firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 18 Sep 2022 15:12:13 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: gdMfDSXzMmYu1Wtv2QTPvyAGZYxC8H8h9OtgVr2ielUnKkwnc3xN9w==
Age: 2231
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash adb43321efa5cd1662993b701ff25fa4
1299dcea7e9c59d9f22f39d69025484fe71098c1
2c25a6717245be3746f1412af9dd1c351e12dbb93e8e08c3ddcdacf35e419514
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C25A6717245BE3746F1412AF9DD1C351E12DBB93E8E08C3DDCDACF35E419514"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10084
Expires: Sun, 18 Sep 2022 18:37:28 GMT
Date: Sun, 18 Sep 2022 15:49:24 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 03:30:43 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rlj8ayQozY4DPmy5YQMnDq582u4jBL7bRKZAaNMprNkx9aZdkcOHaQ==
age: 44321
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Sep 2022 15:49:24 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 18 Sep 2022 15:03:22 GMT
Cache-Control: max-age=3600
Expires: Sun, 18 Sep 2022 15:03:50 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8DZW9QzV6BkypbwDjT7QLZbE2j1iSudoVhPolvOCGSyam-O69yKW2g==
Age: 2763
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5fd1174f35b25298fc44a6de1af3f3d6
d45a47995ec34c7df480b3efafb13f55d9df7eb8
f60573eff255ef3d7603ca813f410c30588931b4018ffa0e07fa0bb2653c47af
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 724
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 15:49:25 GMT
Last-Modified: Sun, 18 Sep 2022 15:37:22 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.80.131.74101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.80.131.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nJFsMfvhKct/Xr2BavUVHQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: q4pQ2iA+WCc0FOnXDdlUjGFDfGw=
ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
148.66.142.170301 Moved Permanently 0 B URL HTTP/1.1 ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf HTTP/1.1
Host: ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 18 Sep 2022 15:49:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-LiteSpeed-Tag: 794_HTTP.404
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5e0d4379f6517fd75a29a3d94d9199eb
0d383b811ebe839400f04333d16a5c9d4d78f802
e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2745
Expires: Sun, 18 Sep 2022 16:35:11 GMT
Date: Sun, 18 Sep 2022 15:49:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5e0d4379f6517fd75a29a3d94d9199eb
0d383b811ebe839400f04333d16a5c9d4d78f802
e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2745
Expires: Sun, 18 Sep 2022 16:35:11 GMT
Date: Sun, 18 Sep 2022 15:49:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5e0d4379f6517fd75a29a3d94d9199eb
0d383b811ebe839400f04333d16a5c9d4d78f802
e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2745
Expires: Sun, 18 Sep 2022 16:35:11 GMT
Date: Sun, 18 Sep 2022 15:49:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5e0d4379f6517fd75a29a3d94d9199eb
0d383b811ebe839400f04333d16a5c9d4d78f802
e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2745
Expires: Sun, 18 Sep 2022 16:35:11 GMT
Date: Sun, 18 Sep 2022 15:49:26 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0418a582-b5aa-4754-a162-d731a3e53f86.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0418a582-b5aa-4754-a162-d731a3e53f86.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c9a9211e94d6aa2429e9663ef317707e
ac0d1af96508d026f9a1252d358660bd5671f9bd
36663b67119ae58b665e43d86b73045472cf23d73bf2c981754f479989690791
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0418a582-b5aa-4754-a162-d731a3e53f86.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5448
x-amzn-requestid: 3b63d209-af92-4d64-866a-d8f677aa62a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn659H9DIAMFQag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263ea5-30e7f8a32603ba70671addec;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:39:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CqzHFWav9sDzwBhF58p314oyYPwfcbmlplVt2oF9QxSBIi5ktgpS7w==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 21:49:54 GMT
age: 64772
etag: "ac0d1af96508d026f9a1252d358660bd5671f9bd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a57f83-dfc8-4b82-ba40-2b21aa8c0f64.webp
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a57f83-dfc8-4b82-ba40-2b21aa8c0f64.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 51d067e534c477ce996b3e806f6a132e
451c1f67948e45909e636828e3d2a3099de922f0
e13318949733eb7992695c61570cc8b2961d881a8343c677a77cd035e787bbaf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a57f83-dfc8-4b82-ba40-2b21aa8c0f64.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6869
x-amzn-requestid: 8d5cf972-bd9a-42b8-ba33-5dd05191e9f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn6u1GspIAMF9vw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263e5e-12430c8c7122a3594aba8949;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:38:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: leqr7rYJyeBFlYuFM2D-wGJfb7_w-5HbW2Y1aHwjTzZ9_4MTFybNaA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 22:08:03 GMT
age: 63683
etag: "451c1f67948e45909e636828e3d2a3099de922f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb602670-cdb2-45a8-a1c3-2405c9d69ca2.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb602670-cdb2-45a8-a1c3-2405c9d69ca2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ada848644c2087101642f8dac529a229
265c57081f8a0c9d3a4bc43feb9e6844120c7a6c
326ad9add36aa9cacdd62fd37c218c4db87fbafe2cb6db727ed3cc8d55ed215b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb602670-cdb2-45a8-a1c3-2405c9d69ca2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7682
x-amzn-requestid: f0210242-0f3f-46b5-bff3-67b7648ccec9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yl7gyEMCIAMF9yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632572d1-2631584c2730b15f284164e3;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 07:10:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3ihrj-apP8_eSJV6eJgZMkjtemV5p-c9Uo5v9YW3Nww9zNbEd1cjkg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 07:37:32 GMT
age: 29514
etag: "265c57081f8a0c9d3a4bc43feb9e6844120c7a6c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2512deb9-0912-4851-b376-b8bcb67ed3ef.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2512deb9-0912-4851-b376-b8bcb67ed3ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7334a6bdb209350f41e4640960c9ce2a
0b00e1a594dc88c8fb05044a69cc0ba1eafc4946
bf946afeb52d95f27e2a271486accf87a0c169e5e78f6d57cace80564e2ed668
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2512deb9-0912-4851-b376-b8bcb67ed3ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10554
x-amzn-requestid: 07497447-33e7-4f60-a3ff-974f581c5704
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn5tlG_7IAMFaIA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263cbd-1964dc6548cb5f7c09f65b78;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:31:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4c7A4n-fW5-zEG1OjjUo8zWdY80KTpzwJdfKuDT0OjW5NpkZxxWB-A==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 21:49:35 GMT
age: 64791
etag: "0b00e1a594dc88c8fb05044a69cc0ba1eafc4946"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1d192c6-d447-4ad9-b142-a9258211f67d.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1d192c6-d447-4ad9-b142-a9258211f67d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 29f4a52fb629dce4ef8038d4df7ea58a
4a5b84c77bd53f4c94e1af4a702f6f85b46b51b0
32cee35b22110b83738f49f49edb6efcedb54fe793d5ccc900004e16e3fefda3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1d192c6-d447-4ad9-b142-a9258211f67d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5827
x-amzn-requestid: 9f179e66-3c6f-4e53-94f2-989bf32a6b90
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yl7gyHvboAMFSzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632572d1-799e74a63288269b79170d58;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 07:10:09 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9firpBGLDHkjq_CJX01tbyPPS9OXPsTfzC0dLioWt1Axg7Vw5LQ0xg==
via: 1.1 497370ec058751eb0d9251f66d50af5e.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 07:15:02 GMT
age: 30864
etag: "4a5b84c77bd53f4c94e1af4a702f6f85b46b51b0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f003d8b6e12692fb16dddd6827deead8
786c333cf08456aea446a55c547520572e1c2df9
d79ea50cfc0f237b3de8f1826cbae1de0b1dbc632a5a06b08d9640abedded935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11919
x-amzn-requestid: 2f547c1f-2f5d-4707-8f6c-fe9dfff51383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfS4FI9oAMFScw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632145ab-3c967f2653d06c1c079f88c1;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:08:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Q6pjncaouCXUu0Pz7v6xF_8ClxxVypUSeggW23Z-UTsPamKCTgwjmA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 22:00:17 GMT
age: 64149
etag: "786c333cf08456aea446a55c547520572e1c2df9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.ckpak.com/wp-content/plugins/chaty/css/chaty-front.min.css?ver=1646983509
148.66.142.170200 OK 26 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/chaty/css/chaty-front.min.css?ver=1646983509
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (26296), with no line terminators
Hash b60e67d6024d87e77929fcf88f9fd1b8
c5d810774621d101a1b2b58a500ae6c400082b3f
82fe88ec82cd8b980192492865fd97fe1a9b3ab39b965172f4a4b1d5aa26c65e
GET /wp-content/plugins/chaty/css/chaty-front.min.css?ver=1646983509 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:28 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 07:24:05 GMT
Accept-Ranges: bytes
Content-Length: 26296
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.ckpak.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
148.66.142.170200 OK 19 kB URL HTTP/1.1 www.ckpak.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:28 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 04:46:16 GMT
Accept-Ranges: bytes
Content-Length: 18617
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b417168037cd02cb414797a2fe8a898f
504f56151849a7bfcd36d7e72b39ead79a69bfe8
39238b70192886874fc0362dbf5e2b017f71760665c5d1025d75e4a304ded1f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 15:49:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eaa8b4aa123f9dd7237c5c51d2f848d9
1082f5f6ef7229ec76f94f3d236f273b26294563
d1ad33dae2fcab5c7d66875f0e7a01cc30e0b3a031606917fa5448c54f84e20d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 15:49:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ckpak.com/wp-content/themes/astra/assets/css/minified/frontend.min.css?ver=3.7.9
148.66.142.170200 OK 48 kB URL HTTP/1.1 www.ckpak.com/wp-content/themes/astra/assets/css/minified/frontend.min.css?ver=3.7.9
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (45376)
Hash f21f3fe402f86582e34d676987c068df
378915adc92ce0391e4cd3995e84fd0d9629c253
87f0c53dde146137509df6c42271bbd779f2b78bd0a67b9544f043e7ef63ec99
GET /wp-content/themes/astra/assets/css/minified/frontend.min.css?ver=3.7.9 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:28 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:27:47 GMT
Accept-Ranges: bytes
Content-Length: 47502
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.ckpak.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.9.0
148.66.142.170200 OK 4.9 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.9.0
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (4933), with no line terminators
Hash e372df47bd19e1563b557d7bdb817188
4efdf4050a78bdbd88aa255955b7423105895dd0
4b7693154069c53a16468d09d89c9eba5da6c0dfc69cf4d7eb675e32ba663361
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.9.0 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:28 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:26:09 GMT
Accept-Ranges: bytes
Content-Length: 4933
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9b19d20af774aa4c4de18c09845d54b9
cd0d41b4957edf5b2f7f66df082b7d1010acceb8
067f454a8ba17fba5f10b67b6a594edd9d9775beb5fb87cb6c98ff462a9f2fe1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 15:49:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-SYSZJD7JDM
142.250.74.72200 OK 75 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-SYSZJD7JDM
IP 142.250.74.72:0
File type ASCII text, with very long lines (17807)
Hash f2e2cb1ba611272dd2caf7b67b2d8877
823f55ad49f1893d674aba1e81f9d4bf97af3c4c
28be52d12e3af1fda18a690fd2cb4160bcd32ecc8517d8f1a91d267e539925fe
GET /gtag/js?id=G-SYSZJD7JDM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ckpak.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 18 Sep 2022 15:49:29 GMT
expires: Sun, 18 Sep 2022 15:49:29 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74717
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9b19d20af774aa4c4de18c09845d54b9
cd0d41b4957edf5b2f7f66df082b7d1010acceb8
067f454a8ba17fba5f10b67b6a594edd9d9775beb5fb87cb6c98ff462a9f2fe1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 15:49:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ckpak.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.9
148.66.142.170200 OK 776 B URL HTTP/1.1 www.ckpak.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.9
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash a5bf64d5859ee94a3e8e93d592d6d2a0
049eb63b42dbb820b06870a430f523bf06880721
25825611ade7ceaed7df3862ec56dc91ad1d2be539966ef7bbe84306e51cfb08
GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.9 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:29 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:25:28 GMT
Accept-Ranges: bytes
Content-Length: 776
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.ckpak.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-layout.min.css?ver=3.7.9
148.66.142.170200 OK 17 kB URL HTTP/1.1 www.ckpak.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-layout.min.css?ver=3.7.9
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (17307), with no line terminators
Hash 8e3d6721f8cf9ea35437a853a15b4863
d72da129b52a6382fbd069254e7c398596e73ee6
6e3c2767206729f5b8f858d0b58e10d838022b5f06d28468cb0a9f504ea903e1
GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-layout.min.css?ver=3.7.9 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:28 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:27:47 GMT
Accept-Ranges: bytes
Content-Length: 17307
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
148.66.142.170404 Not Found 167 kB URL HTTP/1.1 www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (55756), with CRLF, LF line terminators
Size 167 kB (166735 bytes)
Hash f150cfe5748d6c042a37fefedca3751e
f153d0c46f01eab57aff4c8101a62a900dfed80b
67c05362657d4beb95d0b36982cc56af94cab106246a761498f945aa089bf975
Analyzer Verdict Alert fortinet Phishing
GET /fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Date: Sun, 18 Sep 2022 15:49:26 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-LiteSpeed-Tag: 794_HTTP.404
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.ckpak.com/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.ckpak.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
148.66.142.170200 OK 89 kB URL HTTP/1.1 www.ckpak.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (43771)
Hash b7915926fe42d76e9c802353ab01dae4
3a8192a4312f25f53de25b100d62829c0f14d67c
d7705700d24d5919255576642ad2c28bfc790390b7183a369038ff5c1e814d51
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:28 GMT
Server: Apache
Last-Modified: Wed, 13 Jul 2022 16:44:41 GMT
Accept-Ranges: bytes
Content-Length: 88932
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.ckpak.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce.min.css?ver=3.7.9
148.66.142.170200 OK 105 kB URL HTTP/1.1 www.ckpak.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce.min.css?ver=3.7.9
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Size 105 kB (104928 bytes)
Hash eb010b029b70e4f5161e91838b58d115
7fecf1c64be7240e8f2a2aaeb7a18fe6456c5317
e10835e20ac62a3236545c60ff299cbe975aea52afef50b95220e130f3b4b56c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce.min.css?ver=3.7.9 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:29 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:27:47 GMT
Accept-Ranges: bytes
Content-Length: 104928
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.ckpak.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.14.0
148.66.142.170200 OK 19 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.14.0
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (19004)
Hash 1867071e645872848d44e4dc23ae5c28
cb4dcf0c1aaa79c53c3b07984d4065cdb8b6ac36
ea8148c79052a55ec1596b4598795a4fa3bc979b9ecab3b0f6beb130e9b1d9e5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.14.0 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:29 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:25:19 GMT
Accept-Ranges: bytes
Content-Length: 19050
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.ckpak.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.9.0
148.66.142.170200 OK 210 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.9.0
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size 210 kB (209831 bytes)
Hash 9ed8fcb16418ff477a6c93fe33f86563
47be642692139a2ce63cf655cba31767cb7e8074
3f7c8f55c3c421a6f14efb39bf07abb73d1d244f194e133a2453913330e38819
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.9.0 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:28 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:26:09 GMT
Accept-Ranges: bytes
Content-Length: 209831
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.ckpak.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.4.2
148.66.142.170200 OK 60 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.4.2
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (59843)
Hash 0951ef9af00d859963b3414f2a442f26
152c932530c8cb5fde7d11ca55aebf413244013e
aae8626889f8f00c95349991eea8e55770ae6e5b0ae86d4458c01562b2373663
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.4.2 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:29 GMT
Server: Apache
Last-Modified: Mon, 27 Dec 2021 09:41:14 GMT
Accept-Ranges: bytes
Content-Length: 59886
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
fonts.googleapis.com/css?family=Noto+Sans+HK%3A400%2C&display=fallback&ver=3.7.9
142.250.74.10200 OK 41 kB URL HTTP/2 fonts.googleapis.com/css?family=Noto+Sans+HK%3A400%2C&display=fallback&ver=3.7.9
IP 142.250.74.10:0
Hash b1b687831d92a9e8b1b4daa40dae194a
a9ea3c04718e919752dae21eed37a7c6c1830549
d39cdedd8d99719160119d2ce6c22f798635ca3576ea80b5ed87bd0f14e534c6
GET /css?family=Noto+Sans+HK%3A400%2C&display=fallback&ver=3.7.9 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ckpak.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 18 Sep 2022 15:49:28 GMT
date: Sun, 18 Sep 2022 15:49:28 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.ckpak.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.5.6
148.66.142.170200 OK 27 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.5.6
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (26516)
Hash c55205bce667f5d812354fd1353e7389
f22de0af271eba636a022c873c94fbcd81b4c89a
c55902832fb84522d02ea1a60a30747403a140d8651fa748f13ba398b0c0df3a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.5.6 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:29 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:25:19 GMT
Accept-Ranges: bytes
Content-Length: 26702
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.ckpak.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.5.6
148.66.142.170200 OK 59 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.5.6
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (59158)
Hash 74bab4578692993514e7f882cc15c218
b6293bcfd851f963edbe859498570c4c0c7eaae4
d87ddf917b7a1449ab45e2b8e3c98354629bdd65b6659c37e6023bbea1ce1386
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.5.6 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:29 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:25:19 GMT
Accept-Ranges: bytes
Content-Length: 59344
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.ckpak.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.5.6
148.66.142.170200 OK 99 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.5.6
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65497)
Hash efbddeb915ce2c3e5d162fa18bb9232e
480e18444f09347d4e6fcbd1d08ff888747718c3
085af640adced0f8a667267bf08090b945a2cf9f8771ee7115390153bb84e5d8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.5.6 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:29 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:25:19 GMT
Accept-Ranges: bytes
Content-Length: 98820
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.ckpak.com/wp-content/uploads/elementor/css/post-2044.css?ver=1648051346
148.66.142.170200 OK 3.7 kB URL HTTP/1.1 www.ckpak.com/wp-content/uploads/elementor/css/post-2044.css?ver=1648051346
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (3696), with no line terminators
Hash 2aecf000cf75b28c64814a584814b89a
70f5ae7f6d6a4c0ce51b570c9dd2cc1aa02162c5
60b69c5cee23013e64f8ffec4897c2e9dfea48df42589816bcce211838c9fdb5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-2044.css?ver=1648051346 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:29 GMT
Server: Apache
Last-Modified: Wed, 23 Mar 2022 16:02:26 GMT
Accept-Ranges: bytes
Content-Length: 3696
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.ckpak.com/wp-content/uploads/astra-addon/astra-addon-622c6a9f79b8b3-79574934.js?ver=3.6.6
148.66.142.170200 OK 30 kB URL HTTP/1.1 www.ckpak.com/wp-content/uploads/astra-addon/astra-addon-622c6a9f79b8b3-79574934.js?ver=3.6.6
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (29667), with no line terminators
Hash f9b3065695b88bbe0d763c2c32b4569a
5a2e53cc5bbe2d8fb16994c0cf5a0ec37c7c1045
53a91a7497209a5923b3d93bb40c22a625cc6d8235292640e2c76fd23fb379a5
GET /wp-content/uploads/astra-addon/astra-addon-622c6a9f79b8b3-79574934.js?ver=3.6.6 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ckpak.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:29 GMT
Server: Apache
Last-Modified: Sat, 12 Mar 2022 09:40:47 GMT
Accept-Ranges: bytes
Content-Length: 29667
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-content/uploads/astra-addon/astra-addon-622c6a9f78ecb0-96356061.css?ver=3.6.6
148.66.142.170200 OK 63 kB URL HTTP/1.1 www.ckpak.com/wp-content/uploads/astra-addon/astra-addon-622c6a9f78ecb0-96356061.css?ver=3.6.6
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (62702), with no line terminators
Hash 7ef0cec7b51aea350bd2664adca42cff
324398256ca622c3124b91b1704cd3e350a82280
0c510dda4b309a1ac94aa222c207f4a3e15a51934c98a3ebd496a1dd2a683d9d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/astra-addon/astra-addon-622c6a9f78ecb0-96356061.css?ver=3.6.6 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ckpak.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:29 GMT
Server: Apache
Last-Modified: Sat, 12 Mar 2022 09:40:47 GMT
Accept-Ranges: bytes
Content-Length: 62702
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.ckpak.com/wp-content/themes/astra-child/style.css?ver=1.0.0
148.66.142.170200 OK 1.2 kB URL HTTP/1.1 www.ckpak.com/wp-content/themes/astra-child/style.css?ver=1.0.0
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (916), with CRLF line terminators
Hash 5e07858af1eae7f817ce8fdd328bba24
df3b41d9cf9f81bc2f8fa14e87eb266f721722af
ed6659edd6031b871799dacd6ece7702502f8e749af40426d5a3013dd9eb1a25
GET /wp-content/themes/astra-child/style.css?ver=1.0.0 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:30 GMT
Server: Apache
Last-Modified: Wed, 22 Dec 2021 14:35:50 GMT
Accept-Ranges: bytes
Content-Length: 1178
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.ckpak.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
148.66.142.170200 OK 90 kB URL HTTP/1.1 www.ckpak.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:30 GMT
Server: Apache
Last-Modified: Wed, 10 Mar 2021 15:07:24 GMT
Accept-Ranges: bytes
Content-Length: 89521
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
148.66.142.170200 OK 11 kB URL HTTP/1.1 www.ckpak.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:30 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
Accept-Ranges: bytes
Content-Length: 11224
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-content/plugins/ultimate-elementor/assets/min-css/uael-frontend.min.css?ver=1.36.4
148.66.142.170200 OK 627 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/ultimate-elementor/assets/min-css/uael-frontend.min.css?ver=1.36.4
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65536), with no line terminators
Size 627 kB (627202 bytes)
Hash 7f891006db9592eb3dee9409562f6382
68cdbdedaae980bdac791c200adc59b965b16ae1
935d9aea805a715bf988f6ad98ecf5ae9cf2f949b40684bf05dc28882201e548
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-elementor/assets/min-css/uael-frontend.min.css?ver=1.36.4 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:29 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:26:02 GMT
Accept-Ranges: bytes
Content-Length: 627202
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.ckpak.com/wp-content/plugins/chaty/js/cht-front-script.js?ver=1646983509
148.66.142.170200 OK 79 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/chaty/js/cht-front-script.js?ver=1646983509
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1670), with CRLF line terminators
Hash 023b3688d315424aacd828d8b71e9733
9e6df13c429d8a4e4beda9b9e2e42ddf7b4524d0
484dbcb4dd673b9b91990d44bae142f1331f2398dc64ec2d3339465844687303
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/chaty/js/cht-front-script.js?ver=1646983509 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:30 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 07:24:05 GMT
Accept-Ranges: bytes
Content-Length: 79448
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.5.6
148.66.142.170200 OK 15 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.5.6
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (14869)
Hash 7a5dea0a705cc2f4cd87dbaaa6666bc6
678bc6f750f13adb29bbc158eb0d9cd813b736fa
97cf1307c16a437b77b5f7f5c9bc0b985d0745a14be5a279019aca5a3432e264
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.5.6 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:30 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:25:19 GMT
Accept-Ranges: bytes
Content-Length: 15055
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.3.1
148.66.142.170200 OK 9.5 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.3.1
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (9139)
Hash 87c54edf7dad7dfdfde015f6eee45ff1
96ec1a06ea3093c47e1e2fc4444ada7f4456135d
ef22199864042b8ceeee3729f3254c140df7217364045737ca3aadf8434fb3da
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.3.1 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:30 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:26:09 GMT
Accept-Ranges: bytes
Content-Length: 9533
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.7.9
148.66.142.170200 OK 16 kB URL HTTP/1.1 www.ckpak.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.7.9
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (16290), with no line terminators
Hash f8f6df31ac65b2087bf263e73e03b578
2af7c97962dc88046ff4887095ed75d0af9d0614
cc2982e4ddfa3daec1c86ab097a4374478176753bc5f288dd1aa811b8bee8577
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.7.9 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:30 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:27:47 GMT
Accept-Ranges: bytes
Content-Length: 16290
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.3.1
148.66.142.170200 OK 3.0 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.3.1
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash 8bc2109ef48cabf7a26b73d7c3536c5f
0e0dfee3a3975eafc3dd55f190d1deb3c6c55d3b
8634aa7a3ac0bc6d359b458c8922e9d3269f64c1355b329bfe215beb12773af8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.3.1 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:30 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:26:09 GMT
Accept-Ranges: bytes
Content-Length: 3037
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.9
148.66.142.170200 OK 76 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.9
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (1646)
Hash 2395c81e72a52f14588816b4f72a7f17
711357e8d49c28be7605fcfbf881b90567decee1
ea14d1b1233e6cbc9b1a156ac532f076f7adafc309726fca7bf8833f882ac872
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.9 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:29 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:25:28 GMT
Accept-Ranges: bytes
Content-Length: 75684
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.ckpak.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.3.1
148.66.142.170200 OK 2.1 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.3.1
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (2139), with no line terminators
Hash b72c1cbb1530a011a27bd9800f26765a
27b825c5d8255f33b8427a059d4545ebd65e1746
a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.3.1 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:30 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:26:09 GMT
Accept-Ranges: bytes
Content-Length: 2139
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.3.1
148.66.142.170200 OK 1.8 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.3.1
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1668)
Hash d0a6d8547c66b0d7b0172466558d1208
ff93916519c7b9483251f609e4d29f38c30a66e3
3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.3.1 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:30 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:26:09 GMT
Accept-Ranges: bytes
Content-Length: 1834
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.3.1
148.66.142.170200 OK 2.9 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.3.1
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (2938), with no line terminators
Hash 0fd625c3991a4015814cffdc88e2fc82
d7c2f53e058210ff3ea773297641008bab71a5f3
2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.3.1 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:30 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:26:09 GMT
Accept-Ranges: bytes
Content-Length: 2938
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
148.66.142.170200 OK 5.6 kB URL HTTP/1.1 www.ckpak.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (5477)
Hash 3a56752b736635bf69cb069b8818cbfd
42e0951fe74bb3f56a30f51291823bcd4a84d76e
ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:30 GMT
Server: Apache
Last-Modified: Sat, 13 Jun 2020 18:53:27 GMT
Accept-Ranges: bytes
Content-Length: 5629
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-content/plugins/astra-addon/addons/woocommerce/assets/js/minified/single-product-ajax-cart.min.js?ver=3.6.6
148.66.142.170200 OK 2.5 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/astra-addon/addons/woocommerce/assets/js/minified/single-product-ajax-cart.min.js?ver=3.6.6
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document, ASCII text, with very long lines (2512), with no line terminators
Hash 3d89c0861f1ee5650a0862d9324ea488
b2a80db3f16a5b2e6121187ab40a80e6cf01938b
81c9c7dcac6c83f49d85df929044475d3fb522be1c73302814de1c66bc8868a2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/astra-addon/addons/woocommerce/assets/js/minified/single-product-ajax-cart.min.js?ver=3.6.6 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:30 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:25:11 GMT
Accept-Ranges: bytes
Content-Length: 2512
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6ab87e1e4dc6abd919cf683dff901fe8
07cfbf03a72cb316844c48669a10484e63b7f887
d68b40168e5c06bd69b83e8529ea0b15996e7124d2c8b3c5b0be81c8946f04c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 15:49:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6ab87e1e4dc6abd919cf683dff901fe8
07cfbf03a72cb316844c48669a10484e63b7f887
d68b40168e5c06bd69b83e8529ea0b15996e7124d2c8b3c5b0be81c8946f04c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 15:49:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6ab87e1e4dc6abd919cf683dff901fe8
07cfbf03a72cb316844c48669a10484e63b7f887
d68b40168e5c06bd69b83e8529ea0b15996e7124d2c8b3c5b0be81c8946f04c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 15:49:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/notosanshk/v21/nKKQ-GM_FYFRJvXzVXaAPe9hMRhvEPeWV8Ydw9dTvaja5emiwCL1Dv89rTx5gtGuOA.119.woff2
142.250.74.163200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/notosanshk/v21/nKKQ-GM_FYFRJvXzVXaAPe9hMRhvEPeWV8Ydw9dTvaja5emiwCL1Dv89rTx5gtGuOA.119.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), CFF, length 23644, version 1.0\012- data
Hash c67a8905f40eaff94efe4d7fa60a685d
6361db66ba0e954738e51c82936241509e0170bb
cdd0ac6e717da35ba439a8410bb8c356fc57b332acb78033817436c790d88b90
GET /s/notosanshk/v21/nKKQ-GM_FYFRJvXzVXaAPe9hMRhvEPeWV8Ydw9dTvaja5emiwCL1Dv89rTx5gtGuOA.119.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.ckpak.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23644
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 00:40:49 GMT
expires: Wed, 13 Sep 2023 00:40:49 GMT
cache-control: public, max-age=31536000
age: 486521
last-modified: Mon, 09 May 2022 19:50:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a9323cf0781cad0d5ac23f0c81c105b1
772d0218be53da9f875bb96a287c904976c296da
5c808b03cd8dd26275f12a850d8a36b467246c1461ea65a4c717acb04f2ca722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 15:49:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/notosanshk/v21/nKKQ-GM_FYFRJvXzVXaAPe9hMRhvEPeWV8Ydw9dTvaja5emiwCL1Dv89rTx5gtGuOA.116.woff2
142.250.74.163200 OK 52 kB URL HTTP/2 fonts.gstatic.com/s/notosanshk/v21/nKKQ-GM_FYFRJvXzVXaAPe9hMRhvEPeWV8Ydw9dTvaja5emiwCL1Dv89rTx5gtGuOA.116.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), CFF, length 51452, version 1.0\012- data
Hash 2fe7418a66b2f978150fb37937cb6b57
dc2b1601ea024e10b9ae52e74b3c8c24c2f116a4
b1956cb47973fd785ce0d7e7ac9c5a45e2c15f9ccebee0dcd96a20d3b8d71703
GET /s/notosanshk/v21/nKKQ-GM_FYFRJvXzVXaAPe9hMRhvEPeWV8Ydw9dTvaja5emiwCL1Dv89rTx5gtGuOA.116.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.ckpak.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 51452
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 05:21:52 GMT
expires: Wed, 13 Sep 2023 05:21:52 GMT
cache-control: public, max-age=31536000
age: 469658
last-modified: Mon, 09 May 2022 19:45:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/notosanshk/v21/nKKQ-GM_FYFRJvXzVXaAPe9hMRhvEPeWV8Ydw9dTvaja5emiwCL1Dv89rTx5gtGuOA.118.woff2
142.250.74.163200 OK 43 kB URL HTTP/2 fonts.gstatic.com/s/notosanshk/v21/nKKQ-GM_FYFRJvXzVXaAPe9hMRhvEPeWV8Ydw9dTvaja5emiwCL1Dv89rTx5gtGuOA.118.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), CFF, length 42700, version 1.0\012- data
Hash e6c86ca948ecf611c6de16b7d9514c34
9085aba114cd78fe199840bf0f8870e7c272dc49
d8db970657f09630f3b8b9d68abbfeb040198b72721449e51e0afb6a36a568d5
GET /s/notosanshk/v21/nKKQ-GM_FYFRJvXzVXaAPe9hMRhvEPeWV8Ydw9dTvaja5emiwCL1Dv89rTx5gtGuOA.118.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.ckpak.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 42700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 04:23:55 GMT
expires: Wed, 13 Sep 2023 04:23:55 GMT
cache-control: public, max-age=31536000
age: 473135
last-modified: Mon, 09 May 2022 19:44:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/notosanshk/v21/nKKQ-GM_FYFRJvXzVXaAPe9hMRhvEPeWV8Ydw9dTvaja5emiwCL1Dv89rTx5gtGuOA.115.woff2
142.250.74.163200 OK 52 kB URL HTTP/2 fonts.gstatic.com/s/notosanshk/v21/nKKQ-GM_FYFRJvXzVXaAPe9hMRhvEPeWV8Ydw9dTvaja5emiwCL1Dv89rTx5gtGuOA.115.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), CFF, length 51708, version 1.0\012- data
Hash 09086ef05b803a6026df7efe0f178ea5
50a0b80d1a00baf376266883b4b590a849d94d71
d94ca117f3825305d20e626828f16640775b9705724682ebc615c6078e5f005c
GET /s/notosanshk/v21/nKKQ-GM_FYFRJvXzVXaAPe9hMRhvEPeWV8Ydw9dTvaja5emiwCL1Dv89rTx5gtGuOA.115.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.ckpak.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 51708
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 04:19:57 GMT
expires: Wed, 13 Sep 2023 04:19:57 GMT
cache-control: public, max-age=31536000
age: 473373
last-modified: Mon, 09 May 2022 19:45:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.ckpak.com/wp-content/uploads/2022/03/ckpak-logo-298x110.png
148.66.142.170200 OK 23 kB URL HTTP/1.1 www.ckpak.com/wp-content/uploads/2022/03/ckpak-logo-298x110.png
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 298 x 110, 8-bit/color RGBA, non-interlaced\012- data
Hash ee3d6264f0dfbbb33ec3a41895921a1a
2ec0aee6acf5e6e3199cc5be47398a6198402baf
b0b3854b73d675636fdca3944c4f6aa0b7164680ba6a3691e5a9d542d3200fa7
GET /wp-content/uploads/2022/03/ckpak-logo-298x110.png HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ckpak.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:30 GMT
Server: Apache
Last-Modified: Sat, 12 Mar 2022 09:40:47 GMT
Accept-Ranges: bytes
Content-Length: 22920
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6ab87e1e4dc6abd919cf683dff901fe8
07cfbf03a72cb316844c48669a10484e63b7f887
d68b40168e5c06bd69b83e8529ea0b15996e7124d2c8b3c5b0be81c8946f04c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 15:49:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ckpak.com/wp-includes/js/wp-util.min.js?ver=6.0.2
148.66.142.170200 OK 1.3 kB URL HTTP/1.1 www.ckpak.com/wp-includes/js/wp-util.min.js?ver=6.0.2
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1305)
Hash 8637362089372427b52fa10a43d8109c
6009bed674718329dce6055ab09fa95181162d81
b8e78b48acc08ce31457aff168d6fb2c814d51a8739a97693cdba585d60f5b35
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-util.min.js?ver=6.0.2 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:30 GMT
Server: Apache
Last-Modified: Fri, 25 Jun 2021 14:50:58 GMT
Accept-Ranges: bytes
Content-Length: 1340
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.6.3.1
148.66.142.170200 OK 23 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.6.3.1
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (22772), with no line terminators
Hash 6423ffdf89ad818fa2308a6c069f475b
a2a131aeeb0f79c3c6df45d7032efa507e0c964f
90e807e1187d524c887e59ecee631af3e5f4f68ab7b30d737dd6a3a93ad28e20
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.6.3.1 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:30 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:26:09 GMT
Accept-Ranges: bytes
Content-Length: 22772
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.4.2
148.66.142.170200 OK 4.7 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.4.2
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (4659)
Hash bc7e2dcb834cbf11a5b7d7f93c772a02
029b7acde0c26fdd04a5f6cb1cbfd919823efc4c
a9f7711b243f4e294c50b99faa8a8b6639d704851d3e1a35c23c5007c0c3c340
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.4.2 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:30 GMT
Server: Apache
Last-Modified: Mon, 27 Dec 2021 09:41:14 GMT
Accept-Ranges: bytes
Content-Length: 4702
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.3.1
148.66.142.170200 OK 14 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.3.1
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (13590), with no line terminators
Hash a49a60e0186f705f693279985371da20
3419d4683879d6a48e051e38356602a2f5094511
3b55a00b09e9df011435d1f358401cf7153066bbfeafdc3384e5d8cdaf4e3262
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.3.1 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:30 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:26:09 GMT
Accept-Ranges: bytes
Content-Length: 13590
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-smallscreen.min.css?ver=3.7.9
148.66.142.170200 OK 6.0 kB URL HTTP/1.1 www.ckpak.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-smallscreen.min.css?ver=3.7.9
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (5985), with no line terminators
Hash 0fe8103cbc978fd1beb88e681b2e4a67
44a0074030a133b5ddba57651dcee0e0bb43b0d6
7dc4c65ad7490ca64cb346303138aa3d4426d8b270a8c995e6f558cecb19e689
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-smallscreen.min.css?ver=3.7.9 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.ckpak.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:30 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:27:47 GMT
Accept-Ranges: bytes
Content-Length: 5985
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.ckpak.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.6
148.66.142.170200 OK 4.9 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.6
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (4866)
Hash 32a55dbccdbc04945afbeb33247e0ee4
30f853d4d5eaa52c0dd5fd2c4add9bd7d4d20adb
75479495809d50623a1761b699f6b83b18e42b656e7adc111b69fadfd893ea40
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.6 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:30 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:25:19 GMT
Accept-Ranges: bytes
Content-Length: 4905
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-includes/js/underscore.min.js?ver=1.13.3
148.66.142.170200 OK 19 kB URL HTTP/1.1 www.ckpak.com/wp-includes/js/underscore.min.js?ver=1.13.3
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (18876)
Hash 42aa17e1f850a414638ee4a32a3aa807
2e42d03a5e042701191650c041eae1cfb2d6c7b9
0da4791b446818516f710c51707081aec7b23a7c5212fc0b2629c973210136a4
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:30 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 04:46:16 GMT
Accept-Ranges: bytes
Content-Length: 18911
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.6
148.66.142.170200 OK 14 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.6
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (14196)
Hash a3f0669bddef1c4b6d8ab2c136bb4f3b
80ad5d7c91fa3a9858c7e718573d84331f710f31
c021a94db9b98ef2269716a2e77aff78d691ef4d4d92911f566528fa2e3dd447
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.6 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:31 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:25:19 GMT
Accept-Ranges: bytes
Content-Length: 14235
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.4.2
148.66.142.170200 OK 20 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.4.2
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (19857)
Hash 1bdbc499632caa887b5c7c6e9c84fc70
4dc5049ea839af23c5db4f7d3152f2135af2acbd
d9ad2416350a22b802c199d36f2ed65d23e532116399d2f1ec7f60000f67504f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.4.2 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:31 GMT
Server: Apache
Last-Modified: Mon, 27 Dec 2021 09:41:14 GMT
Accept-Ranges: bytes
Content-Length: 19900
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
148.66.142.170200 OK 12 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (12198), with no line terminators
Hash 3819c3569da71daec283a75483735f7e
ecd40a5cc6f0b76200c454ca880210dc301cfab8
214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:31 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:25:19 GMT
Accept-Ranges: bytes
Content-Length: 12198
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.6
148.66.142.170200 OK 37 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.6
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (36994)
Hash 3211cccde3f239748f7a87edd935f50a
d29c7a637fd1fead2e30d3fabeee4b0fdfa64971
22f977105367afc342362f5ba6d9361109629a73b66673b2b93c051a43aa7439
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.6 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:31 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:25:19 GMT
Accept-Ranges: bytes
Content-Length: 37033
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
148.66.142.170200 OK 21 kB URL HTTP/1.1 www.ckpak.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 6aaf0a4e8eac131defea126f5b1b5fbf
24da0326af36303e5a1e9799a3c26f7a1077928c
240b702419d6c39ecc4896f0132ccfc9bc517e9aef0c782d99580e0c678b47d5
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:31 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 04:46:16 GMT
Accept-Ranges: bytes
Content-Length: 20715
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.4.2
148.66.142.170200 OK 24 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.4.2
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (23736)
Hash e90d8902322aeff95184be49679a5d7c
260864495e838d1e4a6e0885765cefe3c5add029
0fd1ca7c793530259c4a4cbf88ef78add10bcb5ffef15c384ed3ff89f05e37e2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.4.2 HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ckpak.com/fckeditor/userfiles/file/ronamemabodapefalipanunip.pdf
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:31 GMT
Server: Apache
Last-Modified: Mon, 27 Dec 2021 09:41:14 GMT
Accept-Ranges: bytes
Content-Length: 23779
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
region1.google-analytics.com/g/collect?v=2&tid=G-SYSZJD7JDM>m=2oe9e0&_p=1887694381&cid=1608581197.1663516152&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663516152&sct=1&seg=0&dl=http%3A%2F%2Fwww.ckpak.com%2Ffckeditor%2Fuserfiles%2Ffile%2Fronamemabodapefalipanunip.pdf&dt=Page%20not%20found%20%E2%80%93%20C%20K%20Pak%20%26%20Associates&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-SYSZJD7JDM>m=2oe9e0&_p=1887694381&cid=1608581197.1663516152&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663516152&sct=1&seg=0&dl=http%3A%2F%2Fwww.ckpak.com%2Ffckeditor%2Fuserfiles%2Ffile%2Fronamemabodapefalipanunip.pdf&dt=Page%20not%20found%20%E2%80%93%20C%20K%20Pak%20%26%20Associates&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-SYSZJD7JDM>m=2oe9e0&_p=1887694381&cid=1608581197.1663516152&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663516152&sct=1&seg=0&dl=http%3A%2F%2Fwww.ckpak.com%2Ffckeditor%2Fuserfiles%2Ffile%2Fronamemabodapefalipanunip.pdf&dt=Page%20not%20found%20%E2%80%93%20C%20K%20Pak%20%26%20Associates&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.ckpak.com
Connection: keep-alive
Referer: http://www.ckpak.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://www.ckpak.com
date: Sun, 18 Sep 2022 15:49:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.ckpak.com/wp-content/plugins/elementor/assets/js/text-editor.289ae80d76f0c5abea44.bundle.min.js
148.66.142.170200 OK 1.4 kB URL HTTP/1.1 www.ckpak.com/wp-content/plugins/elementor/assets/js/text-editor.289ae80d76f0c5abea44.bundle.min.js
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1316)
Hash 44454e0f093598348be54d974cf4053b
977ca41831de36bb8be182c800f292a774355fc8
20ea728aff54d125a7b81d734ac1205c22e2750e50b8983b34e2ec0e02054b0b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/text-editor.289ae80d76f0c5abea44.bundle.min.js HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.ckpak.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:31 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:25:19 GMT
Accept-Ranges: bytes
Content-Length: 1355
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.ckpak.com/wp-content/themes/astra/assets/fonts/astra.woff
148.66.142.170200 OK 3.3 kB URL HTTP/1.1 www.ckpak.com/wp-content/themes/astra/assets/fonts/astra.woff
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Web Open Font Format, TrueType, length 3304, version 1.0\012- data
Hash bfe0ed8503c926d68f58ed0408dfe0d0
0346d02d96ff7d2a0278bc10f4dfdf365c80eac3
ec7ef7aa5fd1e019f1c26193e95e46d481d4983673936a9dda086705ada6e3d5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/astra/assets/fonts/astra.woff HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.ckpak.com
Referer: http://www.ckpak.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:31 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:27:47 GMT
Accept-Ranges: bytes
Content-Length: 3304
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/woff
www.ckpak.com/wp-content/themes/astra/assets/fonts/astra.ttf
148.66.142.170200 OK 3.2 kB URL HTTP/1.1 www.ckpak.com/wp-content/themes/astra/assets/fonts/astra.ttf
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, Astra \012- data
Hash 44fab333617ec08d65662b650fa64d72
121a289437bc76802572e72ad316f5448c65fb8b
c3326eca3e04119400003592725c6a3c116ea221a7b3c581b8f92f789d71e4e8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/astra/assets/fonts/astra.ttf HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.ckpak.com
Referer: http://www.ckpak.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:32 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 06:27:47 GMT
Accept-Ranges: bytes
Content-Length: 3228
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: font/ttf
www.ckpak.com/wp-content/uploads/2022/03/cropped-ckpak-icon-v1-1-32x32.jpg
148.66.142.170200 OK 1.2 kB URL HTTP/1.1 www.ckpak.com/wp-content/uploads/2022/03/cropped-ckpak-icon-v1-1-32x32.jpg
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 32x32, components 3\012- data
Hash 91e609d4103fc65be23eec6b1e3f7893
0d09f6f60fae4d148b90e30a5c78fe5c7495ebd0
2601653c10cf407fcccc2fd8c29ee090054e8aed8e78ac33677184c6b6947dac
GET /wp-content/uploads/2022/03/cropped-ckpak-icon-v1-1-32x32.jpg HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ckpak.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:32 GMT
Server: Apache
Last-Modified: Sat, 12 Mar 2022 07:42:06 GMT
Accept-Ranges: bytes
Content-Length: 1156
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
www.ckpak.com/wp-content/uploads/2022/03/cropped-ckpak-icon-v1-1-192x192.jpg
148.66.142.170200 OK 6.7 kB URL HTTP/1.1 www.ckpak.com/wp-content/uploads/2022/03/cropped-ckpak-icon-v1-1-192x192.jpg
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 192x192, components 3\012- data
Hash 64b315151250571773d2ee5fad460b6d
f902dd1819695ed17e16e57c9253ad0d3cd8660a
9c60a5c7b1288ec9eda2631c148d400aeb924adef048acb5a851264996fccc6a
GET /wp-content/uploads/2022/03/cropped-ckpak-icon-v1-1-192x192.jpg HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ckpak.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:32 GMT
Server: Apache
Last-Modified: Sat, 12 Mar 2022 07:42:06 GMT
Accept-Ranges: bytes
Content-Length: 6714
Strict-Transport-Security: max-age=10886400; preload
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
www.ckpak.com/?wc-ajax=get_refreshed_fragments
148.66.142.170200 OK 0 B URL HTTP/1.1 www.ckpak.com/?wc-ajax=get_refreshed_fragments
IP 148.66.142.170:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: www.ckpak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-requested-with
Referer: http://www.ckpak.com/
Origin: http://www.ckpak.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:49:31 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-LiteSpeed-Tag: 794_HTTP.200
Access-Control-Allow-Origin: http://www.ckpak.com
Access-Control-Allow-Credentials: true
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8