-media/files/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://napalmbalms.com/wp-content/plugins/indeed-social-media/files/css/font-awesome.css?ver=5.4.11
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 06:28:54 GMT
Accept-Ranges: bytes
Content-Length: 66624
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: font/woff2
napalmbalms.com/wp-content/uploads/2018/12/logo-napalm.png
162.214.65.128200 OK 40 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2018/12/logo-napalm.png
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 395 x 215, 8-bit/color RGBA, non-interlaced\012- data
Hash 673110ca7ae08ad608e83ecc7c1151f4
7bce7e35602a2b172f46f9d246b6b017fe471c7d
96c943f55210caf71f7a1cb55c8c16a60f86a89e3a5305a2cb7fb340b401ce80
GET /wp-content/uploads/2018/12/logo-napalm.png HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 19:06:48 GMT
Accept-Ranges: bytes
Content-Length: 40001
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/png
napalmbalms.com/wp-content/uploads/2018/12/banner1.gif
162.214.65.128200 OK 20 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2018/12/banner1.gif
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 857 x 180\012- data
Hash 9b77d2f730994ea4b90fb69d20493dba
2c056e07980ad2968d0ef0cef1cb347040f1cc75
b15cf2de1941276843672609d553b9c9ec75e0b90915cd3de26ad0eda62cbe95
GET /wp-content/uploads/2018/12/banner1.gif HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:52:26 GMT
Accept-Ranges: bytes
Content-Length: 19666
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/gif
napalmbalms.com/wp-content/uploads/2018/10/watermelon2-300x300.jpg
162.214.65.128200 OK 5.8 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2018/10/watermelon2-300x300.jpg
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash 5631f22df84e66e901f73a24cfaeb7a4
6bf8735edf45e94b5d5136c3de7264fb80d1b022
a57dfa21e282de582c264fc51d154308c73e2b7fa544521b2cd0a85e34badc39
GET /wp-content/uploads/2018/10/watermelon2-300x300.jpg HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Mon, 17 Feb 2020 02:46:58 GMT
Accept-Ranges: bytes
Content-Length: 5811
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/jpeg
napalmbalms.com/wp-content/uploads/2018/10/beardbalm-300x300.jpg
162.214.65.128200 OK 5.4 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2018/10/beardbalm-300x300.jpg
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash b368625b7f36519214789a8fce6f98e7
c4978732e58184e773c24db0dfa77a3953a1d22b
1ce0c481f2450ef15c1daea055eac436a17de0dfc35c54e3464ceb58cf54b895
GET /wp-content/uploads/2018/10/beardbalm-300x300.jpg HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Sun, 16 Feb 2020 03:33:13 GMT
Accept-Ranges: bytes
Content-Length: 5354
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/jpeg
napalmbalms.com/wp-content/uploads/2018/10/jettyyyboo-300x300.jpg
162.214.65.128200 OK 13 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2018/10/jettyyyboo-300x300.jpg
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash 0d7de28ff623a4c36b692804b05dea0e
8a0272b03951fe3d7437242678326382619d53b3
b0e89073f0f05cc7d1a0049672e62a8a21fd9e99355ac3b37bdd7a514e331d22
GET /wp-content/uploads/2018/10/jettyyyboo-300x300.jpg HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Sun, 16 Feb 2020 03:42:48 GMT
Accept-Ranges: bytes
Content-Length: 12940
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/jpeg
napalmbalms.com/wp-content/uploads/2018/10/aftercare2-300x300.jpg
162.214.65.128200 OK 8.8 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2018/10/aftercare2-300x300.jpg
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash 8eda630872e8d6e71098daa688b42283
7ec7a86e8df3f2765826f79a9cf32d53698c6bf0
1e0267eee8c0b8ea928c44e86d1680ebc255f1d991fa418f5cd19910a95e35d7
GET /wp-content/uploads/2018/10/aftercare2-300x300.jpg HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Sun, 16 Feb 2020 03:49:15 GMT
Accept-Ranges: bytes
Content-Length: 8750
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/jpeg
napalmbalms.com/wp-content/uploads/2020/01/agentorangevape.jpg
162.214.65.128200 OK 152 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2020/01/agentorangevape.jpg
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3\012- data
Size 152 kB (151496 bytes)
Hash 35971d5bc72fa78f5983db0e048583a2
74f080e69bc724c8194a87f7500f927ab3755ca8
3b5c0434b79648519b147a7d38062753c966294bbf2509760b0fe5ec502382a6
GET /wp-content/uploads/2020/01/agentorangevape.jpg HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Fri, 17 Jan 2020 02:03:53 GMT
Accept-Ranges: bytes
Content-Length: 151496
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/jpeg
napalmbalms.com/wp-content/uploads/2020/01/solopacks.jpg
162.214.65.128200 OK 43 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2020/01/solopacks.jpg
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 424x280, components 3\012- data
Hash 76ff32636da832f761b05f22cf55d055
420e285d4c9bc7b31801490f0f5d327196386d23
1cbfea46225f368133a32bcc90edd2e3469cdcf142c1a1f152c0112b0b2b9e08
GET /wp-content/uploads/2020/01/solopacks.jpg HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Last-Modified: Fri, 17 Jan 2020 00:32:11 GMT
Accept-Ranges: bytes
Content-Length: 43276
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: image/jpeg
napalmbalms.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.8
162.214.65.128200 OK 29 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.8
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (28818), with CRLF line terminators
Hash 10f428f59d120bf8adbc39b86d547a2f
fe92af104d1ca10761ec932fdd2da77f759286d4
e0a244f4ace8e695c3aa03697b9dd349f5f1abbae8974d87e879274808305595
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.8 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-UAP-TOKEN: 6bc836323d
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:42 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:40:44 GMT
Accept-Ranges: bytes
Content-Length: 29070
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.8
162.214.65.128200 OK 56 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.8
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (55556), with CRLF line terminators
Hash a78982b40bf915f977f2bcb73e907934
540b38654ca018e915d4de20f586f7999d5119f2
f46438dc69e006684fd2254a035cd58fa8fc9277206bdf0f8c9a278bbfbc8756
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.8 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-UAP-TOKEN: 6bc836323d
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:42 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:40:44 GMT
Accept-Ranges: bytes
Content-Length: 55809
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.8
162.214.65.128200 OK 26 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.8
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (25862), with CRLF line terminators
Hash 05ec8fa18732b68a634f95e7c2bebd2e
2204916097137e7afe60b7d8a612e04f86496cbc
38da5f0c3fd471c5a28d03d7155aba416ae2562ba4a73a2ca3920b19e4b47a63
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.8 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-UAP-TOKEN: 6bc836323d
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:42 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:40:44 GMT
Accept-Ranges: bytes
Content-Length: 26103
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: application/javascript
widget.trustpilot.com/trustboxes/5613c9cde69ddc09340c6beb/index.html?templateId=5613c9cde69ddc09340c6beb&businessunitId=5e4ee060d8807e0001b21d52
143.204.55.78200 OK 2.0 kB URL HTTP/2 widget.trustpilot.com/trustboxes/5613c9cde69ddc09340c6beb/index.html?templateId=5613c9cde69ddc09340c6beb&businessunitId=5e4ee060d8807e0001b21d52
IP 143.204.55.78:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6288)
Hash d7c7262c00c93428f2217dcc4a510814
ed331e9f6be67a0d2a448cb7acd327a642fb2ff1
fe23d571b493379cf8254a2c052c6dcc6174fac88e839cc5ba8985ef4b5cde3d
GET /trustboxes/5613c9cde69ddc09340c6beb/index.html?templateId=5613c9cde69ddc09340c6beb&businessunitId=5e4ee060d8807e0001b21d52 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 1988
date: Tue, 27 Sep 2022 16:58:44 GMT
last-modified: Tue, 14 Jun 2022 14:11:31 GMT
etag: "d7c7262c00c93428f2217dcc4a510814"
x-amz-server-side-encryption: AES256
cache-control: max-age=86400
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-cache: Miss from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dxWBTiRDe75oa03FF3IZ3xfpxhe3KW7V0lw1eVJ80HKQujzQhCRHbg==
X-Firefox-Spdy: h2
widget.trustpilot.com/trustboxes/5613c9cde69ddc09340c6beb/main.js
143.204.55.78200 OK 17 kB URL HTTP/2 widget.trustpilot.com/trustboxes/5613c9cde69ddc09340c6beb/main.js
IP 143.204.55.78:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (56018)
Hash 00ce06a8b09930847307108c91c78ad2
fa22253f31c478482768ab29a63a822bcfcaa002
ec1382eba1fb78dfcb48326e712174811ed480e4f1b048999142134d1e27a0af
GET /trustboxes/5613c9cde69ddc09340c6beb/main.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5613c9cde69ddc09340c6beb/index.html?templateId=5613c9cde69ddc09340c6beb&businessunitId=5e4ee060d8807e0001b21d52
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 17198
last-modified: Tue, 14 Jun 2022 14:11:32 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Tue, 27 Sep 2022 08:52:36 GMT
cache-control: max-age=86400
etag: "00ce06a8b09930847307108c91c78ad2"
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mvH4E7C4jhNqHYdTdejPA34aXLXtpDxt0p5Le-OlxnpBzUGN6x1u2g==
age: 29168
X-Firefox-Spdy: h2
napalmbalms.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.parallax.min.js?version=5.4.8
162.214.65.128200 OK 11 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.parallax.min.js?version=5.4.8
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10692), with CRLF line terminators
Hash 5af695fc2f9242677472d46c921b407e
7ee73735c7b0e0c8b4ebaccac77ab3268a3ef00a
dd831ed9e0bf5acd44bcdaa92f5d357f65ba9fb8b839e60a9d0af23dfd0b68f7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.parallax.min.js?version=5.4.8 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-UAP-TOKEN: 6bc836323d
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:42 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:40:44 GMT
Accept-Ranges: bytes
Content-Length: 10931
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: application/javascript
napalmbalms.com/wp-content/uploads/2020/01/tempbalm.jpg
162.214.65.128200 OK 28 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2020/01/tempbalm.jpg
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type gzip compressed data, max compression\012- data
Hash 6e82795d251a7c7e6bc9dcbbec6a9113
b123e5e4dddff8ed3ea4c4368b9b9b6ec680296a
62a67c190ed6a2395e17dec6310d81c297d89d1317f0a3b457bed518dafed38b
GET /wp-content/uploads/2020/01/tempbalm.jpg HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:42 GMT
Server: Apache
Last-Modified: Thu, 16 Jan 2020 23:29:21 GMT
Accept-Ranges: bytes
Content-Length: 27608
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: image/jpeg
widget.trustpilot.com/stats/TrustboxImpression?locale=en-US&styleHeight=20px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fnapalmbalms.com%2F&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5e4ee060d8807e0001b21d52&widgetId=5613c9cde69ddc09340c6beb
143.204.55.78204 No Content 0 B URL HTTP/2 widget.trustpilot.com/stats/TrustboxImpression?locale=en-US&styleHeight=20px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fnapalmbalms.com%2F&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5e4ee060d8807e0001b21d52&widgetId=5613c9cde69ddc09340c6beb
IP 143.204.55.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /stats/TrustboxImpression?locale=en-US&styleHeight=20px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fnapalmbalms.com%2F&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5e4ee060d8807e0001b21d52&widgetId=5613c9cde69ddc09340c6beb HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5613c9cde69ddc09340c6beb/index.html?templateId=5613c9cde69ddc09340c6beb&businessunitId=5e4ee060d8807e0001b21d52
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
cache-control: no-store,no-cache
date: Tue, 27 Sep 2022 16:58:42 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 40Sct34LqtKzi4m_HLH-UAIVgCEYxQZXWz_9qIu-nEOyIh2FOD44gQ==
X-Firefox-Spdy: h2
widget.trustpilot.com/trustbox-data/5613c9cde69ddc09340c6beb?businessUnitId=5e4ee060d8807e0001b21d52&locale=en-US&reviewsPerPage=0
143.204.55.78400 Bad Request 112 B URL HTTP/2 widget.trustpilot.com/trustbox-data/5613c9cde69ddc09340c6beb?businessUnitId=5e4ee060d8807e0001b21d52&locale=en-US&reviewsPerPage=0
IP 143.204.55.78:0
File type JSON data\012- , ASCII text, with no line terminators
Hash ae32493f46469329a4077ebfb3493d9b
4a469c1c8c530121acc182e663649326751461e6
fab9351248eefdf3c2145b7dc4eb99980fdb667f21061ba97ef62640902cee77
GET /trustbox-data/5613c9cde69ddc09340c6beb?businessUnitId=5e4ee060d8807e0001b21d52&locale=en-US&reviewsPerPage=0 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5613c9cde69ddc09340c6beb/index.html?templateId=5613c9cde69ddc09340c6beb&businessunitId=5e4ee060d8807e0001b21d52
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 400 Bad Request
content-type: application/json; charset=utf-8
content-length: 112
cache-control: public,max-age=1800
content-encoding: gzip
date: Tue, 27 Sep 2022 16:58:43 GMT
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gU2RDvEPpILAko7dCSxrlwQvgL5nekJ1UPFOJYbDSiva0MRSkaZ2tQ==
X-Firefox-Spdy: h2
widget.trustpilot.com/stats/TrustboxView?locale=en-US&styleHeight=20px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fnapalmbalms.com%2F&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5e4ee060d8807e0001b21d52&widgetId=5613c9cde69ddc09340c6beb
143.204.55.78204 No Content 0 B URL HTTP/2 widget.trustpilot.com/stats/TrustboxView?locale=en-US&styleHeight=20px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fnapalmbalms.com%2F&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5e4ee060d8807e0001b21d52&widgetId=5613c9cde69ddc09340c6beb
IP 143.204.55.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /stats/TrustboxView?locale=en-US&styleHeight=20px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fnapalmbalms.com%2F&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5e4ee060d8807e0001b21d52&widgetId=5613c9cde69ddc09340c6beb HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5613c9cde69ddc09340c6beb/index.html?templateId=5613c9cde69ddc09340c6beb&businessunitId=5e4ee060d8807e0001b21d52
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
cache-control: no-store,no-cache
date: Tue, 27 Sep 2022 16:58:43 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XGsMC9bpg-ENVLwFJR0M6fXyZRrs_MQrx-ncedgKTzrlIbs8xxywiQ==
X-Firefox-Spdy: h2
napalmbalms.com/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
162.214.65.128200 OK 77 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://napalmbalms.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:42 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 19:22:56 GMT
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: font/woff2
napalmbalms.com/wp-content/uploads/2020/01/petsbanner.jpg
162.214.65.128200 OK 77 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2020/01/petsbanner.jpg
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 424x760, components 3\012- data
Hash ec36d4d6a474e47043ae789d7197af14
a61faa6f45f10390c8c98920b939a60b07d5d7be
6812631f9a9b1eee4db027be25c2390f01f70edf25cc278805b23998d1e2f7dd
GET /wp-content/uploads/2020/01/petsbanner.jpg HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:42 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 20:59:57 GMT
Accept-Ranges: bytes
Content-Length: 77223
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: image/jpeg
fonts.googleapis.com/css?family=Raleway&ver=5.4.11
142.250.74.10200 OK 6.6 kB URL HTTP/2 fonts.googleapis.com/css?family=Raleway&ver=5.4.11
IP 142.250.74.10:0
Hash b695eb797c1a502072f43d43541379ef
65009106261b103cbd31c8386dcde35229cecb75
4bb2d2f3f9a63db8505b77ef8ee0d557c9455c6e7dd464306da6d157a7d87974
GET /css?family=Raleway&ver=5.4.11 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 16:58:40 GMT
date: Tue, 27 Sep 2022 16:58:40 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
napalmbalms.com/wp-content/uploads/woocommerce-placeholder-300x300.png
162.214.65.128200 OK 12 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/woocommerce-placeholder-300x300.png
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 41165169e1bd6c7f0f8344e26bc53154
36ca4b8345356d0f5bdbb15e700ed91270265b9f
6a9d239349696dc787680dec1955be0a02b217a12af2b2f27a155de957d8cc8e
GET /wp-content/uploads/woocommerce-placeholder-300x300.png HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:42 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 19:04:22 GMT
Accept-Ranges: bytes
Content-Length: 12539
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: image/png
napalmbalms.com/wp-content/uploads/2020/02/usaflag.jpg
162.214.65.128200 OK 418 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2020/02/usaflag.jpg
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x453, components 3\012- data
Size 418 kB (418002 bytes)
Hash 683e636be5e0b60bb9d5cafc412d1652
10f3bfc6eaaa1f2a5a425b8a29cfd3f20b891533
36b89be073bed898c319a01d795f80c0b96ff4f5f699adbfa78d69bba5692696
GET /wp-content/uploads/2020/02/usaflag.jpg HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/wp-content/uploads/elementor/css/post-204.css?ver=1611106829
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:42 GMT
Server: Apache
Last-Modified: Sun, 23 Feb 2020 05:22:38 GMT
Accept-Ranges: bytes
Content-Length: 418002
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: image/jpeg
napalmbalms.com/wp-content/uploads/2019/01/placeholder-300x300.jpg
162.214.65.128200 OK 2.4 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2019/01/placeholder-300x300.jpg
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash ad388bdd5e98f8ab1c31dc5bb6e605a4
a1d283511c4a15b2f0d41af954e8e0c371958369
92367ea1c87a5d9fb2be11250fd44e261cf9566fbf6fa6a6586e10bafab50968
GET /wp-content/uploads/2019/01/placeholder-300x300.jpg HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:42 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 19:03:22 GMT
Accept-Ranges: bytes
Content-Length: 2422
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: image/jpeg
napalmbalms.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
162.214.65.128200 OK 7.5 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Hash 04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://napalmbalms.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:42 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:40:44 GMT
Accept-Ranges: bytes
Content-Length: 7536
Keep-Alive: timeout=5, max=80
Connection: Keep-Alive
Content-Type: font/woff
napalmbalms.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
162.214.65.128200 OK 2.5 kB URL HTTP/1.1 napalmbalms.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:42 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:40:44 GMT
Accept-Ranges: bytes
Content-Length: 2545
Keep-Alive: timeout=5, max=80
Connection: Keep-Alive
Content-Type: image/gif
napalmbalms.com/wp-content/uploads/revslider/slide_home1/slide-home1-1-1.jpg
162.214.65.128200 OK 320 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/revslider/slide_home1/slide-home1-1-1.jpg
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x680, components 3\012- data
Size 320 kB (319634 bytes)
Hash 60152ab7269c077eb5b4fb10b37649f4
d782b2be73592051393994d9fc57b3fad54f394d
618141f09c354dd5745bff3d9872ed49001902db85b5ebcf73f57138aa1becfe
GET /wp-content/uploads/revslider/slide_home1/slide-home1-1-1.jpg HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:42 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:52:43 GMT
Accept-Ranges: bytes
Content-Length: 319634
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: image/jpeg
napalmbalms.com/wp-content/uploads/2019/01/banner1_7.jpg
162.214.65.128200 OK 130 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2019/01/banner1_7.jpg
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 960x600, components 3\012- data
Size 130 kB (130310 bytes)
Hash 10380980fe67fac549cc3377cd98811b
bc02eeb184b01c49eef36624236bb9dd47ddf0ab
046e812f6c22a8ae479f87abffae8fffdc805cdf0b90a28d99d9a1d658e63142
GET /wp-content/uploads/2019/01/banner1_7.jpg HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:42 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:52:31 GMT
Accept-Ranges: bytes
Content-Length: 130310
Keep-Alive: timeout=5, max=80
Connection: Keep-Alive
Content-Type: image/jpeg
napalmbalms.com/wp-content/uploads/2019/01/banner1_8.jpg
162.214.65.128200 OK 111 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2019/01/banner1_8.jpg
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 960x600, components 3\012- data
Size 111 kB (111059 bytes)
Hash 79ed896ba8c5f463541bf05f4b8b6ab8
9271303c5cb86703547ccf86aadf589b89c76593
97235560f55579a7d778423823d4eacb4eff0b0eb43b8d9db5f20690a0f52e71
GET /wp-content/uploads/2019/01/banner1_8.jpg HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:42 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:52:31 GMT
Accept-Ranges: bytes
Content-Length: 111059
Keep-Alive: timeout=5, max=79
Connection: Keep-Alive
Content-Type: image/jpeg
napalmbalms.com/wp-content/uploads/2019/01/avata1_1.jpg
162.214.65.128200 OK 2.1 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2019/01/avata1_1.jpg
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 64x64, components 3\012- data
Hash 695d659f16751caece14d347e2012001
f933c4908a7b00cc7bad4f973b13e360f72a48a2
1eaba45a5c8621facf948ae4202bb5f8a4fb2c6d77dd6197796d5cfa840d4af6
GET /wp-content/uploads/2019/01/avata1_1.jpg HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:42 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:52:30 GMT
Accept-Ranges: bytes
Content-Length: 2061
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: image/jpeg
napalmbalms.com/wp-content/uploads/2021/01/inkfr.jpg
162.214.65.128200 OK 4.0 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2021/01/inkfr.jpg
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 90x90, components 3\012- data
Hash 9007ecc969880ead69aa5b93b5208b5d
0f6cf94cfae3d511d700a736ef504f4cdc166410
4b2203c5d97eba94c549b0752fadc23ee31f400eab76e1fa5e4d381ca6c94907
GET /wp-content/uploads/2021/01/inkfr.jpg HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:42 GMT
Server: Apache
Last-Modified: Wed, 20 Jan 2021 01:40:13 GMT
Accept-Ranges: bytes
Content-Length: 4030
Keep-Alive: timeout=5, max=78
Connection: Keep-Alive
Content-Type: image/jpeg
napalmbalms.com/wp-content/uploads/2019/01/avata1_2.jpg
162.214.65.128200 OK 1.9 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2019/01/avata1_2.jpg
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 64x64, components 3\012- data
Hash db319b3e4dad142489678264e1eddb92
308cabe25bd0bf620a4a34ee2c3e32fca5d17e38
de544b47a3e66ba5e3c256b8c0c0667ec2fb8fcd08706f21cf28870d4d91353c
GET /wp-content/uploads/2019/01/avata1_2.jpg HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:42 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:52:32 GMT
Accept-Ranges: bytes
Content-Length: 1891
Keep-Alive: timeout=5, max=79
Connection: Keep-Alive
Content-Type: image/jpeg
napalmbalms.com/?wc-ajax=get_refreshed_fragments
162.214.65.128200 OK 641 B URL HTTP/1.1 napalmbalms.com/?wc-ajax=get_refreshed_fragments
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JSON data\012- , ASCII text, with very long lines (641), with no line terminators
Hash adfdf32b326bcb014b7b00a8ff48b0df
ffe7cdc805ede3fb7455ad8842b76f85eaaca48c
e3486d55bec01ed84166a58cbf1984731053ad3c08537856afb08cb68d0626b9
Analyzer Verdict Alert fortinet Phishing
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-CSRF-UAP-TOKEN: 6bc836323d
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://napalmbalms.com
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:41 GMT
Server: Apache
Access-Control-Allow-Origin: https://napalmbalms.com
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Set-Cookie: beeketing_cart_fragments_init=1; path=/
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json; charset=UTF-8
napalmbalms.com/wp-content/uploads/2020/02/USAMADE2.png
162.214.65.128200 OK 3.5 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2020/02/USAMADE2.png
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 279 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 5917c4dd77aa7bd0ea8095bb88d92982
6f9727ba617c68bc70da7b115e9565c9b5298ad9
831defd69319c83d26b208eb985daec3fc9cb50a0be53f0f3a1059831cc181a4
GET /wp-content/uploads/2020/02/USAMADE2.png HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:42 GMT
Server: Apache
Last-Modified: Sun, 16 Feb 2020 04:17:53 GMT
Accept-Ranges: bytes
Content-Length: 3455
Keep-Alive: timeout=5, max=80
Connection: Keep-Alive
Content-Type: image/png
napalmbalms.com/wp-content/uploads/2020/02/greensci.png
162.214.65.128200 OK 8.8 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2020/02/greensci.png
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 162 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 247fab4c072dc650f04d3b8389549bdd
599bcf9b9a0f9ef1d2e2043ba02cef45019c3381
ca2656e7951529526715ad586fc07fc194af4ac21fb351ea83819377e7359b30
GET /wp-content/uploads/2020/02/greensci.png HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:42 GMT
Server: Apache
Last-Modified: Mon, 17 Feb 2020 01:09:44 GMT
Accept-Ranges: bytes
Content-Length: 8758
Keep-Alive: timeout=5, max=77
Connection: Keep-Alive
Content-Type: image/png
napalmbalms.com/wp-content/uploads/2020/02/fcbbw.png
162.214.65.128200 OK 7.5 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2020/02/fcbbw.png
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 280 x 85, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e4ba4d50413db03ad3951a79b6569b5
4d448fcecc4b29b1605109d982d8ab230cab96ef
d2a4cf5dceb238dec0cf61ff097d64c7437c37ac50ef33b6d3956c716a8aece1
GET /wp-content/uploads/2020/02/fcbbw.png HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:42 GMT
Server: Apache
Last-Modified: Mon, 17 Feb 2020 01:10:18 GMT
Accept-Ranges: bytes
Content-Length: 7506
Keep-Alive: timeout=5, max=78
Connection: Keep-Alive
Content-Type: image/png
napalmbalms.com/wp-content/uploads/2020/02/asseenoncbdbrands.png
162.214.65.128200 OK 19 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2020/02/asseenoncbdbrands.png
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 250 x 139, 8-bit/color RGBA, non-interlaced\012- data
Hash 811ee68e85c40cd1ab62efc0381401e7
cd743513a6b9999063eaaa82935cd7104696b07a
f9463738e54870c832f2692bb9186dfa59a7409c95a0319c5be2d64a2ae0ca7b
GET /wp-content/uploads/2020/02/asseenoncbdbrands.png HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:43 GMT
Server: Apache
Last-Modified: Mon, 24 Feb 2020 05:00:36 GMT
Accept-Ranges: bytes
Content-Length: 18936
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: image/png
napalmbalms.com/wp-content/uploads/2018/12/brand_1_h2.png
162.214.65.128200 OK 4.0 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2018/12/brand_1_h2.png
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 110 x 70, 8-bit colormap, non-interlaced\012- data
Hash f79dee787a64f36d47368f39c1385d70
061a0960cc1fc7f539e3f70d3a348fe8fdace405
529105ab6bf7487f6ccb7b587b72282abfef7f004d0ad49f2245e048053a0b7b
GET /wp-content/uploads/2018/12/brand_1_h2.png HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:43 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:52:21 GMT
Accept-Ranges: bytes
Content-Length: 4009
Keep-Alive: timeout=5, max=79
Connection: Keep-Alive
Content-Type: image/png
napalmbalms.com/wp-content/uploads/2018/12/agrcards-white.png
162.214.65.128200 OK 6.2 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2018/12/agrcards-white.png
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 355 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash b487ed259be56f54e7b457ab625d7ddf
5372be60a7d966b0316c64eb260b74e80d698aec
6ffeaae89696a1a85e601f77be3f149dc667f141dbd2e83c885265feaf386062
GET /wp-content/uploads/2018/12/agrcards-white.png HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:43 GMT
Server: Apache
Last-Modified: Sun, 16 Feb 2020 00:06:01 GMT
Accept-Ranges: bytes
Content-Length: 6231
Keep-Alive: timeout=5, max=76
Connection: Keep-Alive
Content-Type: image/png
napalmbalms.com/wp-content/uploads/revslider/slide_home1/Wear.png
162.214.65.128200 OK 7.4 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/revslider/slide_home1/Wear.png
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 538 x 213, 8-bit colormap, non-interlaced\012- data
Hash e81b899d0e28675ab3ed783dae7ab6ec
e666a8c0fac216826d33f245c45f447e62bc4ec1
e631cfb4b7629ae8bea301af2f8b1f9f33af7e5ba39080a7f7503d9be31f5183
GET /wp-content/uploads/revslider/slide_home1/Wear.png HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:43 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:52:45 GMT
Accept-Ranges: bytes
Content-Length: 7424
Keep-Alive: timeout=5, max=77
Connection: Keep-Alive
Content-Type: image/png
napalmbalms.com/wp-content/uploads/revslider/slide_home1/slide-home1-2.png
162.214.65.128200 OK 77 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/revslider/slide_home1/slide-home1-2.png
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 747 x 596, 8-bit colormap, non-interlaced\012- data
Hash 3f4c142874b36682c9969015e0d8de2a
111ecc321072e345f7395cf47c99403e8375572f
8a79d3fe8b3473658c58ac463f7fecfffbda1fe000b478133931f0a93bde4013
GET /wp-content/uploads/revslider/slide_home1/slide-home1-2.png HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:43 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:52:44 GMT
Accept-Ranges: bytes
Content-Length: 76614
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: image/png
napalmbalms.com/wp-content/uploads/2020/04/napalm_rollon.png
162.214.65.128200 OK 271 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2020/04/napalm_rollon.png
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 793 x 1061, 8-bit/color RGBA, non-interlaced\012- data
Size 271 kB (270808 bytes)
Hash d96d886a45500292649d68b0c3feb3f9
f025a94136a2b2d78db8115ac8851d06580c1baa
685e7d86357c4405e59b28acd1f2f8113a875740fe173a7e45a6477f1624f78e
GET /wp-content/uploads/2020/04/napalm_rollon.png HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:43 GMT
Server: Apache
Last-Modified: Mon, 06 Apr 2020 18:00:13 GMT
Accept-Ranges: bytes
Content-Length: 270808
Keep-Alive: timeout=5, max=78
Connection: Keep-Alive
Content-Type: image/png
napalmbalms.com/wp-content/uploads/revslider/slide_home1/Trends.png
162.214.65.128200 OK 8.9 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/revslider/slide_home1/Trends.png
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 663 x 231, 8-bit colormap, non-interlaced\012- data
Hash 3ae7d80751f0c0e90ca25997059962b3
c83343b4196b9bbdab6c719400acde2b656138bc
95108b65abbdf967d2bcd8f2b174bc534b3010e707aad7d43a555c9d52ac4102
GET /wp-content/uploads/revslider/slide_home1/Trends.png HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:43 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:52:47 GMT
Accept-Ranges: bytes
Content-Length: 8947
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: image/png
napalmbalms.com/wp-content/uploads/revslider/slide_home1/slide-home2-1.png
162.214.65.128200 OK 104 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/revslider/slide_home1/slide-home2-1.png
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 737 x 683, 8-bit colormap, non-interlaced\012- data
Size 104 kB (103524 bytes)
Hash 05149e8b67d0d3284d721c8f094c4f96
d284e6121611a9081b2e4f45524eca9005dead3f
c4d6a473b9d9bbd9822c0a12fb9265e66cb394bf14d60caf7dad507dd8cec919
GET /wp-content/uploads/revslider/slide_home1/slide-home2-1.png HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:43 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:52:45 GMT
Accept-Ranges: bytes
Content-Length: 103524
Keep-Alive: timeout=5, max=76
Connection: Keep-Alive
Content-Type: image/png
napalmbalms.com/wp-content/uploads/revslider/slide_home1/haves.png
162.214.65.128200 OK 8.0 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/revslider/slide_home1/haves.png
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 586 x 244, 8-bit colormap, non-interlaced\012- data
Hash 8a74eb94e36f79f9d5840d1ac0c57b1d
945a8a5259703124d116e7e8e0a2baeef828464b
a86c9519c638218f76aee15ede4ba103fc9396f3b24e30f33e68dbe5f1560509
GET /wp-content/uploads/revslider/slide_home1/haves.png HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:43 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:52:49 GMT
Accept-Ranges: bytes
Content-Length: 8045
Keep-Alive: timeout=5, max=77
Connection: Keep-Alive
Content-Type: image/png
napalmbalms.com/wp-content/uploads/revslider/slide_home1/slide-home3-1.png
162.214.65.128200 OK 89 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/revslider/slide_home1/slide-home3-1.png
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 794 x 626, 8-bit colormap, non-interlaced\012- data
Hash 6d567c8ce9a1d405edf157388751cfb5
13027f6acb839f7375a0539af4f9523c0c4b6fa4
5e70166d8a2abaf89acae2f1d52cb6d85bde7f0c6c2375e9603b4b469191b58f
GET /wp-content/uploads/revslider/slide_home1/slide-home3-1.png HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:43 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:52:47 GMT
Accept-Ranges: bytes
Content-Length: 88878
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png
napalmbalms.com/wp-json/elfsight-instagram-feed/api/instagram?q=me%2Fmedia%3Ffields%3Dcaption%252Cmedia_type%252Cmedia_url%252Cpermalink%252Cthumbnail_url%252Ctimestamp%252Cusername%252Cchildren%257Bmedia_type%252Cmedia_url%252Cthumbnail_url%257D&user_id=33ad4b88-ffee-44df-a96e-5aacfa5f58c3
162.214.65.128200 OK 45 B URL HTTP/1.1 napalmbalms.com/wp-json/elfsight-instagram-feed/api/instagram?q=me%2Fmedia%3Ffields%3Dcaption%252Cmedia_type%252Cmedia_url%252Cpermalink%252Cthumbnail_url%252Ctimestamp%252Cusername%252Cchildren%257Bmedia_type%252Cmedia_url%252Cthumbnail_url%257D&user_id=33ad4b88-ffee-44df-a96e-5aacfa5f58c3
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with no line terminators
Hash c17213fa769cbd6370de0c362fe953aa
5a59736ca2cfd92ebc2d7cdbd3b4c3e5fabdd1dd
de23e0c264ff944ee66adb95a36d8b8613ad646ba1147b3f87d843d0d73f88a0
GET /wp-json/elfsight-instagram-feed/api/instagram?q=me%2Fmedia%3Ffields%3Dcaption%252Cmedia_type%252Cmedia_url%252Cpermalink%252Cthumbnail_url%252Ctimestamp%252Cusername%252Cchildren%257Bmedia_type%252Cmedia_url%252Cthumbnail_url%257D&user_id=33ad4b88-ffee-44df-a96e-5aacfa5f58c3 HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://napalmbalms.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:42 GMT
Server: Apache
X-Robots-Tag: noindex
Link: <https://napalmbalms.com/wp-json/>; rel="https://api.w.org/"
X-Content-Type-Options: nosniff
Access-Control-Expose-Headers: X-WP-Total, X-WP-TotalPages
Access-Control-Allow-Headers: Authorization, Content-Type
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json; charset=utf-8
napalmbalms.com/wp-content/uploads/revslider/slide_home1/slide-home3.png
162.214.65.128200 OK 182 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/revslider/slide_home1/slide-home3.png
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 538 x 658, 8-bit colormap, non-interlaced\012- data
Size 182 kB (181999 bytes)
Hash aa28dd268f5090418ad5ee66cc60a278
60bd74246508555370368c42293377e760dd510c
86a6be727277c9893cff13f4d5e5c9dfa580cf4752d96e15f82b4b8fbb41c601
GET /wp-content/uploads/revslider/slide_home1/slide-home3.png HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:43 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:52:48 GMT
Accept-Ranges: bytes
Content-Length: 181999
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: image/png
napalmbalms.com/wp-content/uploads/revslider/slide_home1/slide-home2.png
162.214.65.128200 OK 174 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/revslider/slide_home1/slide-home2.png
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 539 x 656, 8-bit colormap, non-interlaced\012- data
Size 174 kB (174338 bytes)
Hash 48000dfa11b96563bb2b6a0b8754cb25
c96c1b933195a309f4a5a992528fee07c082ce0f
c444664c9ebf6d370a151820712675dce1fcc8ec276f1993afa20aa947035b34
GET /wp-content/uploads/revslider/slide_home1/slide-home2.png HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:43 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:52:46 GMT
Accept-Ranges: bytes
Content-Length: 174338
Keep-Alive: timeout=5, max=80
Connection: Keep-Alive
Content-Type: image/png
napalmbalms.com/wp-content/uploads/2020/01/1Manuka_Honey-600x390.jpg
162.214.65.128200 OK 45 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2020/01/1Manuka_Honey-600x390.jpg
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 600x390, components 3\012- data
Hash 02f979f0fa046f4d65a01462bb60217d
6117011a8228d19be39e79506934225b73c749c3
474f2f9e3b21fb0b2ebe8ac29e60b6cf151fa623a6db0fe4b4bea65609727485
GET /wp-content/uploads/2020/01/1Manuka_Honey-600x390.jpg HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:43 GMT
Server: Apache
Last-Modified: Thu, 14 Jan 2021 23:02:34 GMT
Accept-Ranges: bytes
Content-Length: 45330
Keep-Alive: timeout=5, max=76
Connection: Keep-Alive
Content-Type: image/jpeg
napalmbalms.com/wp-content/uploads/2018/09/hempblog-600x390.jpg
162.214.65.128200 OK 84 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2018/09/hempblog-600x390.jpg
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 600x390, components 3\012- data
Hash 845b12fef00ac535bbb666b3fcce8baa
55749dc60b95214cb6cad9dd7bc04c77e6c656da
a2885fb884a950e7b3d047cccd00ee8c842be6977f1129ada1ec7ea646f0026a
GET /wp-content/uploads/2018/09/hempblog-600x390.jpg HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:43 GMT
Server: Apache
Last-Modified: Sun, 16 Feb 2020 05:30:09 GMT
Accept-Ranges: bytes
Content-Length: 84316
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/jpeg
napalmbalms.com/wp-content/uploads/2018/12/b_policy_h2.jpg
162.214.65.128200 OK 53 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2018/12/b_policy_h2.jpg
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x300, components 3\012- data
Hash 4fc25a2af72dd73fbf3f7aa22bff2377
d9952373d0a135809adc2ece22eaaef9f1fe6a9c
4ac4a0707a790e4b4685a7fa2cbb1a4946f854d5809cd8de415c4189c168014b
GET /wp-content/uploads/2018/12/b_policy_h2.jpg HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/wp-content/uploads/elementor/css/post-204.css?ver=1611106829
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:43 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:52:21 GMT
Accept-Ranges: bytes
Content-Length: 53412
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/jpeg
napalmbalms.com/wp-content/uploads/2019/01/banner1_6.jpg
162.214.65.128200 OK 177 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2019/01/banner1_6.jpg
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x676, components 3\012- data
Size 177 kB (177403 bytes)
Hash 762bb5492b20930ddfd0b4b1ae9efee7
0f3a16e91474d54144cb90ac974bf7c23f3661d1
8042b111bd6731f31de02330be7268e33b660789476eb6de7fe6210c72c8a708
GET /wp-content/uploads/2019/01/banner1_6.jpg HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/wp-content/uploads/elementor/css/post-204.css?ver=1611106829
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:43 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:52:30 GMT
Accept-Ranges: bytes
Content-Length: 177403
Keep-Alive: timeout=5, max=79
Connection: Keep-Alive
Content-Type: image/jpeg
napalmbalms.com/wp-content/uploads/2018/12/pattern_light.png
162.214.65.128200 OK 41 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2018/12/pattern_light.png
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 400 x 400, 8-bit colormap, non-interlaced\012- data
Hash fbe31d399ed669dcb4b39e83b64f6c2f
d02f6559a93da9edd3b41fd5287113e6d2efc928
5082ed9be4394f0c96918b831f7414b781d5ad7a3082c4eec5a59e888ec35245
GET /wp-content/uploads/2018/12/pattern_light.png HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/wp-content/uploads/elementor/css/post-4734.css?ver=1610670148
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:43 GMT
Server: Apache
Last-Modified: Wed, 15 Jan 2020 18:52:20 GMT
Accept-Ranges: bytes
Content-Length: 40627
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: image/png
napalmbalms.com/wp-content/uploads/2018/09/napalm-600x390.jpg
162.214.65.128200 OK 49 kB URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2018/09/napalm-600x390.jpg
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 600x390, components 3\012- data
Hash d1e17367bf810dc3eef61f7b3165f5e4
5867aa79d7bbb7108435d1c0c37af45c23c1c24b
a8683ffd13041de286fafb90b7130370fa8787d55534bfbf0abed6b1a5454b42
GET /wp-content/uploads/2018/09/napalm-600x390.jpg HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 16:58:43 GMT
Server: Apache
Last-Modified: Sun, 16 Feb 2020 05:33:38 GMT
Accept-Ranges: bytes
Content-Length: 49001
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd9c95c1c24789f4041887b11468ab7e
bf202eeda47e79ac15d77325a02a1206bec63dcb
86f005e634685a4eb89dd87735b4cc0d91163be2912c470a529f0eb223531dbf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3346
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 16:58:45 GMT
Last-Modified: Tue, 27 Sep 2022 16:02:59 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/sdk.js
157.240.200.14200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (1961)
Hash 837bb3ee1cd4c3c62d8502b9d7988deb
b8dd2ff10ff7d1b8bfeb3a7d4dd4f2256f3e3a98
10843bb8ce3b25b31d4cb9d4680e0852b357eb4568eb5f620363b6f7bdf28456
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 74e26da315e1e9022a0e48ccc302770f
etag: "30b8f136e00839e8de029207d1dcdf2c"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 27 Sep 2022 17:03:46 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: g3uz7hzUw8YthQK515iN6w==
x-fb-debug: Z31Kf0cv2Cc+yAgRkN5LJlPM3T0jVss9WSiuYmUXDojaHrviD2SeGfePvap00I+TfIMeNDY1rHCbis9SpFbvjw==
priority: u=3,i
content-length: 1688
x-fb-trip-id: 1679558926
date: Tue, 27 Sep 2022 16:58:45 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd9c95c1c24789f4041887b11468ab7e
bf202eeda47e79ac15d77325a02a1206bec63dcb
86f005e634685a4eb89dd87735b4cc0d91163be2912c470a529f0eb223531dbf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3346
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 16:58:45 GMT
Last-Modified: Tue, 27 Sep 2022 16:02:59 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/sdk.js?hash=83991cec53a1d444b719d14990b7a941
157.240.200.14200 OK 87 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=83991cec53a1d444b719d14990b7a941
IP 157.240.200.14:0
File type ASCII text, with very long lines (13260)
Hash 6fe1f50f39dc333caf490515bf4d2c8f
00ac960a7e20d2e8991d4d32682fc703021f9c3b
f5d0c06aaaadb4fb9f38c5a8a6a517f14926ed3900826786cdd886e712f9f627
GET /en_US/sdk.js?hash=83991cec53a1d444b719d14990b7a941 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://napalmbalms.com
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: fbf2d47e3171cff1aaedf83e6ddb568a
etag: "36b3690ced2400c46e10372f63897f9f"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 27 Sep 2023 12:06:30 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: b+H1DzncMzyvSQUVv00sjw==
x-fb-debug: AJgi1FwzZgPwvS7bLfvGlxMZ5s8H0Tiaowy7ZF0jIVh/yHPj85egdNJQV4qShw8nRv4/EVvr5An5+eFOPestrw==
content-length: 87366
x-fb-trip-id: 1679558926
date: Tue, 27 Sep 2022 16:58:45 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3823d156-2245-40a3-a9a3-7cb4a5c4a14d.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3823d156-2245-40a3-a9a3-7cb4a5c4a14d.jpeg
IP 34.120.237.76:0
Hash 23d86b75c046b515b23aeb063f905270
d7808fae94de4327eae77821f96afe7cd85a41ee
b9ffdad076a8b4aa7213d2c9b70e421cc371debc6de1ab56398ba3ba407af756
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3823d156-2245-40a3-a9a3-7cb4a5c4a14d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7716
x-amzn-requestid: 1cf0b1c7-4611-40bf-b72a-412ebd03ef79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y2KguFL7IAMFzKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632bf137-2b7c15d3071e0266586fd17d;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 05:23:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: eE2AvjvM7j07Go69VVEmTF8Q-KA5bZwOBdn_SgR5fcZj8lL760_q2Q==
via: 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 17:57:22 GMT
age: 82883
etag: "2b53c4f836970501a682dae07235215c487d35cc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
embed.tawk.to/5e51acbaa89cda5a1887732e/default
104.22.24.131200 OK 0 B URL HTTP/2 embed.tawk.to/5e51acbaa89cda5a1887732e/default
IP 104.22.24.131:0
GET /5e51acbaa89cda5a1887732e/default HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://napalmbalms.com
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 16:58:43 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-63258f417d7"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7515c922bdc7b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sdk.beeketing.com/js/beeketing.js?20220927
172.64.132.39200 OK 0 B URL HTTP/2 sdk.beeketing.com/js/beeketing.js?20220927
IP 172.64.132.39:0
GET /js/beeketing.js?20220927 HTTP/1.1
Host: sdk.beeketing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 16:58:45 GMT
content-type: application/javascript
cache-control: max-age=300, public, s-maxage=300
cf-bgj: minify
cf-polished: origSize=343800
etag: W/"60814dc5-53ef8"
expires: Tue, 27 Sep 2022 16:59:59 GMT
last-modified: Thu, 22 Apr 2021 10:19:49 GMT
pragma: public
cf-cache-status: HIT
age: 226
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NOwPqyjk2%2B%2B%2B8SgFAYZ8FyZvUFIQlC0EbbKlgvbzhr%2FTvTVV%2FOk4sCIxsGXSYJII%2B%2FlDXcxTV5M9syhQ5HSZjmuuZhyeFXSRaMv2%2FZ188IjNe87D7Nbap2Q%2FR913gaKyZSYDuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7515c931fc247318-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63258f417d7/js/twk-main.js
104.22.24.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63258f417d7/js/twk-main.js
IP 104.22.24.131:0
GET /_s/v4/app/63258f417d7/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://napalmbalms.com
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 16:58:45 GMT
content-type: application/javascript
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7515c9318e53b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Rubik%3A400%7CBarlow+Condensed%3A500%7CBarlow+Condensed%3A700%7CBai+Jamjuree%3A700italic&subset=cyrillic%2Clatin-ext%2Clatin-ext%2Clatin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Rubik%3A400%7CBarlow+Condensed%3A500%7CBarlow+Condensed%3A700%7CBai+Jamjuree%3A700italic&subset=cyrillic%2Clatin-ext%2Clatin-ext%2Clatin-ext
IP 142.250.74.10:0
GET /css?family=Rubik%3A400%7CBarlow+Condensed%3A500%7CBarlow+Condensed%3A700%7CBai+Jamjuree%3A700italic&subset=cyrillic%2Clatin-ext%2Clatin-ext%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 16:58:40 GMT
date: Tue, 27 Sep 2022 16:58:40 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63258f417d7/js/twk-vendor.js
104.22.24.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63258f417d7/js/twk-vendor.js
IP 104.22.24.131:0
GET /_s/v4/app/63258f417d7/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://napalmbalms.com
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 16:58:45 GMT
content-type: application/javascript
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"7dcb496e4882926f93f2e73fa87062c0"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7515c9318e5fb515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63258f417d7/js/twk-chunk-vendors.js
104.22.24.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63258f417d7/js/twk-chunk-vendors.js
IP 104.22.24.131:0
GET /_s/v4/app/63258f417d7/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://napalmbalms.com
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 16:58:45 GMT
content-type: application/javascript
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"81c2642aac0b88b6b237d279f5f8ce67"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7515c9318e61b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Rubik%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CBarlow+Condensed%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CBai+Jamjuree%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.4.11
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Rubik%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CBarlow+Condensed%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CBai+Jamjuree%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.4.11
IP 142.250.74.10:0
GET /css?family=Rubik%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CBarlow+Condensed%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CBai+Jamjuree%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.4.11 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 16:58:40 GMT
date: Tue, 27 Sep 2022 16:58:40 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
napalmbalms.com/wp-content/uploads/2019/01/quote.svg
162.214.65.128404 Not Found 0 B URL HTTP/1.1 napalmbalms.com/wp-content/uploads/2019/01/quote.svg
IP 162.214.65.128:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/01/quote.svg HTTP/1.1
Host: napalmbalms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napalmbalms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Tue, 27 Sep 2022 16:58:42 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://napalmbalms.com/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=79
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8