r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7122
Expires: Tue, 06 Dec 2022 13:49:30 GMT
Date: Tue, 06 Dec 2022 11:50:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7191
Expires: Tue, 06 Dec 2022 13:50:39 GMT
Date: Tue, 06 Dec 2022 11:50:48 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f83c5e33ba42e312ee398848bbb711f5
caa1fd23b1fbbe883292ded04404c1cfd861eb09
106d08fba45f1e13f85b4b5abc456594878494238933e54b6a06e21ed8a52bc9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4127
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:50:48 GMT
Last-Modified: Tue, 06 Dec 2022 10:42:01 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: LW0aVr2NM5nT9xKovsrbdDd+yj8c3RX/9CtFbrYHV/dbbW08h30WLcge8m3J1Vm/uJv4k9xP/ZA=
x-amz-request-id: YGNH6Q6H51TGZR0F
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 06 Dec 2022 11:48:55 GMT
age: 113
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 06 Dec 2022 11:18:38 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1930
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 11:50:48 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 06 Dec 2022 11:11:20 GMT
cache-control: public,max-age=3600
age: 2368
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0f7dcaa590e32cfd1c075255188d5f06
d4bb4954fefdb3b59560b54adf500e806e252e39
195795c2511b31519134f5eb4442d8708918ecaff72f8e821a5473ad7c97c448
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4111
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:50:48 GMT
Last-Modified: Tue, 06 Dec 2022 10:42:17 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
vatilik.com/
208.97.176.144301 Moved Permanently 0 B IP 208.97.176.144:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 11:50:47 GMT
Server: Apache
Vary: Accept-Encoding,Cookie,IS_SUBREQ,User-Agent
Expires: Tue, 06 Dec 2022 12:50:48 GMT
Cache-Control: max-age=3600
X-Redirect-By: WordPress
Upgrade: h2
Connection: Upgrade, Keep-Alive
Location: http://www.vatilik.com/
Content-Length: 0
Keep-Alive: timeout=5, max=100
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
54.187.71.185101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.71.185:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HygP1hIBk8ie8w3UgxlXiA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ojYjfMO/B4qALt98bUf+eBdDuBY=
www.vatilik.com/
208.97.176.144200 OK 14 kB IP 208.97.176.144:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1820)
Hash aab4303b876d5a646e340e167adc8a6f
8d54710cd33bf7a3c2ce1142b50e2b5ce399af48
b57ed0bede8bbb909d3f6d486b8ff0eec7ab2ee1a715cbb8b2e336fd8d836aee
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:48 GMT
Server: Apache
Vary: Accept-Encoding,Cookie,IS_SUBREQ,User-Agent
Upgrade: h2
Connection: Upgrade, Keep-Alive
Cache-Control: max-age=3, must-revalidate, max-age=600
Expires: Tue, 06 Dec 2022 12:00:48 GMT
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800%7CRoboto%3A100%2C300%2C400%2C500%2C600%2C700%2C900%7CRaleway%3A600%7Citalic&subset=latin%2Clatin-ext
142.250.74.106200 OK 1.2 kB URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800%7CRoboto%3A100%2C300%2C400%2C500%2C600%2C700%2C900%7CRaleway%3A600%7Citalic&subset=latin%2Clatin-ext
IP 142.250.74.106:0
Hash 29d208305b7b1fffe63f5dc57fc5d6fb
64729d9cdb4ca363434d8a00232a92498761dfa9
315f30e78b9f91da127f0c3a485512d434e1d27ded8ec8a1f0857833afdd16f5
GET /css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800%7CRoboto%3A100%2C300%2C400%2C500%2C600%2C700%2C900%7CRaleway%3A600%7Citalic&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vatilik.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Tue, 06 Dec 2022 11:50:48 GMT
Date: Tue, 06 Dec 2022 11:50:48 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
www.vatilik.com/wp-content/plugins/erp/modules/crm/assets/css/erp-subscription-form.css?ver=1.5.4
208.97.176.144200 OK 540 B URL HTTP/1.1 www.vatilik.com/wp-content/plugins/erp/modules/crm/assets/css/erp-subscription-form.css?ver=1.5.4
IP 208.97.176.144:0
Hash 9a4a357536eec063ec1628d20ec46ad5
b1058d22612335da09e79de19ac12d98d9ef7621
456586d2af2c98b17ca60e5f74b42037a5c0b13ae4255031f6ae33faa6a797b5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/erp/modules/crm/assets/css/erp-subscription-form.css?ver=1.5.4 HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vatilik.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:48 GMT
Server: Apache
Vary: IS_SUBREQ,Accept-Encoding,User-Agent
Last-Modified: Mon, 30 Sep 2019 09:26:47 GMT
ETag: "6b8-593c1d5c4535c-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 05 Jan 2023 11:50:48 GMT
Content-Encoding: gzip
Content-Length: 540
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3ba864a4daffd79d4639e98e35cf5a8f
4e2dfdbff3ce773c1c39031bdf854e2b0a31131c
73a684466e34cc6ab4250dbab0c6afb73a92c4239e37076020b9e1c446b69b7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:50:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-105693359-2
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-105693359-2
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 1698b144ee769eb7bbcdcc20f20b1275
bf4ee8a273c294ca96e4294f189e6f7b62c53eb7
d57c83864d4148b3ffd24c6a1389f4d71dc3514b6a0f33c2ea83f2508e4e75d6
GET /gtag/js?id=UA-105693359-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.vatilik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Dec 2022 11:50:49 GMT
expires: Tue, 06 Dec 2022 11:50:49 GMT
cache-control: private, max-age=900
last-modified: Tue, 06 Dec 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43635
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3ba864a4daffd79d4639e98e35cf5a8f
4e2dfdbff3ce773c1c39031bdf854e2b0a31131c
73a684466e34cc6ab4250dbab0c6afb73a92c4239e37076020b9e1c446b69b7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:50:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.vatilik.com/wp-content/themes/mazino/style.css?ver=5.8.6
208.97.176.144200 OK 1.3 kB URL HTTP/1.1 www.vatilik.com/wp-content/themes/mazino/style.css?ver=5.8.6
IP 208.97.176.144:0
File type ASCII text, with very long lines (477)
Hash 648d1ffac05dfbee1b07e8e5b4fb1726
4cdafb76e20c9919fd6ccbfce7eb9552c48643d6
15fccd362981b3b10dc74dcedb171297f3534a306a6c2046cd89e4cc8e901740
GET /wp-content/themes/mazino/style.css?ver=5.8.6 HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vatilik.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:49 GMT
Server: Apache
Vary: IS_SUBREQ,Accept-Encoding,User-Agent
Upgrade: h2
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 28 Sep 2018 06:53:33 GMT
ETag: "e92-576e8e9f25d06-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 05 Jan 2023 11:50:49 GMT
Content-Encoding: gzip
Content-Length: 1269
Keep-Alive: timeout=5, max=100
Content-Type: text/css
www.vatilik.com/wp-content/plugins/wp-invoice/static/views/wpi-default-style.css?ver=4.2.2
208.97.176.144200 OK 1.1 kB URL HTTP/1.1 www.vatilik.com/wp-content/plugins/wp-invoice/static/views/wpi-default-style.css?ver=4.2.2
IP 208.97.176.144:0
Hash e8f6a383d04d71cc0163d18663a261d6
0e8d3cbff069a8f9b0f07f745ecd01ed3ac1f4ac
5c53599a17faf2429140059fa5ceb38f4563d7afa460c7b8c8995e07b9932aa6
GET /wp-content/plugins/wp-invoice/static/views/wpi-default-style.css?ver=4.2.2 HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vatilik.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:49 GMT
Server: Apache
Vary: IS_SUBREQ,Accept-Encoding,User-Agent
Upgrade: h2
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 30 Sep 2019 05:47:04 GMT
ETag: "128d-593bec3ffbb57-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 05 Jan 2023 11:50:49 GMT
Content-Encoding: gzip
Content-Length: 1076
Keep-Alive: timeout=5, max=100
Content-Type: text/css
www.vatilik.com/wp-content/themes/quality/css/theme-menu.css?ver=5.8.6
208.97.176.144200 OK 2.0 kB URL HTTP/1.1 www.vatilik.com/wp-content/themes/quality/css/theme-menu.css?ver=5.8.6
IP 208.97.176.144:0
Hash 0eecd2f02b4ac6c91f7b3f534a015b64
53bedc4bed52a490aaba20002418037523d043f7
121c9674ff67921fe1ef906e8a38da226dc48877b73b65126a6daec30184eaa1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/quality/css/theme-menu.css?ver=5.8.6 HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vatilik.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:49 GMT
Server: Apache
Vary: IS_SUBREQ,Accept-Encoding,User-Agent
Last-Modified: Wed, 03 Oct 2018 14:15:14 GMT
ETag: "2278-57753aac305e7-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 05 Jan 2023 11:50:49 GMT
Content-Encoding: gzip
Content-Length: 2040
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.vatilik.com/wp-content/themes/quality/css/default.css?ver=5.8.6
208.97.176.144200 OK 3.6 kB URL HTTP/1.1 www.vatilik.com/wp-content/themes/quality/css/default.css?ver=5.8.6
IP 208.97.176.144:0
File type assembler source, ASCII text, with very long lines (548)
Hash 3510c9f878f3890ebc8b20dd4ea69180
fc49f15b43c572613ac4e1d5406d524337d43711
30a8d87cb2987e27495566934d31c99aba9699c5e6715bbff85705d016474d53
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/quality/css/default.css?ver=5.8.6 HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vatilik.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:49 GMT
Server: Apache
Vary: IS_SUBREQ,Accept-Encoding,User-Agent
Upgrade: h2
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 28 Sep 2018 06:53:36 GMT
ETag: "4c19-576e8ea2b9d1a-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 05 Jan 2023 11:50:49 GMT
Content-Encoding: gzip
Content-Length: 3593
Keep-Alive: timeout=5, max=100
Content-Type: text/css
www.vatilik.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8.6
208.97.176.144200 OK 11 kB URL HTTP/1.1 www.vatilik.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8.6
IP 208.97.176.144:0
File type Unicode text, UTF-8 text, with very long lines (33376)
Hash 6f9d38f9ddf4fc0955e4b47a122ec301
f67c6ce706fb6a4e20da568d7c6bed6328aec4e5
45232941cb8dbf8b26f6e5a2b24df04c7813c3dd2521520c2360a08c31d8ba4d
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.8.6 HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vatilik.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:49 GMT
Server: Apache
Vary: IS_SUBREQ,Accept-Encoding,User-Agent
Upgrade: h2
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 25 Jan 2022 07:42:32 GMT
ETag: "13abe-5d6633a586812-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 05 Jan 2023 11:50:49 GMT
Content-Encoding: gzip
Content-Length: 10969
Keep-Alive: timeout=5, max=100
Content-Type: text/css
www.vatilik.com/wp-content/themes/quality/css/bootstrap.css?ver=5.8.6
208.97.176.144200 OK 19 kB URL HTTP/1.1 www.vatilik.com/wp-content/themes/quality/css/bootstrap.css?ver=5.8.6
IP 208.97.176.144:0
File type assembler source, ASCII text, with very long lines (540)
Hash 367495389533346a86ce4ce278d0e461
109b7cfa88f0e0b31d1d023b98b40c3185936633
bd310cc7e3b545c456bf82ec72ba357d5e9a1fbcbc7d76c80eb9d9ebeedb237f
GET /wp-content/themes/quality/css/bootstrap.css?ver=5.8.6 HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vatilik.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:49 GMT
Server: Apache
Vary: IS_SUBREQ,Accept-Encoding,User-Agent
Upgrade: h2
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 03 Oct 2018 14:05:43 GMT
ETag: "1d98a-5775388bcae6c-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 05 Jan 2023 11:50:49 GMT
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: text/css
www.vatilik.com/wp-content/themes/quality/css/font-awesome/css/font-awesome.min.css?ver=5.8.6
208.97.176.144200 OK 7.1 kB URL HTTP/1.1 www.vatilik.com/wp-content/themes/quality/css/font-awesome/css/font-awesome.min.css?ver=5.8.6
IP 208.97.176.144:0
File type ASCII text, with very long lines (30837)
Hash e59b95399aac4f9b24d4a3f139e5059b
85e4b1eef887864357ca2069a43ff1c34224f1c1
b6458a2f077fbce91080c428a62d71a2296bcd6131fb17befb41fc16480038de
GET /wp-content/themes/quality/css/font-awesome/css/font-awesome.min.css?ver=5.8.6 HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vatilik.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:49 GMT
Server: Apache
Vary: IS_SUBREQ,Accept-Encoding,User-Agent
Last-Modified: Fri, 28 Sep 2018 06:53:36 GMT
ETag: "7918-576e8ea297a3b-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 05 Jan 2023 11:50:49 GMT
Content-Encoding: gzip
Content-Length: 7052
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.vatilik.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
208.97.176.144200 OK 4.2 kB URL HTTP/1.1 www.vatilik.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 208.97.176.144:0
File type ASCII text, with very long lines (11126)
Hash a65d5500f76589b8c41c6d1e8895c456
fc9b5b82c4a5c6973efcbca5f6ca01a5eb252a59
9cb0e5695834af1b05fa4e3699dc7be10857e491c8c511edb63ed7f337083d1d
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vatilik.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:49 GMT
Server: Apache
Vary: IS_SUBREQ,Accept-Encoding,User-Agent
Last-Modified: Tue, 25 Jan 2022 07:42:33 GMT
ETag: "2bd8-5d6633a65a6a7-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 05 Jan 2023 11:50:49 GMT
Content-Encoding: gzip
Content-Length: 4204
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.vatilik.com/wp-content/themes/quality/css/lightbox.css?ver=5.8.6
208.97.176.144200 OK 1.2 kB URL HTTP/1.1 www.vatilik.com/wp-content/themes/quality/css/lightbox.css?ver=5.8.6
IP 208.97.176.144:0
Hash 8a013547e0fea712cd20ee9800755554
c1b494e9a83fd81c1e2ec59a4b88740d93511930
f75f9a4becda0151db7f76bf30e0ee6673022b1e86ae05cf5ce2233b3d2f29a8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/quality/css/lightbox.css?ver=5.8.6 HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vatilik.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:49 GMT
Server: Apache
Vary: IS_SUBREQ,Accept-Encoding,User-Agent
Last-Modified: Fri, 28 Sep 2018 06:53:36 GMT
ETag: "10fb-576e8ea2bcbfa-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 05 Jan 2023 11:50:49 GMT
Content-Encoding: gzip
Content-Length: 1233
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.vatilik.com/wp-content/themes/quality/style.css?ver=5.8.6
208.97.176.144200 OK 18 kB URL HTTP/1.1 www.vatilik.com/wp-content/themes/quality/style.css?ver=5.8.6
IP 208.97.176.144:0
File type ASCII text, with very long lines (946)
Hash 605e9b89b63d1a1c6990e0b7f8a8561f
1c5e345af6de89fae3c47f6b2b1455534bc2c3b9
ce11d55455dad8071ecd855452260544346799d7560bccc734d842652cf7fbfb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/quality/style.css?ver=5.8.6 HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vatilik.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:49 GMT
Server: Apache
Vary: IS_SUBREQ,Accept-Encoding,User-Agent
Last-Modified: Wed, 03 Oct 2018 14:22:08 GMT
ETag: "170ff-57753c37034b6-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 05 Jan 2023 11:50:49 GMT
Content-Encoding: gzip
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
www.vatilik.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
208.97.176.144200 OK 31 kB URL HTTP/1.1 www.vatilik.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 208.97.176.144:0
File type ASCII text, with very long lines (65447)
Hash a453637630e759ad84aef4d3731a5d94
6d4e1f4047de2e3c9643c3d9460f5a249a19c8ba
1e256566935f04f54370fb4f407fabe9eb739b7d8ec5f3851f02f9a1aaa99a63
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vatilik.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:49 GMT
Server: Apache
Vary: IS_SUBREQ,Accept-Encoding,User-Agent
Last-Modified: Tue, 25 Jan 2022 07:42:33 GMT
ETag: "15db1-5d6633a65e526-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 05 Jan 2023 11:50:49 GMT
Content-Encoding: gzip
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
www.vatilik.com/wp-content/themes/quality/js/menu/menu.js?ver=5.8.6
208.97.176.144200 OK 1.4 kB URL HTTP/1.1 www.vatilik.com/wp-content/themes/quality/js/menu/menu.js?ver=5.8.6
IP 208.97.176.144:0
Hash 22e26cbe4e9df2d51ea9b01bb668ae8e
709cc0bccf5df97411101002c68b14dc2372b6c5
5fba0cf38c3556922922db50ff5c3be20330a859d15138fbd390296986fd2f15
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/quality/js/menu/menu.js?ver=5.8.6 HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vatilik.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:49 GMT
Server: Apache
Vary: IS_SUBREQ,Accept-Encoding,User-Agent
Last-Modified: Fri, 28 Sep 2018 06:53:37 GMT
ETag: "1975-576e8ea319855-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 05 Jan 2023 11:50:49 GMT
Content-Encoding: gzip
Content-Length: 1405
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.vatilik.com/wp-content/themes/quality/js/bootstrap.min.js?ver=5.8.6
208.97.176.144200 OK 9.6 kB URL HTTP/1.1 www.vatilik.com/wp-content/themes/quality/js/bootstrap.min.js?ver=5.8.6
IP 208.97.176.144:0
File type ASCII text, with very long lines (32025)
Hash 4b610ace75541ac3b1ab976266737d89
5a11a5f9374ab8157c888b44134599b43cce9d68
00ddef373b86dfc737394052a5ccb450aa40af1528094780ee3ec1190f567b68
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/quality/js/bootstrap.min.js?ver=5.8.6 HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vatilik.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:49 GMT
Server: Apache
Vary: IS_SUBREQ,Accept-Encoding,User-Agent
Last-Modified: Fri, 28 Sep 2018 06:53:37 GMT
ETag: "8c6f-576e8ea319855-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 05 Jan 2023 11:50:49 GMT
Content-Encoding: gzip
Content-Length: 9646
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.vatilik.com/wp-content/themes/quality/js/lightbox/lightbox-2.6.min.js?ver=5.8.6
208.97.176.144200 OK 2.5 kB URL HTTP/1.1 www.vatilik.com/wp-content/themes/quality/js/lightbox/lightbox-2.6.min.js?ver=5.8.6
IP 208.97.176.144:0
File type ASCII text, with very long lines (597)
Hash 1aedfe4beacbff0bcce8ae50ae4e15d6
99465a6df38e29a2e3dbdc3d8e0365e89a37c46d
d81040d710b824e2ab456155ade4953e26448a020b2319f011f8cc7db386f7d3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/quality/js/lightbox/lightbox-2.6.min.js?ver=5.8.6 HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vatilik.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:49 GMT
Server: Apache
Vary: IS_SUBREQ,Accept-Encoding,User-Agent
Last-Modified: Fri, 28 Sep 2018 06:53:37 GMT
ETag: "2f9e-576e8ea319855-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 05 Jan 2023 11:50:49 GMT
Content-Encoding: gzip
Content-Length: 2508
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.vatilik.com/wp-content/themes/mazino/js/masonry/mp.mansory.js?ver=5.8.6
208.97.176.144200 OK 1.6 kB URL HTTP/1.1 www.vatilik.com/wp-content/themes/mazino/js/masonry/mp.mansory.js?ver=5.8.6
IP 208.97.176.144:0
Hash 19af2a67f262d88d6dd088af7e822db5
724d38a9300361abed6845a43be9558b6b68efa8
5f3e01c44495494bb7786fdcd37c7346c30fe6c1e8f3637bfaf557ee91dbbad5
GET /wp-content/themes/mazino/js/masonry/mp.mansory.js?ver=5.8.6 HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vatilik.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:49 GMT
Server: Apache
Vary: IS_SUBREQ,Accept-Encoding,User-Agent
Last-Modified: Fri, 28 Sep 2018 06:53:33 GMT
ETag: "1609-576e8e9f21e86-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 05 Jan 2023 11:50:49 GMT
Content-Encoding: gzip
Content-Length: 1632
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.vatilik.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.6
208.97.176.144200 OK 5.0 kB URL HTTP/1.1 www.vatilik.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.6
IP 208.97.176.144:0
File type ASCII text, with very long lines (15224)
Hash 23fc4a7f3651200447f67b033f1811b3
e65356632b8cac3d437fcca557389e30675788dc
0e71c797d19c77767d9f1e79403ebd12f02b612a547aa98fef9ca7d92d65404f
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8.6 HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vatilik.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:49 GMT
Server: Apache
Vary: IS_SUBREQ,Accept-Encoding,User-Agent
Last-Modified: Tue, 25 Jan 2022 07:42:35 GMT
ETag: "4705-5d6633a803371-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 05 Jan 2023 11:50:49 GMT
Content-Encoding: gzip
Content-Length: 4998
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.35200 OK 45 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.vatilik.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 05 Dec 2022 19:26:03 GMT
Expires: Tue, 05 Dec 2023 19:26:03 GMT
Cache-Control: public, max-age=31536000
Age: 59086
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2
142.250.74.35200 OK 26 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 26240, version 1.0\012- data
Hash 4a90976686fcbd8296c7d7fccc04c273
bcb82e93ac7ad1fa2af6a37009a200f79f4cb4e5
59bd288e64c57e034672999e33ebda6eb5ad1575945eb563dbfb5b44f226e1e1
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.vatilik.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 26240
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 02 Dec 2022 06:33:23 GMT
Expires: Sat, 02 Dec 2023 06:33:23 GMT
Cache-Control: public, max-age=31536000
Age: 364646
Last-Modified: Mon, 15 Aug 2022 18:14:37 GMT
Content-Type: font/woff2
www.vatilik.com/wp-content/plugins/erp/modules/crm/assets/js/erp-subscription-form.js?ver=1.5.4
208.97.176.144200 OK 493 B URL HTTP/1.1 www.vatilik.com/wp-content/plugins/erp/modules/crm/assets/js/erp-subscription-form.js?ver=1.5.4
IP 208.97.176.144:0
Hash 021f211608df00041eb683568c2aae42
21ddf41660badb82b8a260b30cf5b138d863fbb8
d44ff4472f479d2e89a7f9f991110e2d0547f1f4d5d358b29a0304b8f479429a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/erp/modules/crm/assets/js/erp-subscription-form.js?ver=1.5.4 HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vatilik.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:49 GMT
Server: Apache
Vary: IS_SUBREQ,Accept-Encoding,User-Agent
Last-Modified: Mon, 30 Sep 2019 09:26:48 GMT
ETag: "5c8-593c1d5c5f93b-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 05 Jan 2023 11:50:49 GMT
Content-Encoding: gzip
Content-Length: 493
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
142.250.74.35200 OK 31 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 31320, version 1.0\012- data
Hash 3fe71527811fbfedd2c07962e1bc49e7
f63e158a0480c5d711b5e268db0e75e57d87a8a5
24c0e724005344165ee0a0ff4c96a914e174bb4caa20c8a533fb194d92853e95
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.vatilik.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 31320
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 16:50:22 GMT
Expires: Fri, 01 Dec 2023 16:50:22 GMT
Cache-Control: public, max-age=31536000
Age: 414027
Last-Modified: Mon, 15 Aug 2022 18:11:37 GMT
Content-Type: font/woff2
www.vatilik.com/wp-includes/js/wp-embed.min.js?ver=5.8.6
208.97.176.144200 OK 765 B URL HTTP/1.1 www.vatilik.com/wp-includes/js/wp-embed.min.js?ver=5.8.6
IP 208.97.176.144:0
File type ASCII text, with very long lines (1391)
Hash fe875afb236ee8f0d50040fe58d848d4
e6b1b67093b429c95d5b9db07a7eba39e02cf0e5
328a6a072b91134f2802ae25e070f38ff156ceee2c6ec6a6253ae4b27af73b49
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-embed.min.js?ver=5.8.6 HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vatilik.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:49 GMT
Server: Apache
Vary: IS_SUBREQ,Accept-Encoding,User-Agent
Last-Modified: Tue, 25 Jan 2022 07:42:35 GMT
ETag: "592-5d6633a803371-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 05 Jan 2023 11:50:49 GMT
Content-Encoding: gzip
Content-Length: 765
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.vatilik.com/wp-content/themes/quality/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
208.97.176.144200 OK 77 kB URL HTTP/1.1 www.vatilik.com/wp-content/themes/quality/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 208.97.176.144:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/quality/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.vatilik.com/wp-content/themes/quality/css/font-awesome/css/font-awesome.min.css?ver=5.8.6
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:49 GMT
Server: Apache
Vary: IS_SUBREQ,User-Agent,Accept-Encoding
Last-Modified: Fri, 28 Sep 2018 06:53:36 GMT
ETag: "12d68-576e8ea29997b"
Accept-Ranges: bytes
Content-Length: 77160
Cache-Control: max-age=172800
Expires: Thu, 08 Dec 2022 11:50:49 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
www.vatilik.com/wp-content/uploads/2018/08/DoctorAdolfoLeonGomez-1.jpg
208.97.176.144200 OK 11 kB URL HTTP/2 www.vatilik.com/wp-content/uploads/2018/08/DoctorAdolfoLeonGomez-1.jpg
IP 208.97.176.144:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 397x209, components 3\012- data
Hash d997f6ede7b227d4ffc26dc4a0a68b14
3c33d2f2b46a48677ac0306008caeeef19de79ea
e6a2ee578d00f8d9426269e21a332875600b0c4f69e7bbcbc375426fea4580a1
GET /wp-content/uploads/2018/08/DoctorAdolfoLeonGomez-1.jpg HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.vatilik.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 11:50:49 GMT
server: Apache
vary: IS_SUBREQ,User-Agent
last-modified: Wed, 15 Aug 2018 09:04:13 GMT
etag: "2a84-573759c464e3d"
accept-ranges: bytes
content-length: 10884
cache-control: max-age=2592000
expires: Thu, 05 Jan 2023 11:50:49 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2
www.vatilik.com/wp-content/themes/quality/images/loading.gif
208.97.176.144200 OK 8.5 kB URL HTTP/1.1 www.vatilik.com/wp-content/themes/quality/images/loading.gif
IP 208.97.176.144:0
File type GIF image data, version 89a, 32 x 32\012- data
Hash 2299ad0b3f63413f026dfec20c205b8f
cf720b50cf8dde0e1a84ce1c6a77788bfc5882d5
225aa88b6ab02c06222ec9468d62e15fa188e39cdb9431d1f55401ad380753ed
GET /wp-content/themes/quality/images/loading.gif HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vatilik.com/wp-content/themes/quality/css/lightbox.css?ver=5.8.6
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:49 GMT
Server: Apache
Vary: IS_SUBREQ,User-Agent
Last-Modified: Fri, 28 Sep 2018 06:53:37 GMT
ETag: "211c-576e8ea3159d5"
Accept-Ranges: bytes
Content-Length: 8476
Cache-Control: max-age=2592000
Expires: Thu, 05 Jan 2023 11:50:49 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/gif
www.vatilik.com/wp-content/themes/quality/images/close.png
208.97.176.144200 OK 317 B URL HTTP/1.1 www.vatilik.com/wp-content/themes/quality/images/close.png
IP 208.97.176.144:0
File type PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash 4c1ca9ffebc23e8c0cca801bf6e94e12
cef8db15819129812ac64761b6dba3a8a9c004d5
7b4da08a7efa900a2e2c1c417e99f845a866ddf0d10bf349e96eaf498bfa2a8f
GET /wp-content/themes/quality/images/close.png HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vatilik.com/wp-content/themes/quality/css/lightbox.css?ver=5.8.6
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:49 GMT
Server: Apache
Vary: IS_SUBREQ,User-Agent,Accept-Encoding
Last-Modified: Fri, 28 Sep 2018 06:53:37 GMT
ETag: "13d-576e8ea3159d5"
Accept-Ranges: bytes
Content-Length: 317
Cache-Control: max-age=2592000
Expires: Thu, 05 Jan 2023 11:50:49 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
www.vatilik.com/wp-content/uploads/2019/02/financial-chart-backgrounds-wallpapers.jpg
208.97.176.144200 OK 228 kB URL HTTP/2 www.vatilik.com/wp-content/uploads/2019/02/financial-chart-backgrounds-wallpapers.jpg
IP 208.97.176.144:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1024x768, components 3\012- data
Size 228 kB (228154 bytes)
Hash 482b14c5c4acb64b6b97419f7c8a1751
def187499ae3bb024f0e908c2cdb2722cad3c89e
70364d246f2b8580833e4c440d3006d9116ef136b245ce76a9fb35cf26c72057
GET /wp-content/uploads/2019/02/financial-chart-backgrounds-wallpapers.jpg HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.vatilik.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 11:50:49 GMT
server: Apache
vary: IS_SUBREQ,User-Agent
last-modified: Fri, 08 Feb 2019 10:37:26 GMT
etag: "37b3a-5815f8b8b33ff"
accept-ranges: bytes
content-length: 228154
cache-control: max-age=2592000
expires: Thu, 05 Jan 2023 11:50:49 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2
www.vatilik.com/wp-content/uploads/2019/01/ecommerce-trends-2019-e1548952574922.jpeg
208.97.176.144200 OK 56 kB URL HTTP/2 www.vatilik.com/wp-content/uploads/2019/01/ecommerce-trends-2019-e1548952574922.jpeg
IP 208.97.176.144:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=19, height=3648, bps=242, PhotometricIntepretation=RGB, description=Small light bulb glowing on gray background, manufacturer=Canon, model=Canon EOS 6D, orientation=upper-left, width=5472], baseline, precision 8, 1200x630, components 3\012- data
Hash 298591932d730c9c70ff792664b217f2
d262106d00748c0980127626839f11a17f2f049c
195646db4113672525ac75939bd6a8c66011ff6b92b5f846656d1dd15b2c7e38
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/01/ecommerce-trends-2019-e1548952574922.jpeg HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.vatilik.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 11:50:49 GMT
server: Apache
vary: IS_SUBREQ,User-Agent
last-modified: Thu, 31 Jan 2019 16:36:14 GMT
etag: "dbcc-580c39ff658dd"
accept-ranges: bytes
content-length: 56268
cache-control: max-age=2592000
expires: Thu, 05 Jan 2023 11:50:49 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4393
Expires: Tue, 06 Dec 2022 13:04:03 GMT
Date: Tue, 06 Dec 2022 11:50:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4393
Expires: Tue, 06 Dec 2022 13:04:03 GMT
Date: Tue, 06 Dec 2022 11:50:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4393
Expires: Tue, 06 Dec 2022 13:04:03 GMT
Date: Tue, 06 Dec 2022 11:50:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4393
Expires: Tue, 06 Dec 2022 13:04:03 GMT
Date: Tue, 06 Dec 2022 11:50:50 GMT
Connection: keep-alive
www.vatilik.com/wp-content/uploads/2019/02/gdpr-compliance.png
208.97.176.144200 OK 47 kB URL HTTP/2 www.vatilik.com/wp-content/uploads/2019/02/gdpr-compliance.png
IP 208.97.176.144:0
File type PNG image data, 1460 x 730, 8-bit colormap, non-interlaced\012- data
Hash 44bea104cb88b657f7a9a87697b860b0
5dd73aa7a4a8a157ffc7b7029dc4df9d8e9f0940
5d2fa0826f7041632e5f299d93121149a49f575556b46aeba720d5fc22053320
GET /wp-content/uploads/2019/02/gdpr-compliance.png HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.vatilik.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 11:50:49 GMT
server: Apache
vary: IS_SUBREQ,User-Agent,Accept-Encoding
last-modified: Fri, 01 Feb 2019 14:48:42 GMT
etag: "b6ad-580d63d3c486a"
accept-ranges: bytes
content-length: 46765
cache-control: max-age=2592000
expires: Thu, 05 Jan 2023 11:50:49 GMT
content-type: image/png
X-Firefox-Spdy: h2
www.vatilik.com/wp-content/uploads/2019/02/Technological-Advancements-In-Ireland-Payments-Market.png
208.97.176.144200 OK 52 kB URL HTTP/2 www.vatilik.com/wp-content/uploads/2019/02/Technological-Advancements-In-Ireland-Payments-Market.png
IP 208.97.176.144:0
File type PNG image data, 750 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash 9298fa378ce3fc05abd32875c5dfc899
0a540078c0bdb0403632b6debea53ef9771ac17b
d166c5021d38646dab14bd0667a010714f7859ec0e319d6ef01d2f026690ab89
GET /wp-content/uploads/2019/02/Technological-Advancements-In-Ireland-Payments-Market.png HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.vatilik.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 11:50:49 GMT
server: Apache
vary: IS_SUBREQ,User-Agent,Accept-Encoding
last-modified: Thu, 07 Feb 2019 19:55:25 GMT
etag: "cbf9-58153392bfdd2"
accept-ranges: bytes
content-length: 52217
cache-control: max-age=2592000
expires: Thu, 05 Jan 2023 11:50:49 GMT
content-type: image/png
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e1b54923ba506fde6b21c5bfb51ccc8
366aa3ab0790c496ea51bc08d1f2ff3358530d9e
a993ca6dc9a1f854f4542f9221e4f90060825ea863974b5163a9d3e284dc4663
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10594
x-amzn-requestid: eee9f193-eef5-44bf-997a-877fa206749e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSyIHpGoAMF1fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64da-0a9190f7698dbf2f73bb1575;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: f-KQCOuDl461V8MBPsSOj1ILCU91Q0pCSENaldkMHR2oZdrEUnHeaA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:03:16 GMT
age: 49654
etag: "366aa3ab0790c496ea51bc08d1f2ff3358530d9e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 38b97436af942d5eb1111ca7043259a0
0234fe32c84c4711f0619714f3ac6d3db1b717d3
a76a7721355abbaecd5c8cb5218e7e4626dc345eb26e7541c71bf4ceaa7ae5d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11175
x-amzn-requestid: 9c93ddca-1247-44af-a364-e617f69ace26
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSzYEnEoAMFa2A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e2-7d38ea383725901524bc2ca0;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jqWuNfsDgPOsqxlX2HGJdhXm9GnGC-TBafSbSCrztICFgEwcyqc_iA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:22:22 GMT
age: 48508
etag: "0234fe32c84c4711f0619714f3ac6d3db1b717d3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 99d1ff8fa2e095dcf2bda3d1e1af1221
f914f04a0e1fb45a221d31d2105bfc73015b03e6
90325d4299a44dbd213857ada6f6880db8c33ad61685cfcb60c4a2455a84cf87
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10183
x-amzn-requestid: 557e6b38-7be9-4953-968b-2e5bd3491ef4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUDYEQbIAMFwRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e66e2-1fcd8fc4719bc0bc7d11abd2;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z1_zJTJMuk724WMOmIc660b54AyZK8ffNVF5N7ehZ00W2kaL3Lcd1A==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:47:14 GMT
age: 50616
etag: "f914f04a0e1fb45a221d31d2105bfc73015b03e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b15136d60fd0a5e0f657a4f5c75d540f
36082b7329d473829178f280cb71a83b1531e486
79478269b1f5dcfd1e45ccd4264fa44805b37c5c8fec820bcbd2fa1689dfbbd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11224
x-amzn-requestid: 938de0b8-1055-4416-9ad7-162ab5f4db9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUINEwdoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6701-38b079ef341bb17e567de773;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:45 GMT
x-amz-cf-pop: YVR50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tGtiCE9C3j0BUruNaFN2j1mKxCSouLmocmTXpmLMBJaLNyVwkXu1gQ==
via: 1.1 f0ac467993db44dbfc36b778dfcaf73c.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:23:09 GMT
age: 48461
etag: "36082b7329d473829178f280cb71a83b1531e486"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.vatilik.com/wp-content/uploads/2019/02/Future-of-Retail.jpg
208.97.176.144200 OK 94 kB URL HTTP/2 www.vatilik.com/wp-content/uploads/2019/02/Future-of-Retail.jpg
IP 208.97.176.144:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1600x800, components 3\012- data
Hash 738553c14ace7de6c1728cadec3aadc3
8db8099a6fea4d6d043080e1ed03d58e940e5c9a
a08d9d1ad291cf7bfd68230ffed99658006f12c2d95957477aabc5e4cbde41b2
GET /wp-content/uploads/2019/02/Future-of-Retail.jpg HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.vatilik.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 11:50:49 GMT
server: Apache
vary: IS_SUBREQ,User-Agent
last-modified: Mon, 04 Feb 2019 15:01:36 GMT
etag: "16dad-58112c4eed809"
accept-ranges: bytes
content-length: 93613
cache-control: max-age=2592000
expires: Thu, 05 Jan 2023 11:50:49 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2
www.vatilik.com/wp-content/uploads/2019/02/maxresdefault.jpg
208.97.176.144200 OK 115 kB URL HTTP/2 www.vatilik.com/wp-content/uploads/2019/02/maxresdefault.jpg
IP 208.97.176.144:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Size 115 kB (115193 bytes)
Hash 655dd9d14668e2edd0bd6e9881803929
5e0c027a548359caa61ed23e1ed6f852b216dec7
d756a0db79c0ba1a1f921c61b865246f6438dc96acbe57a439cce112bdac4a97
GET /wp-content/uploads/2019/02/maxresdefault.jpg HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.vatilik.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 11:50:49 GMT
server: Apache
vary: IS_SUBREQ,User-Agent
last-modified: Thu, 07 Feb 2019 11:02:18 GMT
etag: "1c1f9-5814bc6a6ae1b"
accept-ranges: bytes
content-length: 115193
cache-control: max-age=2592000
expires: Thu, 05 Jan 2023 11:50:49 GMT
content-type: image/jpeg
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b9928a3-5708-47a4-8d92-f3af8d54a81d.png
34.120.237.76200 OK 18 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b9928a3-5708-47a4-8d92-f3af8d54a81d.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4bbfe2037fd1658cad81b5b8e4d885c
9487451d24db59cc0f426410da2b55f94f3bb34b
2a124c75c6c90c5633f3538c8b84422262f81cb35d8f4cf4ed0032cc897a5ab9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b9928a3-5708-47a4-8d92-f3af8d54a81d.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 18490
x-amzn-requestid: f01c056f-b0bc-4833-9934-d0c37f4d701c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csS4wE5NIAMFQmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6504-1111ee0221c3c4165a9ef2ab;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:39:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8sBwcJAFNw2JBe2qoHD4ntHml-XB1ZMIELxC-rgfXwn5XTrg3-5R6A==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:05:45 GMT
age: 49505
etag: "9487451d24db59cc0f426410da2b55f94f3bb34b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7f2c354a00ab51d4a41221b6bf191c10
01ceb7233fe05ad8dff3a0a43eef879ea2b83ec4
7d3c8417e1db0db41ceb8b4bf3f506864392dd1ad29319a06a8a6055f6f2ed12
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11352
x-amzn-requestid: 7c3fc7bb-eb1f-46ec-8e92-b6ffc6261848
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSwuF1ToAMFiIA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64d1-7c53152a279f00595b9886bd;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:25 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aYf5d6wAJlPSXVwF5uQXUb1g_65z-v6tInk7IF64bBV-w31d3MKeIQ==
via: 1.1 b6d577696b14c86cbfeb5b3459f38c50.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:22:23 GMT
age: 48507
etag: "01ceb7233fe05ad8dff3a0a43eef879ea2b83ec4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.vatilik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 06 Dec 2022 10:46:55 GMT
expires: Tue, 06 Dec 2022 12:46:55 GMT
cache-control: public, max-age=7200
age: 3835
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.vatilik.com/favicon.ico
208.97.176.144200 OK 0 B URL HTTP/1.1 www.vatilik.com/favicon.ico
IP 208.97.176.144:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vatilik.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:50:50 GMT
Server: Apache
Vary: IS_SUBREQ,User-Agent
Last-Modified: Wed, 20 Dec 2017 17:27:10 GMT
ETag: "0-560c8e4b68594"
Accept-Ranges: bytes
Content-Length: 0
Cache-Control: max-age=172800
Expires: Thu, 08 Dec 2022 11:50:50 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon
www.vatilik.com/page/2/
208.97.176.144200 OK 0 B IP 208.97.176.144:0
Analyzer Verdict Alert fortinet Malware
GET /page/2/ HTTP/1.1
Host: www.vatilik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: http://www.vatilik.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 11:50:50 GMT
server: Apache
vary: Accept-Encoding,Cookie,IS_SUBREQ,User-Agent
link: <https://www.vatilik.com/wp-json/>; rel="https://api.w.org/"
cache-control: max-age=600
expires: Tue, 06 Dec 2022 12:00:50 GMT
content-encoding: gzip
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2