firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 17 Sep 2022 13:11:24 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: AsapkaWq--Y74vfZ8uyjW_QhTvEohLGqv8Y01OXOUIw6RbnRKfK38Q==
Age: 1123
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 96daaf84cd2c07756756caf7a2724a29
d24d47c68eec98d44bf341dab9d893df97103e1a
fef9ce9f75ec19e7ae2ccbffb6654db2473a2b4acc94c1b4303e5ec24149465f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FEF9CE9F75EC19E7AE2CCBFFB6654DB2473A2B4ACC94C1B4303E5EC24149465F"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4522
Expires: Sat, 17 Sep 2022 14:45:29 GMT
Date: Sat, 17 Sep 2022 13:30:07 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 17 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BP_pRHK_26YuWRnvivCy4VrjA3PgHMTXqkQud31d_GI6hxnf3GMRgQ==
age: 35965
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 13:30:07 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sat, 17 Sep 2022 13:03:22 GMT
Cache-Control: max-age=3600
Expires: Sat, 17 Sep 2022 13:41:05 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2KNIQaFxIdPhHW_ifZzFuRUdW1EM_7t_QqUdlgYgHx9SXV53AAT-CQ==
Age: 1605
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9bf3402af9fef57aa11ffe2943728de4
a3a443aab8226d212be9698623717dd06e46c720
54987a5417af4a99d78532e502cf4685dd3372c1e9f717a8907f3d2b7c8926eb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5014
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 13:30:07 GMT
Last-Modified: Sat, 17 Sep 2022 12:06:33 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
www.bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
50.28.9.116301 Moved Permanently 0 B URL HTTP/1.1 www.bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
IP 50.28.9.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso HTTP/1.1
Host: www.bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 17 Sep 2022 13:30:07 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
Vary: User-Agent
Content-Length: 0
Keep-Alive: timeout=2, max=500
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
52.89.255.30101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.255.30:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uns1bvO977jnyFkHdGws9w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: yCUQ3po1P9cWSL/CRbpIwh6pWyM=
bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
50.28.9.116404 Not Found 14 kB URL HTTP/1.1 bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
IP 50.28.9.116:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (25329)
Hash 43249c66719070550e1847586a39bc60
7735a926279159670e62ea20ff2741903862b1cd
85ac3b4a5fcd70643993dac6fdeb47ba6a9c6e8b8022fc3476abcef7c2aac8c4
GET /login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Date: Sat, 17 Sep 2022 13:30:08 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://bryvahs.com/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 13471
Keep-Alive: timeout=2, max=500
Content-Type: text/html; charset=UTF-8
bryvahs.com/wp-content/plugins/woocommerce-payments/vendor/woocommerce/subscriptions-core/build/index.css?ver=3.1.6
50.28.9.116200 OK 391 B URL HTTP/1.1 bryvahs.com/wp-content/plugins/woocommerce-payments/vendor/woocommerce/subscriptions-core/build/index.css?ver=3.1.6
IP 50.28.9.116:0
File type ASCII text, with very long lines (1411)
Hash b91068bb40ee92501e9446e14f64d7d9
257a0ae570862a93d551d9badaff2e84d21b890e
d358c827780f1b8c1c2036e43f841f73efbd9dba33b3968ad0545836520959f4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce-payments/vendor/woocommerce/subscriptions-core/build/index.css?ver=3.1.6 HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 13:30:08 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 00:25:58 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 17 Oct 2022 13:30:08 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 391
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive
Content-Type: text/css
bryvahs.com/wp-content/et-cache/42/et-core-unified-cpt-deferred-42.min.css?ver=1662635344
50.28.9.116200 OK 776 B URL HTTP/1.1 bryvahs.com/wp-content/et-cache/42/et-core-unified-cpt-deferred-42.min.css?ver=1662635344
IP 50.28.9.116:0
File type ASCII text, with very long lines (2726), with no line terminators
Hash 1315d6950e4c61eabcfed6f5ae85cdc0
5c6bf74cab4db15f70435cff8c6f32b118d5aaeb
8f0b2163c3d1cd2c14480b1e036b51d7ce80fc3655e7d564088d8c0c46050550
GET /wp-content/et-cache/42/et-core-unified-cpt-deferred-42.min.css?ver=1662635344 HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 13:30:09 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 08 Sep 2022 11:09:04 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 17 Oct 2022 13:30:09 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 776
Keep-Alive: timeout=2, max=500
Content-Type: text/css
bryvahs.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.8.0
50.28.9.116200 OK 2.6 kB URL HTTP/1.1 bryvahs.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.8.0
IP 50.28.9.116:0
File type ASCII text, with very long lines (17809), with no line terminators
Hash d45c9e0b4109fd68bc2eaae40d01f61a
f0fd80fcb3e8b7a9d95782d0f0c79ddc19b2fa96
072aa95bd2ad493914030593b84c611b2dfcc39444f726ddab52751f4b4bf926
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.8.0 HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 13:30:09 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 12 Aug 2022 00:25:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 17 Oct 2022 13:30:09 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2554
Keep-Alive: timeout=2, max=500
Content-Type: text/css
bryvahs.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
50.28.9.116200 OK 12 kB URL HTTP/1.1 bryvahs.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 50.28.9.116:0
File type ASCII text, with very long lines (43771)
Hash e5548800176e913a9084f47a3e1e04f6
eff4604acc5c26ae82a19188de2f98bf5b79d80c
a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 13:30:09 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 04 Jul 2022 12:10:37 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 17 Oct 2022 13:30:09 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 11681
Keep-Alive: timeout=2, max=500
Content-Type: text/css
bryvahs.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.0.0
50.28.9.116200 OK 1.3 kB URL HTTP/1.1 bryvahs.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.0.0
IP 50.28.9.116:0
File type ASCII text, with very long lines (4933), with no line terminators
Hash d2d7f4c273d3b4cd972a337969b14754
b441775d1dcba61a5234df0256a40c7f58a8b059
fcfdbdf2a45072bbb545934d419cf76e5272d3193742eb8b659e938cafab4cdf
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.0.0 HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 13:30:09 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 12 Aug 2022 00:25:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 17 Oct 2022 13:30:09 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1286
Keep-Alive: timeout=2, max=500
Content-Type: text/css
bryvahs.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.8.0
50.28.9.116200 OK 8.9 kB URL HTTP/1.1 bryvahs.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.8.0
IP 50.28.9.116:0
File type Unicode text, UTF-8 text, with very long lines (62753), with no line terminators
Hash 6c8772ecf168559902155fb7bbbb6ff5
437a2c6b53493b57f4dd490368c53070c903be85
afcaf780edbf3bc69ee80db3e8b9420cc1c7a458b270bf7df979f53a21136288
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.8.0 HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 13:30:09 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 00:25:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 17 Oct 2022 13:30:09 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 8895
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16024
Expires: Sat, 17 Sep 2022 17:57:13 GMT
Date: Sat, 17 Sep 2022 13:30:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16024
Expires: Sat, 17 Sep 2022 17:57:13 GMT
Date: Sat, 17 Sep 2022 13:30:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16024
Expires: Sat, 17 Sep 2022 17:57:13 GMT
Date: Sat, 17 Sep 2022 13:30:09 GMT
Connection: keep-alive
bryvahs.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.0.0
50.28.9.116200 OK 22 kB URL HTTP/1.1 bryvahs.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.0.0
IP 50.28.9.116:0
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 11690c5db49ee860820607748f2cbdc7
961a3a43bbbe170897cc3d6f7f42c56184ce3e31
9332ed0962c28fee8236a89805af8355b5df93107548c2c538c276217609f720
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.0.0 HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 13:30:09 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 12 Aug 2022 00:25:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 17 Oct 2022 13:30:09 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 22450
Keep-Alive: timeout=2, max=500
Content-Type: text/css
bryvahs.com/wp-content/et-cache/global/et-divi-customizer-global.min.css?ver=1662635343
50.28.9.116200 OK 265 B URL HTTP/1.1 bryvahs.com/wp-content/et-cache/global/et-divi-customizer-global.min.css?ver=1662635343
IP 50.28.9.116:0
File type ASCII text, with very long lines (494), with no line terminators
Hash 8ed1f01b65a102317745206c646856c6
bfd4cf02e70f4f3ecad874dbe9006b6a6e70d1d6
ca61c689387324d4123e363b564a35f7ae03cee33b2edfb306c493444a58fbbd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/et-cache/global/et-divi-customizer-global.min.css?ver=1662635343 HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 13:30:09 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 11:09:03 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 17 Oct 2022 13:30:09 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 265
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive
Content-Type: text/css
bryvahs.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
50.28.9.116200 OK 4.2 kB URL HTTP/1.1 bryvahs.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 50.28.9.116:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 13:30:09 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 17 Oct 2022 13:30:09 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4169
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive
Content-Type: application/javascript
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c35b7f5f8e1b0b24570a41b7d18533a
c5b82c9d77851820b8d206573d5c03cd36d27a20
bb2456b31c48e6ebc9595c2bb9972b74531e93dd02ec4571d5af614f2d116ec7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6109
x-amzn-requestid: 271b006e-9d17-46ba-9eed-22fd638c4e9e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ2AhHZgIAMFlSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d039c-444e7d6b22f2a08f7215a986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:37:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: clBnXbh8x6GItJ6ObFVEM4Es3jAKlfMS8CMGlU6RBf_eshZ_HfFkOA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:31:13 GMT
age: 53936
etag: "c5b82c9d77851820b8d206573d5c03cd36d27a20"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca80d3e7-37ec-4908-bc70-808d7f648efe.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca80d3e7-37ec-4908-bc70-808d7f648efe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dc2201eab308312a7429e3f22510fc27
4e4f279e66eac8989833dd5b46706aa50f6e5031
d5b73edbd1ec0eaffacf03ff232924e376d3af7447aeed6e7197177e20e2bc82
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca80d3e7-37ec-4908-bc70-808d7f648efe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5323
x-amzn-requestid: debbdcf5-f9b1-4798-9d58-3e23847d22dc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YIQp3FdgoAMFaMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631994a5-6e0abb211dbd59e85665f1ac;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 07:07:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MkN8DEUY-0hYIeosGmPOK0iEmw3rBeuF-XKG5S9XM80qB2DRq0GJ-Q==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:28:41 GMT
age: 54088
etag: "4e4f279e66eac8989833dd5b46706aa50f6e5031"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bryvahs.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.0
50.28.9.116200 OK 3.5 kB URL HTTP/1.1 bryvahs.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.0
IP 50.28.9.116:0
File type ASCII text, with very long lines (9115)
Hash 4eb090d1d9263b041ec90bac1a6e6e8f
0b0a01684ed1e07a41a9f6eb02423738a68f8b12
f621d8d1bdc2c1508699ef2510c1b35122fef1ee7da3ed10fe66a881a6d882b2
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.0 HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 13:30:09 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 00:25:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 17 Oct 2022 13:30:09 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3499
Keep-Alive: timeout=2, max=497
Connection: Keep-Alive
Content-Type: application/javascript
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0b772c6-a258-481b-9f13-545de0b247e7.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0b772c6-a258-481b-9f13-545de0b247e7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 571f174a66e87ea77b36542c6c7a29a4
5dc0ef56244f8a5ddbb7823e25c61312860b2d0f
e624e35cc734b8cacc2a8eaa80c81175a879c1195d7a4c65cdcd769836b96a1b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0b772c6-a258-481b-9f13-545de0b247e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9280
x-amzn-requestid: 5259d496-f145-492c-8825-579f5b107ee6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeKEwGsaIAMFR5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632256eb-71f620793182ed767adad592;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:34:19 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ILrdhzS2nnvB959D0ZhvdD_jqQKVc-gWgnt8NSzlC0s1Fb8vbHGKQQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 12:07:11 GMT
age: 4978
etag: "5dc0ef56244f8a5ddbb7823e25c61312860b2d0f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d46a910081eb782408f1a2fa3c6aabba
28ac45ef155c66dd79a306f14d3b38f597b6a32e
d5787a6a12d275555c627e3245b37d4e751148345a09d5671b343cfebe7173b4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: e1ca6cef-c033-4887-80cf-2014ab8e620c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ykn5cEnLIAMFrzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ed09-3afc16cf66fef0e62dd6f3cc;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:39:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pPCI5VDX3PIldEnkLv-VNCFWuykiarYQdLYguNTfmbwxYCDVaS2EcA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:01:45 GMT
age: 55704
etag: "28ac45ef155c66dd79a306f14d3b38f597b6a32e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F269c619b-7793-4ef9-ae9d-9464582f4b56.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F269c619b-7793-4ef9-ae9d-9464582f4b56.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f1583c126dab43886a89cda3f82d760
5740a5507f21449319597ef49dbb456cbf7372b5
3b8ea2490bd6d777ec64358a84a07bdb1ccd4a6dfa30969feed45cfa7725745f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F269c619b-7793-4ef9-ae9d-9464582f4b56.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12221
x-amzn-requestid: ede87d50-8626-40bf-bb1a-d3f95e252f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YknUrGuqIAMF7tA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ec1d-2952b2ba7271a5b516295a55;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:35:25 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 39THgu_2WIUs5Hx0CElOMyYu8f9XzzgwzO1naHT1gWJiAyo83lnzuw==
via: 1.1 d1d67b07408bba8c682597d8303642e2.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:50:31 GMT
age: 56378
etag: "5740a5507f21449319597ef49dbb456cbf7372b5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7a22ab7dcdf50f4a297b8e117d336eae
e139a0974317212f094fdbe59e26ca5cf6b9e56d
9b4c23c1bb2e4fcd140ce34bf83f315f09b45202c569cb74113c2e65c4031dcd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7788
x-amzn-requestid: 2cb48f87-8b72-4ff7-b041-a6e704b854a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YIP2-HFHoAMFssA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6319935f-693e2f2e5a0bcd9f690f21fa;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 07:01:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4-H_LbXRjS1PJkVz9OIhwsaPfu8ZlL98zTZG--hdmij9Tc6KtmNSFQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:51:13 GMT
age: 56336
etag: "e139a0974317212f094fdbe59e26ca5cf6b9e56d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bryvahs.com/wp-content/et-cache/notfound/et-divi-dynamic-tb-42.css?ver=1662635090
50.28.9.116200 OK 15 kB URL HTTP/1.1 bryvahs.com/wp-content/et-cache/notfound/et-divi-dynamic-tb-42.css?ver=1662635090
IP 50.28.9.116:0
File type ASCII text, with very long lines (14384)
Hash 8b3db8a7b7a8656eaada78d004e67244
23536d7bf89c6ad6a41336a0901cb732e212179c
19861265aa9503a45f11f34bfd0385cc3f90ecf994957cd4bfbbfac3e5bd832e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/et-cache/notfound/et-divi-dynamic-tb-42.css?ver=1662635090 HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 13:30:09 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 11:04:50 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 17 Oct 2022 13:30:09 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 15372
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive
Content-Type: text/css
bryvahs.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
50.28.9.116200 OK 31 kB URL HTTP/1.1 bryvahs.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 50.28.9.116:0
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 13:30:09 GMT
Server: Apache
Last-Modified: Wed, 10 Mar 2021 15:07:24 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 17 Oct 2022 13:30:09 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 30908
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive
Content-Type: application/javascript
bryvahs.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.0
50.28.9.116200 OK 982 B URL HTTP/1.1 bryvahs.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.0
IP 50.28.9.116:0
File type ASCII text, with very long lines (1668)
Hash e66463f2023b738680c9bdefece69a37
315dc8e6ebdfb18c662851244ee33e2758ad3c83
fd83e7fc6d81aa6f6680ea640e9c086aa1950a17757a582aa74ea9797a70f346
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.0 HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 13:30:09 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 00:25:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 17 Oct 2022 13:30:09 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 982
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive
Content-Type: application/javascript
bryvahs.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.0
50.28.9.116200 OK 1.0 kB URL HTTP/1.1 bryvahs.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.0
IP 50.28.9.116:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash 45db3d2887c26700a51bf469e3bb3aa1
d070b5fb53d2fbb66964bbfd482270b855d0ee96
1abc0cff49f82d9a063c04cd086b991af6ad00467efc4cb8d8d4e3c9a0f95777
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.0 HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 13:30:09 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 00:25:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 17 Oct 2022 13:30:09 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1039
Keep-Alive: timeout=2, max=496
Connection: Keep-Alive
Content-Type: application/javascript
bryvahs.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.0
50.28.9.116200 OK 794 B URL HTTP/1.1 bryvahs.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.0
IP 50.28.9.116:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash 29307e8dec33cf3411ca4e1f2c84e9d0
484402289464d7ffb1475827f3438329d520bfc6
a2db59efaa416ef0c9d5d58f142cd5e44c475348cff20a664586fd3cda1b5f5b
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.0 HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 13:30:09 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 00:25:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 17 Oct 2022 13:30:09 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 794
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 13:30:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bryvahs.com/wp-content/uploads/2022/06/logo-bryvahs.jpg
50.28.9.116200 OK 52 kB URL HTTP/2 bryvahs.com/wp-content/uploads/2022/06/logo-bryvahs.jpg
IP 50.28.9.116:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2022:06:18 00:20:55], progressive, precision 8, 442x161, components 3\012- data
Hash 5844882691b03472aa898ae5b7fa6ee9
4997066d11b3a63996ad28459e801975bdc15339
b1ed8464a788aff0ca2a1d583cad08ffeabffed9dd8f912d8a3be3184a42c503
GET /wp-content/uploads/2022/06/logo-bryvahs.jpg HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bryvahs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 18 Jun 2022 04:22:24 GMT
accept-ranges: bytes
content-length: 52261
cache-control: max-age=2592000
expires: Mon, 17 Oct 2022 13:30:09 GMT
content-type: image/jpeg
date: Sat, 17 Sep 2022 13:30:09 GMT
server: Apache
X-Firefox-Spdy: h2
bryvahs.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js?ver=4.14.5
50.28.9.116200 OK 1.3 kB URL HTTP/1.1 bryvahs.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js?ver=4.14.5
IP 50.28.9.116:0
File type HTML document, ASCII text
Hash 1ac5fd0d746d90e81bb4663d18a6d4c8
4566f66fbfc4cd3881967b31c39ba9299c5f4e6a
9e76b39ba632c5e8d0e3e91427ba4498cb4343394efbfb60fcc58dd0e8a09d3f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js?ver=4.14.5 HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 13:30:09 GMT
Server: Apache
Last-Modified: Wed, 27 Oct 2021 00:15:24 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 17 Oct 2022 13:30:09 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1341
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive
Content-Type: application/javascript
bryvahs.com/wp-content/themes/Divi/core/admin/js/common.js?ver=4.14.5
50.28.9.116200 OK 566 B URL HTTP/1.1 bryvahs.com/wp-content/themes/Divi/core/admin/js/common.js?ver=4.14.5
IP 50.28.9.116:0
Hash c24ce4d2c7d7512601a6db3b24242297
ed36ea05d2e96b5706a803067c84206a8f7c3202
ce9cccfd1fbc822ac820d3ad47f5a3adabb312ac517a8c6473568bd2d2f98fb4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/js/common.js?ver=4.14.5 HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 13:30:09 GMT
Server: Apache
Last-Modified: Thu, 29 Apr 2021 23:48:42 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 17 Oct 2022 13:30:09 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 566
Keep-Alive: timeout=2, max=497
Connection: Keep-Alive
Content-Type: application/javascript
bryvahs.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.8.0
50.28.9.116200 OK 1.2 kB URL HTTP/1.1 bryvahs.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.8.0
IP 50.28.9.116:0
File type ASCII text, with very long lines (7043), with no line terminators
Hash 7a01d757cd8aced5af866e83a6d0ce76
f352b0e25c2a3ca7af84f93c9bc1fd700db3586f
da5327f259e09fafac875160fbcd3fe934f48359e751e42b802f5577310b014c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.8.0 HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 13:30:09 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 00:25:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 17 Oct 2022 13:30:09 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1177
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive
Content-Type: text/css
bryvahs.com/wp-content/themes/Divi/core/admin/fonts/modules/base/modules.ttf
50.28.9.116200 OK 3.2 kB URL HTTP/1.1 bryvahs.com/wp-content/themes/Divi/core/admin/fonts/modules/base/modules.ttf
IP 50.28.9.116:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, ETmodules \012- data
Hash f1a21314b201a2e3775249aeee9cf9a2
f2fe77b70e7f3a8ce0de81b5af42a748c85090ec
e418196fbaabe3b4e6249e938b44d8f3fff24cba0a1bfb1d691dfa1b4d0aefab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/fonts/modules/base/modules.ttf HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bryvahs.com/wp-content/et-cache/notfound/et-divi-dynamic-tb-42.css?ver=1662635090
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 13:30:09 GMT
Server: Apache
Last-Modified: Wed, 27 Oct 2021 00:15:20 GMT
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Mon, 19 Sep 2022 13:30:09 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3152
Keep-Alive: timeout=2, max=497
Connection: Keep-Alive
Content-Type: font/ttf
bryvahs.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.14.5
50.28.9.116200 OK 71 kB URL HTTP/1.1 bryvahs.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.14.5
IP 50.28.9.116:0
File type ASCII text, with very long lines (65467)
Hash cc3a57f0b41eb0617adb046305016685
cf2f75c2253e50b5ddfcec9baff36962cce74717
3b9ef347453db5898f6297fff5b89135abe394eb4b4c16c48939fc50cf3ddb2f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/js/scripts.min.js?ver=4.14.5 HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 13:30:09 GMT
Server: Apache
Last-Modified: Wed, 05 Jan 2022 18:52:28 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 17 Oct 2022 13:30:09 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
bryvahs.com/wp-content/uploads/2022/06/favicon-100x100.png
50.28.9.116200 OK 19 kB URL HTTP/2 bryvahs.com/wp-content/uploads/2022/06/favicon-100x100.png
IP 50.28.9.116:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 4cdeb802b2edb542edef11c97a981454
5490d2325efca7267246b61f4e442a21b69fb827
70b9ef9d33b789edf5ced9529a55aba62b5410a9a2e725e2c30f44fb870ef10e
GET /wp-content/uploads/2022/06/favicon-100x100.png HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bryvahs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 18 Jun 2022 04:27:46 GMT
accept-ranges: bytes
content-length: 19039
cache-control: max-age=2592000
expires: Mon, 17 Oct 2022 13:30:09 GMT
content-type: image/png
date: Sat, 17 Sep 2022 13:30:09 GMT
server: Apache
X-Firefox-Spdy: h2
bryvahs.com/wp-content/uploads/2022/06/favicon.png
50.28.9.116200 OK 48 kB URL HTTP/2 bryvahs.com/wp-content/uploads/2022/06/favicon.png
IP 50.28.9.116:0
File type PNG image data, 178 x 178, 8-bit/color RGBA, non-interlaced\012- data
Hash 7ad3427887a4e4cc8d02d772c70fab94
cbc86141678698760af4ffe5ac24e44f450a716c
cbaa5da1e6f6fd26dcac91c8eb8e5833f222fe982122b03e5260d23897c79275
GET /wp-content/uploads/2022/06/favicon.png HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bryvahs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 18 Jun 2022 04:27:46 GMT
accept-ranges: bytes
content-length: 47581
cache-control: max-age=2592000
expires: Mon, 17 Oct 2022 13:30:09 GMT
content-type: image/png
date: Sat, 17 Sep 2022 13:30:09 GMT
server: Apache
X-Firefox-Spdy: h2
bryvahs.com/?wc-ajax=get_refreshed_fragments
50.28.9.116200 OK 189 B URL HTTP/1.1 bryvahs.com/?wc-ajax=get_refreshed_fragments
IP 50.28.9.116:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 9a374415d4734ce004f4b1bbd7f9fd4f
452861523ce135d1d9a78e31b780b223199bf0fb
da241a2ec5b801b9c8b716f473d7cf00e257acb0dd7f987441e4388b2c9cf737
Analyzer Verdict Alert fortinet Phishing
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: bryvahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: http://bryvahs.com
Connection: keep-alive
Referer: http://bryvahs.com/login.php?online_id=b810600b5ceafb6c8bfcd9aa5&country&iso
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 13:30:09 GMT
Server: Apache
Access-Control-Allow-Origin: http://bryvahs.com
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Robots-Tag: noindex
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 189
Keep-Alive: timeout=2, max=497
Connection: Keep-Alive
Content-Type: application/json; charset=UTF-8