r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 150792cfc458af013998f4ef6bdf5f74
d5179b2dcb11d06f82606bf6eb6648319998d63e
72937c756d3feeae6d04a6f445398b0436bdf559f8c7437e3a3233263943900e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "72937C756D3FEEAE6D04A6F445398B0436BDF559F8C7437E3A3233263943900E"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8157
Expires: Mon, 28 Nov 2022 19:05:06 GMT
Date: Mon, 28 Nov 2022 16:49:09 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3399
Cache-Control: max-age=153531
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:49:09 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:28:00 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 16:19:32 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1777
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10288
Expires: Mon, 28 Nov 2022 19:40:37 GMT
Date: Mon, 28 Nov 2022 16:49:09 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +Ibv618H1K300mITWSDNIv8imUZ9FWAqYKaNEpfdSwfJpfaDKBXWCivuYqdXurDj48SOjUSF1/4=
x-amz-request-id: SYMM9PP8ND86BSC1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 16:45:06 GMT
age: 243
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 16:49:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
imagengraph.com/shop/business-card-glossy-2-sides/
23.229.189.135200 OK 7.9 kB URL HTTP/1.1 imagengraph.com/shop/business-card-glossy-2-sides/
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (8207), with CRLF, LF line terminators
Hash f3cbf0f6f1defd7be682341189dff700
db7d6584c02d7472f6d246f1e6094294ad678db1
cd1b527148236b30cfadfec8e1f60258d2dcdcfa1e7689159d061d45c3bbeda3
Analyzer Verdict Alert fortinet Malware
GET /shop/business-card-glossy-2-sides/ HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:09 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Pingback: http://imagengraph.com/xmlrpc.php
Set-Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0; path=/
woocommerce_items_in_cart=0; expires=Mon, 28-Nov-2022 15:49:10 GMT; Max-Age=-3600; path=/
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7877
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
fonts.googleapis.com/css?family=Lato
142.250.74.10200 OK 327 B URL HTTP/1.1 fonts.googleapis.com/css?family=Lato
IP 142.250.74.10:0
Hash 40e7a3163187a0d443589571b573647e
787c6f7a243202e0abab2670c0c87002d68eab62
5a1544436dcb3d3942a4a21a71d738ae75516c037f4e21b579713796ee5ea447
GET /css?family=Lato HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Mon, 28 Nov 2022 16:49:10 GMT
Date: Mon, 28 Nov 2022 16:49:10 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
imagengraph.com/wp-content/themes/rustik/style.css
23.229.189.135200 OK 6.6 kB URL HTTP/1.1 imagengraph.com/wp-content/themes/rustik/style.css
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type assembler source, ASCII text, with CRLF line terminators
Hash 5751bc357bb4eb0e04d85423dc1850ad
2dfd7307bf186a2c34937771653f46443ae5b1da
b524f7cf8b8ec4a79ad8a93f771a65fbbb1fb1df7736eefb7590e9b272c1b604
GET /wp-content/themes/rustik/style.css HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:10 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 01 Nov 2021 22:19:22 GMT
ETag: "7720145-7238-5cfc1919a4e80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6557
Keep-Alive: timeout=5
Content-Type: text/css
imagengraph.com/wp-content/themes/rustik/css/effects.css
23.229.189.135200 OK 383 B URL HTTP/1.1 imagengraph.com/wp-content/themes/rustik/css/effects.css
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
Hash 5145a4c40df8d8db8c18fd2a630f14d1
75567dcdf89a9441fbf04f271d82fbc43b71c235
c235646bb8aaf8c3f4b81d91086e006a92d6f956ae5dd79d0dfafd01b0351182
GET /wp-content/themes/rustik/css/effects.css HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:10 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:18 GMT
ETag: "77201a4-4bc-5cfc1915d4580-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 383
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 16:08:55 GMT
cache-control: public,max-age=3600
age: 2415
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
imagengraph.com/wp-content/plugins/woocommerce/assets/css/fancybox.min.css?ver=3.3.2
23.229.189.135200 OK 1.0 kB URL HTTP/1.1 imagengraph.com/wp-content/plugins/woocommerce/assets/css/fancybox.min.css?ver=3.3.2
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (4209), with no line terminators
Hash 4faa42111002c1df5e8e1dd4ee36aaed
3da39b612109796c28dc8601299dc9470438fd5e
d95154f1c3a2e9e3b64f1e39a986528210880be2e9b2ac5600902c369777cb7c
GET /wp-content/plugins/woocommerce/assets/css/fancybox.min.css?ver=3.3.2 HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:10 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 01 Nov 2021 22:19:13 GMT
ETag: "7720488-1071-5cfc19110fa40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1007
Keep-Alive: timeout=5
Content-Type: text/css
imagengraph.com/wp-includes/js/jquery/ui/jquery.ui.widget.min.js?ver=1.8.16
23.229.189.135200 OK 1.3 kB URL HTTP/1.1 imagengraph.com/wp-includes/js/jquery/ui/jquery.ui.widget.min.js?ver=1.8.16
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (525)
Hash 535acca9664a4edf691c07a25341efe1
8817131cd89d26ca8776bfd999f4cc1d2897c977
710165507a699eddcf6dd5c25cbdaf0926e5129fe0be7134c1a07a12b9e569c4
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/jquery.ui.widget.min.js?ver=1.8.16 HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:10 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:23 GMT
ETag: "7720723-ce7-5cfc191a990c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1333
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
imagengraph.com/wp-includes/js/jquery/ui/jquery.ui.core.min.js?ver=1.8.16
23.229.189.135200 OK 2.0 kB URL HTTP/1.1 imagengraph.com/wp-includes/js/jquery/ui/jquery.ui.core.min.js?ver=1.8.16
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (529)
Hash e5d0f02382ee397216d14e6bbbe0ee9b
b5cc98daca9751d82c70b4bd1c1f150d6b781649
afa7e857750d12692ab273be00da18c981f8716cbf76899b86e3db6182ad8384
GET /wp-includes/js/jquery/ui/jquery.ui.core.min.js?ver=1.8.16 HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:10 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:23 GMT
ETag: "77206d5-110d-5cfc191a990c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1976
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
imagengraph.com/wp-content/themes/rustik/includes/js/libs/modernizr-2.0.6.min.js
23.229.189.135200 OK 6.4 kB URL HTTP/1.1 imagengraph.com/wp-content/themes/rustik/includes/js/libs/modernizr-2.0.6.min.js
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type HTML document, ASCII text, with very long lines (15060)
Hash 58757c625d714e3e9b66a7a76d0491a1
70c87d6be7ba926542b5c9134b429e589b91a945
f32a43f3a605a3b424ec9f4ab783bae0dc1495350eec1e4ce867a3ad88056e50
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/rustik/includes/js/libs/modernizr-2.0.6.min.js HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:10 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 01 Nov 2021 22:19:21 GMT
ETag: "7720856-3d63-5cfc1918b0c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6421
Keep-Alive: timeout=5
Content-Type: application/javascript
imagengraph.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.3.2
23.229.189.135200 OK 5.0 kB URL HTTP/1.1 imagengraph.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.3.2
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (608)
Hash 9699fb5173c658b5c06e0a420ca057cc
7a06dbc8d069b93a3ecf2789e8bdbe29c63ff35b
ae565a372d45c9afe66cf9edfdc4b52bc47368d0097c8daaa5d282c2b7e77a14
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.3.2 HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:10 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 01 Nov 2021 22:19:13 GMT
ETag: "772048f-55bd-5cfc19110fa40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5048
Keep-Alive: timeout=5
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3628
Cache-Control: max-age=148693
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:49:10 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 10:07:23 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
imagengraph.com/wp-includes/js/comment-reply.js?ver=20090102
23.229.189.135200 OK 412 B URL HTTP/1.1 imagengraph.com/wp-includes/js/comment-reply.js?ver=20090102
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (786), with no line terminators
Hash 87818ceb3510914586339269c23ece39
b8a843b89bc5f4b45b47b1f04a2cdcd5d8ced9d6
4e8eaf3cbd3c394a0200c47660f6d2f8bebee1fdd025024e5ef2590203d7c9ba
GET /wp-includes/js/comment-reply.js?ver=20090102 HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:10 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:23 GMT
ETag: "77204ff-312-5cfc191a990c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 412
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
imagengraph.com/wp-includes/js/jquery/ui/jquery.ui.tabs.min.js?ver=1.8.16
23.229.189.135200 OK 3.5 kB URL HTTP/1.1 imagengraph.com/wp-includes/js/jquery/ui/jquery.ui.tabs.min.js?ver=1.8.16
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type HTML document, ASCII text, with very long lines (639)
Hash 5a61ac81e2c28a1bf34deee366222ef9
c82a268f0d88db9450456011dc58ca0ce028a85e
c3f54f473a107248cf35910d2c277ab50a09615e97e38ff2464af222c2c1c220
GET /wp-includes/js/jquery/ui/jquery.ui.tabs.min.js?ver=1.8.16 HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:10 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:23 GMT
ETag: "772071d-2d70-5cfc191a990c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3535
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
imagengraph.com/wp-content/themes/rustik/includes/js/superfish.js?ver=3.3.2
23.229.189.135200 OK 1.6 kB URL HTTP/1.1 imagengraph.com/wp-content/themes/rustik/includes/js/superfish.js?ver=3.3.2
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
Hash b01c56118f4ae48b20e710b0e80f577a
6b4aa0fa5aec3a3419acacc7e1c9792744f6a470
dce6c37dd76642f6778732f7a520de313734e11ec93a86e33d7d34a29d6a5f96
GET /wp-content/themes/rustik/includes/js/superfish.js?ver=3.3.2 HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:10 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:21 GMT
ETag: "7720847-ee0-5cfc1918b0c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1558
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
imagengraph.com/wp-content/themes/rustik/includes/js/woo_tabs.js?ver=3.3.2
23.229.189.135200 OK 496 B URL HTTP/1.1 imagengraph.com/wp-content/themes/rustik/includes/js/woo_tabs.js?ver=3.3.2
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
Hash d280d2717b16f6ca5647099635e43c7e
0379fdf4f8a1df01679e801c43f0fc198263d201
d62681d8bbe6bec687508c19541b3950ae7620eea76b2af88336d81cb68ab03f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/rustik/includes/js/woo_tabs.js?ver=3.3.2 HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:10 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:21 GMT
ETag: "772084f-431-5cfc1918b0c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 496
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
imagengraph.com/wp-content/themes/rustik/functions/js/shortcodes.js?ver=1
23.229.189.135200 OK 924 B URL HTTP/1.1 imagengraph.com/wp-content/themes/rustik/functions/js/shortcodes.js?ver=1
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
Hash 055aa123935658f14c673795a0701838
7285dfc6ed77128828dda40289a65bb86909742f
2b3b6258d856c9032e0dc11923b4f5f7e42ad9dee6d77df08cd3a237b1342603
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/rustik/functions/js/shortcodes.js?ver=1 HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:10 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:20 GMT
ETag: "77205c3-d61-5cfc1917bca00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 924
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
imagengraph.com/wp-includes/js/jquery/jquery.js?ver=1.7.1
23.229.189.135200 OK 33 kB URL HTTP/1.1 imagengraph.com/wp-includes/js/jquery/jquery.js?ver=1.7.1
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32769)
Hash 5961013ad876a8d90211f3a034742eda
ffb398c39ec5d540dc333efbf4a025d67682e7b3
aadd9c0a9045ea3c93530f13b6ff5237adc9449b51180a565c73fcc02b7acf95
GET /wp-includes/js/jquery/jquery.js?ver=1.7.1 HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:10 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 01 Nov 2021 22:19:23 GMT
ETag: "772062b-16ec1-5cfc191a990c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 33146
Keep-Alive: timeout=5
Content-Type: application/javascript
imagengraph.com/wp-content/themes/rustik/includes/js/general.js?ver=3.3.2
23.229.189.135200 OK 843 B URL HTTP/1.1 imagengraph.com/wp-content/themes/rustik/includes/js/general.js?ver=3.3.2
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
Hash e0aeef0ce2a4cd54ced7c283be96f480
73f212c34cee58bc54fe83df1cdaa8a3b3c6b281
cb20d05aeec4a54d18fcf1e75216dce3496fba31d2d247f49addd11e63afd229
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/rustik/includes/js/general.js?ver=3.3.2 HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:10 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:21 GMT
ETag: "7720819-8a4-5cfc1918b0c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 843
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
imagengraph.com/wp-content/themes/rustik/styles/default.css
23.229.189.135200 OK 18 B URL HTTP/1.1 imagengraph.com/wp-content/themes/rustik/styles/default.css
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with no line terminators
Hash 6f9aaccd49985470f71ffee5e128e2f5
a4bf5bbbb021192873ecf7b94003d456b960d451
13d490516dc5cff874922cd12280b651452dad5224a45107d947e38854eff405
GET /wp-content/themes/rustik/styles/default.css HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:10 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:21 GMT
ETag: "77207f3-12-5cfc1918b0c40"
Accept-Ranges: bytes
Content-Length: 18
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
imagengraph.com/wp-content/plugins/nivo-slider-for-wordpress/css/nivoslider4wp.css
23.229.189.135200 OK 795 B URL HTTP/1.1 imagengraph.com/wp-content/plugins/nivo-slider-for-wordpress/css/nivoslider4wp.css
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash a655b51393607e97206056297bda2b68
dbb20cb253fe1f027319bc0d6f592d37a14f72f4
34c794c38d239b1beb349a21d8744f8700c891f4cc71c1b30a9f64951b1053f4
GET /wp-content/plugins/nivo-slider-for-wordpress/css/nivoslider4wp.css HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:10 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:16 GMT
ETag: "772028c-8c5-5cfc1913ec100-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 795
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
imagengraph.com/wp-content/themes/rustik/custom.css
23.229.189.135200 OK 190 B URL HTTP/1.1 imagengraph.com/wp-content/themes/rustik/custom.css
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
Hash c0dbbad3e38c7d603149dc2e02c45a31
c2d86a9c1e0ca5785063c66190064f078e518541
76553972309982744f338674136871097683c47a23e6685203a3dc7aba0741e2
GET /wp-content/themes/rustik/custom.css HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:10 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:21 GMT
ETag: "77200e6-fd-5cfc1918b0c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 190
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
imagengraph.com/wp-content/themes/rustik/functions/css/shortcodes.css
23.229.189.135200 OK 4.6 kB URL HTTP/1.1 imagengraph.com/wp-content/themes/rustik/functions/css/shortcodes.css
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (308)
Hash 8c9033a59b9742fbabbebc2e9ffad308
58879dd9faceb168d89e68862d736f6ece3ba9f3
1e38a853686d4a18204fc80dd12d1a0920814a7e43aa229a6cfd2e0b3d606588
GET /wp-content/themes/rustik/functions/css/shortcodes.css HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:10 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:18 GMT
ETag: "7720291-6b72-5cfc1915d4580-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4625
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
imagengraph.com/wp-content/themes/rustik/includes/js/jquery.uniform.min.js?ver=3.3.2
23.229.189.135200 OK 2.1 kB URL HTTP/1.1 imagengraph.com/wp-content/themes/rustik/includes/js/jquery.uniform.min.js?ver=3.3.2
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (9337), with no line terminators
Hash efef483cdf3c6ef29e3b0e9cf1201390
dd1c45640a72f7261b216d1b3457ba0ce05d3073
3373944821fdd6292a55b555df858cc39633b5fd5b2e1e560edc7fb85ce634af
GET /wp-content/themes/rustik/includes/js/jquery.uniform.min.js?ver=3.3.2 HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:10 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:21 GMT
ETag: "772082b-2479-5cfc1918b0c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2116
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
push.services.mozilla.com/
54.149.83.187101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.83.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Xq5HHwaPPb2PRclcbVKVrA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: V+KXh5DLuOEukkiJifD6asXG7NI=
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.195200 OK 24 kB URL HTTP/1.1 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://imagengraph.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 23580
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 18:20:17 GMT
Expires: Wed, 22 Nov 2023 18:20:17 GMT
Cache-Control: public, max-age=31536000
Age: 512934
Last-Modified: Tue, 26 Apr 2022 15:48:56 GMT
Content-Type: font/woff2
imagengraph.com/wp-content/plugins/woocommerce/assets/js/fancybox.min.js?ver=1.0
23.229.189.135200 OK 5.5 kB URL HTTP/1.1 imagengraph.com/wp-content/plugins/woocommerce/assets/js/fancybox.min.js?ver=1.0
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (14708)
Hash b912a8777c9c8ab532125fc36ac31ecb
aab385f1f4914e7950006c3313a5c81fb45d4b1e
f732414453df1ed5ab06b665f1c405de9bd2037cf414e9f5ac61073fbd211293
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/fancybox.min.js?ver=1.0 HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:11 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:14 GMT
ETag: "7720638-3b95-5cfc191203c80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5538
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
imagengraph.com/wp-content/plugins/woocommerce/assets/js/woocommerce.min.js?ver=1.0
23.229.189.135200 OK 7.3 kB URL HTTP/1.1 imagengraph.com/wp-content/plugins/woocommerce/assets/js/woocommerce.min.js?ver=1.0
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (23992)
Hash 18191ae09792b8e0e4c764e63fa4d5c8
569c2564ffa4a794a76e33c51fb1f8292c12c85d
290cf782f775fdf1b04d389392fc29cfbdaf07a0cc04f546ff34dd672f8fd194
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/woocommerce.min.js?ver=1.0 HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:11 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:14 GMT
ETag: "7720664-5f42-5cfc191203c80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7264
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
imagengraph.com/wp-content/plugins/woocommerce/assets/js/jquery-ui.min.js?ver=1.0
23.229.189.135200 OK 5.9 kB URL HTTP/1.1 imagengraph.com/wp-content/plugins/woocommerce/assets/js/jquery-ui.min.js?ver=1.0
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (19629)
Hash e54dda4f95c20d99639f3d010d7f6a7d
09c7fb8ade1d8b8dabbadce44e299ee7d54f1fb3
5065f9edafce481791d39ba3082024b29ae10adaa5dcaf1d9f89dae9a8a228f8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-ui.min.js?ver=1.0 HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:11 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:14 GMT
ETag: "7720647-4cc8-5cfc191203c80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5905
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
imagengraph.com/wp-content/plugins/woocommerce/assets/js/price_slider.min.js?ver=1.0
23.229.189.135200 OK 494 B URL HTTP/1.1 imagengraph.com/wp-content/plugins/woocommerce/assets/js/price_slider.min.js?ver=1.0
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (2183), with no line terminators
Hash 64f79d966147ecbe7a4c02b45408d32a
7f438f182c9922f4bea2ecfa5973c26660a62da1
c1fabb32427615e5be776bc395a0fa638cdde85b70a03e13c9df4ecf24eea7cf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/price_slider.min.js?ver=1.0 HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:11 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:14 GMT
ETag: "7720656-887-5cfc191203c80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 494
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
imagengraph.com/wp-content/uploads/2012/05/logo32-300x51.png
23.229.189.135200 OK 13 kB URL HTTP/1.1 imagengraph.com/wp-content/uploads/2012/05/logo32-300x51.png
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 300 x 51, 8-bit/color RGBA, non-interlaced\012- data
Hash 254509567ac3e6b041abbf61d55f4782
12ac4a60ae710a368d1678efd8c8fbc26133e6e7
8e8c1ae3b663da6da9e2a0c558c7693f173a3e1499bdf2e1a68096673c46e532
GET /wp-content/uploads/2012/05/logo32-300x51.png HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:11 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:07 GMT
ETag: "772026a-31ad-5cfc190b56cc0"
Accept-Ranges: bytes
Content-Length: 12717
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
imagengraph.com/wp-includes/js/thickbox/thickbox.js?ver=3.1-20111117
23.229.189.135200 OK 3.8 kB URL HTTP/1.1 imagengraph.com/wp-includes/js/thickbox/thickbox.js?ver=3.1-20111117
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type HTML document, ASCII text, with very long lines (526)
Hash 49bc5dbb183985b26ed19eebf0d398ac
8fcb89e07da594d1236b32fcdaa3f08f7255de8b
2b3b65630149ead07ade0add7877d1c1a2a88e180d9caf401f9053ee0a3db630
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/thickbox/thickbox.js?ver=3.1-20111117 HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:11 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:24 GMT
ETag: "77207d6-30d5-5cfc191b8d300-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3777
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
imagengraph.com/wp-content/themes/rustik/images/cart_nav_sep.png
23.229.189.135200 OK 926 B URL HTTP/1.1 imagengraph.com/wp-content/themes/rustik/images/cart_nav_sep.png
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 1 x 8, 8-bit/color RGB, non-interlaced\012- data
Hash 2c81da4697b18f6ce71a90b3f92e112c
f9c6acf1b88bccc65ca9ea4424f059da9a9b78f9
6c010ba489e7321a6999735a001ba1a6ed445db9e6d1f6c51dc973ad0c46677b
GET /wp-content/themes/rustik/images/cart_nav_sep.png HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/wp-content/themes/rustik/style.css
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:11 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:20 GMT
ETag: "77207d7-39e-5cfc1917bca00"
Accept-Ranges: bytes
Content-Length: 926
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
imagengraph.com/wp-content/themes/rustik/images/footer_separator.gif
23.229.189.135200 OK 1.2 kB URL HTTP/1.1 imagengraph.com/wp-content/themes/rustik/images/footer_separator.gif
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type GIF image data, version 89a, 3 x 18\012- data
Hash 926d8edb6397b549197314dd5467274a
9ca59753dbc5162069add8020190d89268971eef
d428a22d184f3bb29c1ef339deb26a50f1332ff0d0e461ae3f2e5eb13b76effe
GET /wp-content/themes/rustik/images/footer_separator.gif HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/wp-content/themes/rustik/style.css
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:11 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:20 GMT
ETag: "772081c-493-5cfc1917bca00"
Accept-Ranges: bytes
Content-Length: 1171
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/gif
imagengraph.com/wp-content/themes/rustik/images/search_submit.gif
23.229.189.135200 OK 1.2 kB URL HTTP/1.1 imagengraph.com/wp-content/themes/rustik/images/search_submit.gif
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type GIF image data, version 89a, 20 x 20\012- data
Hash 63caf9cdf93ca16fed326971f653afdc
80e98d9e61795617a7216bfa822ba8bd967a0647
fd57157e631d5a3dc96b1cad0d09017360dbe4d6849fd972d8bb941e8bad6b6d
GET /wp-content/themes/rustik/images/search_submit.gif HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:11 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:21 GMT
ETag: "77208cb-4ad-5cfc1918b0c40"
Accept-Ranges: bytes
Content-Length: 1197
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/gif
imagengraph.com/wp-content/uploads/2012/07/biz-cards-260x260.jpg
23.229.189.135200 OK 16 kB URL HTTP/1.1 imagengraph.com/wp-content/uploads/2012/07/biz-cards-260x260.jpg
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 260x260, components 3\012- data
Hash 2505cdafbc82ca8e86129491a7a692ef
6202a15dff51b613eaf090e43bc9da25a48794dd
d2fa5e14364e6cb9c0bb93ff56d709c91789fcfc0f0fc073154ed57fa5f54790
GET /wp-content/uploads/2012/07/biz-cards-260x260.jpg HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:11 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:08 GMT
ETag: "772040e-3fd9-5cfc190c4af00"
Accept-Ranges: bytes
Content-Length: 16345
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
imagengraph.com/wp-content/themes/rustik/images/selectBox-arrow.gif
23.229.189.135200 OK 1.1 kB URL HTTP/1.1 imagengraph.com/wp-content/themes/rustik/images/selectBox-arrow.gif
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type GIF image data, version 89a, 19 x 19\012- data
Hash f41dd30d3dd80307899496d0f95ffcf8
23dcfa77ba57d333ce36c1f764f47098a5260403
aae2568efac0d2abe1e27849a706872ca0e8dabe15063a70dfb6174c979c3fff
GET /wp-content/themes/rustik/images/selectBox-arrow.gif HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/wp-content/themes/rustik/style.css
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:11 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:21 GMT
ETag: "77208cf-477-5cfc1918b0c40"
Accept-Ranges: bytes
Content-Length: 1143
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/gif
imagengraph.com/wp-includes/js/thickbox/loadingAnimation.gif
23.229.189.135200 OK 5.9 kB URL HTTP/1.1 imagengraph.com/wp-includes/js/thickbox/loadingAnimation.gif
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type GIF image data, version 89a, 208 x 13\012- data
Hash c33734a1bf58bec328ffa27872e96ae1
2bb50e01775289c24bf71d4f3e696b46925f20a3
e69abd7e0cc82f336e61fea889e406ecbbeb7ece1df960231b7a9ba0d1dd1676
GET /wp-includes/js/thickbox/loadingAnimation.gif HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:11 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:24 GMT
ETag: "77207bf-16fe-5cfc191b8d300"
Accept-Ranges: bytes
Content-Length: 5886
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/gif
imagengraph.com/wp-content/plugins/woocommerce/assets/images/star.png
23.229.189.135200 OK 1.4 kB URL HTTP/1.1 imagengraph.com/wp-content/plugins/woocommerce/assets/images/star.png
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 16 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 0db7e862c6530f779f71fb0c24d413b7
2b00ff64a7e738f85e1a1a129ab45ad472bc665f
accba6a47aae0b22bb561bb9434c1de477e3e3647a6fd41a5a72a4fa313eff69
GET /wp-content/plugins/woocommerce/assets/images/star.png HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.3.2
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:11 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:14 GMT
ETag: "7720539-582-5cfc191203c80"
Accept-Ranges: bytes
Content-Length: 1410
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
imagengraph.com/wp-content/uploads/2012/07/biz-cards-2.jpg
23.229.189.135200 OK 38 kB URL HTTP/1.1 imagengraph.com/wp-content/uploads/2012/07/biz-cards-2.jpg
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=700, bps=0, PhotometricIntepretation=CMYK, orientation=upper-left, width=700], baseline, precision 8, 360x360, components 3\012- data
Hash fa82b91e14aca1affdb727be53b127c2
5945ddb87a379b442433d41aed851ccb22480758
3470f822e49a731244eabd7ace04f752ebafd3ad47150d7a314f3f6f75066bf6
GET /wp-content/uploads/2012/07/biz-cards-2.jpg HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:11 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:09 GMT
ETag: "7720407-924f-5cfc190d3f140"
Accept-Ranges: bytes
Content-Length: 37455
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
imagengraph.com/wp-content/uploads/2012/07/business_cards_22-e1341943919678.jpg
23.229.189.135200 OK 51 kB URL HTTP/1.1 imagengraph.com/wp-content/uploads/2012/07/business_cards_22-e1341943919678.jpg
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 506x405, components 3\012- data
Hash 62b9b880f2f2ec70226054ac73e01ed7
15ab3db22c6c565aa612734fd66df74d6e2c2d0d
5fdc3de80a354d55c51ed7920dcc264dc6fe1d2e72d74ffe6220ed8ca1d20ded
GET /wp-content/uploads/2012/07/business_cards_22-e1341943919678.jpg HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:11 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:08 GMT
ETag: "77204ec-c819-5cfc190c4af00"
Accept-Ranges: bytes
Content-Length: 51225
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
www.google-analytics.com/ga.js
216.239.38.178200 OK 17 kB URL HTTP/1.1 www.google-analytics.com/ga.js
IP 216.239.38.178:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Mon, 28 Nov 2022 15:05:59 GMT
Expires: Mon, 28 Nov 2022 17:05:59 GMT
Cache-Control: public, max-age=7200
Age: 6192
Last-Modified: Tue, 27 Sep 2022 22:01:05 GMT
Content-Type: text/javascript
www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=771169763&utmhn=imagengraph.com&utme=8(logged-in*3!username)9(no*3!Guest)11(1*3!1)&utmcs=UTF-8&utmsr=1280x1024&utmvp=1280x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Business%20Cards%20%7C%20Imagengraph&utmhid=165407365&utmr=-&utmp=%2Fshop%2Fbusiness-card-glossy-2-sides%2F&utmht=1669654151164&utmac=UA-33610071-1&utmcc=__utma%3D97765639.1609555383.1669654151.1669654151.1669654151.1%3B%2B__utmz%3D97765639.1669654151.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=2110482196&utmredir=1&utmu=qQAAAAAAAAAAAAAAAAAAAAAE~
216.239.38.178200 OK 35 B URL HTTP/1.1 www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=771169763&utmhn=imagengraph.com&utme=8(logged-in*3!username)9(no*3!Guest)11(1*3!1)&utmcs=UTF-8&utmsr=1280x1024&utmvp=1280x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Business%20Cards%20%7C%20Imagengraph&utmhid=165407365&utmr=-&utmp=%2Fshop%2Fbusiness-card-glossy-2-sides%2F&utmht=1669654151164&utmac=UA-33610071-1&utmcc=__utma%3D97765639.1609555383.1669654151.1669654151.1669654151.1%3B%2B__utmz%3D97765639.1669654151.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=2110482196&utmredir=1&utmu=qQAAAAAAAAAAAAAAAAAAAAAE~
IP 216.239.38.178:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=771169763&utmhn=imagengraph.com&utme=8(logged-in*3!username)9(no*3!Guest)11(1*3!1)&utmcs=UTF-8&utmsr=1280x1024&utmvp=1280x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Business%20Cards%20%7C%20Imagengraph&utmhid=165407365&utmr=-&utmp=%2Fshop%2Fbusiness-card-glossy-2-sides%2F&utmht=1669654151164&utmac=UA-33610071-1&utmcc=__utma%3D97765639.1609555383.1669654151.1669654151.1669654151.1%3B%2B__utmz%3D97765639.1669654151.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=2110482196&utmredir=1&utmu=qQAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Date: Mon, 28 Nov 2022 16:49:11 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Content-Type: image/gif
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
imagengraph.com/favicon.ico
23.229.189.135200 OK 0 B URL HTTP/1.1 imagengraph.com/favicon.ico
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:11 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 22:19:03 GMT
ETag: "772007b-0-5cfc1907863c0"
Accept-Ranges: bytes
Content-Length: 0
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/x-icon
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6296
Expires: Mon, 28 Nov 2022 18:34:08 GMT
Date: Mon, 28 Nov 2022 16:49:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6296
Expires: Mon, 28 Nov 2022 18:34:08 GMT
Date: Mon, 28 Nov 2022 16:49:12 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78b1389f425425d0450c94d900404dc4
53b12a8702f7c5b7cc697e2a24da824d9434be65
0c1659ab3afc6e45f9e3acb12f8865bb99e4668f7df4501b1cc740e53f5b62ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6376
x-amzn-requestid: 25b82353-9c15-44c0-ada5-55f4697de935
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KGeaoAMFb_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-71711cca7c063030292c5e47;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: odmAWkNyUMevvXStu7zRJyckokhyBjUwu7-JSvj8by-JWJ9eAm9P5Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:46 GMT
age: 67646
etag: "53b12a8702f7c5b7cc697e2a24da824d9434be65"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e97baa4851785eac92c719abf481c64
c32a57038d3cdbc514c9081c9938eca6a04fb481
adb59e982648082e5421f58899a5331b2747e9d45be33c495fbe3ab8cc872b22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8387
x-amzn-requestid: e4ce369f-7654-4c1a-94c2-70c913eb1a01
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFL0tEcqIAMFXHw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637ec01d-37bd969f4cdfe220096b8c1f;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 00:51:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: __2hrJIdzCKzhuJ_YfbSSfz-WwyIqnPugk7P6SuYSjn6b2wwm0otCw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 12:39:59 GMT
age: 14953
etag: "c32a57038d3cdbc514c9081c9938eca6a04fb481"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 741ddfb19764ac9a77509e7e87cfbfb2
308c08784ce4a0757cbd112807555b83e17a1d56
e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8817
x-amzn-requestid: 31bd21c7-1d75-4159-af51-52035da16da4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-krGE6AIAMF2Kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c1b13-32a7b9c6642592c70783a0cf;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 00:42:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: I6egDH0h7D08HhaoQHQ0vgghBhPfje2lGIbnWD-t7p4txzHsFxmZfg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 10:31:22 GMT
age: 22670
etag: "308c08784ce4a0757cbd112807555b83e17a1d56"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2cd887044e91d7ed0f1a8d7119ff7dd0
ae8aa4ce6ddaccba771fe65446926b60fc5628da
bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CXOqm7bjsSV0aJBTkTI7LsMovjgPeISPt3sZotEc7CjZnUL_y4_OoQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:42:14 GMT
age: 68818
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NMMuQ1NNks65LJK_HDAK69MfCJ3pS0Y6VzBs8_5Oku64v4FSWADCdw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:46 GMT
age: 67646
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa78e81d9-dbc4-4911-9711-219f64026531.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa78e81d9-dbc4-4911-9711-219f64026531.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e586c141835f4ac8819c55dcb811b4d
a23fd98701ac35cd8740d1f7a832118c770e20c8
4296f391f755a649897a2211f9072c69a0510e43a313674908bb0a771b12650e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa78e81d9-dbc4-4911-9711-219f64026531.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10944
x-amzn-requestid: 8f48c27c-bbec-46f5-9c08-1cc804b9aff7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIbJ_FyvIAMFhrQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63800bd9-2ffa8521241a5e5b0afc0935;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 00:27:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4YiBUU3kS0VrcVOwKXUHgIRygLLeXGp1TjBYDi6WwWWm6WMKktzfHg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:55:16 GMT
age: 68036
etag: "a23fd98701ac35cd8740d1f7a832118c770e20c8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
imagengraph.com/shop/magnet-2-5x-3/
23.229.189.135200 OK 7.9 kB URL HTTP/1.1 imagengraph.com/shop/magnet-2-5x-3/
IP 23.229.189.135:0
ASN #398101 GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (10251), with CRLF, LF line terminators
Hash ccf8d450e27abb4edc023adda7441662
eed93ff651ee458e45c788942d4ffc639f698486
56221cfd2df9f91d77757469af254f8844b232ee1898fa1df5517041bb919399
Analyzer Verdict Alert fortinet Malware
GET /shop/magnet-2-5x-3/ HTTP/1.1
Host: imagengraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Moz: prefetch
Connection: keep-alive
Referer: http://imagengraph.com/shop/business-card-glossy-2-sides/
Cookie: PHPSESSID=24rho6rerg6gkbioq47fdapef0; __utma=97765639.1609555383.1669654151.1669654151.1669654151.1; __utmb=97765639.1.10.1669654151; __utmc=97765639; __utmz=97765639.1669654151.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmv=97765639.|1=logged-in=no=1^3=username=Guest=1; __utmt=1
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 16:49:11 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Pingback: http://imagengraph.com/xmlrpc.php
Set-Cookie: woocommerce_items_in_cart=0; expires=Mon, 28-Nov-2022 15:49:12 GMT; Max-Age=-3600; path=/
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7890
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8