Overview

URL dkhomedesign.com/qi/vttpniaeerroomne
IP103.138.188.110
ASNGBLINK NETWORK SOLUTIONS PRIVATE LIMITED
Location India
Report completed2022-10-04 00:10:36 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-10-04 2 dkhomedesign.com/qi/vttpniaeerroomne Malware
2022-10-04 2 www.dkhomedesign.com/wp-includes/css/dist/block-library/style.min.css?ver=5.3.13 Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/clean-login/content/style.css?ver=5.3.13 Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/contact-form-7/includes/css/styles. (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/form-forms/Style/intlTelInput.css?v (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/form-forms/Style/countrySelect.min. (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/form-forms/Style/rw-jquery-ui.css?v (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/form-forms/Style/richwebicons.css?v (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/multilanguage-add-on-for-visual-com (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/js_composer/assets/lib/bower/font-a (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/simple-contact-info-widget/css/hove (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/woocommerce/assets/css/woocommerce- (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/woocommerce/assets/css/woocommerce. (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/easy-login-woocommerce/assets/css/x (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/easy-login-woocommerce/assets/css/x (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/ajax-search-lite/css/style.basic.cs (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/ajax-search-lite/css/style-simple-r (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/creame-whatsapp-me/public/css/whats (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/themes/betheme/css/woocommerce.css?ver=20.9.4 Malware
2022-10-04 2 www.dkhomedesign.com/qi/vttpniaeerroomne Malware
2022-10-04 2 www.dkhomedesign.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 Malware
2022-10-04 2 www.dkhomedesign.com/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/form-forms/Scripts/intlTelInput.min (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/themes/betheme/css/layout.css?ver=20.9.4 Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/form-forms/Scripts/countrySelect.mi (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/multilanguage-add-on-for-visual-com (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/revslider/public/assets/js/jquery.t (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/revslider/public/assets/js/jquery.t (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/js_composer/assets/js/vendors/wooco (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/quick-call-button/assets/css/quick- (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4 Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js. (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/easy-login-woocommerce/xoo-form-fie (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/easy-login-woocommerce/assets/js/xo (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 Malware
2022-10-04 2 www.dkhomedesign.com/wp-includes/js/jquery/ui/sortable.min.js?ver=1.11.4 Malware
2022-10-04 2 www.dkhomedesign.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.11.4 Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/themes/betheme/js/plugins.js?ver=20.9.4 Malware
2022-10-04 2 www.dkhomedesign.com/wp-includes/js/wp-embed.min.js?ver=5.3.13 Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/quick-call-button/assets/js/drag-qu (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/themes/betheme/js/menu.js?ver=20.9.4 Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/themes/betheme/assets/animations/animations (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/themes/betheme/assets/jplayer/jplayer.min.j (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/themes/betheme/js/parallax/translate3d.js?v (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/themes/betheme/js/scripts.js?ver=20.9.4 Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/woocommerce/assets/css/woocommerce- (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/creame-whatsapp-me/public/images/ba (...) Malware
2022-10-04 2 www.dkhomedesign.com/wp-content/plugins/easy-login-woocommerce/assets/fonts (...) Malware
2022-10-04 2 www.dkhomedesign.com/?wc-ajax=get_refreshed_fragments Malware
mnemonic secure dns
Scan Date Severity Indicator Comment
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
Quad9 DNS
Scan Date Severity Indicator Comment
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed
2022-10-04 2 dkhomedesign.com Sinkholed


Files

URL twemoji.maxcdn.com/v/13.0.1/72x72/1f44b.png
IP  23.111.9.57
Magic gzip compressed data, max compression\012- data
Size 1811
MD5 701c2cfc025df651eb61904396f780de
SHA1 36c833c0d5a049d08e575ac087d5e80492a0e0e5
SHA256 0f8b7c73fed43a274a2514cd02c466a1935f045f3e1de808d82ea3f91a8af530
Analyzer Analysed Verdict Comment
VirusTotal 0/0


Passive DNS (25)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-10-03 09:28:24 UTC 34.117.237.239
mnemonic passive DNS shavar.services.mozilla.com (1) 3602 2017-01-30 05:00:58 UTC 2022-10-03 05:09:32 UTC 52.35.225.239
mnemonic passive DNS cdnjs.cloudflare.com (1) 235 2020-10-20 10:17:36 UTC 2022-10-03 09:28:27 UTC 104.17.24.14
mnemonic passive DNS use.fontawesome.com (3) 942 2017-01-30 04:43:25 UTC 2022-10-03 09:29:26 UTC 172.64.132.15
mnemonic passive DNS twemoji.maxcdn.com (1) 9109 2017-01-30 05:01:32 UTC 2022-10-03 17:23:01 UTC 23.111.9.57
mnemonic passive DNS getpocket.cdn.mozilla.net (1) 1369 2017-08-31 07:41:15 UTC 2022-10-03 13:35:17 UTC 34.120.5.221
mnemonic passive DNS www.dkhomedesign.com (76) 0 2020-02-19 09:31:33 UTC 2022-10-02 16:57:45 UTC 103.138.188.110 Unknown ranking
mnemonic passive DNS ajax.googleapis.com (1) 12905 2013-08-16 09:51:31 UTC 2022-10-03 20:59:30 UTC 142.250.74.106
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-10-03 14:02:45 UTC 34.120.237.76
mnemonic passive DNS widget-v4.tidiochat.com (1) 17456 2018-06-14 06:38:01 UTC 2022-10-03 17:22:59 UTC 172.67.71.3
mnemonic passive DNS ocsp.sca1b.amazontrust.com (1) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.88
mnemonic passive DNS content-signature-2.cdn.mozilla.net (3) 1152 2020-11-03 12:26:46 UTC 2022-10-03 08:07:24 UTC 143.204.55.49
mnemonic passive DNS firefox.settings.services.mozilla.com (15) 867 2020-05-27 20:08:30 UTC 2022-10-03 17:23:50 UTC 143.204.55.115
mnemonic passive DNS ocsp.digicert.com (3) 86 2012-05-21 07:02:23 UTC 2022-10-03 20:32:42 UTC 93.184.220.29
mnemonic passive DNS ocsp.pki.goog (9) 175 2017-06-14 07:23:31 UTC 2022-10-03 07:14:52 UTC 142.250.74.3
mnemonic passive DNS code.tidio.co (1) 15677 2014-11-27 09:26:14 UTC 2022-10-03 17:22:58 UTC 104.26.8.183
mnemonic passive DNS fonts.googleapis.com (2) 8877 2013-06-10 20:14:26 UTC 2022-10-03 17:32:53 UTC 142.250.74.10
mnemonic passive DNS fonts.gstatic.com (5) 0 2014-08-29 13:43:22 UTC 2022-10-03 19:40:13 UTC 172.217.21.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS r3.o.lencr.org (7) 344 2020-12-02 08:52:13 UTC 2022-10-03 07:33:36 UTC 23.36.76.226
mnemonic passive DNS detectportal.firefox.com (2) 1601 2017-01-30 00:03:31 UTC 2022-10-03 04:57:19 UTC 34.107.221.82
mnemonic passive DNS firefox.settings.services.mozilla.com (15) 867 2020-05-27 20:08:30 UTC 2022-10-03 17:23:50 UTC 143.204.55.27
mnemonic passive DNS dkhomedesign.com (1) 0 2020-02-19 09:31:32 UTC 2022-10-02 16:57:45 UTC 103.138.188.110 Unknown ranking
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-10-03 09:28:24 UTC 52.89.255.30
mnemonic passive DNS firefox-settings-attachments.cdn.mozilla.net (1) 11509 2019-11-30 09:32:57 UTC 2022-10-03 09:31:53 UTC 54.230.111.80
mnemonic passive DNS use.fontawesome.com (3) 942 2017-01-30 04:43:25 UTC 2022-10-03 09:29:26 UTC 172.64.133.15


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 103.138.188.110

Date UQ / IDS / BL URL IP
2022-10-29 01:28:25 +0000
0 - 0 - 40 nrfilterfabrics.in/ult/qakbot.zip 103.138.188.110
2022-10-27 05:16:29 +0000
0 - 0 - 5 reddmica.in/ilhi/mqeipetroemdu 103.138.188.110
2022-10-27 04:41:50 +0000
0 - 0 - 5 reddmica.in/ilhi/atdsuaol 103.138.188.110
2022-10-27 02:27:31 +0000
0 - 0 - 3 rudradesignstudio.com/tea/qbot.zip 103.138.188.110
2022-10-27 01:54:56 +0000
0 - 0 - 3 rudradesignstudio.com/tea/qakbot.zip 103.138.188.110

Last 5 reports on ASN: GBLINK NETWORK SOLUTIONS PRIVATE LIMITED

Date UQ / IDS / BL URL IP
2022-12-03 09:47:52 +0000
0 - 0 - 1 mahasivanadi.theoptimumwebs.com/wp-admin.zip 103.142.175.21
2022-12-03 09:38:35 +0000
0 - 0 - 17 real.modernrealty.co.in/ 103.138.189.138
2022-12-03 01:25:12 +0000
0 - 0 - 2 inflixon.com/wp-includes/js/us/delta.com/index.php 103.138.189.138
2022-11-19 19:56:22 +0000
0 - 0 - 7 drkamalbachani.com/aa/qbot.zip 103.142.175.21
2022-11-18 21:56:48 +0000
0 - 0 - 5 aladinntech.in/mhn/index.php?qbot.zip 103.138.189.139

Last 5 reports on domain: dkhomedesign.com

Date UQ / IDS / BL URL IP
2022-10-08 00:52:33 +0000
0 - 0 - 208 dkhomedesign.com/qi/auaposbtlv 103.138.188.110
2022-10-06 18:08:47 +0000
0 - 0 - 205 dkhomedesign.com/qi/auaposbtlv 103.138.188.110
2022-10-05 12:20:59 +0000
0 - 0 - 209 dkhomedesign.com/qi/epirmoidltdo 103.138.188.110
2022-10-05 12:20:17 +0000
0 - 0 - 206 dkhomedesign.com/qi/fgaleuvti 103.138.188.110
2022-10-05 12:19:57 +0000
0 - 0 - 205 dkhomedesign.com/qi/auaposbtlv 103.138.188.110

Last 1 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-10-02 16:56:59 +0000
0 - 0 - 201 dkhomedesign.com/qi/tncdematiiieup 103.138.188.110


JavaScript

Executed Scripts (56)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (143)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5199
Expires: Tue, 04 Oct 2022 01:37:00 GMT
Date: Tue, 04 Oct 2022 00:10:21 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "193A67E9A2C60A2EF38C995DA0910B30108E9BCF4CA50D450F6CC5E1F73A1F35"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11023
Expires: Tue, 04 Oct 2022 03:14:04 GMT
Date: Tue, 04 Oct 2022 00:10:21 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "3D69135E21C6D1784F2FC3F9EA309FF70D346DF0F5A1E48B2540A3BF060E316F"
Last-Modified: Sun, 02 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21422
Expires: Tue, 04 Oct 2022 06:07:23 GMT
Date: Tue, 04 Oct 2022 00:10:21 GMT
Connection: keep-alive

                                        
                                            GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US&region=NO&count=30 HTTP/1.1 
Host: getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.5.221
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
vary: Accept-Encoding
content-location: global-recs.php
tcn: choice
x-frame-options: SAMEORIGIN
status: 200 OK
x-source: Pocket
pragma: cache
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE"
x-cache: Miss from cloudfront
x-amz-cf-pop: SEA73-P2
x-amz-cf-id: KA2ay16ZdzYxA5KSUxC0lElHqNwPkOoUaKdznd5qxscOWDicDamGig==
content-encoding: gzip
via: 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 23:57:32 GMT
content-length: 41606
age: 769
cache-control: s-maxage=900,public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size:   41606
Md5:    724ffd71c380c46c039249ba818eedd9
Sha1:   32f4365f35e1ca619a4649245c661e7c6446d08d
Sha256: 5273b89d6c0911f8cc9d33667d7fd5f4dbcd2c2d66e0755a2e543664fc21dde5
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-06-30-19-51-38.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.49
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Wed, 11 May 2022 19:51:39 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 03 Oct 2022 03:24:18 GMT
etag: "48ca0beea419a9039591cf1aee5179e0"
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iggZNUKO0qw6VlnMYvcefjNiFtrjRHloVXO3aqtBRRB_o7-aId4J2A==
age: 74764
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    48ca0beea419a9039591cf1aee5179e0
Sha1:   9e92629f505fcc07aab51221e8fe62197a23e307
Sha256: 630a5f110337b4a4876aa85c21107d9e8f2550bcc60f023a4777d895b17399fd
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 03 Oct 2022 23:47:04 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: eQUj-UyuSHSLKkVd_-NNkd0NJrmBrAD07h73LMPVyv25f1drKwJaaQ==
Age: 1397


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 04 Oct 2022 00:10:21 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /success.txt?ipv4 HTTP/1.1 
Host: detectportal.firefox.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         34.107.221.82
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Mon, 03 Oct 2022 15:06:54 GMT
Age: 32607
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600


--- Additional Info ---
Magic:  ASCII text
Size:   8
Md5:    ae780585f49b94ce1444eb7d28906123
Sha1:   7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
Sha256: 81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2669
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 00:10:21 GMT
Last-Modified: Mon, 03 Oct 2022 23:25:52 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Mon, 03 Oct 2022 23:29:33 GMT
Expires: Tue, 04 Oct 2022 00:19:02 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: WrOrmKbEVRd85_hCtRXIZPXU3xgGJ5yVJ83zGtL1XrUI7JKEQ0dWow==
Age: 2448


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 70
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 00:10:22 GMT
Last-Modified: Tue, 04 Oct 2022 00:09:12 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /qi/vttpniaeerroomne HTTP/1.1 
Host: dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         103.138.188.110
HTTP/2 301 Moved Permanently
content-type: text/html; charset=UTF-8
                                        
x-powered-by: PHP/7.3.33
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-transform, no-cache, no-store, must-revalidate
x-redirect-by: WordPress
location: https://www.dkhomedesign.com/qi/vttpniaeerroomne
content-length: 0
date: Tue, 04 Oct 2022 00:10:22 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            POST /downloads?client=Firefox&appver=96.0a&pver=2.2 HTTP/1.1 
Host: shavar.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 773
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         52.35.225.239
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Date: Tue, 04 Oct 2022 00:10:22 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 8
Connection: Close


--- Additional Info ---
Magic:  ASCII text
Size:   8
Md5:    29fc57841962e407cb50c1be60284bf7
Sha1:   ce968a77e2996da5eee8925182318f171ccdce47
Sha256: ae7e7075247dcfad763f1e131aeac3d2e756bb03d48b0d315a50c69636e5dc8b
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: oQ61Cz1LI9ugTN4lw7IFUA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.89.255.30
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: h+ee8NDn5oQbLIEUOR5spDwHWec=

                                        
                                            GET /v1/buckets/monitor/collections/changes/changeset?_expected=%221664841664930%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600, max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 00:02:10 GMT
Expires: Tue, 04 Oct 2022 01:02:10 GMT
Last-Modified: Tue, 04 Oct 2022 00:01:04 GMT
X-Content-Type-Options: nosniff
Content-Encoding: br
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: sJy7TfccG7FKoC6LsUQKW8W8KntuVqs7jv6cj1EZJVDJ7t7GSCmqOw==
Age: 492


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (22383), with no line terminators
Size:   4718
Md5:    8131eda67125dfbe03ff82d6f4b3dc3a
Sha1:   6ccf8cc05cf1aa51a9668988d6083ce9107e1e6e
Sha256: ec21fc59c6b28e8c14174c9706bf57928dcbf8a7ee35d582c679ea083003d4e6
                                        
                                            GET /v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1664498243168&_since=%221653914271178%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 30 Sep 2022 00:37:23 GMT
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Tue, 04 Oct 2022 00:10:10 GMT
Cache-Control: max-age=3600
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: gPUHwE8etRzJKJWXHKOxNhc2Rh86E7-hYUDwZJTX4g4EypC7SHAaqA==
Age: 1105


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size:   12628
Md5:    df1dc25bfcebc3293e9563e46f60f657
Sha1:   c7185ca340769f86354e364bf4e9086d48a70449
Sha256: 2b62745f4aeae88ef4397f79711fa60fb55149ae36dc331783d485354dafd55e
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         143.204.55.49
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 03 Oct 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: W4y6jOZtvIlhDyv5zRN7SVsroVEvfS5-K36WOf34dMKTD9WERpEMDA==
age: 67315
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 03 Oct 2022 23:47:04 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8BW1dVV7lIEN6LDtX0sGOIziMg_Tbj-02xme6NAcl5kgROzsQmFUYQ==
Age: 1398


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            GET /staging/addons-bloomfilters/67600448-6fc2-4f40-bd4a-8687d731734f.bin HTTP/1.1 
Host: firefox-settings-attachments.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.80
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Content-Length: 795699
Connection: keep-alive
Last-Modified: Mon, 27 Jun 2022 12:39:11 GMT
x-amz-version-id: 9np1boOrxtHVWzMczpbX1a.N_ewQWHDF
Accept-Ranges: bytes
Server: AmazonS3
Date: Mon, 03 Oct 2022 04:15:16 GMT
ETag: "9b95765b0e26af76116a95a966d61354"
X-Cache: Hit from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 7vThtgS8A5sjX87omaHUduYrfSHS-Rk7AsvtkvCtGCPYgOuWrcn5uQ==
Age: 71707


--- Additional Info ---
Magic:  data
Size:   795699
Md5:    9b95765b0e26af76116a95a966d61354
Sha1:   3f7c1b40fc999b83f3696f455402e49ab484b027
Sha256: 34f969c8e082310785ec4262e2d5b58c919d4de856ffc64b3467507f83ac9571
                                        
                                            GET /ajax/libs/jqueryui-touch-punch/0.2.3/jquery.ui.touch-punch.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Tue, 04 Oct 2022 00:10:22 GMT
content-length: 493
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-50b"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 959962
expires: Sun, 24 Sep 2023 00:10:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=60JCyRo1M7dRPi9kWLOcBy1PmWrE8GYMs95HSZmkVVxg1TwNbSSrSuY%2FBZLnRZeDmZPNqj4P%2FVONZoDb0uEg7d%2FqTqTNWEecbNC7uzjsQMMpS0WIb4vsoXWHO7yCAPATA%2FaMlHk4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7549b1b5786ab4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (1090)
Size:   493
Md5:    645e0b72010312d088ce2a4aae116320
Sha1:   b9a4a5d3b6bfc9c6fa21ab0cebb01bcf901741e0
Sha256: 04712044fe28efcb6c4cfcb816527f2dbcd416bf4591d37aad91b9a6bf816adf
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=5.3.13 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:22 GMT
last-modified: Wed, 10 Jun 2020 22:59:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5725
date: Tue, 04 Oct 2022 00:10:22 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (41045), with no line terminators
Size:   5725
Md5:    5ea88d0fe7c942cae60483d0b4b5e944
Sha1:   1e5322b5ac81e14d7322a3def744f4b0ad783dbc
Sha256: 86feebc56d2aae8f6a2c32b1d4aa3c789094fbe927e8fa6082312f92b994d706

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 00:10:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 00:10:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 00:10:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ajax/libs/jqueryui/1.12.1/jquery-ui.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.106
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 67948
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 20:20:12 GMT
expires: Sun, 01 Oct 2023 20:20:12 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
age: 186611
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32073)
Size:   67948
Md5:    33411bb179575dfc40cc62c61899664f
Sha1:   d03c06d5893d632e1a7f826a6ffd9768ba885e11
Sha256: 274befc7b39609fed270e69335bc92b3d8251545594636eb408d5d93e0ae1a4f
                                        
                                            GET /v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1664841664930&_since=%221654732864402%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 00:05:37 GMT
Last-Modified: Tue, 04 Oct 2022 00:01:04 GMT
X-Content-Type-Options: nosniff
Content-Encoding: br
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: E5Dsy-udlNcchNyFPXPujXv9er4DPhjCbzheTurLUas52Cb6ii4zVw==
Age: 286


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (58918), with no line terminators
Size:   12205
Md5:    bf797f1c12f4c97b84a1db110e6c9631
Sha1:   8aaabe0750b31d2a7394c54ebfbfc9d5aa7a933c
Sha256: 0bf40e761d9808fd1603815b08d7b797ca7a9a25cefe0a0b0ed6941c8cbf2f0d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 00:10:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /css?family=Open+Sans HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 00:10:23 GMT
date: Tue, 04 Oct 2022 00:10:23 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1073
Md5:    ce6c3d4f07cdaa1e5ba9f10e2d373d87
Sha1:   1ed3159497898acf9389f1c82cfda8c8446575b4
Sha256: eec00d1bfd2708494aaa6a73443e53c39c5f7ad11c9d898646317856b01c26a6
                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.5.14 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:22 GMT
last-modified: Fri, 11 Mar 2022 00:09:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7355
date: Tue, 04 Oct 2022 00:10:22 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   7355
Md5:    bbc6c817dfd23b76b87a702f8d27fd47
Sha1:   0b21faaae17ae0186e1785301087b5a9b2352257
Sha256: 7cd393712956ed26420ac8222422d9b34ba63728bba06e6b81fb85c67d67aea7

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/clean-login/content/style.css?ver=5.3.13 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:22 GMT
last-modified: Fri, 21 Feb 2020 05:01:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1324
date: Tue, 04 Oct 2022 00:10:22 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1324
Md5:    cb2f108804e9438576fde41c63b0c75f
Sha1:   a1aea0620e92e4488e753a077b37d276d4b9080e
Sha256: c3ee8f48e355bab669e8fa955c3a5d0c14d0a39edc03ab9bacaf6dde06ab501a

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.0.1 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:22 GMT
last-modified: Thu, 20 Feb 2020 04:17:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 560
date: Tue, 04 Oct 2022 00:10:22 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   560
Md5:    920582a075eda4376723e906bef30918
Sha1:   bd1bcd9fd7f9f7208370d79c3b854cf886bc964d
Sha256: 3e504beaa0ad616c50bfc2caae28cdc274d7c87de5a5c49002d8cb178c288463

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/form-forms/Style/intlTelInput.css?ver=5.3.13 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:22 GMT
last-modified: Thu, 20 Feb 2020 09:57:05 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2532
date: Tue, 04 Oct 2022 00:10:22 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (22126)
Size:   2532
Md5:    21b7e9f72ca45922fc8f848a0d2c15cd
Sha1:   5ad74d29c87ff59c55e0dc65959c5c000d05252d
Sha256: f4a7695ec9c092299e11a8dd536664d07558cb9ac7a5306cc74cf3c056ac3fbb

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/form-forms/Style/countrySelect.min.css?ver=5.3.13 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:22 GMT
last-modified: Thu, 20 Feb 2020 09:57:05 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1693
date: Tue, 04 Oct 2022 00:10:22 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15249), with no line terminators
Size:   1693
Md5:    6d0b3885d5a072ca3e90accce33e39ee
Sha1:   d73c81a28fc75739f944e461827e457d1f8762c5
Sha256: 3b9bc998140314b506bc3ed54c1862ca62380bdfe9c85f065968abb2071ee9ec

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/form-forms/Style/rw-jquery-ui.css?ver=5.3.13 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:22 GMT
last-modified: Thu, 20 Feb 2020 09:57:05 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5414
date: Tue, 04 Oct 2022 00:10:22 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (551), with CRLF line terminators
Size:   5414
Md5:    8b0636031045618745af02a3f6c426c9
Sha1:   06673da1c71b74f8ab68c6adbcbb3916cf452525
Sha256: bd343bb7784eb362376f93be6e1c6d52cb73bf4cb43f9765a1b62a0173c50f78

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/form-forms/Style/richwebicons.css?ver=5.3.13 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:22 GMT
last-modified: Thu, 20 Feb 2020 09:57:05 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6623
date: Tue, 04 Oct 2022 00:10:22 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (412), with CRLF line terminators
Size:   6623
Md5:    c8665244f1107fa68ae292927cf90fd2
Sha1:   5a74ec3bb4549b2c3125e35fbec3e641391fdb5b
Sha256: dc5d6c3bdfd5907827b77781125c9a0cb8769f92069dde62a20bbc3cebdd3eca

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/multilanguage-add-on-for-visual-composer/public/css/visual-composer-multilanguage-public.css?ver=2.0 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:22 GMT
last-modified: Thu, 20 Feb 2020 07:06:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 173
date: Tue, 04 Oct 2022 00:10:22 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   173
Md5:    58f48656a5e6c214522899cac9b5ac8f
Sha1:   75e4bd6c4951f6a17f87cab2b84f5927825da6c8
Sha256: 900a2bc40d6c1346ecdaac026404a61ecfd152c901c4876d4e7558f3af215bd4

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.7.2 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:22 GMT
last-modified: Thu, 20 Feb 2020 04:17:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9182
date: Tue, 04 Oct 2022 00:10:22 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (5178), with CRLF line terminators
Size:   9182
Md5:    ca1bf7af523e8f67174471206052065b
Sha1:   b1c7b802424c420557f0d2402d18f5102597bb5a
Sha256: 1180fc8cf713f1ce658d42c93be46ed41c0a948c9d3104c0bbf1f121fdc19ce4

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=5.4.7 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Thu, 20 Feb 2020 04:17:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6647
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30308)
Size:   6647
Md5:    9b1435dc320688f2b06d5d8c4e173873
Sha1:   041db3952285b0f4bcd857e16a01263972433fa9
Sha256: d75fc8c0967104517c22bf4e95294cfc641d4c6ce3107777eebec9c2db637566

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/simple-contact-info-widget/css/hover-min.css?ver=5.3.13 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Thu, 20 Feb 2020 06:37:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6500
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65297)
Size:   6500
Md5:    d28a7829a5e97b10d2a76fe4231989f1
Sha1:   996c451710a8753fe2c2aa46d592ef229137fe8a
Sha256: 09cb22fb0e99ded7265ab9b8720a77216187a390086d91976b51a53c83935612

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.9.5 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 11 Mar 2022 00:09:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2258
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (17637), with no line terminators
Size:   2258
Md5:    178aebe426e549bb14ad51a38d5e0dd9
Sha1:   3119c09f543d8e9e844cd6182c6f08efc248b1a0
Sha256: 1c1085668ee16d698c1bb6eca000ceed18177a1d24415d889b9cd81211c64074

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.9.5 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 11 Mar 2022 00:09:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8369
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (62655), with no line terminators
Size:   8369
Md5:    209876ec74870f09ecd468aafc9242c9
Sha1:   6b1fa3224d33aae8e70e0146d1ce8be5073fd3f6
Sha256: 38dd9b413d80f3493a3e67a1b6a6e471b74679076e7502cbd03c525765e4025e

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/easy-login-woocommerce/assets/css/xoo-el-style.css?ver=1.3 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 21 Feb 2020 05:32:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1365
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1365
Md5:    c52fcecf0a22ca8c721cb1fede904aa2
Sha1:   fb4731d8542b7fbcacf44e6bc5fcef09f15c2860
Sha256: 3a7966f8309a6a5a8d513638b76b5a32ebaa74b98376e35343bedb9076d8a579

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/easy-login-woocommerce/assets/css/xoo-el-fonts.css?ver=1.3 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 21 Feb 2020 05:32:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 439
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   439
Md5:    3a5ab7b05bc174f570beed95f3109db0
Sha1:   7d7d3749fab378a2c3610b5f9907760a8bd2afbc
Sha256: bc21ba1a296faa978246f5229e8fd248813200c51ff5063029fc78ef9f97ba97

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/easy-login-woocommerce/xoo-form-fields-fw/assets/css/xoo-aff-style.css?ver=1.1 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 21 Feb 2020 05:32:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 764
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   764
Md5:    46c0fb8af73c828b20181dabf1e327bf
Sha1:   954af47f383c4e6f4593ae33c42682f11d01bd0f
Sha256: ba0de6db026a4e6d09b26067bc95062cc64f701dd61c283515c3437854c48340

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/betheme/style.css?ver=20.9.4 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Sat, 02 Jun 2018 18:26:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 188
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   188
Md5:    b34c4bf5aaba3a65f304076552584732
Sha1:   ec6751f4bc90cc808bfdad9f8bfa88c4d0ec591a
Sha256: 126719f5ea64b584ccc6649151841a79c2a48f2ebf3b33c474f3f6c68c0a983b

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         143.204.55.49
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 03 Oct 2022 22:29:48 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: x7iR8WuzmTBCuXT_5I1Fw4wWOjXt0klm7fmnYbj094pmmhUT-CJu9Q==
age: 6036
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    67d5a988edcda47bc3b3b3f65d32b4b6
Sha1:   d4f0e0da8b3690cc7da925026d3414b68c7d954f
Sha256: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
                                        
                                            GET /success.txt?ipv4 HTTP/1.1 
Host: detectportal.firefox.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         34.107.221.82
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Mon, 03 Oct 2022 15:06:54 GMT
Age: 32609
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600


--- Additional Info ---
Magic:  ASCII text
Size:   8
Md5:    ae780585f49b94ce1444eb7d28906123
Sha1:   7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
Sha256: 81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
                                        
                                            GET /wp-content/themes/betheme/css/base.css?ver=20.9.4 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Sat, 02 Jun 2018 11:11:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11607
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (474)
Size:   11607
Md5:    dca962952c446a98c8eaffeead20d33a
Sha1:   83611bac39361fc033cec1f0af3a01d6dc3bebea
Sha256: 334d05c716b192859c8d0ad1080b87464da16e7bf31f504f9606c8d9072e195e

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/betheme/assets/animations/animations.min.css?ver=20.9.4 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Sat, 02 Jun 2018 11:11:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4426
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (58508), with no line terminators
Size:   4426
Md5:    5c5fe8aa13d58b843d84f4a6e2e83632
Sha1:   2c3ee79ef50ac467448065b88a6eb1d4f1d38f41
Sha256: edf9e107f9c9afea6091fb4a95408ff3318e4e03b2cbe446935a048d6b3522f1

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=20.9.4 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Sat, 02 Jun 2018 11:11:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3066
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (365)
Size:   3066
Md5:    794b64ff62ab674216c6b08e2372fa65
Sha1:   95c0f228e76b833c0cd10df06e2e359b70a39541
Sha256: f12ff73af3f74a446e369081d40846d80f57c3fd635fd2031d8e6a39112b1afd

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=20.9.4 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Sat, 02 Jun 2018 11:11:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1907
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1907
Md5:    ec9c4823adb01a097d655f555adca9af
Sha1:   f50a073e8be2d675bf6c5af96f50a8f048a2ed15
Sha256: 8295f041024bf84f41a8c3292c995448dc00824bca9c70a1307255587492b7ee

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1664576981597&_since=%221654636467710%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 30 Sep 2022 22:29:41 GMT
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Mon, 03 Oct 2022 23:26:01 GMT
Cache-Control: max-age=3600
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: S94Iph0nwutA3zGUsM9aRAU3Vyhw2B8X6i3ImPbwawwaIlj4ZyaaxQ==
Age: 3080


--- Additional Info ---
Magic:  ASCII text, with very long lines (31812), with no line terminators
Size:   4522
Md5:    0a8cfe2efc6b0b24150c549ab477643e
Sha1:   ea11b76b989c1cca396d75cb40774bbd014ef689
Sha256: 86f672ecf608509aa0e411d8b80f9e4bb5c1e877040957d56a53ae69897d5ecd
                                        
                                            GET /wp-content/themes/betheme/css/responsive.css?ver=20.9.4 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Sat, 02 Jun 2018 11:11:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9384
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (612)
Size:   9384
Md5:    fd0c0e9198cd15453028e405288cb6a5
Sha1:   1bd308f5989efd8d89ca2a0109101ed6a49c5b82
Sha256: cdc2e8053588e14606806e29b8be1dc157df25ee14e114c7aa12f7cc9b71af4b

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/ajax-search-lite/css/style.basic.css?ver=4.8 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Sat, 22 Feb 2020 09:23:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3640
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (22232), with no line terminators
Size:   3640
Md5:    9a0dbb4a81576d21fe23edc5859f3ae1
Sha1:   ea3a839a123b449841309427da2006903684f739
Sha256: 97f2a526407462720908f45313e9d95268de4ded136dc5a42f9f9910e5ed60bb

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/ajax-search-lite/css/style-simple-red.css?ver=4.8 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Sat, 22 Feb 2020 09:23:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1441
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10689), with no line terminators
Size:   1441
Md5:    5c0434265cdf292df7e882e46006ea91
Sha1:   e579250fe95a7b80c8521e20566132e3519fa97d
Sha256: 4da33c3c4dfe694b7009eeae6669b4f5894d86432ffce2d012821a4ef7706584

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /v1/buckets/main/collections/fxmonitor-breaches/changeset?_expected=1662044085942&_since=%221622732735407%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Thu, 01 Sep 2022 14:54:45 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Mon, 03 Oct 2022 23:35:34 GMT
Cache-Control: max-age=3600
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VJUbems0Z8ERhypRIJRvzKrXx0kjTXSsWtI7XngK2NgWoAeU_aEgTA==
Age: 2252


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (20423), with no line terminators
Size:   5855
Md5:    10baf28aac846a3698df02337eaf7cee
Sha1:   6b67e052ee8a728c5481a6a6b54d6a0a4833638b
Sha256: 21c252701f27eb5480fb536f519278dcde70168b69c9cb6e225a01116a171a87
                                        
                                            GET /wp-content/plugins/creame-whatsapp-me/public/css/whatsappme.min.css?ver=3.2.1 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Thu, 20 Feb 2020 09:44:23 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6111
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (16453), with no line terminators
Size:   6111
Md5:    fa93dc448f1e767851b10685e648d4de
Sha1:   318a5bae0bf02b5c5bbacbd214907aea192ca69c
Sha256: ef55ab7f05fbf22487c4be9463144b2354c6e6b0e63bcce9d7720ecdc479d8c7

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/betheme/css/woocommerce.css?ver=20.9.4 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Sat, 02 Jun 2018 11:11:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6111
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (423)
Size:   6111
Md5:    6510763015d2731122d85437ccb57554
Sha1:   1566662fa6b92741b61f8546f710d972e5d1c0f1
Sha256: fca1054c4a5f51e8f78cb03a543990eedb629fb09e3adc67f9046b4726b3b63b

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/ajax-search-for-woocommerce/assets/css/style.min.css?ver=1.6.2 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Sat, 22 Feb 2020 09:19:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3859
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (21846), with no line terminators
Size:   3859
Md5:    309ea58aab5c72e375a34d6bd6a91ab0
Sha1:   74616d9e708bab6399255a65e863f5b25802cdaf
Sha256: 6ad574162a9eb4f207178dd34851058004dee7af61a7789b1c72e8504e4a5c8d

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /v1/buckets/main/collections/password-rules/changeset?_expected=1659924409785&_since=%221652712410939%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Mon, 08 Aug 2022 02:06:49 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Mon, 03 Oct 2022 23:35:34 GMT
Cache-Control: max-age=3600
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: MjQak3HvZCMgvMVIbX9xwd4A71AU5EyQdBs6ulm1o5uxR-8IiuU5TA==
Age: 2166


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1393), with no line terminators
Size:   780
Md5:    7cc9023d283eac5c86c23ef7d8d53612
Sha1:   18ebd937973c42f4252969afbacab560993826e7
Sha256: 08e9a89b6e7d1515b92b073c37ae0f41e50d4df90247356043d03d9dbef29324
                                        
                                            GET /qi/vttpniaeerroomne HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
x-powered-by: PHP/7.3.33
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-transform, no-cache, no-store, must-revalidate
link: <https://www.dkhomedesign.com/wp-json/>; rel="https://api.w.org/"
content-encoding: br
vary: Accept-Encoding
date: Tue, 04 Oct 2022 00:10:22 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (50373), with CRLF, LF line terminators
Size:   69010
Md5:    3672bfc88a2d039c30147bf11104f518
Sha1:   f2c8458d9177147b04890f7323bf497ad5fdfecc
Sha256: add85f3838fcba09df40cb480758542f1e83d6429ca17f25751d837fec96773f

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:35:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3824
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9961)
Size:   3824
Md5:    db9367e43daab3b0fc5b049f0f29a44e
Sha1:   fb3f36447f004809f6faa54507bf5d4544eba6b3
Sha256: 32716cdbd029056d015cbcc1ab653d5500267bcfa5a80704c7da086e175ceb90

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:35:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1659
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3706)
Size:   1659
Md5:    5aef6e4712f9ce4cbe5290af0de0b18b
Sha1:   77b6c1df6c97b6adcf07c0a1ffed59da048190fa
Sha256: 01d267bb04a59a09f053b9117b4d7b008b6990dc69119a80f49b4c9b12510204

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/form-forms/Scripts/Rich-Web-Forms-Widget.js?ver=5.3.13 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:35:05 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1236
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1236
Md5:    cd4fdcfaf209b18c46c941bd232b5307
Sha1:   083877ec09e4a890d9fd16fdbe8b038e269c93a6
Sha256: cf4394e1f3f3d57475b75596291c76e5da4ee279f3e156dccffaf1ef4d687e67

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/form-forms/Scripts/intlTelInput.min.js?ver=5.3.13 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:35:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8588
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (21397)
Size:   8588
Md5:    087a7c4ab2821c2c7295ce5def568cec
Sha1:   6c1064f059294d43d2b0f5edbb1a626c9cf66e00
Sha256: 8f6becfae3478d2dd74f87e4f30a0492c3803ec374161cd55b48e3ee70a09461

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/betheme/css/layout.css?ver=20.9.4 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Sat, 02 Jun 2018 11:11:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18835
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (401)
Size:   18835
Md5:    668f26ce75877c1b430dde6aabd57b27
Sha1:   57e46ca772c8a9d77a7c8b8d083b08eaecd152da
Sha256: 51d40bcad72e47e5238d69be8c9b3e505bb8fb524be8d78585ca1656195c29d4

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10454
Expires: Tue, 04 Oct 2022 03:04:37 GMT
Date: Tue, 04 Oct 2022 00:10:23 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10454
Expires: Tue, 04 Oct 2022 03:04:37 GMT
Date: Tue, 04 Oct 2022 00:10:23 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/themes/betheme/css/shortcodes.css?ver=20.9.4 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Sat, 02 Jun 2018 11:11:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 21436
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (404)
Size:   21436
Md5:    07a35f1137af1dba3741b6a018d757d6
Sha1:   5ee73f726ef168b5e760e1f9a418d69a1e20b2a4
Sha256: 267270b9c4b1f89f6c555ba2bd8cc03fdb121496ce25ac756467e586445a122b

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/form-forms/Scripts/countrySelect.min.js?ver=5.3.13 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Tue, 02 Aug 2022 07:16:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6848
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18070)
Size:   6848
Md5:    64de45aaff8ae565596de5c0635659ef
Sha1:   875d1905b7f8ab813f096d5b4360d93c3b5b8a15
Sha256: 3dc0f690cb5bfd9732910a95091cc6c38a46b76b92f6e79828dcc815fb144063

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10454
Expires: Tue, 04 Oct 2022 03:04:37 GMT
Date: Tue, 04 Oct 2022 00:10:23 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10454
Expires: Tue, 04 Oct 2022 03:04:37 GMT
Date: Tue, 04 Oct 2022 00:10:23 GMT
Connection: keep-alive

                                        
                                            GET /v1/buckets/main/collections/websites-with-shared-credential-backends/changeset?_expected=1659924446436&_since=%221650898092205%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Mon, 08 Aug 2022 02:07:26 GMT
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Wed, 28 Sep 2022 05:56:48 GMT
Cache-Control: max-age=2592000
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: nMQjTXfnph7pK_vBSZna751c9SYc0fwgJqADfDOItn8beAjYLMMpPQ==
Age: 498150


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (8682), with no line terminators
Size:   3275
Md5:    a3d031972a53ce7c0335f6110586ec9c
Sha1:   4c32da8a240101524c01ec333cc53a07f1d2ebff
Sha256: e93d587a4c0e1168b7c65a904f99bcdf262a8f0d70dcc716a95e9288c2a03e86
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11955
x-amzn-requestid: ce6bbe93-95b0-4b6e-a8bc-012796485e67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zcqb9FUtoAMF0WQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b577f-59dc0a18523f900a059aa5df;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:43:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 44jC1Ww19YUJjZHw9_3cSSR5Y7nw5df412G-RxWFTcbRz1XDKaT3zQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:35 GMT
age: 8748
etag: "e2ea2ef6805e391c497e62e101e76a0bdecfce64"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11955
Md5:    54b3ef7aa50273b78b59c24511b0c1f9
Sha1:   e2ea2ef6805e391c497e62e101e76a0bdecfce64
Sha256: 296e8954022d5160137b3e02ab5085a15cee7c23cd6d4ca61b36880706062457
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TVz3oiy-Z2r9lGFDgsnGNxotvvAPeOaa7LMzqs432QjZpZo-PNt1-g==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 04:42:51 GMT
age: 70052
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6315
Md5:    206fb65e75dbadf119512f71e0b78402
Sha1:   58ff0bf8ce7528b303d28bab01a80ad721705569
Sha256: 56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d0984d7-fe4f-4f96-9f0f-17e0197a5cb6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5857
x-amzn-requestid: 51f3a938-30f6-418e-970b-439bdfbb7c2b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHvHIAIAMF6PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-6d97d5ff3c3589ee1e900a3b;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OModa8qHXEimXsJhr1DiYifYbFLgI-yMvAaKZA2SsRyU1N5CWwoVOg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:16:34 GMT
age: 6829
etag: "1d90e98d3666fc8618130eac15972d3a08addf16"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5857
Md5:    78caa2bb8e856110416bc85ed2420d20
Sha1:   1d90e98d3666fc8618130eac15972d3a08addf16
Sha256: 5175905bdbcd0a325ff666148a77503f14d1922d826ad14a9c3d09846d77dff5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f5624b4-8e2a-461e-a32a-38d6b5a3a8d2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11101
x-amzn-requestid: f98e84d9-1e66-4436-b793-219a777f2ba0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcqcvE8JoAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5784-25bd2b234c1093de70074c92;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:43:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: becOxfqUowywFrxzDSeK7F1lFdDVTSHIF1TLC5k5aSlLPpsR6F8gjw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:42:37 GMT
age: 5266
etag: "db07d58d8feff4ea01866d095e5264ee5c8e1ca3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11101
Md5:    ae824db4a95391149198a4b6b8556c70
Sha1:   db07d58d8feff4ea01866d095e5264ee5c8e1ca3
Sha256: 19e96d204813247697e1858daf9e07d6c4cafd9ab1175a3bf39a7f07f6991521
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5504
x-amzn-requestid: 37405eb0-5c75-46a9-84c0-e8ed726995d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHvHPvoAMF3mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-77fd550b58af612525e74761;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: O1yNc4H21kixhUEE7099oNqs7a5ZnJBBjlZbsbmLvaXyzXzrK0dL3w==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:33 GMT
age: 8750
etag: "20ef861be49c652a938e0145e4ca3a60159367e2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5504
Md5:    6c6882c60d7ca6f918c77104e3ad1d52
Sha1:   20ef861be49c652a938e0145e4ca3a60159367e2
Sha256: 861f5870990fbd2939d151ae18384cf311e87067ca9a50818efe0c2d51b83088
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f385d19-576b-44dc-833a-4146626070e5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12252
x-amzn-requestid: 41962b0e-db82-4872-9a9c-7bf2d5a0fb13
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHuGLWIAMFpbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-708b71f71a538c1112b60863;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: h8hoQIIPDGIJLufbH91cBAhn47zKq29mLI7QphvI4A7w6HhTrRzk_w==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:17:07 GMT
age: 6796
etag: "0aba06667d4cb108fddaf2c54c4ae628f56018e3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12252
Md5:    23ba112cb712c07d19994e82fbaa17c0
Sha1:   0aba06667d4cb108fddaf2c54c4ae628f56018e3
Sha256: f8095524c5ade5bb5e12a6a5d23e34eab6dd61acf658664f83a0c39821fd3a33
                                        
                                            GET /v1/buckets/main/collections/search-config/changeset?_expected=1661199949574&_since=%221648132005528%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Mon, 22 Aug 2022 20:25:49 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Mon, 03 Oct 2022 23:15:00 GMT
Cache-Control: max-age=3600
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PT6fHTgtCkep70MYKCh4R8qpDSEzHCQeO1w7le5buF_ZCom_9EZG9w==
Age: 3414


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (14029), with no line terminators
Size:   3393
Md5:    28bf4850d0381c6e4a223d862f122b2d
Sha1:   aaaf470779861678a2cd105303b37cdefc93302f
Sha256: 3d9c1eac8a6567be6c86a852c60704f8387d24603ea87b2b61d9d3bc6e33be0a
                                        
                                            GET /wp-content/plugins/multilanguage-add-on-for-visual-composer/public/js/visual-composer-multilanguage-public.js?ver=2.0 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:35:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1992
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (315)
Size:   1992
Md5:    0a5533625675533b09c540d2367af147
Sha1:   4bce16e597b7173cab97eb6d17ecf736444adb47
Sha256: d66a9b027573a7b4a6319f5fc8e92bbf8ea97cd01b1337db814fd9e5214d4c3b

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /v1/buckets/main/collections/cfr/changeset?_expected=1659547595259&_since=%221653578606314%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Wed, 03 Aug 2022 17:26:35 GMT
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Sun, 02 Oct 2022 02:57:14 GMT
Cache-Control: max-age=259200
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Z76aYhLUExfAixbz4JWnvHoQ6MBbw6-8EVBH0aFi2-85W0HpSbZ1MA==
Age: 229690


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (3678), with no line terminators
Size:   1543
Md5:    b04cf0ed51c313e015c9a38d708ab85c
Sha1:   6349138561e746bf58aadeeec521a0887fe368c9
Sha256: cb3369616c55267e326d97a82ad86e4d5574967e4a843e8d21a6b0eb6e3e3346
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.7.2 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:34:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 37078
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27287), with CRLF line terminators
Size:   37078
Md5:    77540c21c24e1b5f23a55a9117c4c0e3
Sha1:   f1806422585866be0b324606b63ec4a50f6cc9d5
Sha256: a9dbcdd23bbcd2e006608e43051adfddf87869b9b4a76fcf0c698980d8ad23a4

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 682
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Mon, 26 Sep 2022 16:36:56 GMT
X-Content-Type-Options: nosniff
Date: Mon, 03 Oct 2022 23:42:24 GMT
Cache-Control: no-cache, no-store, max-age=3600
ETag: "1664210216116"
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: bIRig83L2h6_3wyUwpcaGvkUmtLW5iBv4-1VL7kwkR-CmW6JFeUorw==
Age: 1680


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (682), with no line terminators
Size:   682
Md5:    4e767b65980ef55063cce1d7f423c58e
Sha1:   f6f9756deac632f187752ff6708a2e3a71a04ebc
Sha256: 132e8f66a926b19d6a3ff32ca5bf385272b3b9be5e748cd21b9bb02a13a661e9
                                        
                                            GET /v1/buckets/main/collections/query-stripping/changeset?_expected=1656585893704&_since=%221649762862679%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Thu, 30 Jun 2022 10:44:53 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Mon, 03 Oct 2022 15:57:46 GMT
Cache-Control: max-age=259200
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VugQHtd4vQ4SgZKjhLJb1r37R1uDHUhSjy1UtyDK6AaVvVnvd84SDQ==
Age: 29605


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1710), with no line terminators
Size:   900
Md5:    7b0f15820fbc79772d69b103cb111800
Sha1:   92ccda464b19ef35736c03edd82b578661361212
Sha256: 7c9d70c6fbae326155f72c8d40252871c3067597192f4d604cc2b46dfd4b2527
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.7.2 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:34:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 17280
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64569), with CRLF line terminators
Size:   17280
Md5:    307a3e1d3f29fd0ce95c3afec27db862
Sha1:   1b9138ce479d15a82b258ae13b2605ee438915a0
Sha256: add064fac6ac2198a3d69172c2b75f4fc8771720269ccbbab6732ad7c6ac5ea6

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:34:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3285
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9174)
Size:   3285
Md5:    a4ab7e1f853bb9f8de8a3fc6b3334d30
Sha1:   518bb1472e162b714da7f3b81ac1af2e7c85b508
Sha256: e909207b1285f4b714ba5384e76efc8205314226065954d275675d45e7dc653b

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.9.5 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:34:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 907
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2752), with no line terminators
Size:   907
Md5:    46d625f969644a8d7f8d9407700b28bd
Sha1:   9e68381ea033d6f97d038249a55096732d8a994a
Sha256: 5f2f8bfbad7f63a319d0b1b6d06265280a74820f92ee0bf3178d1f9f49d8a535

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/easy-login-woocommerce/library/smooth-scrollbar/smooth-scrollbar.js?ver=5.3.13 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:35:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15166
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (46475), with no line terminators
Size:   15166
Md5:    d290b5b894fd2561cc48c8415db02346
Sha1:   488a46a80d1326bdfcdcd84c33c1c7e2c9ed4a3f
Sha256: 8b4cb5a3fac2feae1e9149195614ad3b0fc837f48519fa8ebee2f3b96d58cec0

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=5.4.7 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:35:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 289
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   289
Md5:    8212fde4f269b85010b49648b26dcdee
Sha1:   c3c413be8f1e0b457a70ddf888c561093d621473
Sha256: 48b570c469e1641d7571d0d515ee80c924b7824bdf1bfe55249f6b0d5351849d

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=5.3.13 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:37:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4249
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10927)
Size:   4249
Md5:    9f9eca53dcaa64f115bd6480ffee748d
Sha1:   a3579a8c17e64784e984fd71f588105a4f17504e
Sha256: ccb5fe6579fd4f0b06a50a127265b3f22d79bfdb0ac5a9166fae95d9662a4afe

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/quick-call-button/assets/css/quick-call-button.css?ver=1.2.1 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Thu, 20 Feb 2020 09:59:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 874
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7247), with no line terminators
Size:   874
Md5:    4229180eac3dfbe8aab2f2ae44e4ade7
Sha1:   a5bbd831ce173c726fbef9bb6022e512ac36b47c
Sha256: 7ee533d2c003b470bb8996a846a5cfe4f137f4cf369ecc1622f2fa17abca97e0

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.0.1 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:35:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3789
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   3789
Md5:    6563404e225db2e1d4c49d0db8ce9f2b
Sha1:   ae24c71c21cfedfea01ba2b5ab3f4afa98efbca1
Sha256: 929e3ae39590c798dcdd6d866fdc849561139e50eb888d92fc37cb62e1457c71

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:35:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10387
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (35949)
Size:   10387
Md5:    ee5118299d4e3d559476ae003532bebe
Sha1:   3ff975de58700dedcd5c17f169ca37976ccf0740
Sha256: a58b1ba0d95da7ed6b8308950549dcceeb5034179c129d6fb4ba4f9329c3d7ea

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:34:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 896
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1682)
Size:   896
Md5:    63530fb2052756cea4ba3538b3be7a74
Sha1:   c8013fa437b42e7b1f78419487a05ab8243b71a2
Sha256: 2a305c981c3eef1e3a441d9a57040caac41eaf3961d396daf874ffa548458f97

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.9.5 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:34:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 655
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1987), with no line terminators
Size:   655
Md5:    b43fbb521dc24dfaa9749755dc182542
Sha1:   df5548af9a241aa4fe140afc364fa48e4cb8daa2
Sha256: 36abe8472f94d9a45131b21b67840f9b8704447203ff54ee9ce6c6a2b452f927

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /releases/v5.5.0/css/all.css?ver=5.3.13 HTTP/1.1 
Host: use.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.64.132.15
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 04 Oct 2022 00:10:22 GMT
x-amz-id-2: r1gqnSu/BHdFwncmbWX1Cot7y2f/xR9RMDMj/Rzcr65ayYiOcM3se80vPGN7gG567l9zge3gHCk=
x-amz-request-id: WVGNT4NSDXDHMVQJ
last-modified: Wed, 30 Jun 2021 15:43:32 GMT
etag: W/"1cc6c92172d124fbd305ba3d8e263333"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 272579
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4wpg%2BmD69%2FxaWRcqUP4G0%2F0pDs1VS1q2z7Fuv5S5u7A0WBiYl%2Fvz7rxeLHGVc%2FgSLG9XB6BUILcknf3eDdwnm3xVo%2B9G8GAjA60DR8AzZGaHpzzaaf%2FF%2B72UgsijJirQWlU9o2%2Fj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7549b1b54af673e3-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (51030)
Size:   12148
Md5:    328950103406f43ec4d8752009e0e779
Sha1:   8db2c0015e9a450c2412c88cfb28820c8a92da13
Sha256: 0c411371a62d45069f1e5d9269f8486a085c1992b2e8ae1550277aa79f2c9222
                                        
                                            GET /wp-content/plugins/easy-login-woocommerce/xoo-form-fields-fw/assets/js/xoo-aff-js.js?ver=1.1 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:35:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1069
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1069
Md5:    24c4dc0f8e32c1d2e8f22675bff9bc5f
Sha1:   2719d23bb1dd52a8303929b6043a93e84bf6285c
Sha256: 9917c70b6d98cb7b82e66fb06e666a9d7d91dad4096764ad28fc0d9a7befd230

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/easy-login-woocommerce/assets/js/xoo-el-js.js?ver=1.3 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Tue, 02 Aug 2022 07:16:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3528
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1787), with CRLF line terminators
Size:   3528
Md5:    590da2fe546680add727249b88d08d2b
Sha1:   6560d3b182f43af8b05183ca8a92f01c14b536d1
Sha256: f46653e4427b95f72d36420c0971e7991bef657e9d4553eefb286701a3d99d6d

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:35:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2386
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6605)
Size:   2386
Md5:    e0f19dc4b7f9322083590ebd9398bc2b
Sha1:   069aebeb51479fb242474ddf095e5253b03b59e1
Sha256: 36946d392d8f689d0b6c7a4f65c85a86ae38afdca9f24362ce4eeb0a77726368

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:35:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 904
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2929)
Size:   904
Md5:    e7c7d4e2f1dc531010f4a8ba3681d0c5
Sha1:   488334db9ee22c77cf5496dbca481778520b01ac
Sha256: 38f4368016476be4d663e77bfa1efc604e9384b809e256da06e1d331d1239d07

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1657747510534&_since=%221654266643527%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Wed, 13 Jul 2022 21:25:10 GMT
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Mon, 03 Oct 2022 23:47:17 GMT
Cache-Control: max-age=3600
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: wPWFzOSt9lkMQg4kwP8HqvPYG8zI-jx8y1L5vH-Gp7Glh2HBfqfv3w==
Age: 1549


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (2194), with no line terminators
Size:   1080
Md5:    4286df03a653e5b403e88a8d28933306
Sha1:   8f974648aef7d271443707ce3a6eba8d9a117872
Sha256: 16e99009a0917eedd380140055d06b29d6709bd469d694d078c013f7c104367a
                                        
                                            GET /wp-includes/js/jquery/ui/sortable.min.js?ver=1.11.4 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:35:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6199
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (24609)
Size:   6199
Md5:    f198815e616d578ed69c65c99437ed39
Sha1:   701228e81260ea25c10e1eb6d1748d0a1b743cb5
Sha256: ff8e03b86a9a90af06031031359c71b4e724975759608d3c7ae46fc63ceb2a9e

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/ui/tabs.min.js?ver=1.11.4 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:35:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3701
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11801)
Size:   3701
Md5:    fb05ec1efaadd71a3b7b57726408d2fd
Sha1:   758f230effbffd3d7b8ccecc0e928cea81c2b635
Sha256: b4ac458025d54b0bf0a7a8c812737c41cac6368ab57dd7b9848d76ad87a221f9

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/ui/accordion.min.js?ver=1.11.4 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:35:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2532
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (8341)
Size:   2532
Md5:    20343d98d0b89ad402aebfad02a9b0d5
Sha1:   bdebcbfd5bc0188cdc6b9b7da103d7f83e4d4de5
Sha256: 7a61479d68c8ec5c0e10f19b3b4a4597c2b8d95f52ba723172b0aad1e8ab5db1

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 00:10:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 00:10:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dkhomedesign.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         172.217.21.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 17:16:50 GMT
expires: Wed, 27 Sep 2023 17:16:50 GMT
cache-control: public, max-age=31536000
age: 543214
last-modified: Tue, 26 Apr 2022 16:41:08 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 20028, version 1.0\012- data
Size:   20028
Md5:    2bfde17b9a1384ce64af78db1b87a82f
Sha1:   8effd23e482511e249c3f8e91cdc503729b93598
Sha256: 5c2d662e92bcbf1a5970b97040f901031295e79a96314db8302f549003022087
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 00:10:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 00:10:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/merriweather/v30/u-4m0qyriQwlOrhSvowK_l5-eRZOf-I.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dkhomedesign.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         172.217.21.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19780
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 17:37:09 GMT
expires: Wed, 27 Sep 2023 17:37:09 GMT
cache-control: public, max-age=31536000
age: 541995
last-modified: Tue, 26 Apr 2022 15:48:58 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 19780, version 1.0\012- data
Size:   19780
Md5:    03717344e4dbb2de44988b281bb7430b
Sha1:   0cd3f7724bd0a5bf2460e1a85e35ccfbd5e85c05
Sha256: 499ec54eb2afd103ec37505e23c6570fc7d89a0d728dde19d87a092e4a3261b4
                                        
                                            GET /s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZWMf6.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dkhomedesign.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         172.217.21.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 17:14:55 GMT
expires: Wed, 27 Sep 2023 17:14:55 GMT
cache-control: public, max-age=31536000
age: 543329
last-modified: Tue, 26 Apr 2022 15:48:38 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 19740, version 1.0\012- data
Size:   19740
Md5:    101cf2a65d64322878605fa8472bb025
Sha1:   6dffc15e38c321e4bb567b4bd8107a2e8d97c61d
Sha256: 273c8613cdd2852dd5318f224d804ae6d2fc717c48d3f1dab587b6d396fb4fc8
                                        
                                            GET /releases/v5.5.0/webfonts/fa-regular-400.woff2 HTTP/1.1 
Host: use.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dkhomedesign.com
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         172.64.133.15
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Tue, 04 Oct 2022 00:10:24 GMT
content-length: 14844
x-amz-id-2: 9iZBXfiyu0u1iICqECFhUJuXSY1DrykksEHjit2MCg6N7/iFsqAvGObQrvdZZh9PjGiXJ4wejag=
x-amz-request-id: A022SMSYG00YA1CR
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:43:51 GMT
etag: "bdadb6ce95c5a2e7b673940721450d3c"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 148
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CCbbanFXY4ge7OaL5IezDDTrfLQvsYqYe70AMi16RSuCEnG8eD4GDkzD%2FxqJ4L4L%2FRRQ8oejshezLon92tpqfaaASJNo%2BkqE%2FheaV6twC2Vn57fU2Rz6zb8SkLIxYh6bHVy3fY4s"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7549b1bd9d488e2d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 14844, version 1.0\012- data
Size:   14844
Md5:    bdadb6ce95c5a2e7b673940721450d3c
Sha1:   f1e8cb035436d638da83d4696248cec831dcbe7a
Sha256: 92ba7bfaa43a35c94353e96860d99376313ee9b5fce6124d4e64067280f9a841
                                        
                                            GET /s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l521wRZWMf6.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dkhomedesign.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         172.217.21.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 17:22:57 GMT
expires: Wed, 27 Sep 2023 17:22:57 GMT
cache-control: public, max-age=31536000
age: 542847
last-modified: Tue, 26 Apr 2022 15:46:46 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 19752, version 1.0\012- data
Size:   19752
Md5:    d62145d4db9cd1736127dbac7665f41b
Sha1:   2687b5ba8ddbafc800abd1208069edcefc0ca8f2
Sha256: c8356c413b566272ba50c98d4ce0546e1fce6177ceb6cf8c2a7efe0a65e085a1
                                        
                                            GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dkhomedesign.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         172.217.21.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 18:53:39 GMT
expires: Tue, 03 Oct 2023 18:53:39 GMT
cache-control: public, max-age=31536000
age: 19005
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Size:   16740
Md5:    e43b535855a4ae53bd5b07a6eeb3bf67
Sha1:   6507312d9491156036316484bf8dc41e8b52ddd9
Sha256: b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
                                        
                                            GET /wp-content/themes/betheme/js/plugins.js?ver=20.9.4 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:34:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 52732
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32011)
Size:   52732
Md5:    66e190d16db1302cbf8992b79a4249c1
Sha1:   df82994954ec67979ebc24e1526e4f2ea386cc32
Sha256: 50ad8edcadefb1288f4fc679339c79c887cd4de470c739ca88f690ebfb7fd5e7

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/ajax-search-lite/js/min/jquery.ajaxsearchlite.min.js?ver=4.8 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:34:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 24192
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (57957)
Size:   24192
Md5:    d5ebeb103fbca922482d1a1981a8560f
Sha1:   16fac2658617f11ddae2bf9449bd9ad4e34e7dd8
Sha256: 01e0cdd774ca792971ec8b4c0a8d25228fd21ab20d321438720ecb4d49a454ca

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/creame-whatsapp-me/public/js/whatsappme.min.js?ver=3.2.1 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:35:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1626
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4818), with no line terminators
Size:   1626
Md5:    5193aaacfcfe74fb89202b0865ab5555
Sha1:   37671352aa0a48899fd73fc4fa3b061a7a8fe127
Sha256: b0b0a959d94348473b06114e3f925e41d62ab9164a35b7047fe4b991bcf3d131

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=5.3.13 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:35:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 640
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1393), with no line terminators
Size:   640
Md5:    ca6e0757516afb693e1493936c4bb40f
Sha1:   25fafc61efa61573bb0cc5e4a9bfcfdef8bc66c9
Sha256: b4c3b98a9ce3c7b719cc6025ee28165da33581272b5877d6366e183144d5b428

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/quick-call-button/assets/js/drag-quick-call-button.js?ver=1.2.1 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:34:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 152
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (359), with no line terminators
Size:   152
Md5:    c18792ade03f3d4b5684a07289299bf2
Sha1:   cba84e5cc578afb4425ece7bfec6007923c1cb7d
Sha256: 32ff646cda0448dfed4fdb2496a1127084707abdebbeb772d6b7d706d465466d

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/betheme/js/menu.js?ver=20.9.4 HTTP/1.1 
Host: www.dkhomedesign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dkhomedesign.com/qi/vttpniaeerroomne
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         103.138.188.110
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 00:10:23 GMT
last-modified: Fri, 05 Aug 2022 05:34:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 788
date: Tue, 04 Oct 2022 00:10:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   788
Md5:    01f788e2a4b0d0f3c2e3483fcec8e2d5
Sha1:   f6abd9ccc1a8f499d60786fccebf5d59b4073637
Sha256: 6303f895667a9420016b544bcb97d06066b5ec5551ed207ab56c7afd91a7c0f1

Alerts: