r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 30c30d01178fc74ac5266ee64c3ee85b
c0c2af8a864c00aa85a8775d55f85ab107150a3b
c15644f69fbfeb99074c7e9711dfc9452ee164fa78eb981b6bae4fb7e3585f2a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C15644F69FBFEB99074C7E9711DFC9452EE164FA78EB981B6BAE4FB7E3585F2A"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8241
Expires: Fri, 18 Nov 2022 20:24:38 GMT
Date: Fri, 18 Nov 2022 18:07:17 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 67f53a639d57dd6237b5be86fe4f6c1b
287f09532dc331228d09c20b75f4160e91e9800a
41913a8af366685c42af59e9d8e02fccedbe68a3313d2d9fe353deb0c1019075
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1890
Cache-Control: max-age=147320
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:17 GMT
Etag: "63775eeb-1d7"
Expires: Sun, 20 Nov 2022 11:02:37 GMT
Last-Modified: Fri, 18 Nov 2022 10:31:07 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3a38b6dd8a4cc335c026aebf2ed348b6
8a386e0ccb0ca4dc502746c45b2ebc3aa3f83cf8
8b4040a645cec1841a00a22765eb3a74978559daf15c54bd4b41b6b48aab7f95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B4040A645CEC1841A00A22765EB3A74978559DAF15C54BD4B41B6B48AAB7F95"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13745
Expires: Fri, 18 Nov 2022 21:56:22 GMT
Date: Fri, 18 Nov 2022 18:07:17 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 18 Nov 2022 17:44:49 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1348
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: r3QeubazE6mMolo6Iu4NTX62axS3JlgkMkhb7USBNqb4zsNQ/vxcWXU/BO28xqcmV5bXnf6V388B/dXU/JBFWA==
x-amz-request-id: V6ZEH97DSP8BRWV7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 18 Nov 2022 17:53:00 GMT
age: 857
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 18:07:17 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
themarquetry.com/
194.59.164.81301 Moved Permanently 707 B IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Fri, 18 Nov 2022 18:07:17 GMT
server: LiteSpeed
location: https://themarquetry.com/
platform: hostinger
content-security-policy: upgrade-insecure-requests
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 18 Nov 2022 17:25:01 GMT
cache-control: public,max-age=3600
age: 2536
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fe40cc6ea871d80382b6082111393fbe
281f75d0a35dc8ef908bb0500e57abd86bd5388e
6d15422cdf7a6d72d06497188f27af893682314e82ac8a189a0ee2d798cb62d7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4340
Cache-Control: max-age=144718
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:18 GMT
Etag: "63774b30-1d7"
Expires: Sun, 20 Nov 2022 10:19:16 GMT
Last-Modified: Fri, 18 Nov 2022 09:06:56 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.89.114.252101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.114.252:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BzAiprtVZYfVCN1ZdJO7iw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IkObosTZrdYN/aqPme5Oxd+qBVA=
cdn.linearicons.com/free/1.0.0/svgembedder.min.js?ver=5.5.4
54.230.111.22200 OK 519 B URL HTTP/2 cdn.linearicons.com/free/1.0.0/svgembedder.min.js?ver=5.5.4
IP 54.230.111.22:0
File type ASCII text, with very long lines (520)
Hash 6fb5a1a9925f28916193ddc1d72f9b0d
bdc64cce45bb408f635c2d61ef79061ea1997069
85194f705319dba5c19a61ccf7643ab990e4a699e2927a3d967b62d70ebbea9b
GET /free/1.0.0/svgembedder.min.js?ver=5.5.4 HTTP/1.1
Host: cdn.linearicons.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 519
date: Fri, 02 Sep 2022 06:26:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
last-modified: Wed, 27 May 2015 16:04:40 GMT
etag: "6fb5a1a9925f28916193ddc1d72f9b0d"
cache-control: max-age=31000000
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SNMxR5h9LM5vwwaItGC736xk-t4X5PmtpueI1xc5nvR4Yn7EGYlm4g==
age: 6694857
X-Firefox-Spdy: h2
cdn.linearicons.com/free/1.0.0/icon-font.min.css?ver=5.5.4
54.230.111.22200 OK 1.7 kB URL HTTP/2 cdn.linearicons.com/free/1.0.0/icon-font.min.css?ver=5.5.4
IP 54.230.111.22:0
File type ASCII text, with very long lines (7191)
Hash 0b704046d76bb4d3929be4f7f20472f5
564f70325044cf9834f70d9689463cbfb8a53b71
511ae4f5d6a1803848d68c82cd61d2ad1ed3a1c65037e2cbcf9a7edd2fa6fa5d
GET /free/1.0.0/icon-font.min.css?ver=5.5.4 HTTP/1.1
Host: cdn.linearicons.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-length: 1672
date: Wed, 07 Sep 2022 12:38:53 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
last-modified: Wed, 27 May 2015 16:04:10 GMT
etag: "0b704046d76bb4d3929be4f7f20472f5"
cache-control: max-age=31000000
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: orFH_VVw2i6b9EYWwrVsU9rUvSCv-OXBREyhwAkjN5dPq4oqYPBWwQ==
age: 6240506
X-Firefox-Spdy: h2
themarquetry.com/
194.59.164.81200 OK 58 kB IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6242), with CRLF, LF line terminators
Hash d3c3a0002f63c44af7fb0418524a149f
f6bbc716e3924faca7d584809152e1ea72173c9a
10a692671cc9917ae1c1a533d28ee3f8fa33c7a82d2fb95cca434cd2c875a5b0
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.4.32
content-type: text/html; charset=UTF-8
link: <https://themarquetry.com/wp-json/>; rel="https://api.w.org/", <https://themarquetry.com/wp-json/wp/v2/pages/3599>; rel="alternate"; type="application/json", <https://themarquetry.com/>; rel=shortlink
etag: "649-1668756944;br"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
content-length: 57874
date: Fri, 18 Nov 2022 18:07:17 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
themarquetry.com/wp-content/plugins/chaty/css/chaty-front.min.css?ver=1631299049
194.59.164.81200 OK 4.9 kB URL HTTP/2 themarquetry.com/wp-content/plugins/chaty/css/chaty-front.min.css?ver=1631299049
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (26296), with no line terminators
Hash e373bc4e4d2711b56cdd3f0f51cd3eed
aa5418da0d0c61aa856bd0eb50fed56b01d30421
a2e284938e97ead5743eded3afa97271a4c00ed9282cf1022265b0cc5f008782
GET /wp-content/plugins/chaty/css/chaty-front.min.css?ver=1631299049 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:18 GMT
content-type: text/css
last-modified: Fri, 10 Sep 2021 06:37:29 GMT
etag: "66b8-613afd29-5901527b08eb712c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4900
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/css/sina-morphing.min.css?ver=1.5.3
194.59.164.81200 OK 206 B URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/css/sina-morphing.min.css?ver=1.5.3
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (587), with no line terminators
Hash ecf37aa9d4351c34d8d01b70bc065b44
b93af633a2f22a70de3d0cbcc974d153ee051ce9
83b5c9c72b5b76bee30f46769426692b4a74fe16092b947837b4f333964312d0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/css/sina-morphing.min.css?ver=1.5.3 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:18 GMT
content-type: text/css
last-modified: Wed, 17 Mar 2021 10:49:10 GMT
etag: "24b-6051dea6-83399b68d3e367de;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 206
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/css/normalize.css?ver=1.5.3
194.59.164.81200 OK 679 B URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/css/normalize.css?ver=1.5.3
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (1825), with no line terminators
Hash 1a43bbbab9a4d4aae8ce264642d8443f
8f82f89352c77fd40876fc025b82e74279f6443f
5a5cc26a6a1670259d4f56284b4d233f2c7287f0369a8ff601f9de1f786bdcf0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/css/normalize.css?ver=1.5.3 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:18 GMT
content-type: text/css
last-modified: Wed, 17 Mar 2021 10:49:10 GMT
etag: "721-6051dea6-1706e45a86b63b95;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 679
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/css/demo.css?ver=1.5.3
194.59.164.81200 OK 2.8 kB URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/css/demo.css?ver=1.5.3
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash 9fcd96ff3af855fb0d7813db59499726
e9d106a52ef1aa22b6929ed1b3d194cc06a0abe3
aa7102ea60be0e360179a026c3cd7b43f84600deb47e1606c177fc896fce45be
GET /wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/css/demo.css?ver=1.5.3 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:18 GMT
content-type: text/css
last-modified: Wed, 17 Mar 2021 10:49:10 GMT
etag: "2f5a-6051dea6-a2fb05c9581b8157;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2809
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/css/revealer.css?ver=1.5.3
194.59.164.81200 OK 152 B URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/css/revealer.css?ver=1.5.3
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash 394852062d5421e67ec88e6f49769d1f
b60f4d95da6bdf868431e0392e1653aedeccda3d
25e8981376e88d1ae6909476af878a7486be890373b9333ce2a8af7bd895c816
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/css/revealer.css?ver=1.5.3 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:18 GMT
content-type: text/css
last-modified: Wed, 17 Mar 2021 10:49:10 GMT
etag: "98-6051dea6-37de0929079fd76e;;;"
accept-ranges: bytes
content-length: 152
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/css/pater.css?ver=1.5.3
194.59.164.81200 OK 669 B URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/css/pater.css?ver=1.5.3
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash 90b99bb2c0ec51d0a79982c93093d5c9
db92c0ee54c79771ca5c3e1dc2c8eb9badc6c72f
f600b3c4e3b6eb56dbd8d2c2c841cf5bd7466696a78b61a12ccaa58843022804
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/css/pater.css?ver=1.5.3 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:18 GMT
content-type: text/css
last-modified: Wed, 17 Mar 2021 10:49:10 GMT
etag: "7c9-6051dea6-67e378397d41e2b1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 669
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-includes/css/dist/block-library/style.min.css?ver=5.5.4
194.59.164.81200 OK 9.7 kB URL HTTP/2 themarquetry.com/wp-includes/css/dist/block-library/style.min.css?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (33376)
Hash 2151f8c19ddd8941f5e6d231e433f49f
eb9c4ed41c4ba93775d1db308aae103a428e70c1
4a96d701935d16f28cf4e6d25bbcccfed66b7f45a7eec1d3ebbb23013b00966a
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:18 GMT
content-type: text/css
last-modified: Tue, 20 Jul 2021 17:33:38 GMT
etag: "13abe-60f708f2-a6ba052a1ab3d61f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9740
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/vendors-style.css?ver=4.4.3
194.59.164.81200 OK 909 B URL HTTP/2 themarquetry.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/vendors-style.css?ver=4.4.3
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (3276), with no line terminators
Hash 32b1e1f7688e268af9b36c14a174f2b0
ba8fe58345bfd6e4255eaebd5882efb137d83028
93ebf40b984a40c3fe13e42d9fd093d2815799febd8a6874ecd3968f5f1adf07
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/vendors-style.css?ver=4.4.3 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:18 GMT
content-type: text/css
last-modified: Thu, 15 Jul 2021 05:17:30 GMT
etag: "ccc-60efc4ea-865c398987f6b155;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 909
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4
194.59.164.81200 OK 823 B URL HTTP/2 themarquetry.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash 106dd7ee06e7d43effd14d089b37c0dd
e4c9884b1c75b670a83234b2f881f23d0e32c927
ea29a6240c43de76518dd7c39d3c98bf37fd685ac5a7dae417a4f5c2d2e5f5b5
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:18 GMT
content-type: text/css
last-modified: Tue, 16 Mar 2021 19:28:05 GMT
etag: "a46-605106c5-3af06194f905e41b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 823
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.3
194.59.164.81200 OK 12 kB URL HTTP/2 themarquetry.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.3
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 836a806a49d8a10e3b67627dde73b589
c337b952d6ef5c06d76aaca48b9de1fdf35aa93e
14aa72fa8deffee224d0f8aeb53f7f0b826c9ade777fbd359aa72aad951ac15b
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.3 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:18 GMT
content-type: text/css
last-modified: Tue, 16 Mar 2021 19:29:49 GMT
etag: "ee74-6051072d-fedde5967d53de4a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12240
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=5.1.1
194.59.164.81200 OK 2.4 kB URL HTTP/2 themarquetry.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=5.1.1
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (17923), with no line terminators
Hash 12fc8a038c3cdd7e7eebeaaffa8a26dd
5ff710cfa588f910217ac10bcc73e52801838e69
5c67422373694bcfed7e1b2acfcec7e4a6503d226608aef873a1203a9586c55a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=5.1.1 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:18 GMT
content-type: text/css
last-modified: Thu, 15 Jul 2021 05:17:14 GMT
etag: "4605-60efc4da-4694cd225cccc2a4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2368
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=5.1.1
194.59.164.81200 OK 8.3 kB URL HTTP/2 themarquetry.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=5.1.1
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (62789), with no line terminators
Hash 06f2dfede31e918feb7f2f08c7cfba6f
8ba74bf2654160f854a95174d296f2fe4ee5ef9f
9bfa92a896d0004ca2227e585eee35804d638e6859d92f3e87812937d5e1ac09
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=5.1.1 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Thu, 15 Jul 2021 05:17:14 GMT
etag: "f553-60efc4da-64b1812c758cc677;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8314
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/ht-slider-addons-pro/assets/css/animate.css?ver=5.5.4
194.59.164.81200 OK 3.9 kB URL HTTP/2 themarquetry.com/wp-content/plugins/ht-slider-addons-pro/assets/css/animate.css?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash f932e01fa5f10a9f575907435d72063d
7ed9f6dae84a3a6a84c09563a665395326f343cb
0b5c3814770b411292ed8b0e0b048e06cb71dd3f2486cb6de1bbba1381c62230
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ht-slider-addons-pro/assets/css/animate.css?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Fri, 26 Mar 2021 12:09:45 GMT
etag: "12170-605dcf09-8072a11a3a2c3875;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3879
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/ht-slider-addons-pro/assets/css/htslider-widgets.css?ver=1.0.5
194.59.164.81200 OK 2.2 kB URL HTTP/2 themarquetry.com/wp-content/plugins/ht-slider-addons-pro/assets/css/htslider-widgets.css?ver=1.0.5
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash c10139efa3b7c06c97e2fb152b30e38e
4633cef7d0300f3c147be9088e0e28cddf7c4650
d98eb23c3c1c260fe68e978ce5f55942218970f5923aaec833f11fc80de37918
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ht-slider-addons-pro/assets/css/htslider-widgets.css?ver=1.0.5 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Fri, 26 Mar 2021 12:09:45 GMT
etag: "41c6-605dcf09-3a6a6b456f7e5494;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2184
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/themes/theratio/css/font-awesome.min.css?ver=5.5.4
194.59.164.81200 OK 12 kB URL HTTP/2 themarquetry.com/wp-content/themes/theratio/css/font-awesome.min.css?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (56940), with CRLF line terminators
Hash f98bbd66c9d32f93bb194873dcc85952
c43c01c9f607afd140a90ed8e3738f49a7a92634
2deba5ec05f5185b8766f49cb256e62b7a8d8f897d5726ad2ee40d73d36f197b
GET /wp-content/themes/theratio/css/font-awesome.min.css?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Thu, 18 Mar 2021 09:03:47 GMT
etag: "df2a-60531773-2bb6863926e0ea1a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11874
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/themes/theratio/css/bootstrap.css?ver=4.0
194.59.164.81200 OK 2.3 kB URL HTTP/2 themarquetry.com/wp-content/themes/theratio/css/bootstrap.css?ver=4.0
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (11782), with CRLF line terminators
Hash 8442cb62221eab581583ecce55bba896
38abd851632796f455dfd455b2939decaae4ec80
5a06facc0675e27f84a6b0a0673c8d8040ee6492b7af2a6499da2fc2d0e67cd8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/css/bootstrap.css?ver=4.0 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Thu, 18 Mar 2021 09:03:47 GMT
etag: "2fc5-60531773-d7d59ac8f1653d8b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2341
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/themes/theratio/css/flaticon.css?ver=5.5.4
194.59.164.81200 OK 714 B URL HTTP/2 themarquetry.com/wp-content/themes/theratio/css/flaticon.css?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash a86cdf0076dc8cbc16ff5597c0df3e70
331cbb6464b0a1bad6cd2d2c63651384147ea079
c696e1db40526786e91010e2777b58f3477d6b23f25b1b8834328bec7501a5bf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/css/flaticon.css?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Thu, 18 Mar 2021 09:03:47 GMT
etag: "e55-60531773-e7505b3b2465385d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 714
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/themes/theratio/css/lightgallery.css?ver=5.5.4
194.59.164.81200 OK 3.9 kB URL HTTP/2 themarquetry.com/wp-content/themes/theratio/css/lightgallery.css?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash da27ba17ad5a7b22129f16ee4f8bc777
0fe411d3fd5b7013a9212cffe0b27417e9e3403d
be59c0492af0dff417b7c1c78d302e341f8fd02068e81192afd98e82517efa08
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/css/lightgallery.css?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Thu, 18 Mar 2021 09:03:47 GMT
etag: "64d1-60531773-7abd6a46ea6c27f6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3880
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/themes/theratio/css/swiper.min.css?ver=5.5.4
194.59.164.81200 OK 3.8 kB URL HTTP/2 themarquetry.com/wp-content/themes/theratio/css/swiper.min.css?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (13411), with CRLF line terminators
Hash 74975fbf919797fc7e69236547aa7d87
c4174cca232deeffa386df47e40d6b17d4315919
5e69359a7463918ec2b47744537e338387ca2bfae6b27587148c9e743ac2a333
GET /wp-content/themes/theratio/css/swiper.min.css?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Thu, 18 Mar 2021 09:03:47 GMT
etag: "356f-60531773-7fb8e390c9a8dc97;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3794
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6498
Expires: Fri, 18 Nov 2022 19:55:37 GMT
Date: Fri, 18 Nov 2022 18:07:19 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b2b393e36ee2c9649d90db136aa49542
e88c5832ff0c49bab181d948c3a510d88343bb6f
8b524701df43bff56ac52a021ff0fbd964e06f00e84b4861aa557ec6ae6b4ffd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7631
x-amzn-requestid: b47e545d-1fb6-4a62-ab45-28cdb9d3f0b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-vQE0XoAMFS3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab2e-56365eed3d4c082c53b172b3;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qpoQa1Lhe-h27dGooXDCtujesSTg7Tb0Ov-PNLnUP0288ZofwHxkhQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:24:12 GMT
age: 70987
etag: "e88c5832ff0c49bab181d948c3a510d88343bb6f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CDM+Serif+Display%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPlayfair+Display%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CDavid+Libre%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CBai+Jamjuree%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CIBM+Plex+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMuli%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CGraduate%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CBevan%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CAlata%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRaleway%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.5.4
142.250.74.10200 OK 11 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CDM+Serif+Display%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPlayfair+Display%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CDavid+Libre%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CBai+Jamjuree%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CIBM+Plex+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMuli%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CGraduate%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CBevan%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CAlata%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRaleway%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.5.4
IP 142.250.74.10:0
Hash f482ab54dfa2894ccf19da4ba704f2b0
b35637d7e88f0c8025e7af1a2c4ee1cd0c6158c6
c3a0f757ffb80807a532a53c41194086368660b5c09d357838384eed92ad9470
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CDM+Serif+Display%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPlayfair+Display%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CDavid+Libre%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CBai+Jamjuree%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CIBM+Plex+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMuli%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CGraduate%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CBevan%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CAlata%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRaleway%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.5.4 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 18 Nov 2022 18:07:18 GMT
date: Fri, 18 Nov 2022 18:07:18 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e567bc1-d4b1-4dd2-b17e-3595ad1753e5.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e567bc1-d4b1-4dd2-b17e-3595ad1753e5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 35da1192dcadc6e329a9e60c16904301
90a146aef85765630a5e09e46a0a8682e204bec1
816d1387a3a91a82f0bdaa2b703b45aa30be206d30d4dd1e8ac5deca13de57ad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e567bc1-d4b1-4dd2-b17e-3595ad1753e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10281
x-amzn-requestid: 11dffc4e-71d7-4195-8890-62c8a2092728
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-77EWaIAMF3WA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab7f-3c0dc7e43023af827ac26958;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:45:35 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Xbau-BXu_W5Hu8QaCg3tvwfYMb_8L8F_muNp4gVukeNTmiDW4BAXhA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:24:03 GMT
age: 70996
etag: "90a146aef85765630a5e09e46a0a8682e204bec1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans
142.250.74.10200 OK 12 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans
IP 142.250.74.10:0
Hash dd92222ed5aef8e9f145bace4718c8c0
87ddb0ce370e0520f16db2352f58408a5868878d
772a8657719e738f763ba55a110fe11851f79a4a88c06aac408d35c20b19842e
GET /css?family=Open+Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 18 Nov 2022 18:07:18 GMT
date: Fri, 18 Nov 2022 18:07:18 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d0b6106f00f9fd8b89c2d484a559a1a
399ac393209dcdac7d2188d7aa8d95f04570ef7c
5d8151c9eb558f4a2b8bd2952c6845606ddb0c27e36f6e49aca7e60908cd9fe4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3759
x-amzn-requestid: 8c91ac59-89dc-4218-b69f-0cebb29f301b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-wJHgxoAMF-hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab33-4dac305614a92bc52c038222;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mb2-PTjNmt06Wd5jOjQ5WoLY-0NgI80CKPXtwgzBt4n5km8Pu_WN0Q==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:08:54 GMT
age: 71905
etag: "399ac393209dcdac7d2188d7aa8d95f04570ef7c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f1b43b0-5ba1-4c6c-9a53-bfae9befdd7d.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f1b43b0-5ba1-4c6c-9a53-bfae9befdd7d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a9d32fa3866dd741de610a61a93ad893
4cb2141b1ef1e5bf19a3b355995dcd8fa36f695e
4492338de536cfae6fb42fd37170c60f4fbc281a2a924efe6d2b5af352cd102c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f1b43b0-5ba1-4c6c-9a53-bfae9befdd7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6344
x-amzn-requestid: cac35b04-be3b-4ae1-bb5e-8cedcd7a7db4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: btqOVFCXIAMFcOg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63755728-45c28fa333b748520be29b57;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 21:33:28 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: RQqPegf6sdVW0qmrGnUo6EORLuT7BRikwhtF08LAxWNCpLGwGZnG8Q==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:34:03 GMT
age: 73996
etag: "4cb2141b1ef1e5bf19a3b355995dcd8fa36f695e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
themarquetry.com/wp-content/themes/theratio/css/royal-preload.css?ver=5.5.4
194.59.164.81200 OK 1.3 kB URL HTTP/2 themarquetry.com/wp-content/themes/theratio/css/royal-preload.css?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash 64ae5e53c9425ef92e5d9d68dacc23c9
c0d80eb3e204aee3763a645720a8300de1237c8f
bb0ebba497830afff7b6adba9e6bd1241f30037527796c4d8619aac696129d7c
GET /wp-content/themes/theratio/css/royal-preload.css?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Thu, 18 Mar 2021 09:03:47 GMT
etag: "1dc6-60531773-fe425251947d63aa;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1276
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/themes/theratio/css/woocommerce.css?ver=5.5.4
194.59.164.81200 OK 4.9 kB URL HTTP/2 themarquetry.com/wp-content/themes/theratio/css/woocommerce.css?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash 20640ed7cf09e1cfd66a131d3602f60f
f63020c5f238dd424f58abda451331754920cf07
6181b4a53e5718dba665c5e499664bf4a246f6263af16ed6dc6b240c647da7fb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/css/woocommerce.css?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Thu, 18 Mar 2021 09:03:47 GMT
etag: "88de-60531773-bf4e4128677add4a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4866
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
194.59.164.81200 OK 6.6 kB URL HTTP/2 themarquetry.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (30837)
Hash 5a39ca5bbc4e9278d49eef51174f0d1b
c88872c778ed830995140652c4479039a3537ae8
ccf9c5c312928479c55fa9b37b5f0947731538a0264a3370dd8a13d58110ad63
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Tue, 16 Mar 2021 18:58:51 GMT
etag: "7917-6050ffeb-9120212bf3343972;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6627
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/css/simple-line-icons.css?ver=1.5.3
194.59.164.81200 OK 1.9 kB URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/css/simple-line-icons.css?ver=1.5.3
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (360)
Hash 412923d74f21a27968b94de7590e55a2
658e8d3307819e85813742c27d871fffacbcf08e
dd005fd3c756c560f2164889a09141765791761492d20b4ef419bc59d6563bf4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dethemekit-for-elementor/assets/css/simple-line-icons.css?ver=1.5.3 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Wed, 17 Mar 2021 10:49:14 GMT
etag: "2594-6051deaa-96c48d599fb4a1e6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1854
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/css/htflexboxgrid.css?ver=1.5.3
194.59.164.81200 OK 1.6 kB URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/css/htflexboxgrid.css?ver=1.5.3
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash 62c07fde7dd99d07605c0d5ca62233be
4f77821e1c9923c60437460e13d2b709d93ffeab
432c5e202ef21515d11488fb74310793cfdb5ac3f7b4b8bbceea26fb4576dbf8
GET /wp-content/plugins/dethemekit-for-elementor/assets/css/htflexboxgrid.css?ver=1.5.3 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Wed, 17 Mar 2021 10:49:14 GMT
etag: "41ff-6051deaa-360db17268a31e62;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1577
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/ht-slider-addons-pro/assets/css/slick.min.css?ver=1.0.5
194.59.164.81200 OK 518 B URL HTTP/2 themarquetry.com/wp-content/plugins/ht-slider-addons-pro/assets/css/slick.min.css?ver=1.0.5
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (1332), with CRLF line terminators
Hash 5f007d7edf0c95c8024277a1169071a0
639ad0bcd47119d1ad2307a72ff845c7beef44a0
012390e206db7bdc8bf3a3e0581641119c30cdf75575aea0d325f200be8d3a42
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ht-slider-addons-pro/assets/css/slick.min.css?ver=1.0.5 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Fri, 26 Mar 2021 12:09:45 GMT
etag: "636-605dcf09-6defb2e5431ddde6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 518
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/css/dethemekit-widgets.css?ver=1.5.3
194.59.164.81200 OK 13 kB URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/css/dethemekit-widgets.css?ver=1.5.3
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (347)
Hash 5c58f0e76c750a525523f2f8aef1b53c
d2c14a5e68a25f9d6bc953490a96c152e070195c
09364cc22f19fe184efa19733755cbaa23c1ed6bddcc8ba03e6be546402387fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dethemekit-for-elementor/assets/css/dethemekit-widgets.css?ver=1.5.3 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Wed, 17 Mar 2021 10:49:14 GMT
etag: "1bb9f-6051deaa-ad04d4a624ed724;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12823
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.11.0
194.59.164.81200 OK 3.3 kB URL HTTP/2 themarquetry.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.11.0
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (17186)
Hash ed18f7e81bd9db18c09d3d3a946c17fa
a7f3318f16e8793150036516c1ab55639dd39d94
7ea12a6e1a776bc1450af0399c2dcb73c460555e03fea26eff9213646199295e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.11.0 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Tue, 16 Mar 2021 18:58:47 GMT
etag: "4350-6050ffe7-112417d0643819f2;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3281
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.1.4
194.59.164.81200 OK 2.4 kB URL HTTP/2 themarquetry.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.1.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (10019)
Hash f480cd12f3c18225e406e533ceca2b75
75c4f87e98bc72e80707efdb358829410683e87c
2969122f862447894932756ab6cf065793ad7a1fa7447b208160bf885e5706e4
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.1.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Tue, 16 Mar 2021 18:58:47 GMT
etag: "4824-6050ffe7-b43c25e3d988090a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2422
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.1.4
194.59.164.81200 OK 15 kB URL HTTP/2 themarquetry.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.1.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65497)
Hash cb54dad74e5e01a338b6d3995d1813e0
e23d537c4e31bb0d9afa3aaf45ed5576c727518c
8dc0b2896d16c5f2804913b6590f013e1e89aa5a276ae68aadd3d9a7d25141d4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.1.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Tue, 16 Mar 2021 18:58:47 GMT
etag: "1c200-6050ffe7-7af45fe78bf83b30;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 14764
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/uploads/elementor/css/post-11.css?ver=1617461339
194.59.164.81200 OK 406 B URL HTTP/2 themarquetry.com/wp-content/uploads/elementor/css/post-11.css?ver=1617461339
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (1335), with no line terminators
Hash 142a342f638457f16e9d69c357fffca8
a3af71906fd112c80143864323dd8e72ee628768
35a5ccb9153babee5d116ce6cb868c9f1255a6e630f27bd424ef9125cfd501a9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-11.css?ver=1617461339 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Sat, 03 Apr 2021 14:48:59 GMT
etag: "537-6068805b-929a30b667ecf74f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 406
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/css/de-sticky-frontend.css?ver=1.5.3
194.59.164.81200 OK 247 B URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/css/de-sticky-frontend.css?ver=1.5.3
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash 20fbbabd21310a52cd91fc367e330360
d4a44aba07f7989b81d5c7270ce6c2604f3deabf
5695a911cd2382dcb1296568b6f3aafb9975f7f64472736f88bd86c72b1f892e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dethemekit-for-elementor/assets/css/de-sticky-frontend.css?ver=1.5.3 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Wed, 17 Mar 2021 10:49:14 GMT
etag: "f7-6051deaa-befea204622afdba;;;"
accept-ranges: bytes
content-length: 247
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/uploads/elementor/css/post-3599.css?ver=1634963442
194.59.164.81200 OK 5.3 kB URL HTTP/2 themarquetry.com/wp-content/uploads/elementor/css/post-3599.css?ver=1634963442
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (62548), with no line terminators
Hash 8b16d17227c86b16291250af964aec5d
6821808503b60979810df356a0f47a965e7c91e3
dfca897bde2c54899d452b27c8077c9bd6a18a53c9a375b4325e178b2fe25880
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-3599.css?ver=1634963442 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Sat, 23 Oct 2021 04:30:42 GMT
etag: "f454-61738ff2-fe2b6f35ec90a53c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5264
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/css/de-product-display.css?ver=1.5.3
194.59.164.81200 OK 907 B URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/css/de-product-display.css?ver=1.5.3
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash f14668dc567aeef5ba9086dbef4334d9
434a14f38bcc9018375aa40803dc9a3fcb5701dc
e6e5ec4715da1af6a58fb0243bbf4abef3d06b91a8a643e1289d4a8ae47bb8a4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dethemekit-for-elementor/assets/css/de-product-display.css?ver=1.5.3 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Wed, 17 Mar 2021 10:49:14 GMT
etag: "476f-6051deaa-69830e5f09bd163a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 907
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/widget/static/widgets.css?ver=3.13
194.59.164.81200 OK 195 B URL HTTP/2 themarquetry.com/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/widget/static/widgets.css?ver=3.13
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash 02bf828690d094a5e077d5367bd8f8c4
5736163b07aecab39e3537f59e3fa569be448903
c44d71d0aaad5a762656561d427b2b85147d6521a0fdc99deb86b7afe98a7f07
GET /wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/widget/static/widgets.css?ver=3.13 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Thu, 12 Aug 2021 12:15:49 GMT
etag: "18a-611510f5-91331ae6e4e102f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 195
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/nextgen_basic_gallery/static/thumbnails/nextgen_basic_thumbnails.css?ver=3.13
194.59.164.81200 OK 1.2 kB URL HTTP/2 themarquetry.com/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/nextgen_basic_gallery/static/thumbnails/nextgen_basic_thumbnails.css?ver=3.13
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash a0acab94c94a227439f21bb7ebec84e7
804662f5f8713cca4b230343aff5177690e5a08c
b8adfebfbce09e8fed0e4924dcf775bf1d2e8a437321a75e2892268699e659b5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/nextgen_basic_gallery/static/thumbnails/nextgen_basic_thumbnails.css?ver=3.13 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Thu, 12 Aug 2021 12:15:52 GMT
etag: "1f88-611510f8-53c9209bca3506c9;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1179
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/nextgen_basic_gallery/static/slideshow/ngg_basic_slideshow.css?ver=3.13
194.59.164.81200 OK 491 B URL HTTP/2 themarquetry.com/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/nextgen_basic_gallery/static/slideshow/ngg_basic_slideshow.css?ver=3.13
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash f47a905a3994c735e1fabc5f1c2c621f
f65ab1401b76c42e505ee7b3d5acc7f632972018
27bdc2adb5f871e2015916acb2cb9f912ab0dcfdb2bb148557ab17f9ecf6ae93
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/nextgen_basic_gallery/static/slideshow/ngg_basic_slideshow.css?ver=3.13 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Thu, 12 Aug 2021 12:15:52 GMT
etag: "8a4-611510f8-4e2ffb4d5d6bd7f1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 491
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/wpmm-dynamic-css/template-dynamic_style.css?timestamp=1668756943&ver=5.5.4
194.59.164.81200 OK 0 B URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/wpmm-dynamic-css/template-dynamic_style.css?timestamp=1668756943&ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/plugins/wp-mega-menu-pro/wpmm-dynamic-css/template-dynamic_style.css?timestamp=1668756943&ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Fri, 18 Nov 2022 18:05:46 GMT
etag: "0-6377c97a-df00e2c65f236582;;;"
accept-ranges: bytes
content-length: 0
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/default-responsive.css?ver=1
194.59.164.81200 OK 1.8 kB URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/default-responsive.css?ver=1
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash f28dbfd21765de5e5f6d6a6bb45f3fb3
f96414017d5cf182a0f0656123a07b24e68c43ea
3a5155f92d91cd1e9d60f7cf49daae6c2a0d9c8c81ad5b263b6756fb757d0dd1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-mega-menu-pro/css/default-responsive.css?ver=1 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Sat, 27 Mar 2021 18:03:53 GMT
etag: "2eed-605f7389-806763a12d97537e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1819
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/wpmm-dynamic-css/wpmm-custom-theme.css?timestamp=1668756943&ver=1
194.59.164.81200 OK 1.3 kB URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/wpmm-dynamic-css/wpmm-custom-theme.css?timestamp=1668756943&ver=1
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (1347), with CRLF line terminators
Hash 831a6632ddcd8746d8a1d15fdbc1ebac
027ee9d03a7989df63d9b414b7789b46798cfad3
9182eeaef0971ae1b4f56e06f9afbdd79899b56fd13367f6a4bff076b806ae31
GET /wp-content/plugins/wp-mega-menu-pro/wpmm-dynamic-css/wpmm-custom-theme.css?timestamp=1668756943&ver=1 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Fri, 18 Nov 2022 18:05:46 GMT
etag: "3691-6377c97a-65bf0cab5f598719;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1254
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/wpmm-dynamic-css/wpmm-extra-custom.css?timestamp=1668756943&ver=1
194.59.164.81200 OK 686 B URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/wpmm-dynamic-css/wpmm-extra-custom.css?timestamp=1668756943&ver=1
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (10757), with CRLF line terminators
Hash 5b59f5b4dba98ecc689fa170db3f776b
14907efeedce00923003a92d7e766ba25b15eac4
ed81fb37adbe4a44f47294c80e1b1d922134a730376427d4238752da2abd60db
GET /wp-content/plugins/wp-mega-menu-pro/wpmm-dynamic-css/wpmm-extra-custom.css?timestamp=1668756943&ver=1 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Fri, 18 Nov 2022 18:05:46 GMT
etag: "2b90-6377c97a-ea5509c2908cf3a7;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 686
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/responsive.css?ver=5.5.4
194.59.164.81200 OK 1.3 kB URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/responsive.css?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash 12b48d46b16962d770e5339fb3654ad7
533bf3dedab08c6d6ce27d85aa62645cdd850780
1915f4b7798286237f96edb92276795b1fa948af636201f0092c85e282c79cb7
GET /wp-content/plugins/wp-mega-menu-pro/css/responsive.css?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Sat, 27 Mar 2021 18:03:53 GMT
etag: "2651-605f7389-c8e161dcb6cc9f50;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1331
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/animate.css?ver=2.1.5
194.59.164.81200 OK 4.0 kB URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/animate.css?ver=2.1.5
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash 608015814f9409d14a608d03e5e34561
7a79e6e9000ca225d01dea2075f286ddc26632b7
6cb4797ab9f920b5276880c864fbd3bfdd8c9886eb3a206b1af975c9d2dd5406
GET /wp-content/plugins/wp-mega-menu-pro/css/animate.css?ver=2.1.5 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Sat, 27 Mar 2021 18:03:49 GMT
etag: "11a43-605f7385-fa6c84d222782373;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3978
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/colorbox.css?ver=2.1.5
194.59.164.81200 OK 1.3 kB URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/colorbox.css?ver=2.1.5
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash acb0eeee1cbbe880605772bb46b56000
e176585c55eed39c732cc1c159fe5275df686611
8852242b753b855c530ce49dc27e00f3a3bf47b3ec6b306cd103dc3384d293aa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-mega-menu-pro/css/colorbox.css?ver=2.1.5 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Sat, 27 Mar 2021 18:03:49 GMT
etag: "117a-605f7385-ff57e3d8c6f1b461;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1283
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/frontend_walker.css?ver=2.1.5
194.59.164.81200 OK 1.3 kB URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/frontend_walker.css?ver=2.1.5
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash f7344ca33278972e0bb4df15b2975201
d54a340921e005239a9ee9eb9a00fed5709a2b9f
e688a28643e1d7f0208cc2131dc0a5bf212623750d640446871d0ffbeff8ff54
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-mega-menu-pro/css/frontend_walker.css?ver=2.1.5 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Sat, 27 Mar 2021 18:03:49 GMT
etag: "1952-605f7385-e67fbe44809d7707;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1347
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/jquery.bxslider.css?ver=2.1.5
194.59.164.81200 OK 1.1 kB URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/jquery.bxslider.css?ver=2.1.5
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash 0f1beee580fb1b75c19f589f5ad223a3
9bc8d785dd20457cd9fd2a7d4887217b8464b948
b4a6d220a2b2fd3dec543b71f7a94133ebebce0011e8a0276bc754199a37a17e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-mega-menu-pro/css/jquery.bxslider.css?ver=2.1.5 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Sat, 27 Mar 2021 18:03:49 GMT
etag: "fd2-605f7385-d434f498ebc089c5;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1126
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/linecon.css?ver=2.1.5
194.59.164.81200 OK 674 B URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/linecon.css?ver=2.1.5
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash 5db7dc233fc86cea08ec78329ac6bc93
322acf872708609c7c3007d7228996d29f8fc8b1
1433ba4e8b02f2ded6679c8d5e7713ece1979adce86394ebc63a8d5c03a6f2bd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/linecon.css?ver=2.1.5 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: text/css
last-modified: Sat, 27 Mar 2021 18:03:53 GMT
etag: "cbc-605f7389-2284f4a414e9581f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 674
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/genericons.css?ver=5.5.4
194.59.164.81200 OK 16 kB URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/genericons.css?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (18732)
Hash 9332ff01ee4609b72dc620afaed865e4
260a36d11634f7fc740c72dc13e58b1eaaf3814f
4b03fce5e6ed4bde6f3be7d8f2fb7ff485a59871a149293ea63d9908d5be52ed
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/genericons.css?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: text/css
last-modified: Sat, 27 Mar 2021 18:03:49 GMT
etag: "6e6a-605f7385-dbe49d89f3d061e4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15951
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/icomoon.css?ver=5.5.4
194.59.164.81200 OK 3.9 kB URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/icomoon.css?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash db7551289327ae38b42b28a24aa8b619
b3a07439f927fafb94f3765b019281abc9313cbf
1222d967789e06a658ed818d4d6c384271cfae57f689cbd6d11b083b16cbe9ae
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/icomoon.css?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: text/css
last-modified: Sat, 27 Mar 2021 18:03:53 GMT
etag: "7a45-605f7389-3a75c3776ff71408;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3927
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/fontawesome.css?ver=5.5.4
194.59.164.81200 OK 8.2 kB URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/fontawesome.css?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash c7143e366b4d5f44aa229e34b4c30555
4796568c160572eaddecdc01e343cac493c64e4e
7f03b12e663d02ca898e405425cf29c2d82b976eb39dd5adabd402041e1264ee
GET /wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/fontawesome.css?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: text/css
last-modified: Sat, 27 Mar 2021 18:03:53 GMT
etag: "b797-605f7389-b3adc9bcef612ffe;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8205
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/fa-solid.css?ver=5.5.4
194.59.164.81200 OK 282 B URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/fa-solid.css?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash de557e76ff36be50c5177200bca68cf6
4960f56a79a044fa478e9542326b2f2301d1ff48
9937d585061916ce56e239db0ab33fb88a0dc33de755fa5f2c1556695365616d
GET /wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/fa-solid.css?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: text/css
last-modified: Sat, 27 Mar 2021 18:03:49 GMT
etag: "2a7-605f7385-dd30b7f9d3e07f76;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 282
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/fa-regular.css?ver=5.5.4
194.59.164.81200 OK 281 B URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/fa-regular.css?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash 4fa1bba770b3b651c3ec04b7071e47a7
3452448218a7e60a517976a7683b527735c47bdc
387e8d32cea4454a4e25ebacfbac44d3926bec1bbc15d40171b044673a796ea7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/fa-regular.css?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: text/css
last-modified: Sat, 27 Mar 2021 18:03:53 GMT
etag: "2ae-605f7389-6da78d3bdd6e00ad;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 281
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/fa-brands.css?ver=5.5.4
194.59.164.81200 OK 276 B URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/fa-brands.css?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash 87c2a844e56b761d2eed920b9989e289
1f9e8c48902c53d41a195cded477dd18ccf1b785
32794c82e49db8393ab5acc9909ca8a81e0ddd0e55ed3c72dd3135b4a380c3de
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/fa-brands.css?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: text/css
last-modified: Sat, 27 Mar 2021 18:03:53 GMT
etag: "297-605f7389-5fa8aa81dad4e5a0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 276
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/font-awesome.min.css?ver=2.1.5
194.59.164.81200 OK 6.6 kB URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/font-awesome.min.css?ver=2.1.5
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (30819)
Hash 87b71082744922e29285f55c58507312
0df115f70b2e75f72d5c828eaa2f434b4aa5ce1e
06142bafe7e6c3c9843bbdc4c12987e86d6cec44ec0ba6215795b939a9319250
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/font-awesome.min.css?ver=2.1.5 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: text/css
last-modified: Sat, 27 Mar 2021 18:03:53 GMT
etag: "7906-605f7389-72fbf7a942350146;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6625
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/themify-icons.css?ver=5.5.4
194.59.164.81200 OK 2.7 kB URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/themify-icons.css?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash 1205f48fabc8b093dcfe32c756c536bd
84363b6900180c9c98608694069a339ce3c8f10b
47f08e63f13fb9f90458cbd33b62f8085d8a6d5119ba9ac3f92dd5504695016e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-mega-menu-pro/css/wpmm-icons/themify-icons.css?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: text/css
last-modified: Sat, 27 Mar 2021 18:03:53 GMT
etag: "4033-605f7389-874d14b9f91374d0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2652
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/faq_revo/js/magnific-popup/magnific-popup-style.css?ver=5.5.4
194.59.164.81200 OK 1.7 kB URL HTTP/2 themarquetry.com/wp-content/plugins/faq_revo/js/magnific-popup/magnific-popup-style.css?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash fca2686f57f652476c501041945f949b
651c2ad1b941cdf9c84140fdc5ab7c38708a7a0d
d89a85c0afb495f57974170592f032b9758509f99270612aef5b4ab24e680ca0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/faq_revo/js/magnific-popup/magnific-popup-style.css?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: text/css
last-modified: Tue, 30 Mar 2021 14:05:24 GMT
etag: "1c86-60633024-338f28b8fc0c971f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1656
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/faq_revo/js/justified_gallery/css/justifiedGallery.min.css?ver=5.5.4
194.59.164.81200 OK 590 B URL HTTP/2 themarquetry.com/wp-content/plugins/faq_revo/js/justified_gallery/css/justifiedGallery.min.css?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash 663cdef02bd5de96e0969eff0e60566d
31dd2ce10b402b96741be60b762478dbe10f974b
73e5135c96a89c030dd2d807b3555759ff0abdb874612335845d0e8c331481be
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/faq_revo/js/justified_gallery/css/justifiedGallery.min.css?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: text/css
last-modified: Tue, 30 Mar 2021 14:05:24 GMT
etag: "9d3-60633024-90aa22b0b64b0dc6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 590
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/faq_revo/js/simplelightbox/simplelightbox.min.css?ver=5.5.4
194.59.164.81200 OK 731 B URL HTTP/2 themarquetry.com/wp-content/plugins/faq_revo/js/simplelightbox/simplelightbox.min.css?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (3223)
Hash 3ca67236133c5ff4593b23f88edf07cc
10b688568cc8ec8ef38cc88809b89a79b18668a6
a6587ec2af7762a582eca802ca2aa8d32380f0b313aa6fbb52d3e3ec96856b7e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/faq_revo/js/simplelightbox/simplelightbox.min.css?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: text/css
last-modified: Tue, 30 Mar 2021 14:05:24 GMT
etag: "c98-60633024-c04995d70d78194a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 731
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/faq_revo/css/frontend.min.css?ver=5.5.4
194.59.164.81200 OK 2.4 kB URL HTTP/2 themarquetry.com/wp-content/plugins/faq_revo/css/frontend.min.css?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (10832), with no line terminators
Hash 6ffd33573b2506a4de5c00fe65528945
c00c1b067cb6dc028c437482301450346a1a2a1e
b2b24a31b99c09a8aa909706c62b4f01e7444e8fbbf58cae3839f30e62437443
GET /wp-content/plugins/faq_revo/css/frontend.min.css?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: text/css
last-modified: Tue, 30 Mar 2021 14:05:24 GMT
etag: "2a50-60633024-e319e59b8d7c8b9e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2433
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/faq_revo/css/custom.css?ver=1.1-5d225515c629789fbaf4faff25bbac56
194.59.164.81200 OK 895 B URL HTTP/2 themarquetry.com/wp-content/plugins/faq_revo/css/custom.css?ver=1.1-5d225515c629789fbaf4faff25bbac56
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash 1e9c75cb4f3a35d7482a40017e34be1b
3671bd19041736e7d652e4e1c46a49d3adb26ca4
6e07c8a9246503ed735d1af8d5ce27e1461e90d4e2fbafbf5a9e3beb48f5038e
GET /wp-content/plugins/faq_revo/css/custom.css?ver=1.1-5d225515c629789fbaf4faff25bbac56 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: text/css
last-modified: Tue, 30 Mar 2021 14:06:02 GMT
etag: "f1e-6063304a-bdf5fed29a8a7d85;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 895
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/css/de_loop/ecs-style.css?ver=1.5.3
194.59.164.81200 OK 1.6 kB URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/css/de_loop/ecs-style.css?ver=1.5.3
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash 4897f7abce7a01a17bf1ef0ffc130172
5d2e1d3543f0f08098654cc6b5fcc16660ce4b71
09ce2988eb6269072f47519c3276177e5fced28ec5faeef0c38c468f9069adce
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dethemekit-for-elementor/assets/css/de_loop/ecs-style.css?ver=1.5.3 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: text/css
last-modified: Wed, 17 Mar 2021 10:49:14 GMT
etag: "22d6-6051deaa-fcee3f03c86a9384;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1618
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.1
194.59.164.81200 OK 12 kB URL HTTP/2 themarquetry.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.1
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (57726)
Hash 019d8f3be7ce5ec330aba71f2c830245
e984cd6ed325f19e7d27a175a9e32e83eda3ddf4
e80693da8c4cf77d72111adad66526556fdd2100c4bca4f50ffa0e1d65153a8c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.1 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: text/css
last-modified: Tue, 16 Mar 2021 18:58:47 GMT
etag: "e238-6050ffe7-1fa28d994d8239e1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12071
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.1
194.59.164.81200 OK 283 B URL HTTP/2 themarquetry.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.1
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (489)
Hash 878352a024907b7484aed8ff3df3365f
e0ec2ad181d756b3e24ff3286b54bf679b25f4ef
4010d64b49cd0b189d459b62ee1b5efa1784663010933fd85690c6866c428f7d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.1 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: text/css
last-modified: Tue, 16 Mar 2021 18:58:47 GMT
etag: "2a3-6050ffe7-3d273f934d544e90;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 283
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.1
194.59.164.81200 OK 286 B URL HTTP/2 themarquetry.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.1
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (483)
Hash dd8fa48903cc839f219c5ea5f8c83d97
b37c1219e3faf68a1a6d3e9e69cc6bc3768e0f78
82a9dc8780d5943453178fbb9dc80e04bb98ef9454523ad5b209adff09bdf214
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.1 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: text/css
last-modified: Tue, 16 Mar 2021 18:58:47 GMT
etag: "29d-6050ffe7-b30041131ce37a94;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 286
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/chaty/js/cht-front-script.js?ver=1631299049
194.59.164.81200 OK 12 kB URL HTTP/2 themarquetry.com/wp-content/plugins/chaty/js/cht-front-script.js?ver=1631299049
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (1670), with CRLF line terminators
Hash adf2d504f6b6ececde2504b4d9cb1298
ddea6f666f6e2659a54d2cd36033d8a816402a5b
0ad2c523cccfd5cf2069706cf53d88e0eff05fe18b4556837ce8cf78894e6a1d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/chaty/js/cht-front-script.js?ver=1631299049 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: application/x-javascript
last-modified: Fri, 10 Sep 2021 06:37:31 GMT
etag: "13658-613afd2b-52c82cc95211f28a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11628
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/themes/theratio/js/myloadmore.js?ver=1668756943
194.59.164.81200 OK 1.1 kB URL HTTP/2 themarquetry.com/wp-content/themes/theratio/js/myloadmore.js?ver=1668756943
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type assembler source, ASCII text, with CRLF line terminators
Hash 632fd3d88ba2c7df1e568f2367cd1ce1
936361ffea76194f6e08274993fc3d3d48cff523
efe69c5aa695d570a8c3a8a4f2c21897a95b7dee184a769bb66c301956c66e0e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/js/myloadmore.js?ver=1668756943 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: application/x-javascript
last-modified: Thu, 18 Mar 2021 09:04:00 GMT
etag: "ca1-60531780-be9b6d10533648cc;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1064
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/js/jquery-migrate-1.4.1-wp.js?ver=5.5.4
194.59.164.81200 OK 7.5 kB URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/js/jquery-migrate-1.4.1-wp.js?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash 52cd81a84179d0b64a058e23950e3d4d
6f8d2756d83fe44c834faa0e21271f9aab1543a5
3ab867b2cd82fe495fb21b31851fd39ae4ff17ab3d63425129c0e4934cbf8189
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dethemekit-for-elementor/assets/js/jquery-migrate-1.4.1-wp.js?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: application/x-javascript
last-modified: Wed, 17 Mar 2021 10:49:18 GMT
etag: "5c79-6051deae-8d40f206090b3f9b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7489
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/js/de_loop/ecs_ajax_pagination.js?ver=1.5.3
194.59.164.81200 OK 1.1 kB URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/js/de_loop/ecs_ajax_pagination.js?ver=1.5.3
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash f3130724af56e46c4b139960ba3ba722
e3fbdd1d65d92389a094f1d325264868dbcff86d
dcf64726b4f684166ce804b24a8e02904b6b6024ee40fba0563d9954e62a32b8
GET /wp-content/plugins/dethemekit-for-elementor/assets/js/de_loop/ecs_ajax_pagination.js?ver=1.5.3 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: application/x-javascript
last-modified: Wed, 17 Mar 2021 10:49:18 GMT
etag: "d6f-6051deae-519b1c59eba9f0e8;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1090
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/js/jquery.bxslider.min.js?ver=2.1.5
194.59.164.81200 OK 4.9 kB URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/js/jquery.bxslider.min.js?ver=2.1.5
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (19040)
Hash f492f817244be86541699517c2eb9275
a5b3201e795f794dbab925db93fd691cc3318176
6dc221aa1a694ee994edc9206d4b9daf663050e566b493caa5f2972f9989e633
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-mega-menu-pro/js/jquery.bxslider.min.js?ver=2.1.5 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Sat, 27 Mar 2021 18:03:57 GMT
etag: "4b9f-605f738d-e81c3160607252c9;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4874
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/js/jquery.actual.js?ver=2.1.5
194.59.164.81200 OK 1.1 kB URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/js/jquery.actual.js?ver=2.1.5
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash b7a234dfa5b1eaa51b3cde0815eb763c
19955a522c8c0e1dcbf8e44e61360ff4b8bcc0dd
47ae8307354279fdfd129e4fddd7bb9f0bb05229ed178ad3105c8acd2bea17f5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-mega-menu-pro/js/jquery.actual.js?ver=2.1.5 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Sat, 27 Mar 2021 18:03:57 GMT
etag: "c7c-605f738d-8ebc817509a1a74b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1105
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/js/jquery.colorbox.js?ver=2.1.5
194.59.164.81200 OK 8.4 kB URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/js/jquery.colorbox.js?ver=2.1.5
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash 8dc7e21b52b5f9cddce78cee0d1e6135
db783636c75f6874ea7429bcb74acea27d57e03a
228e2c8c0ec4ec3986a34883d58580de5f3acd63e2e89bd3791264645d20b3d6
GET /wp-content/plugins/wp-mega-menu-pro/js/jquery.colorbox.js?ver=2.1.5 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Sat, 27 Mar 2021 18:03:57 GMT
etag: "71f1-605f738d-e55d358b6130ea6f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8373
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/js/jquery.validate.js?ver=2.1.5
194.59.164.81200 OK 10 kB URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/js/jquery.validate.js?ver=2.1.5
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (1239)
Hash 94fe1f76fcaca9d383e2da0b41eeae62
7fe3fece75fa634b16b316d777e079c45dbedfd9
3731e26ef2388c6bbe9d396cd0d63db66dbdfffd30c6f50a0030517fc163d199
GET /wp-content/plugins/wp-mega-menu-pro/js/jquery.validate.js?ver=2.1.5 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Sat, 27 Mar 2021 18:03:57 GMT
etag: "9b07-605f738d-70844277d2774c3e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10075
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/js/ajax-auth-script.js?ver=2.1.5
194.59.164.81200 OK 838 B URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/js/ajax-auth-script.js?ver=2.1.5
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash bbab43f6ea5bdba0d8e7531f5bf3746b
2fef558f398240cb0175f50fa10272690c614539
f86be2ff74136629c7eb50f387cf1b65d876df8d71529cfe285a0bb18550c985
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-mega-menu-pro/js/ajax-auth-script.js?ver=2.1.5 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Sat, 27 Mar 2021 18:03:57 GMT
etag: "b86-605f738d-7a9fdc00c0cb6f93;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 838
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/js/de_loop/ecs.js?ver=1.5.3
194.59.164.81200 OK 284 B URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/js/de_loop/ecs.js?ver=1.5.3
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash 447712f49ef92d24eda0381882e5f00b
b041299af91182f0d7a997769cd20e3a2f7ebef4
566d4c5dfefc9c4d867e6bef080917a4273b4228731a8700e81f1763eae3d861
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dethemekit-for-elementor/assets/js/de_loop/ecs.js?ver=1.5.3 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Wed, 17 Mar 2021 10:49:18 GMT
etag: "11c-6051deae-2fd9023c5bf60a16;;;"
accept-ranges: bytes
content-length: 284
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-includes/js/wp-emoji-release.min.js?ver=5.5.4
194.59.164.81200 OK 4.5 kB URL HTTP/2 themarquetry.com/wp-includes/js/wp-emoji-release.min.js?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (15224)
Hash 9336a67615b8765497b6efb3b0ce86af
8e9f93d0e91889a28040f9f8f8d2acf71a0acdbb
4834743cf8467e0159799d7c291fe7ef0db3d96323b60fe1bccdaa7d932a7de3
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Tue, 20 Jul 2021 17:33:48 GMT
etag: "4705-60f708fc-787e7950b2f58aaf;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4499
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/uploads/elementor/css/post-2724.css?ver=1617461339
194.59.164.81200 OK 536 B URL HTTP/2 themarquetry.com/wp-content/uploads/elementor/css/post-2724.css?ver=1617461339
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (2828), with no line terminators
Hash 7e543f5e8bb3e560f845612726abe1e0
8f0978608193251132fa7a8c1e6f521f8dcde756
b172f7d6e1b6eefa026ffc87d0eadb7d62337353b6cd09bed006db1b1c0c5833
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-2724.css?ver=1617461339 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: text/css
last-modified: Sat, 23 Oct 2021 04:29:20 GMT
etag: "b0c-61738fa0-3f55a6bd9a994286;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 536
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/uploads/elementor/css/post-6489.css?ver=1617461481
194.59.164.81200 OK 714 B URL HTTP/2 themarquetry.com/wp-content/uploads/elementor/css/post-6489.css?ver=1617461481
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (3696), with no line terminators
Hash 624a7cbcbd5a551426d44e92b7615380
30815d925b7effae0606a558e6255ec02b4077f4
a20ccae998ea67584aa38a6d8104943059de7fa5b6adcfd891dec98aeeb3d247
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-6489.css?ver=1617461481 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: text/css
last-modified: Sat, 03 Apr 2021 14:51:21 GMT
etag: "e70-606880e9-19843baf4611d9f2;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 714
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/uploads/elementor/css/post-6495.css?ver=1617461482
194.59.164.81200 OK 709 B URL HTTP/2 themarquetry.com/wp-content/uploads/elementor/css/post-6495.css?ver=1617461482
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (3682), with no line terminators
Hash b401bd342e0cf7dd3de5bd58bf38b18b
3299a8cf202ae220329ba0deb8100809247f175d
b9aa71c643600a6b2a84dc0dca36ae16624a39887231147ea5fd00d4b7eec13d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-6495.css?ver=1617461482 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: text/css
last-modified: Sat, 03 Apr 2021 14:51:22 GMT
etag: "e62-606880ea-b82cb4b98f01d744;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 709
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/uploads/elementor/css/post-6500.css?ver=1617461482
194.59.164.81200 OK 811 B URL HTTP/2 themarquetry.com/wp-content/uploads/elementor/css/post-6500.css?ver=1617461482
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (4557), with no line terminators
Hash 74c3c9b029eaafe45514979620a6ef1d
a6d9f1b88df173c20fe3fd6b7f664387ec02a0bc
de660e30b05f0022aca68b8e566ff33cecc01785a9a25620533fb321d05aa319
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-6500.css?ver=1617461482 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: text/css
last-modified: Sat, 03 Apr 2021 14:51:22 GMT
etag: "11cd-606880ea-2efea0a98cfa7898;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 811
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/uploads/elementor/css/post-6509.css?ver=1617461482
194.59.164.81200 OK 711 B URL HTTP/2 themarquetry.com/wp-content/uploads/elementor/css/post-6509.css?ver=1617461482
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (3434), with no line terminators
Hash ed62aba1239110cb242fc5f2af9f37f5
64fff8dda12af9e8faffca5f30a89b686bc3cd7a
1dcf2c3a355d7b067e6cb1fa3c40a0c4f3bc4a6b3371b07635366f471a04e18b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-6509.css?ver=1617461482 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: text/css
last-modified: Sat, 03 Apr 2021 14:51:22 GMT
etag: "d6a-606880ea-8da31980542e3a61;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 711
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=4.4.3
194.59.164.81200 OK 17 kB URL HTTP/2 themarquetry.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=4.4.3
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash cd431aa87ddcf1d92e2f03ea7702b56c
cbf266ef623d1822a0cc79d3af7896981fb50b6b
c6e17c29b45819db63b74aeb4611a79ce81d8181234c9286e5d285c97d9fd8d6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=4.4.3 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:18 GMT
content-type: text/css
last-modified: Thu, 15 Jul 2021 05:17:30 GMT
etag: "29a8a-60efc4ea-ac7ba0f3c2a5a476;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 17121
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/themes/theratio/style.css?ver=5.5.4
194.59.164.81200 OK 24 kB URL HTTP/2 themarquetry.com/wp-content/themes/theratio/style.css?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (395)
Hash 8688ad3e989bf24038be5e3012678b66
f9b45044e0258197515308b8f192cc6ffce78512
1454753e7e288437aeda39169fa374c6d8403bd34fe06777e11837a2093f6ebe
GET /wp-content/themes/theratio/style.css?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Thu, 18 Mar 2021 09:04:00 GMT
etag: "2b10f-60531780-7fc3cc76cbaaf968;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 24098
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/style.css?ver=1
194.59.164.81200 OK 31 kB URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/css/style.css?ver=1
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type assembler source, Unicode text, UTF-8 text, with CRLF line terminators
Hash 4afbef237986e23c3eb171fe3dfab423
850064a01b76c1a716d99b5a8a2fca4a22a7491f
5956354c3b24dc6d27be7522d5032dc59a1e9a8bc4ad56c08c1654b5483f2663
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-mega-menu-pro/css/style.css?ver=1 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:19 GMT
content-type: text/css
last-modified: Sat, 27 Mar 2021 18:03:53 GMT
etag: "53676-605f7389-71330eff02ff5db5;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30625
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/js/jquery-1.12.4-wp.js?ver=5.5.4
194.59.164.81200 OK 33 kB URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/js/jquery-1.12.4-wp.js?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (31997)
Hash 02d9c0fa728151a1c5edc707bb6c04b0
68bc00a51376865caefd0bca42c2602eaeb49e0f
84ea52b9ec868ba962534b0e5e0ce474c0dc8e2e454ef7b84e99eabc437f989f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dethemekit-for-elementor/assets/js/jquery-1.12.4-wp.js?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: application/x-javascript
last-modified: Wed, 17 Mar 2021 10:49:18 GMT
etag: "17a56-6051deae-eb9c602c5827679d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32584
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/uploads/elementor/css/post-4525.css?ver=1631552408
194.59.164.81200 OK 2.6 kB URL HTTP/2 themarquetry.com/wp-content/uploads/elementor/css/post-4525.css?ver=1631552408
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (39394), with no line terminators
Hash f9d42adbd645042084fd96087bc1615e
c544e161e10d77d0dcc3da156a4049a1c5a95555
7ac88c2ed792bfcf7a8c0b2ee2f3dc6493b83a7116b704d77949c71c03a41fc2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-4525.css?ver=1631552408 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: text/css
last-modified: Mon, 13 Sep 2021 17:00:08 GMT
etag: "99e2-613f8398-d15d73ad18a9c6d1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2579
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7
194.59.164.81200 OK 2.3 kB URL HTTP/2 themarquetry.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (6406), with no line terminators
Hash 7288c3b6110b68ddcfa671616c0f65a9
77b4120510330292b9260984949f62925a5fd96a
bc6dd499d1b5713241c49a47259a152fc27cf1e08556c6fb1106441f935ed63c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Tue, 20 Jul 2021 17:33:57 GMT
etag: "1906-60f70905-4b3efc85e1f298b9;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2297
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
194.59.164.81200 OK 5.8 kB URL HTTP/2 themarquetry.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (16323)
Hash dcbde1701851530dc07c731e8d94ba5b
7835aff97a0e828ec376c1ab67bd2ffd566dfecf
6a8702b337918153d65eaf65cf69c0e940596c9796dda75d7d3b2346ffa7ae38
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Tue, 20 Jul 2021 17:33:56 GMT
etag: "4056-60f70904-b0d40ff96f048a6f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5769
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-includes/js/dist/hooks.min.js?ver=a7edae857aab69d69fa10d5aef23a5de
194.59.164.81200 OK 1.7 kB URL HTTP/2 themarquetry.com/wp-includes/js/dist/hooks.min.js?ver=a7edae857aab69d69fa10d5aef23a5de
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (5405)
Hash def63e1f8c0ae145a5d83f6e46083027
9f4efc3b1450e2af730ebf75bedd11844920bc54
ddcf56aee382c162997ca55ec76e08ccd7d2342145142d9d193063693feef138
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/hooks.min.js?ver=a7edae857aab69d69fa10d5aef23a5de HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Tue, 20 Jul 2021 17:33:53 GMT
etag: "1540-60f70901-87a14b0a81504686;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1714
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-includes/js/dist/i18n.min.js?ver=5f1269854226b4dd90450db411a12b79
194.59.164.81200 OK 3.7 kB URL HTTP/2 themarquetry.com/wp-includes/js/dist/i18n.min.js?ver=5f1269854226b4dd90450db411a12b79
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash e0ee5d77d840aef9a3a157a57b341f01
577b2ac6ca9ca6efcd4e58d7b755de9a703aeea8
1432880519185a5a43dcd95a5e058ffeba536997f0973695030969c821ab0416
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/i18n.min.js?ver=5f1269854226b4dd90450db411a12b79 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Tue, 20 Jul 2021 17:33:53 GMT
etag: "268a-60f70901-5c9e69fe4efcd925;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3713
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-includes/js/dist/url.min.js?ver=d4bdf85a96aa587b52f4b8d58b4457c1
194.59.164.81200 OK 1.9 kB URL HTTP/2 themarquetry.com/wp-includes/js/dist/url.min.js?ver=d4bdf85a96aa587b52f4b8d58b4457c1
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (4963)
Hash 56a69551891a850aec7ecbf51dd4fb00
2364e60b5e85850f4149748e1749e7f4612b01e3
53ee8fc58a577b9d0e61c53aee1054a6e738f5d43530595d514e5193a7724df2
GET /wp-includes/js/dist/url.min.js?ver=d4bdf85a96aa587b52f4b8d58b4457c1 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Tue, 20 Jul 2021 17:33:57 GMT
etag: "138a-60f70905-c88bc777100af126;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1909
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-includes/js/dist/api-fetch.min.js?ver=134e23b5f88ba06a093f9f92520a98df
194.59.164.81200 OK 2.4 kB URL HTTP/2 themarquetry.com/wp-includes/js/dist/api-fetch.min.js?ver=134e23b5f88ba06a093f9f92520a98df
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (5721)
Hash 5a4a833d566919f42a38976beb4ec29d
5a1d0b7509891530152c237deee1c72190086c76
55dc92ccbd65048e48747b9f1be3c04d711c49464f029c9967d45e72edf47000
GET /wp-includes/js/dist/api-fetch.min.js?ver=134e23b5f88ba06a093f9f92520a98df HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Tue, 20 Jul 2021 17:33:56 GMT
etag: "167c-60f70904-54ef08b6cc4b61ab;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2366
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4
194.59.164.81200 OK 3.0 kB URL HTTP/2 themarquetry.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type HTML document, ASCII text, with very long lines (10946), with no line terminators
Hash 130d7f3ef16cf92a9fb294e24895a4d2
b57f78935f106adbe66c334b0304e623ca8ed180
0e6ae7dafcb9b7cb24bebd0067b592ee5af95b1f46f7a100425b7e20823524f9
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Tue, 16 Mar 2021 19:28:06 GMT
etag: "2ac2-605106c6-5ac781ef96e9b3f5;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3025
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A400%2C300%2C300italic%2C400italic%2C600%2C600italic%2C700&ver=5.5.4
142.250.74.10200 OK 4.2 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A400%2C300%2C300italic%2C400italic%2C600%2C600italic%2C700&ver=5.5.4
IP 142.250.74.10:0
Hash b7c24781d0ba2792ab7f8b500d9241ce
605d7c62a9664f95baee48b855cfea960e498065
35a0c1e87a0d26d77d5f87bff5dac04a992f26b6619b0b824fe5719d4eb1b312
GET /css?family=Open+Sans%3A400%2C300%2C300italic%2C400italic%2C600%2C600italic%2C700&ver=5.5.4 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 18 Nov 2022 18:07:18 GMT
date: Fri, 18 Nov 2022 18:07:18 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=5.1.1
194.59.164.81200 OK 969 B URL HTTP/2 themarquetry.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=5.1.1
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash cf9cad2738c8b933c16322bb31b3b2b1
19a3424e1c40c8c379070d7cfd202d813edcab69
637631d7ef57db723d3fb9124c2746dabc9a60d9ae5c821d8cc8539be77a2c24
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=5.1.1 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Thu, 15 Jul 2021 05:17:17 GMT
etag: "bdd-60efc4dd-2e544ecd447a5a7b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 969
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
194.59.164.81200 OK 899 B URL HTTP/2 themarquetry.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (1668)
Hash 22d65ba38528349e705d912ce26bf8ac
c89ba006009043d93b88ff155b4fec8797330550
6253bcb85e4267ad3ba843145534e729ee2c1d7e85e5b4ab5b2e074ae636bca3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Thu, 15 Jul 2021 05:17:18 GMT
etag: "72a-60efc4de-57a3553d9b178d2f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 899
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=5.1.1
194.59.164.81200 OK 670 B URL HTTP/2 themarquetry.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=5.1.1
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (2066), with no line terminators
Hash 82a4bb80f29fd8b251ac026d682f1529
0f9f3105ae887d44bbc296ddadd171ba3ee2e75e
95516630f841e1de482eba3c4bcc57991bbe6dbb13d88bb5a2583669d29a01a5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=5.1.1 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Thu, 15 Jul 2021 05:17:17 GMT
etag: "812-60efc4dd-8d6faedc121bedc;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 670
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=5.1.1
194.59.164.81200 OK 934 B URL HTTP/2 themarquetry.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=5.1.1
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (2938), with no line terminators
Hash c9ca06bfe65658d4427a9bffefd50a5a
1e1fedfc31f84d90a4d1cdf84c7043d64a4cf6ad
21db708a8aad4adc614b92eaa1d3204c5fddaf65b0db7d0b9f5f219a41cc4f0e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=5.1.1 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Thu, 15 Jul 2021 05:17:17 GMT
etag: "b7a-60efc4dd-41fb0112c09663d4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 934
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/themes/theratio/js/royal_preloader.min.js?ver=1.0
194.59.164.81200 OK 2.5 kB URL HTTP/2 themarquetry.com/wp-content/themes/theratio/js/royal_preloader.min.js?ver=1.0
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (550), with CRLF line terminators
Hash 0fc66243f25ee38cea917806a53e0e88
c66d26d9ee96875f23de8bb5327ea42536b65cba
fb60a0f55d2ff35fb255eb1a6c167765ff61f426ba5f44ea64c140dab9838db6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/js/royal_preloader.min.js?ver=1.0 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Thu, 18 Mar 2021 09:04:00 GMT
etag: "243f-60531780-e3c04cdbfbaae227;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2512
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/themes/theratio/js/mousewheel.min.js?ver=20180910
194.59.164.81200 OK 1.2 kB URL HTTP/2 themarquetry.com/wp-content/themes/theratio/js/mousewheel.min.js?ver=20180910
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (2609), with CRLF line terminators
Hash f5dd69fb1c513cb8c0c8a034817aba11
e56bd37898887e4bacdc272f6ab61b03edd6e7dd
f33b4e2d91c78e6e41babdb322214059e86174bf26f8940f8e877ee94dbade66
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/js/mousewheel.min.js?ver=20180910 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Thu, 18 Mar 2021 09:04:00 GMT
etag: "ae0-60531780-e542284b662e8e80;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1154
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/themes/theratio/js/lightgallery-all.min.js?ver=20180910
194.59.164.81200 OK 12 kB URL HTTP/2 themarquetry.com/wp-content/themes/theratio/js/lightgallery-all.min.js?ver=20180910
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (31952), with CRLF line terminators
Hash 13964510aa0399013f70c633fbfcc43b
cd33a0a9cbbcac23e3425cbd0da3fea3c69b0543
f086cff44b69dc3a70373ef15b25a5dc2d7d09732494ca6a5c641b32ea1d7198
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/js/lightgallery-all.min.js?ver=20180910 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Thu, 18 Mar 2021 09:04:00 GMT
etag: "c6fd-60531780-ff24263697929945;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11845
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/themes/theratio/js/jquery.isotope.min.js?ver=20190829
194.59.164.81200 OK 9.5 kB URL HTTP/2 themarquetry.com/wp-content/themes/theratio/js/jquery.isotope.min.js?ver=20190829
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (32019), with CRLF line terminators
Hash 09cc29358b7a23b669132c68dfd3fcc1
a954dc3f83ec1f72b5e8a7a800cef8ad10c55f0b
ef11a5a7d29a782a2e12a7f1d7b1ab34fd8160a387d51849fd781f39743a17cc
GET /wp-content/themes/theratio/js/jquery.isotope.min.js?ver=20190829 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Thu, 18 Mar 2021 09:04:00 GMT
etag: "8a80-60531780-9e6708aa565a9920;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9501
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/themes/theratio/js/easypiechart.min.js?ver=20190829
194.59.164.81200 OK 1.6 kB URL HTTP/2 themarquetry.com/wp-content/themes/theratio/js/easypiechart.min.js?ver=20190829
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (3765), with CRLF line terminators
Hash aa5cdf214cb26b566c67034b2dbf0edd
fa434a28bf71c0f99115dd65a9baf7cb4ce413b4
80ae5a9a7ee428097c3bb37ebeeebcdbcc5f73f019452bf45572921f9d8c3467
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/js/easypiechart.min.js?ver=20190829 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Thu, 18 Mar 2021 09:04:00 GMT
etag: "f9e-60531780-8b60653f3cdd4834;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1585
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/themes/theratio/js/jquery.countdown.min.js?ver=20180910
194.59.164.81200 OK 623 B URL HTTP/2 themarquetry.com/wp-content/themes/theratio/js/jquery.countdown.min.js?ver=20180910
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (1156), with CRLF line terminators
Hash 47169b4fafbde60c47784b3eba31eea8
495217b2f0d0a485cb3f618cb61cfe72696a8ae3
a3062519c957cd2088f77974b7571f2f82387c841de814a9298d360e503bb24a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/js/jquery.countdown.min.js?ver=20180910 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Thu, 18 Mar 2021 09:04:00 GMT
etag: "524-60531780-92ca4414ca461ef5;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 623
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/themes/theratio/js/before-after.js?ver=20180910
194.59.164.81200 OK 5.3 kB URL HTTP/2 themarquetry.com/wp-content/themes/theratio/js/before-after.js?ver=20180910
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 07a1a7a31f4cbfa88a10e40236676407
9147a794c6cc21e60c323e4f1ec17b4f7ea1705f
218c85c70677fdd520a58af9b8e689eee2df32a73fe167f27ae69cf948c264f3
GET /wp-content/themes/theratio/js/before-after.js?ver=20180910 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Thu, 18 Mar 2021 09:04:00 GMT
etag: "53d4-60531780-693888843a49fcef;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5349
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/themes/theratio/js/elementor.js?ver=20180910
194.59.164.81200 OK 4.4 kB URL HTTP/2 themarquetry.com/wp-content/themes/theratio/js/elementor.js?ver=20180910
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash 08a457b867c1923285c7a9363bd5d525
6e089017e534b1891dc887bc86766a15985cd207
0948f2686ee9ff278e6c0a21f19cc8a40cb2e4b88f8b125856e52e71669cae30
GET /wp-content/themes/theratio/js/elementor.js?ver=20180910 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Thu, 18 Mar 2021 09:04:00 GMT
etag: "96df-60531780-bae7b2a1bab2bf93;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4388
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/themes/theratio/js/elementor-header.js?ver=20200317
194.59.164.81200 OK 726 B URL HTTP/2 themarquetry.com/wp-content/themes/theratio/js/elementor-header.js?ver=20200317
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash 36bcc979ff7d09a8fe4c5add957cf294
c69dca777953f8adc57bc8a57b80b7e513289573
618b420346620c8678568e8e70a17db14522a8f27cee78c796c65e1c49a38c1a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/js/elementor-header.js?ver=20200317 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Thu, 18 Mar 2021 09:04:00 GMT
etag: "aee-60531780-96089a8a7bfb3d1a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 726
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/themes/theratio/js/scripts.js?ver=20200317
194.59.164.81200 OK 2.4 kB URL HTTP/2 themarquetry.com/wp-content/themes/theratio/js/scripts.js?ver=20200317
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type assembler source, ASCII text, with CRLF line terminators
Hash 2ff1ba2b7269c2936871dfabe5d7c67f
19e39d44163554649cd3a563bacb386984cc5685
97d2772713433671b7a2c1b5b2fc48167465572e74a894d0a30e0fbc7d1ff0fc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/js/scripts.js?ver=20200317 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Thu, 18 Mar 2021 09:04:00 GMT
etag: "28a3-60531780-f4bfafde46fb8af1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2371
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/wp-mega-menu-pro/js/frontend.js?ver=2.1.5
194.59.164.81200 OK 5.2 kB URL HTTP/2 themarquetry.com/wp-content/plugins/wp-mega-menu-pro/js/frontend.js?ver=2.1.5
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash 2405ae6ce1ba35b5763dd2789aac96e6
1486f7ceae7892c0af611ef0f0f79fdbc92f9d2c
dddccdee8608248a054e4f8ea76d6e852871c3edcaa58b1a811456be3008aefa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-mega-menu-pro/js/frontend.js?ver=2.1.5 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Sat, 27 Mar 2021 18:03:57 GMT
etag: "a8d2-605f738d-a1156ff50e96be97;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5190
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/faq_revo/js/magnific-popup/magnific-popup.min.js?ver=1.1.0
194.59.164.81200 OK 7.0 kB URL HTTP/2 themarquetry.com/wp-content/plugins/faq_revo/js/magnific-popup/magnific-popup.min.js?ver=1.1.0
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (20087), with CRLF line terminators
Hash d2aac2f268aeca5fd099843ce92635c8
631c135ebeb6203a98b5b87c92600fbc0b6d15cf
cfd523fe2e5f0f32a9cafe1b11e59b2e5c4ee95ebddb33707f0703f75519b3fd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/faq_revo/js/magnific-popup/magnific-popup.min.js?ver=1.1.0 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Tue, 30 Mar 2021 14:05:24 GMT
etag: "4efb-60633024-c42e8dfd16593b43;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7034
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/faq_revo/js/justified_gallery/js/jquery.justifiedGallery.min.js?ver=3.7.0
194.59.164.81200 OK 4.8 kB URL HTTP/2 themarquetry.com/wp-content/plugins/faq_revo/js/justified_gallery/js/jquery.justifiedGallery.min.js?ver=3.7.0
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (18351)
Hash 959a64dcc76e096816bff95318566c6c
54c72e47cd4023c280e4ad7623f84687f63a6084
88e3aa67d1f9c463115d6a61d89aa61da3230889ac1f752851662e6a841cd56d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/faq_revo/js/justified_gallery/js/jquery.justifiedGallery.min.js?ver=3.7.0 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Tue, 30 Mar 2021 14:05:24 GMT
etag: "484e-60633024-39a589ce536db5cf;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4785
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/faq_revo/js/simplelightbox/simple-lightbox.min.js?ver=1.13.0
194.59.164.81200 OK 3.2 kB URL HTTP/2 themarquetry.com/wp-content/plugins/faq_revo/js/simplelightbox/simple-lightbox.min.js?ver=1.13.0
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (8955)
Hash e01672d69d81b8fa48bd95ee505e2653
b7d6367098e310dd695892d790e794d0f3ac0ef5
5457f7c20ac49b30662800b4e105b8ad353ff8d98bc12953bdd3257578860804
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/faq_revo/js/simplelightbox/simple-lightbox.min.js?ver=1.13.0 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Tue, 30 Mar 2021 14:05:24 GMT
etag: "2358-60633024-b5977d4970fc9f01;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3204
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/faq_revo/js/faq_revo.min.js?ver=1.1
194.59.164.81200 OK 3.3 kB URL HTTP/2 themarquetry.com/wp-content/plugins/faq_revo/js/faq_revo.min.js?ver=1.1
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (562), with CRLF line terminators
Hash b3f0a8092176db2d2e48c92f8a58028e
63dce2150de8344866a43734ca14d4b9d219bfa7
84e7dc7b89654bded217e1537e6d57584e4ce61798522e99efddb115b0f0b5b5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/faq_revo/js/faq_revo.min.js?ver=1.1 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Tue, 30 Mar 2021 14:05:24 GMT
etag: "2d5e-60633024-d0d38ecfac8218ad;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3335
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-includes/js/wp-embed.min.js?ver=5.5.4
194.59.164.81200 OK 665 B URL HTTP/2 themarquetry.com/wp-includes/js/wp-embed.min.js?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (1391)
Hash 700e04ed36d1ee217654e5413b3053eb
6bcee89f9a8722e90842fcbfc99b1c791477a434
5090971ff1192cf479176187926b296a4f3eff2995e3b0d35c63ae8d2febc133
GET /wp-includes/js/wp-embed.min.js?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Tue, 16 Mar 2021 16:56:06 GMT
etag: "592-6050e326-df47b8f21d26e73d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 665
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato
142.250.74.10200 OK 10 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato
IP 142.250.74.10:0
Hash dd21294bb76ddafbd9c9ba31cb67f0b1
771d818667f449ea6da2487ce6f35e2471d969c4
9e7e626bf7a092bb351af7c8fa6cf59c440c776f073d10d220063c3b9b726058
GET /css?family=Lato HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 18 Nov 2022 18:07:18 GMT
date: Fri, 18 Nov 2022 18:07:18 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/ht-slider-addons-pro/assets/js/htslider-widgets.js?ver=1.0.5
194.59.164.81200 OK 927 B URL HTTP/2 themarquetry.com/wp-content/plugins/ht-slider-addons-pro/assets/js/htslider-widgets.js?ver=1.0.5
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash 1753d3bba1d44b145ec597d713d53c30
b304a56cf8ca189a2c2b203525b6347f37ba77e7
f7b2d231ada2ad6a8f87c1026de880d00c31e6d9f2ced9ed94ccd62cf231060d
GET /wp-content/plugins/ht-slider-addons-pro/assets/js/htslider-widgets.js?ver=1.0.5 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Fri, 26 Mar 2021 12:09:45 GMT
etag: "1594-605dcf09-565be770daa93d0e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 927
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/js/lib/ResizeSensor.min.js?ver=1.7.0
194.59.164.81200 OK 857 B URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/js/lib/ResizeSensor.min.js?ver=1.7.0
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (2233)
Hash 2bc172b6b257c644f6ed3aefd9be75e7
f52f62da8eb75312dc0f73a25ead2374204657ba
a694d37b6c5e4a9015ac80f045c57a58bdef3079896a426fff9c73f410c22585
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dethemekit-for-elementor/assets/js/lib/ResizeSensor.min.js?ver=1.7.0 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Wed, 17 Mar 2021 10:49:18 GMT
etag: "8ec-6051deae-3856969a94784cec;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 857
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/js/lib/sticky-sidebar/sticky-sidebar.min.js?ver=3.3.1
194.59.164.81200 OK 3.3 kB URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/js/lib/sticky-sidebar/sticky-sidebar.min.js?ver=3.3.1
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (11677)
Hash 5a4339c68cc61caf4abd79bfddbfc58d
2cbb64d049255fb78de67b5e84d57c4598e7f1ec
8f2ea28ba05c73b8ff99b6e321a3bfde136eab1cf352fec1b98f9b5e6acfa321
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dethemekit-for-elementor/assets/js/lib/sticky-sidebar/sticky-sidebar.min.js?ver=3.3.1 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Wed, 17 Mar 2021 10:49:18 GMT
etag: "2e78-6051deae-4a359af15ff313c3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3257
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/js/lib/jsticky/jquery.jsticky.js?ver=1.1.0
194.59.164.81200 OK 1.3 kB URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/js/lib/jsticky/jquery.jsticky.js?ver=1.1.0
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash 9558550a52f3513dd64e393e0dfd1ccd
ab9b41e4a7758e93cc53000dc4d809f224937949
21cffae9499e50e259f0501ddfd5e2e8fc12e705c3644a625fbae29614be6413
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dethemekit-for-elementor/assets/js/lib/jsticky/jquery.jsticky.js?ver=1.1.0 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Wed, 17 Mar 2021 10:49:18 GMT
etag: "119f-6051deae-ebfcb95f8019a1ce;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1253
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.1.4
194.59.164.81200 OK 1.9 kB URL HTTP/2 themarquetry.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.1.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (4587)
Hash c71b88fadcff162f0d75b76f708f2c62
bdc5d18e39a1e654c4e2b6d8d22f18ec37e5433d
2e652ce541411195f7d49c9db744c72138147bf8a030c7eeb389b2350b2fa2ab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.1.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Tue, 16 Mar 2021 18:58:55 GMT
etag: "1212-6050ffef-25b2c6fc2e478359;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1875
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1
194.59.164.81200 OK 6.6 kB URL HTTP/2 themarquetry.com/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (7973)
Hash bd2372e1409ecb00da2942cf7a073335
6260b95bdc96a435af766b6ead7f6aaf8f5bda1e
b5d87d0a2e23b89eb51afac3274559451f20e778b51de226a2aa2f6ddfc2a06e
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.12.1 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Thu, 15 Apr 2021 05:51:53 GMT
etag: "5133-6077d479-8c7695d4322da2e3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6557
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
194.59.164.81200 OK 3.3 kB URL HTTP/2 themarquetry.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (10725)
Hash 84384cb0b5124513d931b1eb6d7e069b
81c83cc0af53d222ddbeee5c1b16c41eb61019af
65c9fc7389fe6c49a1940bc2b00b62404011642bb24701ad5aa874b6030fa26c
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Tue, 16 Mar 2021 18:58:55 GMT
etag: "2a6f-6050ffef-49a11339bbb5f2fe;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3321
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
194.59.164.81200 OK 2.8 kB URL HTTP/2 themarquetry.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (12198), with no line terminators
Hash 1393d0dbec2f83777455cdd096954f70
f9c4b9daea64fb4f7ffe076cf8e8e94600babd45
37c699d5ada4e2710a93784052ed68aa9b73e263ebb4a7a216c5a40e2c6bea7b
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Tue, 16 Mar 2021 18:58:55 GMT
etag: "2fa6-6050ffef-90b12cdd89d2ecf4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2838
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.1.4
194.59.164.81200 OK 1.0 kB URL HTTP/2 themarquetry.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.1.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (2577)
Hash 0f2cf5dcd05f04a4d92d7cbedfa322f1
ff8f2fb18a88abf0abf8e82e5dc68cc585fa3142
33175b8671b0fe877d8c8765bd513864f7a5c414e28464fede93beab4e718126
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.1.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Tue, 16 Mar 2021 18:58:55 GMT
etag: "a12-6050ffef-7cb105b033af0ca3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1020
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/js/de-sticky-frontend.js?ver=1.5.3
194.59.164.81200 OK 1.9 kB URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/assets/js/de-sticky-frontend.js?ver=1.5.3
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash 4b10095b7340d10cdd2100c36efa9019
7d80c46b3ad74fb3ee747fff64102fb1590521de
18e6a839660d3202a98f273f612546d8bb3da2120f6d4d889b47e3fe399987b1
GET /wp-content/plugins/dethemekit-for-elementor/assets/js/de-sticky-frontend.js?ver=1.5.3 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Wed, 17 Mar 2021 10:49:18 GMT
etag: "2854-6051deae-9dab336e253ca1c5;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1900
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/elementor/assets/js/preloaded-elements-handlers.min.js?ver=3.1.4
194.59.164.81200 OK 11 kB URL HTTP/2 themarquetry.com/wp-content/plugins/elementor/assets/js/preloaded-elements-handlers.min.js?ver=3.1.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (37990)
Hash a9004f5370975f38822d55553b5a71bb
bfee7ddc38ea75894d504fe7773af8047adc9542
28915f74737b39b67a4278e09908e4adfbf352c65f763b1e1b3ed3bd8e6311af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/preloaded-elements-handlers.min.js?ver=3.1.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Tue, 16 Mar 2021 18:58:55 GMT
etag: "948d-6050ffef-94918c99d88eeb6e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11249
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/js/anime.min.js?ver=5.5.4
194.59.164.81200 OK 6.9 kB URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/js/anime.min.js?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (17638)
Hash 862b12767d82fed2f47f6dd69a06dcfe
e57f4f9a84f985c0cd02e9579cd8da47d410531b
7d720ce55c2f68277bb41a24862cb9e1762101cfcc61bac33fbb8e8036ee97ab
GET /wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/js/anime.min.js?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Wed, 17 Mar 2021 10:49:10 GMT
etag: "454d-6051dea6-975843bff689630;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6938
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/js/scrollMonitor.js?ver=5.5.4
194.59.164.81200 OK 2.4 kB URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/js/scrollMonitor.js?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (8765)
Hash bcb5166893d381185cb1260e094d58b3
82d1a9ea0ba384328a7612016d7a31a82d993e67
b93c426558af960d1b07a2e987136228550eeb29a63ad0cd11c8c2d4583592b7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/js/scrollMonitor.js?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Wed, 17 Mar 2021 10:49:10 GMT
etag: "2267-6051dea6-280e36f760a8050d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2434
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/js/main.js?ver=5.5.4
194.59.164.81200 OK 1.9 kB URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/js/main.js?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash d2d93619a918c5584b9d4500d779a7c8
eb6dc7c61dba7535aecda416e85cccab19241a90
65cc63f7932ca3ad9ee3edcc0644072af959265e0800287fbb1fb1c70a046295
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/js/main.js?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Wed, 17 Mar 2021 10:49:10 GMT
etag: "1a6b-6051dea6-74b81c7d5fd57b44;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1867
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/js/de_curtain_animation.preview.js?ver=5.5.4
194.59.164.81200 OK 1.3 kB URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/js/de_curtain_animation.preview.js?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash bd1a51a857084908b75cbe2fedb858e2
d16703ea34b927de53329ba3352d274b0b862b9e
e7856cff19396b71644d2c25272bbf8579b072def966987df56630bf01d62a32
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/js/de_curtain_animation.preview.js?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Wed, 17 Mar 2021 10:49:10 GMT
etag: "1caf-6051dea6-8f9762a9b44fedb;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1300
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/js/de_scroll_animation.preview.js?ver=5.5.4
194.59.164.81200 OK 2.1 kB URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/js/de_scroll_animation.preview.js?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash 432095753ec2813db278ebd3ff9af65c
bab03d53db0062aa0faf2cdf4e49be092e57aa4d
b5215ddbf720890a7a0ad2a54b7d5b69d06fb229ecdd06ea763404b698aa6772
GET /wp-content/plugins/dethemekit-for-elementor/includes/ext/sina/assets/js/de_scroll_animation.preview.js?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Wed, 17 Mar 2021 10:49:10 GMT
etag: "4bf4-6051dea6-2232cbc72984ebaa;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2121
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-includes/css/dashicons.min.css?ver=5.5.4
194.59.164.81200 OK 35 kB URL HTTP/2 themarquetry.com/wp-includes/css/dashicons.min.css?ver=5.5.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (58981)
Hash 5e0ff4a00665a71941067cb099cfa44c
fffe235e5fb7b54bc327f32847ec762b5af61654
3bd61ee6e6c53c7f58719e64cd26a87afbf403dc68388d763701f139a82e9ad1
GET /wp-includes/css/dashicons.min.css?ver=5.5.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: text/css
last-modified: Thu, 15 Apr 2021 05:51:42 GMT
etag: "e688-6077d46e-f6b00990874efdf6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 35099
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.3
194.59.164.81200 OK 45 kB URL HTTP/2 themarquetry.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.3
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (42889)
Hash f4428a78d61fadd3a15f952105648e99
c0d008a9aed430c7ad59cfaabdf15a609f63e64f
849b3830abf67d6fce928b5a5467313d698c4483ada04968bc073a7502afdad9
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.3 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: application/x-javascript
last-modified: Tue, 16 Mar 2021 19:30:03 GMT
etag: "1e437-6051073b-c93f4a69c6fd0afc;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 45113
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/typeform/dist/typeform-elements.js
194.59.164.81200 OK 49 kB URL HTTP/2 themarquetry.com/wp-content/plugins/typeform/dist/typeform-elements.js
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type C++ source, Unicode text, UTF-8 text, with very long lines (38954)
Hash d2222c851a89676dd4746153a56f6edf
c5896619e81e6be73c9f903f729d29579241bd54
8abfc2d20e4074e24a56f9e315528f1b38b7d4636f12862108319119d580abe9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/typeform/dist/typeform-elements.js HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Thu, 25 Mar 2021 05:30:00 GMT
etag: "27fca-605c1fd8-bb5e48140618ddea;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 48608
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.19
194.59.164.81200 OK 25 kB URL HTTP/2 themarquetry.com/wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.19
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (4143)
Hash ac816d476baec39b7953a16172ce256b
7153c51da620258abdb61275f10e6f22a18b92bb
17ade253dd46afa748b4b8ba58e7646e677598f766e9fa0a16027db45304c4e6
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.19 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Tue, 20 Jul 2021 17:33:56 GMT
etag: "11d37-60f70904-5b57ccdffae2637e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 24976
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
194.59.164.81200 OK 34 kB URL HTTP/2 themarquetry.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65280)
Hash a6556c9a6ab814e62002207275233d46
01d7567e70bafde5489526b045aa1e10cf9d6d9c
b95a15c97a5c5a4cd00d63e8d106ec394535764611b95078b66b92dca29242a5
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Tue, 16 Mar 2021 18:58:47 GMT
etag: "21f91-6050ffe7-7c0b4ebed425a49f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 33467
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.1.4
194.59.164.81200 OK 19 kB URL HTTP/2 themarquetry.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.1.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (43289), with LF, NEL line terminators
Hash e77a7f2cb5948a10831140d348474b7d
2a84c37454cfe45b4123400bb58d5590d3f82b75
f3a2ba3f77ffb8c585a81d26a06c124f8e23d5d0cdc7c42f5f2cce9e37b0faa6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.1.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Tue, 16 Mar 2021 18:59:04 GMT
etag: "fd92-6050fff8-4652782b645ae559;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18647
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.1.4
194.59.164.81200 OK 22 kB URL HTTP/2 themarquetry.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.1.4
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65497)
Hash 79263d7bac0fe0595a9f4c8b6901cb83
a9e54eb3869295a38256e32a3fae9f23f1903c06
bfad1b78da558c064c312f20cf76d4aca2cd867052f2e08c6dcfb3723c2fb9a1
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.1.4 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: application/x-javascript
last-modified: Tue, 16 Mar 2021 18:58:59 GMT
etag: "13d3a-6050fff3-e83438c9df71f70d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 22460
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/uploads/2021/04/2615-e1617725952809.jpg
194.59.164.81200 OK 21 kB URL HTTP/2 themarquetry.com/wp-content/uploads/2021/04/2615-e1617725952809.jpg
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 500x500, segment length 16, baseline, precision 8, 207x189, components 1\012- data
Hash 8d967ddb9b78f4895b9f37e09cead9e9
99f9c15aa2611e6bc9dcc34d24f3700f2caa6551
ccca0a284f0525e393d6849284c1e7475e83061c915dfd3afe8a0bad7cf4b982
GET /wp-content/uploads/2021/04/2615-e1617725952809.jpg HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: image/jpeg
last-modified: Tue, 06 Apr 2021 16:19:12 GMT
etag: "508d-606c8a00-242cb209e19eae28;;;"
accept-ranges: bytes
content-length: 20621
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/uploads/2021/03/WhatsApp_Image_2021-04-04_at_7.38.40_PM-removebg-preview-1.png
194.59.164.81200 OK 63 kB URL HTTP/2 themarquetry.com/wp-content/uploads/2021/03/WhatsApp_Image_2021-04-04_at_7.38.40_PM-removebg-preview-1.png
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type PNG image data, 475 x 525, 8-bit/color RGBA, non-interlaced\012- data
Hash 6399b1a01f3be1ddc4219075e29855c9
b7c5af78df4eb124b965e14d9bf2cba06264c5ec
5cfce60182a8a9602c9a490c33fde87b36b124025bc2ebb3e407288cdf658779
GET /wp-content/uploads/2021/03/WhatsApp_Image_2021-04-04_at_7.38.40_PM-removebg-preview-1.png HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: image/png
last-modified: Wed, 07 Apr 2021 08:55:35 GMT
etag: "f698-606d7387-fb762ab71d3406a9;;;"
accept-ranges: bytes
content-length: 63128
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/uploads/2021/04/chittilapalli.jpeg
194.59.164.81200 OK 161 kB URL HTTP/2 themarquetry.com/wp-content/uploads/2021/04/chittilapalli.jpeg
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1024x1390, components 3\012- data
Size 161 kB (160970 bytes)
Hash 3aea03bee86b82b6a79ce2d162f37d2e
0898bfffc12168dab0b79256d5e422202ba6d221
bdddb994152dbf8c10166e2b111ab70b1a28e8cfbff9b83feb8bd27b556590cd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2021/04/chittilapalli.jpeg HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: image/jpeg
last-modified: Tue, 20 Apr 2021 18:00:56 GMT
etag: "274ca-607f16d8-2b862abd6242a5dd;;;"
accept-ranges: bytes
content-length: 160970
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/uploads/2021/03/Orange-Minimalist-Food-Festival-Logo-e1617017519878.jpg
194.59.164.81200 OK 160 kB URL HTTP/2 themarquetry.com/wp-content/uploads/2021/03/Orange-Minimalist-Food-Festival-Logo-e1617017519878.jpg
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 1023x1277, components 3\012- data
Size 160 kB (160265 bytes)
Hash 45eef10f63b7f47a395862920606c500
8144d739250a36ad8b95a69f23a15c344752301c
aaf66072a8265c4ed78e1580b7ffa96ed7ebe23035f2597cf7472ea3cedef8e6
GET /wp-content/uploads/2021/03/Orange-Minimalist-Food-Festival-Logo-e1617017519878.jpg HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: image/jpeg
last-modified: Mon, 29 Mar 2021 11:31:59 GMT
etag: "27209-6061baaf-e17d0b5e73da7151;;;"
accept-ranges: bytes
content-length: 160265
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/uploads/2021/03/IMG_9076-e1617099665123.jpg
194.59.164.81200 OK 362 kB URL HTTP/2 themarquetry.com/wp-content/uploads/2021/03/IMG_9076-e1617099665123.jpg
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=8, manufacturer=Apple, model=iPad Pro, xresolution=126, yresolution=134, resolutionunit=2, software=13.5.1, datetime=2021:03:27 18:27:15], baseline, precision 8, 1616x2110, components 3\012- data
Size 362 kB (362266 bytes)
Hash 5dffd864c9bbcb4c2efc4e10bb41b859
6f41164b221062f8b82548b1db59ac6d44523ae9
9ca68df15c801071bd963113aeb8aa5cde6d537c0150be0abf488f4feac5fb4d
GET /wp-content/uploads/2021/03/IMG_9076-e1617099665123.jpg HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: image/jpeg
last-modified: Tue, 30 Mar 2021 10:21:05 GMT
etag: "5871a-6062fb91-3bd1aa84a2c90652;;;"
accept-ranges: bytes
content-length: 362266
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/uploads/2021/03/IMG_8213-scaled.jpg
194.59.164.81200 OK 524 kB URL HTTP/2 themarquetry.com/wp-content/uploads/2021/03/IMG_8213-scaled.jpg
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=8, manufacturer=Apple, model=iPad Pro, xresolution=126, yresolution=134, resolutionunit=2, software=13.5.1, datetime=2021:03:24 17:41:52], baseline, precision 8, 1888x2560, components 3\012- data
Size 524 kB (523887 bytes)
Hash 4e81f2fbb7afdc742dea8d6f5f8295d7
32092f8931b353ea96c39890ae9a7c29518239c7
1c6b81204ab214c9dd84072fbcf93975a599e91fd6f2939fbd8109febbbec351
GET /wp-content/uploads/2021/03/IMG_8213-scaled.jpg HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: image/jpeg
last-modified: Wed, 24 Mar 2021 19:01:15 GMT
etag: "7fe6f-605b8c7b-7c6c00174fc029e4;;;"
accept-ranges: bytes
content-length: 523887
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/uploads/2021/03/IMG_1509.jpg
194.59.164.81200 OK 814 kB URL HTTP/2 themarquetry.com/wp-content/uploads/2021/03/IMG_1509.jpg
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=8, manufacturer=Apple, model=iPad Pro, xresolution=126, yresolution=134, resolutionunit=2, software=13.5.1, datetime=2021:03:27 18:32:33], baseline, precision 8, 1761x2365, components 3\012- data
Size 814 kB (814230 bytes)
Hash e46675a012bc5931635e6550e13408d8
aba9fc7c6ee5f359a2ed3ca8ecacb46acdb810a0
4290905c8ab6c0ae7bb0c4aaed889cb4af32cf27adb24dede0c00b15ae81645d
GET /wp-content/uploads/2021/03/IMG_1509.jpg HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: image/jpeg
last-modified: Mon, 29 Mar 2021 19:04:51 GMT
etag: "c6c96-606224d3-79b6e2f75f5487b7;;;"
accept-ranges: bytes
content-length: 814230
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/uploads/2021/03/IMG_3425.jpg
194.59.164.81200 OK 947 kB URL HTTP/2 themarquetry.com/wp-content/uploads/2021/03/IMG_3425.jpg
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=8, manufacturer=Apple, model=iPad Pro, xresolution=126, yresolution=134, resolutionunit=2, software=13.5.1, datetime=2021:03:24 17:55:02], baseline, precision 8, 1935x2391, components 3\012- data
Size 947 kB (947266 bytes)
Hash d7cc5ac875a4d4b96de5be037131254a
9aad8c1d15267812992e453d057bed15bf4ca023
c8ee16ac3a9f3bb8f3aad7d043d394fbe2bec5e5f2c455762eaff6eb8428fd30
GET /wp-content/uploads/2021/03/IMG_3425.jpg HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: image/jpeg
last-modified: Wed, 24 Mar 2021 19:03:24 GMT
etag: "e7442-605b8cfc-a34b82ac6b0da815;;;"
accept-ranges: bytes
content-length: 947266
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 8ea1cd71c9d4a63fe6cdb97c266136c0
eace1a984c678ab2358116db2c9a8f4260e38ce9
e0421c29b6ed27ab29a8872fe6862dfbc8272fa7c4e8e774ee4f3d9da15f5474
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121389
Date: Fri, 18 Nov 2022 18:07:22 GMT
Etag: "6376f9bc-1d7"
Expires: Sun, 20 Nov 2022 03:50:31 GMT
Last-Modified: Fri, 18 Nov 2022 03:19:24 GMT
Server: ECS (bsa/EB1D)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dKLlYZP97mj-bwLkrylKCfbhC09MAmtdSyqOz-N-p37fT_F1MqiVTQ==
Age: 1867
themarquetry.com/wp-content/uploads/2021/03/Orange-Minimalist-Food-Festival-Logo-4.jpg
194.59.164.81200 OK 1.2 MB URL HTTP/2 themarquetry.com/wp-content/uploads/2021/03/Orange-Minimalist-Food-Festival-Logo-4.jpg
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 1024x1390, components 3\012- data
Size 1.2 MB (1188698 bytes)
Hash 522c0c9f4b8795d358cecde30ad5e56f
046fbc08b30686e26da51ca035e41ef75cc65eb6
e4fff4b52339b6a58cc911e35c52f62068023c086203bc5430802025383efbca
GET /wp-content/uploads/2021/03/Orange-Minimalist-Food-Festival-Logo-4.jpg HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: image/jpeg
last-modified: Wed, 24 Mar 2021 20:20:44 GMT
etag: "12235a-605b9f1c-c8f576b68b3423e4;;;"
accept-ranges: bytes
content-length: 1188698
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
themarquetry.com/wp-content/uploads/2021/03/Untitled-design-48.png
194.59.164.81200 OK 472 B URL HTTP/2 themarquetry.com/wp-content/uploads/2021/03/Untitled-design-48.png
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
GET /wp-content/uploads/2021/03/Untitled-design-48.png HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: image/png
last-modified: Thu, 12 Aug 2021 17:27:49 GMT
etag: "2c01f-61155a15-50b2805bc7ec0ddf;;;"
accept-ranges: bytes
content-length: 180255
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
fonts.gstatic.com/s/baijamjuree/v11/LDI1apSCOBt_aeQQ7ftydoa8XsLL.woff2
216.58.207.195200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/baijamjuree/v11/LDI1apSCOBt_aeQQ7ftydoa8XsLL.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 10632, version 1.0\012- data
Hash 5aa8464c39260f864ef4949773df90f3
bea86a3fd339b0a9bf2bae4547f8bc576393a338
2045d10a89d38e10fa42a5eb8c9aea9387c50d8470eb1791ad1ce88cd47a7733
GET /s/baijamjuree/v11/LDI1apSCOBt_aeQQ7ftydoa8XsLL.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themarquetry.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10632
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:55:05 GMT
expires: Thu, 16 Nov 2023 19:55:05 GMT
cache-control: public, max-age=31536000
age: 166337
last-modified: Tue, 19 Apr 2022 18:15:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.195200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themarquetry.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 16:40:18 GMT
expires: Fri, 17 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 91624
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/baijamjuree/v11/LDI1apSCOBt_aeQQ7ftydoa8UMLLq7s.woff2
216.58.207.195200 OK 8.9 kB URL HTTP/2 fonts.gstatic.com/s/baijamjuree/v11/LDI1apSCOBt_aeQQ7ftydoa8UMLLq7s.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 8852, version 1.0\012- data
Hash a385a1535705081684b614fc04aa7a76
953c3e078a48040b2ae15fff4c0fc9ab028694db
7789152e8492ee0e8576742bd8cf4061a1650452c35b7f1f0ab16c071610c755
GET /s/baijamjuree/v11/LDI1apSCOBt_aeQQ7ftydoa8UMLLq7s.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themarquetry.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Nov 2022 23:47:47 GMT
expires: Sat, 11 Nov 2023 23:47:47 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 18:22:01 GMT
content-type: font/woff2
age: 584375
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/dmserifdisplay/v10/-nFnOHM81r4j6k0gjAW3mujVU2B2G_Bx0g.woff2
216.58.207.195200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/dmserifdisplay/v10/-nFnOHM81r4j6k0gjAW3mujVU2B2G_Bx0g.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 24532, version 1.0\012- data
Hash 85db9d3b188da5bfdbc66c178a3e33bc
a11c20671ca01da83d46b9f6215885f347d8772c
73e3044bb6912706982542a9e9b15e7472bd53755cea6a0477c5e7c80c24c00d
GET /s/dmserifdisplay/v10/-nFnOHM81r4j6k0gjAW3mujVU2B2G_Bx0g.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themarquetry.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24532
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 18 Nov 2022 00:14:54 GMT
expires: Sat, 18 Nov 2023 00:14:54 GMT
cache-control: public, max-age=31536000
age: 64348
last-modified: Thu, 21 Apr 2022 16:25:38 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/graduate/v13/C8cg4cs3o2n15t_2YygW43w.woff2
216.58.207.195200 OK 6.0 kB URL HTTP/2 fonts.gstatic.com/s/graduate/v13/C8cg4cs3o2n15t_2YygW43w.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 6040, version 1.0\012- data
Hash 2334b56c84e6a2f8a814cdc04d386ee9
7b80a668bc2948834317d057a16f293399127876
be007a2cb32338395f23479de12114f74e3a2184aec585fd195514fb515a24cd
GET /s/graduate/v13/C8cg4cs3o2n15t_2YygW43w.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themarquetry.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 08:33:28 GMT
expires: Thu, 16 Nov 2023 08:33:28 GMT
cache-control: public, max-age=31536000
age: 207234
last-modified: Thu, 21 Apr 2022 16:29:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/bevan/v20/4iCj6KZ0a9NXjG8dWCs.woff2
216.58.207.195200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/bevan/v20/4iCj6KZ0a9NXjG8dWCs.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 19712, version 1.0\012- data
Hash a855eba47cc044358626219a19b78d72
01e8ab7dd57bc7edaef52a00a776758cf5ab25ff
9492399746a3054c37f3e8e6a3d3f4799490697a3971a89a6449537612630b0d
GET /s/bevan/v20/4iCj6KZ0a9NXjG8dWCs.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themarquetry.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19712
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 05:54:50 GMT
expires: Fri, 17 Nov 2023 05:54:50 GMT
cache-control: public, max-age=31536000
age: 130352
last-modified: Tue, 19 Apr 2022 19:12:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/muli/v28/7Auwp_0qiz-afTLGLQ.woff2
216.58.207.195200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/muli/v28/7Auwp_0qiz-afTLGLQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 31196, version 1.0\012- data
Hash ea2343c7dccad57360fb611d67204445
b603d9e68bb1ed5e4b33d5e31121160cb4d23452
2a04078f9550381b5148170ceaf5b378a1b31ed8274c6d0094aeba6f599462cc
GET /s/muli/v28/7Auwp_0qiz-afTLGLQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themarquetry.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31196
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 06:19:58 GMT
expires: Fri, 17 Nov 2023 06:19:58 GMT
cache-control: public, max-age=31536000
age: 128844
last-modified: Mon, 11 Jul 2022 20:43:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjSL9AIFsdA.woff2
216.58.207.195200 OK 19 kB URL HTTP/2 fonts.gstatic.com/s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjSL9AIFsdA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 18860, version 1.0\012- data
Hash c91aac6ef66a18aed734e40c1b7ef33c
8e7075376823d45b4367b876d9ca7e24b22e07af
49791a696302b5112cec6f474d4d188ec3da019fab43b744b558c8b5e6644785
GET /s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjSL9AIFsdA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themarquetry.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 16:49:39 GMT
expires: Fri, 17 Nov 2023 16:49:39 GMT
cache-control: public, max-age=31536000
age: 91063
last-modified: Tue, 26 Apr 2022 15:50:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptsg8zYS_SKggPNyCg4TYFq.woff2
216.58.207.195200 OK 49 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptsg8zYS_SKggPNyCg4TYFq.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 48620, version 1.0\012- data
Hash 8b3f45fbebe40f151e3bdadf9062f2c6
d4b9145fb8346c6442cc946bc25da699dd035e0e
4defd36147167542db6c6ac44452d3784f51bf7f124128fe5f4581bbdb8d2ccc
GET /s/raleway/v28/1Ptsg8zYS_SKggPNyCg4TYFq.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themarquetry.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 00:39:04 GMT
expires: Wed, 15 Nov 2023 00:39:04 GMT
cache-control: public, max-age=31536000
age: 322098
last-modified: Mon, 18 Jul 2022 19:45:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themarquetry.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 05:42:51 GMT
expires: Fri, 17 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 131071
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/davidlibre/v13/snfzs0W_99N64iuYSvp4W8HAxYqcQDI.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/davidlibre/v13/snfzs0W_99N64iuYSvp4W8HAxYqcQDI.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 22852, version 1.0\012- data
Hash d08cac3b103f34a4cee2b2f009ab3e6b
d649edfcd912db163a8d599b67f322bf6b740495
a67b731fb66849e06eb81b8f2389a8887d3f67bb8853671156abf6b93cfae5b8
GET /s/davidlibre/v13/snfzs0W_99N64iuYSvp4W8HAxYqcQDI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themarquetry.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 17:15:55 GMT
expires: Thu, 16 Nov 2023 17:15:55 GMT
cache-control: public, max-age=31536000
age: 175887
last-modified: Tue, 08 Nov 2022 19:49:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/baijamjuree/v11/LDIqapSCOBt_aeQQ7ftydoa0reHelJo0.woff2
216.58.207.195200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/baijamjuree/v11/LDIqapSCOBt_aeQQ7ftydoa0reHelJo0.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 10808, version 1.0\012- data
Hash 813e62d2193672e925a80aa9c4a85696
248768195074f87fd8bee6b45e87ab265d4ce7f1
2a257de7d16cbc56379bbeba00afc1533e9aee044331ef5d618ec6db47ba103c
GET /s/baijamjuree/v11/LDIqapSCOBt_aeQQ7ftydoa0reHelJo0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themarquetry.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10808
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 07:19:38 GMT
expires: Fri, 17 Nov 2023 07:19:38 GMT
cache-control: public, max-age=31536000
age: 125264
last-modified: Tue, 19 Apr 2022 18:08:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.195200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themarquetry.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 17:10:21 GMT
expires: Wed, 15 Nov 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 262621
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
216.58.207.195200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themarquetry.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 14 Nov 2022 18:53:39 GMT
expires: Tue, 14 Nov 2023 18:53:39 GMT
cache-control: public, max-age=31536000
age: 342823
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/alata/v9/PbytFmztEwbIoce9zqY.woff2
216.58.207.195200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/alata/v9/PbytFmztEwbIoce9zqY.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 17788, version 1.0\012- data
Hash 367276b547e847c5e257d74e5a9dd257
ce4d0ac1579771b7d7d6430bddfbc8afaf78a017
97c3d3d0a34946ebaf19d2a39fe8a0472f24be02b82bc32c29c73376da138413
GET /s/alata/v9/PbytFmztEwbIoce9zqY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themarquetry.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17788
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Nov 2022 23:41:50 GMT
expires: Sat, 11 Nov 2023 23:41:50 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 19:22:59 GMT
content-type: font/woff2
age: 584732
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/baijamjuree/v11/LDIqapSCOBt_aeQQ7ftydoa05efempo0yyg.woff2
216.58.207.195200 OK 9.0 kB URL HTTP/2 fonts.gstatic.com/s/baijamjuree/v11/LDIqapSCOBt_aeQQ7ftydoa05efempo0yyg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 9004, version 1.0\012- data
Hash 228b2ffc623c1886a208a916b66cfa00
33f513111a0ed869f5321f49af50692ead2f8c26
7238de591ca23a8ebebbed1c6e258c3e93f1f33faed388c660f8af2efe7075f0
GET /s/baijamjuree/v11/LDIqapSCOBt_aeQQ7ftydoa05efempo0yyg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themarquetry.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9004
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Nov 2022 00:24:32 GMT
expires: Sun, 12 Nov 2023 00:24:32 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 18:16:08 GMT
content-type: font/woff2
age: 582170
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/baijamjuree/v11/LDIqapSCOBt_aeQQ7ftydoa05efelJo0.woff2
216.58.207.195200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/baijamjuree/v11/LDIqapSCOBt_aeQQ7ftydoa05efelJo0.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 10656, version 1.0\012- data
Hash 4c9a9c7db448beeaa46d921308c454d7
171735ebef10645ff8a07bb3cc7af0bde51ec72b
e7eab04dcf0956e72a687d70cae4263e15a425ed4b4f7766ce8a84fb60edbc48
GET /s/baijamjuree/v11/LDIqapSCOBt_aeQQ7ftydoa05efelJo0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themarquetry.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10656
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Nov 2022 23:40:27 GMT
expires: Sat, 11 Nov 2023 23:40:27 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 18:28:15 GMT
content-type: font/woff2
age: 584815
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
216.58.207.195200 OK 46 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://themarquetry.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 14 Nov 2022 21:13:13 GMT
expires: Tue, 14 Nov 2023 21:13:13 GMT
cache-control: public, max-age=31536000
age: 334449
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
embed.typeform.com/embed.js
54.230.111.81200 OK 60 kB URL HTTP/2 embed.typeform.com/embed.js
IP 54.230.111.81:0
Hash d0185299532d3037c37c0b50d8d2f94c
22f85c8e49eaf5bd7a6d88d8de69b44cb9add427
53db33d38323c1d3235b0408fef85444d081235573599b876c80da1a8f60d766
GET /embed.js HTTP/1.1
Host: embed.typeform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Mon, 23 Aug 2021 12:13:14 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Fri, 18 Nov 2022 18:05:22 GMT
etag: W/"33702e05c8b925fd7fdba3817fd31af9"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: onhgrVKofKJfPaWSmurUkxDu2LaDAdp7rZHHofeindd40URd_6ykZg==
age: 129
X-Firefox-Spdy: h2
themarquetry.com/wp-content/plugins/dethemekit-for-elementor/modules/controls/assets/css/dticon.css?ver=5.9.0
194.59.164.81200 OK 5.0 kB URL HTTP/2 themarquetry.com/wp-content/plugins/dethemekit-for-elementor/modules/controls/assets/css/dticon.css?ver=5.9.0
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Hash f3ba7f8f06e23facdd8e106c768dfdd0
260faf769e27b408eeffe74911c0b9245e077ba5
3a46fab60eab1428dbcd7e52321a672b05ff53189a4dee4d3e8b7691926c462e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dethemekit-for-elementor/modules/controls/assets/css/dticon.css?ver=5.9.0 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: text/css
last-modified: Wed, 17 Mar 2021 10:49:10 GMT
etag: "5985-6051dea6-5656eb10eb1ba752;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2978
date: Fri, 18 Nov 2022 18:07:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash c15be7bf1c6987951ddd348d6f6b4db1
9faac1fb81abc8fce6d4ae81777c76b8bc11e9b0
7f1d01e3fc0b69e331fd30326ea8fd9b1e3e06a0a93ae4768e7addd03a121025
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/s/player/041a7965/www-widgetapi.vflset/www-widgetapi.js
142.250.74.78200 OK 54 kB URL HTTP/2 www.youtube.com/s/player/041a7965/www-widgetapi.vflset/www-widgetapi.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (817)
Hash 6e5f2bb38975e87f0fe0c4e6a2381f93
5d494f56e7d5a91414c7131317ed52668427b39d
3d3f13a7d190b56aa7c3afdbd6246cd493ae54ce78ba0aa79d4ce2e7312b30e0
GET /s/player/041a7965/www-widgetapi.vflset/www-widgetapi.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 53956
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 18 Nov 2022 15:07:48 GMT
expires: Sat, 18 Nov 2023 15:07:48 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 17 Nov 2022 01:17:30 GMT
content-type: text/javascript
age: 10777
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash c15be7bf1c6987951ddd348d6f6b4db1
9faac1fb81abc8fce6d4ae81777c76b8bc11e9b0
7f1d01e3fc0b69e331fd30326ea8fd9b1e3e06a0a93ae4768e7addd03a121025
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Nov 2022 12:31:58 GMT
expires: Sun, 12 Nov 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 538527
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 21:46:16 GMT
expires: Fri, 17 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 73269
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4ec62279c2b0171ab1d12d11e38a8bb1
a95c73a838695ebad74025f9841f44c67af18454
0582eb214cb1fe089cb4b5e5ba41545fe7e15212282588bf711494d165e88506
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash eaa6a3200eda9bf5788df6d9eb04d84c
12efbb66692df6d76c1103b152808d751c0e49f1
6d815027ae40ea2603c0ed5adac0821cd5526f11c2eeb0ada5294b6f2ec3492d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7d16e5ff718353c095d266b080fe547f
fa7c5c9a1d16355859196271f3d13f3850931888
9a94d8eb20cc56d0898b1e2b80c0006ebbef75c15ad94e907050c5be4e19a960
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10349
x-amzn-requestid: fc85e078-a81a-4fed-899e-15249961f59c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-7tHGLIAMF00Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab7d-4224d193517794684fcdc0ad;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UK-XD_8EcfPwfLb-QVwfLr8aG-sqVBoUJcbPb5hKAlQS68eOxdgM5g==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:05:52 GMT
age: 72094
etag: "fa7c5c9a1d16355859196271f3d13f3850931888"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.doubleclick.net/instream/ad_status.js
142.250.74.166200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.166:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 18 Nov 2022 17:59:05 GMT
expires: Fri, 18 Nov 2022 18:14:05 GMT
cache-control: public, max-age=900
age: 501
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.74200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 18 Nov 2022 18:07:26 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.66302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Fri, 18 Nov 2022 18:07:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d3ba0eba720a8e5904bee6e804873c24
df1f9c79e39f777ab12225af0af60b9f26af6485
76500b32cbac4ad40e3f42c7dfd46832f3854ba88c3a6d5a9d2b5633e8e1f27b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.74200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.74:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash b22863c5a1c54da2d4ab4376513f857b
017003026fca8921e690cb85fcf2ac5cd13c4aae
f6b3e55290d21f2100d28e4b00735689c451599a2818e136366452756c2c7134
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 18 Nov 2022 18:07:26 GMT
server: ESF
cache-control: private
content-length: 30748
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/js/th/98eZ1SvQKncrIy_uxRv1pSvbmSGZ50EV24E3eut_s2o.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/98eZ1SvQKncrIy_uxRv1pSvbmSGZ50EV24E3eut_s2o.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (35818)
Hash 511a3814cb1663e9d9286015da587ae2
a9ef6e40f17b2659c823195354e912a8979cc1a0
a2e4a4711f28ea423fdcadcced71bdf38e190b285fdde3fc9f11868ad8730375
GET /js/th/98eZ1SvQKncrIy_uxRv1pSvbmSGZ50EV24E3eut_s2o.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14262
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 06:09:08 GMT
expires: Thu, 16 Nov 2023 06:09:08 GMT
cache-control: public, max-age=31536000
age: 215898
last-modified: Thu, 03 Nov 2022 10:00:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 2e3554d997233466d5613d937e021bd9
c3739f9343d51a234441ad66986f71a12f8d0376
3d142d70a05ab3ea2a7bb63edeea4144b6cc9082180b273813174bbf65e741a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4ec62279c2b0171ab1d12d11e38a8bb1
a95c73a838695ebad74025f9841f44c67af18454
0582eb214cb1fe089cb4b5e5ba41545fe7e15212282588bf711494d165e88506
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash eaa6a3200eda9bf5788df6d9eb04d84c
12efbb66692df6d76c1103b152808d751c0e49f1
6d815027ae40ea2603c0ed5adac0821cd5526f11c2eeb0ada5294b6f2ec3492d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id?slf_rd=1
142.250.74.66200 OK 120 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id?slf_rd=1
IP 142.250.74.66:0
Hash 4016ae1d47cdb8ef08483057ab9e4497
cff80e0d14134d8a761acee77891c774996b35af
6f30d0c511f815ad99996c97dd4dcef7adfeaca785ca411ad2354ed0cac62af3
GET /pagead/id?slf_rd=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Referer: https://www.youtube.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
content-type: application/json; charset=UTF-8
date: Fri, 18 Nov 2022 18:07:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 120
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 34cdecc86a01fc135cb8a5c4618c3a55
1bfffa5028efbc1c5bf766c50cbf58b9ee1f4e86
4786dbae246f44e3944a1db922a464327ef498da3345670e967ac1b7db827b36
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi/ChqXC4EzsU4/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGGUgVihGMA8=&rs=AOn4CLA8UzAMbvJwuF5ok-xtAQEnQk-jIw
142.250.74.54200 OK 98 kB URL HTTP/2 i.ytimg.com/vi/ChqXC4EzsU4/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGGUgVihGMA8=&rs=AOn4CLA8UzAMbvJwuF5ok-xtAQEnQk-jIw
IP 142.250.74.54:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Hash b7c0d34dde6c37ac60154ca5dffca21a
0ce3955537301d3584245bc2d889556a5e9fae0f
bec8f099bf5e31a61ea1a644829684fac9ca24ee9be59b135e04491109b95351
GET /vi/ChqXC4EzsU4/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGGUgVihGMA8=&rs=AOn4CLA8UzAMbvJwuF5ok-xtAQEnQk-jIw HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 97840
date: Fri, 18 Nov 2022 18:07:26 GMT
expires: Fri, 18 Nov 2022 20:07:26 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.74200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 18 Nov 2022 18:07:26 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 2e3554d997233466d5613d937e021bd9
c3739f9343d51a234441ad66986f71a12f8d0376
3d142d70a05ab3ea2a7bb63edeea4144b6cc9082180b273813174bbf65e741a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.74200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.74:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b652a412bea2d1b5d3598e863e53d4ed
4739a65699a646f5518aef765af8e6a4485366f4
0ba425d390df91a32521b97ea9f36bc2f1050d127731614efac0282d91a5274d
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1108
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 18 Nov 2022 18:07:26 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 7356194426663dd9627e86e7bc56709f
c69d07c5c8ec62831e4aa36fa89f37088338f02d
ec8f7d041c7d3d66181302d5c427f54c9dcaddf3fb75fadec8d42978edcad144
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 7356194426663dd9627e86e7bc56709f
c69d07c5c8ec62831e4aa36fa89f37088338f02d
ec8f7d041c7d3d66181302d5c427f54c9dcaddf3fb75fadec8d42978edcad144
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1668816446&ei=3sl3Y8bxGZiM7QTKv474DQ&ip=91.90.42.154&id=o-AIw8SkxDhWTMzdcdEsiYDLlqAKig6vLhxY-n1qc0SpgM&itag=243&aitags=134%2C136%2C137%2C160%2C243&source=youtube&requiressl=yes&mh=C4&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=1391250&spc=SFxXNg_lNMBPLxqE6IPHH5Gb59eYKzU&vprv=1&mime=video%2Fwebm&ns=gxtTzbf5QHs1MpzCgBC4jI0J&gir=yes&clen=1712088&dur=64.900&lmt=1664508418023496&mt=1668794468&fvip=2&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=1216224&n=B0DUB7ahZtX_cA&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgIwugIiHPYgSgZ4VZPWoR54dHClmxr8sBLxiUcNNS6mkCIQDEoEDrEP1tFvAEKkPBq2z7EPwARHosCxMQR3_251FCXA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgBNGQ4R9AlL-yGORyleccOpVMVck6wfshVKiHNnMawSsCIHFxdmsphIHQa6HXPEoMl1CIJvPgYgmUCp672IxKip6v&alr=yes&cpn=qtbYyfsYqyOhp6n8&cver=1.20221116.01.00&range=0-93735&rn=1&rbuf=0
91.90.45.172200 OK 1.1 kB URL HTTP/1.1 rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1668816446&ei=3sl3Y8bxGZiM7QTKv474DQ&ip=91.90.42.154&id=o-AIw8SkxDhWTMzdcdEsiYDLlqAKig6vLhxY-n1qc0SpgM&itag=243&aitags=134%2C136%2C137%2C160%2C243&source=youtube&requiressl=yes&mh=C4&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=1391250&spc=SFxXNg_lNMBPLxqE6IPHH5Gb59eYKzU&vprv=1&mime=video%2Fwebm&ns=gxtTzbf5QHs1MpzCgBC4jI0J&gir=yes&clen=1712088&dur=64.900&lmt=1664508418023496&mt=1668794468&fvip=2&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=1216224&n=B0DUB7ahZtX_cA&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgIwugIiHPYgSgZ4VZPWoR54dHClmxr8sBLxiUcNNS6mkCIQDEoEDrEP1tFvAEKkPBq2z7EPwARHosCxMQR3_251FCXA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgBNGQ4R9AlL-yGORyleccOpVMVck6wfshVKiHNnMawSsCIHFxdmsphIHQa6HXPEoMl1CIJvPgYgmUCp672IxKip6v&alr=yes&cpn=qtbYyfsYqyOhp6n8&cver=1.20221116.01.00&range=0-93735&rn=1&rbuf=0
IP 91.90.45.172:0
ASN #50304 Blix Solutions AS
File type ASCII text, with very long lines (1060), with no line terminators
Hash 7eae813313f254166816ade82f6f70bf
51781590778f3b171b4eea5f840dfa8e48a83156
102aee8818b282af81dc19f35496d0624de460b6f8786f5b24bc35d69920d4af
GET /videoplayback?expire=1668816446&ei=3sl3Y8bxGZiM7QTKv474DQ&ip=91.90.42.154&id=o-AIw8SkxDhWTMzdcdEsiYDLlqAKig6vLhxY-n1qc0SpgM&itag=243&aitags=134%2C136%2C137%2C160%2C243&source=youtube&requiressl=yes&mh=C4&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=1391250&spc=SFxXNg_lNMBPLxqE6IPHH5Gb59eYKzU&vprv=1&mime=video%2Fwebm&ns=gxtTzbf5QHs1MpzCgBC4jI0J&gir=yes&clen=1712088&dur=64.900&lmt=1664508418023496&mt=1668794468&fvip=2&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=1216224&n=B0DUB7ahZtX_cA&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgIwugIiHPYgSgZ4VZPWoR54dHClmxr8sBLxiUcNNS6mkCIQDEoEDrEP1tFvAEKkPBq2z7EPwARHosCxMQR3_251FCXA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgBNGQ4R9AlL-yGORyleccOpVMVck6wfshVKiHNnMawSsCIHFxdmsphIHQa6HXPEoMl1CIJvPgYgmUCp672IxKip6v&alr=yes&cpn=qtbYyfsYqyOhp6n8&cver=1.20221116.01.00&range=0-93735&rn=1&rbuf=0 HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Fri, 18 Nov 2022 18:07:26 GMT
Expires: Fri, 18 Nov 2022 18:07:26 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 1060
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1668816446&ei=3sl3Y8bxGZiM7QTKv474DQ&ip=91.90.42.154&id=o-AIw8SkxDhWTMzdcdEsiYDLlqAKig6vLhxY-n1qc0SpgM&itag=251&source=youtube&requiressl=yes&mh=C4&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=1391250&spc=SFxXNg_lNMBPLxqE6IPHH5Gb59eYKzU&vprv=1&mime=audio%2Fwebm&ns=gxtTzbf5QHs1MpzCgBC4jI0J&gir=yes&clen=29659&dur=64.921&lmt=1664508406543038&mt=1668794468&fvip=2&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=1211224&n=B0DUB7ahZtX_cA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgHqreEuUa_SQLBrVBvKrpYBTXmfrfiuMdK-1qQV66ga0CICLTmRdfuFGirlomyW8rfDeE1tt8Sdnuacq8pcKOa0Tu&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgBNGQ4R9AlL-yGORyleccOpVMVck6wfshVKiHNnMawSsCIHFxdmsphIHQa6HXPEoMl1CIJvPgYgmUCp672IxKip6v&alr=yes&cpn=qtbYyfsYqyOhp6n8&cver=1.20221116.01.00&range=0-29658&rn=2&rbuf=0
91.90.45.172200 OK 1.0 kB URL HTTP/1.1 rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1668816446&ei=3sl3Y8bxGZiM7QTKv474DQ&ip=91.90.42.154&id=o-AIw8SkxDhWTMzdcdEsiYDLlqAKig6vLhxY-n1qc0SpgM&itag=251&source=youtube&requiressl=yes&mh=C4&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=1391250&spc=SFxXNg_lNMBPLxqE6IPHH5Gb59eYKzU&vprv=1&mime=audio%2Fwebm&ns=gxtTzbf5QHs1MpzCgBC4jI0J&gir=yes&clen=29659&dur=64.921&lmt=1664508406543038&mt=1668794468&fvip=2&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=1211224&n=B0DUB7ahZtX_cA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgHqreEuUa_SQLBrVBvKrpYBTXmfrfiuMdK-1qQV66ga0CICLTmRdfuFGirlomyW8rfDeE1tt8Sdnuacq8pcKOa0Tu&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgBNGQ4R9AlL-yGORyleccOpVMVck6wfshVKiHNnMawSsCIHFxdmsphIHQa6HXPEoMl1CIJvPgYgmUCp672IxKip6v&alr=yes&cpn=qtbYyfsYqyOhp6n8&cver=1.20221116.01.00&range=0-29658&rn=2&rbuf=0
IP 91.90.45.172:0
ASN #50304 Blix Solutions AS
File type ASCII text, with very long lines (1021), with no line terminators
Hash e4d8c8656f9eef4ee84267fadd5b9a5a
8e48c94248aaa8564d6d46bbe0b518e34b14ff18
9f2bb45e7038091ee8ba09bc633a9387ed6eac9eff12aa3aab6c828b85a7cbba
GET /videoplayback?expire=1668816446&ei=3sl3Y8bxGZiM7QTKv474DQ&ip=91.90.42.154&id=o-AIw8SkxDhWTMzdcdEsiYDLlqAKig6vLhxY-n1qc0SpgM&itag=251&source=youtube&requiressl=yes&mh=C4&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=1391250&spc=SFxXNg_lNMBPLxqE6IPHH5Gb59eYKzU&vprv=1&mime=audio%2Fwebm&ns=gxtTzbf5QHs1MpzCgBC4jI0J&gir=yes&clen=29659&dur=64.921&lmt=1664508406543038&mt=1668794468&fvip=2&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=1211224&n=B0DUB7ahZtX_cA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgHqreEuUa_SQLBrVBvKrpYBTXmfrfiuMdK-1qQV66ga0CICLTmRdfuFGirlomyW8rfDeE1tt8Sdnuacq8pcKOa0Tu&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgBNGQ4R9AlL-yGORyleccOpVMVck6wfshVKiHNnMawSsCIHFxdmsphIHQa6HXPEoMl1CIJvPgYgmUCp672IxKip6v&alr=yes&cpn=qtbYyfsYqyOhp6n8&cver=1.20221116.01.00&range=0-29658&rn=2&rbuf=0 HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Fri, 18 Nov 2022 18:07:26 GMT
Expires: Fri, 18 Nov 2022 18:07:26 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 1021
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 1fe9675413275b7415b9569bbed3ca07
008049185211f9cf1411a0d27e2eda59a99fa70a
065e8c4cc7199453e84840d864c3941daed714d9d2ca07860d4f6bfeb3071443
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 18:07:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
themarquetry.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.3
194.59.164.81200 OK 0 B URL HTTP/2 themarquetry.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.3
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.3 HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:20 GMT
content-type: application/x-javascript
last-modified: Tue, 16 Mar 2021 19:30:03 GMT
etag: "56d47-6051073b-2a44177c9460a7bb;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 88013
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/uploads/2021/03/IMG_3054-scaled-e1617106655484.jpg.webp
194.59.164.81200 OK 0 B URL HTTP/2 themarquetry.com/wp-content/uploads/2021/03/IMG_3054-scaled-e1617106655484.jpg.webp
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2021/03/IMG_3054-scaled-e1617106655484.jpg.webp HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: image/webp
last-modified: Sun, 04 Apr 2021 12:48:50 GMT
etag: "2424a-6069b5b2-46ad73a1d447a90a;;;"
accept-ranges: bytes
content-length: 148042
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/uploads/2021/03/Untitled-design-47.png
194.59.164.81200 OK 0 B URL HTTP/2 themarquetry.com/wp-content/uploads/2021/03/Untitled-design-47.png
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
GET /wp-content/uploads/2021/03/Untitled-design-47.png HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: image/png
last-modified: Thu, 12 Aug 2021 17:27:56 GMT
etag: "2c9dc-61155a1c-7cb1b494bf05aab0;;;"
accept-ranges: bytes
content-length: 182748
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
themarquetry.com/wp-content/uploads/2021/03/Orange-Minimalist-Food-Festival-Logo-3.jpg
194.59.164.81200 OK 0 B URL HTTP/2 themarquetry.com/wp-content/uploads/2021/03/Orange-Minimalist-Food-Festival-Logo-3.jpg
IP 194.59.164.81:0
ASN #47583 Hostinger International Limited
GET /wp-content/uploads/2021/03/Orange-Minimalist-Food-Festival-Logo-3.jpg HTTP/1.1
Host: themarquetry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 25 Nov 2022 18:07:21 GMT
content-type: image/jpeg
last-modified: Wed, 24 Mar 2021 20:20:51 GMT
etag: "f61ad-605b9f23-146e072d099ee507;;;"
accept-ranges: bytes
content-length: 1008045
date: Fri, 18 Nov 2022 18:07:18 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.youtube.com/iframe_api
142.250.74.78200 OK 0 B URL HTTP/2 www.youtube.com/iframe_api
IP 142.250.74.78:0
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://themarquetry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Fri, 18 Nov 2022 18:07:25 GMT
date: Fri, 18 Nov 2022 18:07:25 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=P9KXEvYuliI; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=TopPzr38CcQ; Domain=.youtube.com; Expires=Wed, 17-May-2023 18:07:25 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+214; expires=Sun, 17-Nov-2024 18:07:25 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2