ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash 4f771b9e05938d93366a814a2714cc32
33b5a01f35241d5085c476d06542865904652ad4
2db84be074e99462d8d9dd248b445da5bb78332b6087a247abfe88dd9b9f8cdf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash eabef916764564262ad985fd27284a97
42a72e12642fe4249aa5bd8e1cc9e9db07fd7943
ffa5c8a67b8ebba1ce4e464bc7e831e998c830a78d78880f09702afae02a9d70
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash 6b72408b6aa025b7292dfa9884621463
e3cc9bd0efe2a7ff90b23e74cff27b8f9a21933a
21aaf9003012d1c5b12cc116b740cd9f650340c1c738c4398bf9dea97d467f88
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash eabef916764564262ad985fd27284a97
42a72e12642fe4249aa5bd8e1cc9e9db07fd7943
ffa5c8a67b8ebba1ce4e464bc7e831e998c830a78d78880f09702afae02a9d70
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash 4f771b9e05938d93366a814a2714cc32
33b5a01f35241d5085c476d06542865904652ad4
2db84be074e99462d8d9dd248b445da5bb78332b6087a247abfe88dd9b9f8cdf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=AW-430847438
142.250.74.72200 OK 54 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=AW-430847438
IP 142.250.74.72:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint55:51:32:58:36:72:A1:C8:50:5E:5A:8D:CE:A5:2F:DC:D7:1E:62:03
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type ASCII text, with very long lines (2271)
Hash 6b3decad6dba845a4ccdef10ba8b8380
0c4fa37039d0d79fd8741f43a7d2d4dcf81f738c
499078fcdd99894f036ef16ef6d7aa7a09899d74f9949a9c2e60ca9cd019faf6
GET /gtag/js?id=AW-430847438 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 May 2023 15:37:02 GMT
expires: Fri, 26 May 2023 15:37:02 GMT
cache-control: private, max-age=900
last-modified: Fri, 26 May 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 53867
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
166.62.30.154200 OK 109 kB URL User Request GET HTTP/2 IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type gzip compressed data, from Unix\012- data
Size 109 kB (108687 bytes)
Hash 3df7cfdd9a7f6e1c7eba4aedad478a6c
1fad93e951df372341bf6548ab448fef22c80e72
2e78966c1c94ca5641165f2b85a66fa24cd2b9cdd1639a467a2485d48ee8abe2
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Tue, 18 Apr 2023 08:07:17 GMT
accept-ranges: bytes
cache-control: max-age=0
expires: Fri, 26 May 2023 15:37:02 GMT
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LeHvCIaAAAAAFre-h83ANqeFtHtA4ySq2nXw0PT&ver=3.0
142.250.74.132200 OK 584 B URL GET HTTP/2 www.google.com/recaptcha/api.js?render=6LeHvCIaAAAAAFre-h83ANqeFtHtA4ySq2nXw0PT&ver=3.0
IP 142.250.74.132:443
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint85:AD:43:66:C0:73:07:1B:B5:5D:4A:83:4B:76:3F:DA:4B:2B:E1:F8
ValidityMon, 24 Apr 2023 12:01:16 GMT - Mon, 17 Jul 2023 12:01:15 GMT
File type ASCII text, with very long lines (884), with no line terminators
Hash d36454e9a4cf2ca97a10a608c3ffe17f
797e8500e2a51594a12e403e7e63d94e50f09a40
7a75abb29afb9b070a0632b66637d4c1aedfe352bb162426cc9504ad9ce5c2e7
GET /recaptcha/api.js?render=6LeHvCIaAAAAAFre-h83ANqeFtHtA4ySq2nXw0PT&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Fri, 26 May 2023 15:37:02 GMT
date: Fri, 26 May 2023 15:37:02 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 584
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jojoexports.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1.3
166.62.30.154200 OK 3.5 kB URL GET HTTP/2 jojoexports.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1.3
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (24702), with no line terminators
Hash 3ed1daece1530ee7b5e7b0ef51ff9db8
0adb564e05d6f2b42849e007ed36ae4527c229e6
3c107b664e7305b99c2c95a67f790e5cda95ee05cc584c6045f987328ad49a6f
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1.3 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 07:32:07 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 3470
content-type: text/css; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/plugins/chaty/css/chaty-front.min.css?ver=3.0.71614316755
166.62.30.154200 OK 5.3 kB URL GET HTTP/2 jojoexports.com/wp-content/plugins/chaty/css/chaty-front.min.css?ver=3.0.71614316755
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (23729), with no line terminators
Hash d68bc562974e488d04f4e32c7f1a000e
b86b890c98bdb7b342f6ab510bd549d097d216c8
3c0cabe9ec14d3429afbff34c7d3f409896c90bc888ad38250a025ff4238ca08
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/chaty/css/chaty-front.min.css?ver=3.0.71614316755 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 25 Apr 2023 11:25:26 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 5277
content-type: text/css; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-includes/css/dist/block-library/style.min.css?ver=6.2
166.62.30.154200 OK 13 kB URL GET HTTP/2 jojoexports.com/wp-includes/css/dist/block-library/style.min.css?ver=6.2
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (48325)
Hash 47cdb0e81ea341ad27a1a0b0ba6b02d8
6195a67b0b7f7919f07309e2c8ce71f3d4729d03
aca566587618e75fa291a419c7c430be02e03fc72f6105658c1bc8e7d59a65e4
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.2 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 10 Mar 2023 00:22:37 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 12736
content-type: text/css; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-includes/css/classic-themes.min.css?ver=6.2
166.62.30.154200 OK 210 B URL GET HTTP/2 jojoexports.com/wp-includes/css/classic-themes.min.css?ver=6.2
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
Hash 1a0804b1a9d09705657f91fe7cad4c5a
feeece6f0b3e0bcf090547c475329a2772f6b26b
dcd9f488bd62ba0ee403b07a97e40b9ffd63a0eff61091588c913b16d5153d48
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/css/classic-themes.min.css?ver=6.2 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Mon, 13 Feb 2023 20:50:19 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 210
content-type: text/css; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/plugins/wp-job-openings/assets/css/style.min.css?ver=3.3.3
166.62.30.154200 OK 4.1 kB URL GET HTTP/2 jojoexports.com/wp-content/plugins/wp-job-openings/assets/css/style.min.css?ver=3.3.3
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (18821), with no line terminators
Hash 714c22b27eec895ff7b20fa8e5a34259
841d624e5501f717f0348204e86880b63f56274d
36b74f0c72674951730e13d210bf20cbab196d2b93b00871195e03116dffc9d8
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wp-job-openings/assets/css/style.min.css?ver=3.3.3 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 11 Nov 2022 17:53:48 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 4087
content-type: text/css; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=1681805233
166.62.30.154200 OK 883 B URL GET HTTP/2 jojoexports.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=1681805233
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (2342), with no line terminators
Hash 1a1cb56f002e6194505129baa93f9825
227859a55318c09980a847518d52dfd689ba43d7
88f21490128244f54a38864c301f0c9be49f323f6da36c5f5a6bd02175647ada
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=1681805233 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 08:07:13 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 883
content-type: text/css; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/cache/min/1/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=1681805233
166.62.30.154200 OK 2.0 kB URL GET HTTP/2 jojoexports.com/wp-content/cache/min/1/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=1681805233
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (10435), with no line terminators
Hash 535bc19ca40020871971f227877089ad
c0ad4962f28f0cee21998d39977c27de284799cf
b4d38ebe31a12e6c88de4f40af63dd23841c9879f168a8824aa475029ef59dd1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=1681805233 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 08:07:13 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 1966
content-type: text/css; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
chimpstatic.com/mcjs-connected/js/users/e3da6bec77fdf332828ce52e5/f39cccac3f343360ac5e3c898.js
96.6.17.210200 OK 1.0 kB URL GET HTTP/1.1 chimpstatic.com/mcjs-connected/js/users/e3da6bec77fdf332828ce52e5/f39cccac3f343360ac5e3c898.js
IP 96.6.17.210:443
Certificate IssuerDigiCert Inc
Subjectwildcardsan.us15.list-manage.com
FingerprintBC:30:B2:9F:2F:A4:DF:B4:9F:C1:CC:A8:FD:DB:40:44:24:C3:79:6E
ValidityTue, 15 Nov 2022 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT
Hash 28a964d35d69f822d874ec040b37a34d
7f7ead37f742715dcd1c4e16d98f0383ccb8a49e
cedbeb863c750717ff8cc1aef752b18e6084ddecb10d3c3b671c8f331e854566
GET /mcjs-connected/js/users/e3da6bec77fdf332828ce52e5/f39cccac3f343360ac5e3c898.js HTTP/1.1
Host: chimpstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: m61RtrzgaIsCrK0gxFS1yBaWXnuBh1mJixk0JZ5fibVzjGRSgVeHWPe2oPb3ZYbnf5glqquEiLg=
x-amz-request-id: HCYW8JKXD00BAPY5
Last-Modified: Sun, 08 May 2022 11:02:10 GMT
ETag: "28a964d35d69f822d874ec040b37a34d"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
X-EdgeConnect-MidMile-RTT: 0, 6
X-EdgeConnect-Origin-MEX-Latency: 103, 103
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1800
Expires: Fri, 26 May 2023 16:07:02 GMT
Date: Fri, 26 May 2023 15:37:02 GMT
Content-Length: 1012
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash eabef916764564262ad985fd27284a97
42a72e12642fe4249aa5bd8e1cc9e9db07fd7943
ffa5c8a67b8ebba1ce4e464bc7e831e998c830a78d78880f09702afae02a9d70
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash 4f771b9e05938d93366a814a2714cc32
33b5a01f35241d5085c476d06542865904652ad4
2db84be074e99462d8d9dd248b445da5bb78332b6087a247abfe88dd9b9f8cdf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash 61d13c286970b667c506166085b27432
e17257068ae421f755f2c671371b2fdfc3ea7fe1
68a17d38798d905ccc0ea237654927ec0a6c66c5164909e9a21e3344a576fd62
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-B081B05K2Y&l=dataLayer&cx=c
142.250.74.72200 OK 80 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-B081B05K2Y&l=dataLayer&cx=c
IP 142.250.74.72:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint55:51:32:58:36:72:A1:C8:50:5E:5A:8D:CE:A5:2F:DC:D7:1E:62:03
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type ASCII text, with very long lines (3288)
Hash d70d9e8c82e1317c34f09597f113ba1f
05b21e2e0472991e0b7ff96e1d03710da290999a
d697544e74f8d8774a006915ad715864a958a881cb6c0aacf3ab71c6efcc41e3
GET /gtag/js?id=G-B081B05K2Y&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 May 2023 15:37:03 GMT
expires: Fri, 26 May 2023 15:37:03 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80190
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
jojoexports.com/wp-content/cache/min/1/wp-content/themes/ohio/style.css?ver=1681805233
166.62.30.154200 OK 59 kB URL GET HTTP/2 jojoexports.com/wp-content/cache/min/1/wp-content/themes/ohio/style.css?ver=1681805233
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (64912)
Hash 9fc63b157dfb79938bf23ac1ea153ce4
f8e874fdb0e6b5b4c28437cb2937e937dd10480b
dba0457178dcabbc5b007af2b5e1e6b826b9460a0ea0c874d9a6f5db447567c7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/ohio/style.css?ver=1681805233 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 08:07:13 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 59432
content-type: text/css; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/cache/min/1/wp-content/plugins/wp-job-openings/assets/css/general.min.css?ver=1681805233
166.62.30.154200 OK 6.5 kB URL GET HTTP/2 jojoexports.com/wp-content/cache/min/1/wp-content/plugins/wp-job-openings/assets/css/general.min.css?ver=1681805233
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (38858), with no line terminators
Hash bf0a717d67127e7c974f27bd380bf2ef
803f04d053f58eba4f9a5aeb62bda83a4a4e7b17
6e775f0033988cc1084aa84aaea071356bf1ca7014887f6cdc05250bae8e5c34
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/wp-job-openings/assets/css/general.min.css?ver=1681805233 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 08:07:13 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 6484
content-type: text/css; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/cache/min/1/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=1681805233
166.62.30.154200 OK 27 kB URL GET HTTP/2 jojoexports.com/wp-content/cache/min/1/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=1681805233
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type Unicode text, UTF-8 text, with very long lines (65528), with no line terminators
Hash 5f8a275e4492fa08fc3442680ca7e612
f88a540e781f9476a231f2bc9e7c4256622a657b
80566f932248d637c89804b08c7934518ff6b4c30f268b3a4f32da749e3fcad7
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=1681805233 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 08:07:13 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 27293
content-type: text/css; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=1681805237
166.62.30.154200 OK 507 B URL GET HTTP/2 jojoexports.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=1681805237
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (999), with no line terminators
Hash 6a0e8318d42803736d2fafcc12238026
c955314a7e0a9a9871329b0f042c8f0b5df49a78
2648a1333fa24d383fd73a6beaac17156ae78f4267ff7407ad60e05a788df44c
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=1681805237 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 08:07:17 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 507
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
chimpstatic.com/mcjs-connected/js/users/babff8578bb3d8bfb072d183e/d58ce616880e4c53c34d2cac.js
96.6.17.210403 Forbidden 243 B URL GET HTTP/1.1 chimpstatic.com/mcjs-connected/js/users/babff8578bb3d8bfb072d183e/d58ce616880e4c53c34d2cac.js
IP 96.6.17.210:443
Certificate IssuerDigiCert Inc
Subjectwildcardsan.us15.list-manage.com
FingerprintBC:30:B2:9F:2F:A4:DF:B4:9F:C1:CC:A8:FD:DB:40:44:24:C3:79:6E
ValidityTue, 15 Nov 2022 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT
File type XML 1.0 document text\012- XML document, ASCII text
Hash 0d4cca002aa16e7d686c547fa0b115a1
53bcf49238844e0912b9942b32d28d2a8f1252e6
0e50355be9ee55fcdc969fb9e369701c7d41411bc19c90d29401a2abcb3b22a7
GET /mcjs-connected/js/users/babff8578bb3d8bfb072d183e/d58ce616880e4c53c34d2cac.js HTTP/1.1
Host: chimpstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
x-amz-request-id: M9VZAS7FME14VEDM
x-amz-id-2: fpnikpyutOyBpcBiQi2r7FnkhzZ8hUlbY03ChV1cvReUOBUggNfW+3+RY67z+gy742MrvKOswoo=
Content-Type: application/xml
Server: AmazonS3
Content-Length: 243
X-EdgeConnect-MidMile-RTT: 6
X-EdgeConnect-Origin-MEX-Latency: 396
Cache-Control: max-age=1800
Expires: Fri, 26 May 2023 16:07:03 GMT
Date: Fri, 26 May 2023 15:37:03 GMT
Connection: keep-alive
Set-Cookie: ak_bmsc=BF48DC410BE81388AFAAC974FC44EF54~000000000000000000000000000000~YAAQpk8kF4kIsyGIAQAAiMm0WBNXxfj0twBvTKSITES/6klBDdgYQ1yG3mn5LTTnmEVBbrzoAjA30fOKLku/JV0EXn+Q5DFdkBG3LIYQh1IF9GDmiLUQvgm8YR+HiTiqZguCEztDeGndO3wKnw5uHUYzstgg8mHkJxVVr+bfQGs7c7iHOfEO2ZSCtCHhBonX8nn1Xhtyn6AEgLKax4ts7BSlO5hxaR5NNCU/3djJI5QAxMYTZUgNRIzwPWi+AjEWSpP03ySscOJtNFTsYEWqfRENc3KJXvxgGkeuWxxyf/cNKuZZptLUV8CwSJD1B3/cNBOplZRjGvxHdNsSXxoNXYlQm+vP/wWsxtutPREdEX6RMSWFmEUhCAwo9OTpYsIs6w==; Domain=.chimpstatic.com; Path=/; Expires=Fri, 26 May 2023 17:37:02 GMT; Max-Age=7199; SameSite=None; Secure; HttpOnly
jojoexports.com/wp-content/cache/min/1/wp-content/themes/ohio/assets/css/woocommerce.css?ver=1681805236
166.62.30.154200 OK 8.2 kB URL GET HTTP/2 jojoexports.com/wp-content/cache/min/1/wp-content/themes/ohio/assets/css/woocommerce.css?ver=1681805236
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type Unicode text, UTF-8 text, with very long lines (55760), with no line terminators
Hash e29b2fac216d422a3f37959a26d31ea9
9114272c603b8f39b62bb75e126fdae12051e8dc
f38ecd95de87c250ea1c18a3cfeadc2d442959aa91d71d1d6c4c7a9efecd9d3d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/ohio/assets/css/woocommerce.css?ver=1681805236 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 08:07:16 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 8157
content-type: text/css; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/cache/min/1/wp-content/themes/ohio/assets/fonts/fa/css/fontawesome.min.css?ver=1681805236
166.62.30.154200 OK 13 kB URL GET HTTP/2 jojoexports.com/wp-content/cache/min/1/wp-content/themes/ohio/assets/fonts/fa/css/fontawesome.min.css?ver=1681805236
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (59288)
Hash c90c3158deef59121cbc0123ea275194
28e25d0f2729f46d1812b4fd12ea9ead176d5c1d
1801b7d9f6fb7d0f87b678bcea390ccf0fe777a29c58de353b32e5a37e314e4b
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/ohio/assets/fonts/fa/css/fontawesome.min.css?ver=1681805236 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 08:07:16 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 12657
content-type: text/css; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/js/index.js?ver=1681805237
166.62.30.154200 OK 4.2 kB URL GET HTTP/2 jojoexports.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/js/index.js?ver=1681805237
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type HTML document, ASCII text, with very long lines (12942), with no line terminators
Hash cc5e69ac94305dc03d3aa9ec854e388b
3aa97238527b7ff6d2df1990dfead7acc888b815
4af9dac8fb9b63a0212749b1d6a4466fab62ba560c630c71b378c1fcde550797
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/js/index.js?ver=1681805237 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 08:07:17 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 4181
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/plugins/slider-revolution/public/assets/assets/dummy.png
166.62.30.154200 OK 68 B URL GET HTTP/2 jojoexports.com/wp-content/plugins/slider-revolution/public/assets/assets/dummy.png
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 2a637d3d825673c0e3462fa4ed9a1c5c
81668d396da22832d75a986407ff10035e0d5899
69539b5b3777cffda28a66d7f2aa9b17c91ee1ec8fd50c00c442af91753a60f7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/slider-revolution/public/assets/assets/dummy.png HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 29 Jan 2023 05:52:29 GMT
accept-ranges: bytes
content-length: 68
cache-control: max-age=10368000, public
expires: Sat, 23 Sep 2023 15:37:02 GMT
content-type: image/png
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/plugins/chaty/js/cht-front-script.min.js?ver=3.0.71614316755
166.62.30.154200 OK 16 kB URL GET HTTP/2 jojoexports.com/wp-content/plugins/chaty/js/cht-front-script.min.js?ver=3.0.71614316755
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (63425), with no line terminators
Hash 3d4ce93e0aab33efdf17bc32a1a58c72
55d3b94ec680eadbe758a784692e5e4aafa51f12
59ac99f4385062e76d163c6ffdc91672294c23fa003263d1eacc21d50364337c
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/chaty/js/cht-front-script.min.js?ver=3.0.71614316755 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 25 Apr 2023 11:25:26 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 15725
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js
166.62.30.154200 OK 2.9 kB URL GET HTTP/2 jojoexports.com/wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (8290)
Hash b00219cb958052cb557115d55f0c8d48
3c55bbf5a8082db61decff924aaf787f4337df86
8ceb3992861ed1fda25855c2e500e76842ae0d788405e50e3a9f45df36499cf6
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sat, 08 Oct 2022 04:12:26 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 2888
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=1681805237
166.62.30.154200 OK 3.0 kB URL GET HTTP/2 jojoexports.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=1681805237
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (10240), with no line terminators
Hash f4f8ed7b5ad0284afe6a09ccda09f164
3b217ebfd92d57bbe4e3486c75e23d30fa09141d
d804ea56219fb201a483d39fb46878e9dd724b72230a8b977ab1f16f896c370c
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=1681805237 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 08:07:17 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 3009
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/themes/ohio/assets/js/main.min.js?ver=3.1.9
166.62.30.154200 OK 17 kB URL GET HTTP/2 jojoexports.com/wp-content/themes/ohio/assets/js/main.min.js?ver=3.1.9
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (64693), with no line terminators
Hash 7d2c9297450fb1116434784b0cea7f7f
30509ddc968c3fbe987d801209573f2aea928c5d
e77793f7d7be99b487f80d67164fb65ec8f5e0a556499aee95a23f5695b3e507
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/ohio/assets/js/main.min.js?ver=3.1.9 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 29 Jan 2023 05:50:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 16716
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/themes/ohio/assets/js/libs/aos.min.js?ver=6.2
166.62.30.154200 OK 4.3 kB URL GET HTTP/2 jojoexports.com/wp-content/themes/ohio/assets/js/libs/aos.min.js?ver=6.2
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (12537), with no line terminators
Hash 8e1c6f0096df7ea6c5772ec52a8386f3
6796dcc0b2053b28eefef0e4fe6bcdea2936e0e6
4de2703401654674d8a189d8cc67e29bd31753d8df845fa1326408ca3669b1e2
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/ohio/assets/js/libs/aos.min.js?ver=6.2 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 29 Jan 2023 05:50:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 4329
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/themes/ohio/assets/js/woocommerce.min.js?ver=6.2
166.62.30.154200 OK 4.2 kB URL GET HTTP/2 jojoexports.com/wp-content/themes/ohio/assets/js/woocommerce.min.js?ver=6.2
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (13902), with no line terminators
Hash 20a1c7c04aed4eb2c65f7b088349a22d
b26483cfbdf5b3242f6c89195bde2f8fd5124fed
370eb86c48c6455f031e4b4c1d8a6a81bb40af4261f7f15196030adaa7993eec
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/ohio/assets/js/woocommerce.min.js?ver=6.2 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 29 Jan 2023 05:50:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 4177
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/cache/min/1/wp-content/themes/ohio/assets/fonts/ionicons/css/ionicons.min.css?ver=1681805236
166.62.30.154200 OK 8.1 kB URL GET HTTP/2 jojoexports.com/wp-content/cache/min/1/wp-content/themes/ohio/assets/fonts/ionicons/css/ionicons.min.css?ver=1681805236
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type Unicode text, UTF-8 text, with very long lines (46633)
Hash e9bbbac3050aa5b2e9e5bc2bb07e502a
16748a5815cae3d42f6b1f434226f387093097d0
922ad3156896cba80fc497adba1080ce8ca3d9e3e8a8cbd7a0ce991c63851684
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/ohio/assets/fonts/ionicons/css/ionicons.min.css?ver=1681805236 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 08:07:16 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 8086
content-type: text/css; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/cache/min/1/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=1681805237
166.62.30.154200 OK 333 B URL GET HTTP/2 jojoexports.com/wp-content/cache/min/1/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=1681805237
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (548)
Hash 74672ecfb2da58426188b6f7ad029175
ad70ae7f5c30434373091da822caaaf0a5755c44
b298d0227c0bab2e2cabccb8a94aa183e96896bca4e9651edcf7f89e7cf801f5
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=1681805237 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 08:07:17 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 333
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0
166.62.30.154200 OK 4.8 kB URL GET HTTP/2 jojoexports.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (13326)
Hash 5cfa2b481de6e87c2190a0e3538515d8
0fccf3c8ab2c10b4dcc7970e64ce997ab1622f68
9810aee7e6d57d8cceaa96322b88e6df46710194689ae12b284149148cabc2f3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Mon, 06 Feb 2023 20:59:15 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 4795
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
166.62.30.154200 OK 1.8 kB URL GET HTTP/2 jojoexports.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (5477)
Hash 3a56752b736635bf69cb069b8818cbfd
42e0951fe74bb3f56a30f51291823bcd4a84d76e
ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sat, 13 Jun 2020 18:53:27 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 1834
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-includes/js/underscore.min.js?ver=1.13.4
166.62.30.154200 OK 7.3 kB URL GET HTTP/2 jojoexports.com/wp-includes/js/underscore.min.js?ver=1.13.4
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (18798)
Hash f88d5720bb454ed5d204cbdb56901f6b
f1952292fde4b15936e9aac16b2b9896684db95b
726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 27 Sep 2022 15:18:25 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 7311
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
166.62.30.154200 OK 716 B URL GET HTTP/2 jojoexports.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (1626)
Hash cd0eb3406096ff80266e7c9d7d419186
0e3709691bf96233766de30e2fd473b84166c5b6
c2e606e1fc82ea3a554aad5d0520e25d2677b89a891dc5c49e7ace08fce92e25
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 18 Aug 2016 18:55:30 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 716
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.6.0
166.62.30.154200 OK 1.3 kB URL GET HTTP/2 jojoexports.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.6.0
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type HTML document, ASCII text, with very long lines (3348), with no line terminators
Hash e09d0a7957add97c513826830e6403b4
3117426317e6869cd8b0d4da05dfd0a6dea1e8a4
ef9bed3d9990450b643ec6710ede27b28f7411250c06132dc1afb0a7aae0c0aa
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.6.0 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 07:33:39 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 1273
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.6.0
166.62.30.154200 OK 3.5 kB URL GET HTTP/2 jojoexports.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.6.0
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (9111)
Hash 4ffc462852340d9e6b5b7b29276fcb71
5e04050e09e3f7d8107ef3b9aa9313be618c460e
18336635cd5e9edf2aff3ae18b67250684311c2a459457091b063dafba57d526
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.6.0 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 07:33:39 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 3496
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/themes/ohio/assets/js/libs/jquery.mega-menu.min.js?ver=6.2
166.62.30.154200 OK 3.9 kB URL GET HTTP/2 jojoexports.com/wp-content/themes/ohio/assets/js/libs/jquery.mega-menu.min.js?ver=6.2
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (15661)
Hash 54035449c1047cb298f2752fdabd6188
dbbc2b7e226283879f21bea2aa02ee863a088505
7231d369ec4fb686f81629517a3866aa3f1fda1e121bc2038c2687f0a82f2959
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/ohio/assets/js/libs/jquery.mega-menu.min.js?ver=6.2 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 29 Jan 2023 05:50:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 3854
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/cache/min/1/wp-content/plugins/slider-revolution/public/assets/css/rs6.css?ver=1681805237
166.62.30.154200 OK 9.6 kB URL GET HTTP/2 jojoexports.com/wp-content/cache/min/1/wp-content/plugins/slider-revolution/public/assets/css/rs6.css?ver=1681805237
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (50630), with no line terminators
Hash cd728ac9da359c02196a6ec2c100a035
6f0811b83205d6f7eef29f4a67664a084ca8b6ed
69473a610e33cb59f85278332c682fb3449e48b3215ada3c9d7464d2ce7b7f6a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/slider-revolution/public/assets/css/rs6.css?ver=1681805237 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 08:07:17 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 9569
content-type: text/css; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-includes/js/masonry.min.js?ver=4.2.2
166.62.30.154200 OK 7.4 kB URL GET HTTP/2 jojoexports.com/wp-includes/js/masonry.min.js?ver=4.2.2
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (23966)
Hash 3b3fc826e58fc554108e4a651c9c7848
76778fd446e2ff2377588a7b4ac4d79f258427c9
e00add38134eac2fb8e8e9c09cbfff7bbe57952b210322eb2eecb0a21fc055eb
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sat, 13 Jun 2020 18:53:27 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 7382
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.3
166.62.30.154200 OK 31 kB URL GET HTTP/2 jojoexports.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.3
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (65447)
Hash 0e850a69bc7fd0acc2e92ce6eee87959
8be6d9e7f7a61ccf0b8eac8a8144d770b608a19c
afacce23cb4feaaaef37997f8439819d8f827df4951f3ff02704c9f16fb7f53a
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.3 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 08 Mar 2023 18:37:33 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 31049
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.6.0
166.62.30.154200 OK 982 B URL GET HTTP/2 jojoexports.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.6.0
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (1668)
Hash d0a6d8547c66b0d7b0172466558d1208
ff93916519c7b9483251f609e4d29f38c30a66e3
3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.6.0 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 07:33:35 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 982
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-includes/js/wp-util.min.js?ver=6.2
166.62.30.154200 OK 756 B URL GET HTTP/2 jojoexports.com/wp-includes/js/wp-util.min.js?ver=6.2
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (1391)
Hash 19d386c9004e54941c1cc61d357efa5d
0a77594006c8d86fdcc0adbc2b9aecaef3869586
3bc6467a95cec8fa516c6f5f69e1301e37e16f9bb1046fe7756729249f901b95
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/wp-util.min.js?ver=6.2 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 20 Sep 2022 03:52:10 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 756
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/themes/ohio/assets/js/jquery.clb-slider.min.js?ver=6.2
166.62.30.154200 OK 3.8 kB URL GET HTTP/2 jojoexports.com/wp-content/themes/ohio/assets/js/jquery.clb-slider.min.js?ver=6.2
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (13976), with no line terminators
Hash 64812d183bcc674561c6cdcbe69e9587
c3524121a2fd389bec41e09645c876a5e337ff57
9eb15da6ca1277a57fac1f6d2f7f0b07c9bd28207a448e8beec848ba128539d5
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/ohio/assets/js/jquery.clb-slider.min.js?ver=6.2 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 29 Jan 2023 05:50:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 3794
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.6.0
166.62.30.154200 OK 794 B URL GET HTTP/2 jojoexports.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.6.0
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (2139), with no line terminators
Hash b72c1cbb1530a011a27bd9800f26765a
27b825c5d8255f33b8427a059d4545ebd65e1746
a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.6.0 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 07:33:39 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 794
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/themes/ohio/assets/js/libs/jquery.tilt.min.js?ver=6.2
166.62.30.154200 OK 1.7 kB URL GET HTTP/2 jojoexports.com/wp-content/themes/ohio/assets/js/libs/jquery.tilt.min.js?ver=6.2
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (5330), with no line terminators
Hash 0096480f196e6114b54aa5caa6f71c21
05af1a1d424d46c2a04c1332d1ea858c919cc66b
a46b17dc844e94dd3cbbf119636beeae4ad675ce6d67469e6dbb011ec156647a
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/ohio/assets/js/libs/jquery.tilt.min.js?ver=6.2 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 29 Jan 2023 05:50:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 1698
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.6.0
166.62.30.154200 OK 1.2 kB URL GET HTTP/2 jojoexports.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.6.0
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (3286), with no line terminators
Hash 10d8361765efe3b24c83f4a33485881b
7fae319ccbaf80d67a3c733dcab9af1e0186d2db
2d115c5658b92a6e72d1b0f56b9ffa678ab3746f7ff5646b047110fe3b3bed96
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.6.0 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 07:33:39 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 1242
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.10.0
166.62.30.154200 OK 5.6 kB URL GET HTTP/2 jojoexports.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.10.0
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (19831)
Hash a716e9e20bcb3c3c4acd44f5bdb0dac8
11c54795a8af9793bbf1ef1861e48d283538a205
bf817ee4b2d4e9d98e05e1382d295f8f10fef43770cd4e291d924a5d0afc8cc2
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.10.0 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 24 Nov 2022 08:32:12 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 5640
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/cache/min/1/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=1681805236
166.62.30.154200 OK 44 kB URL GET HTTP/2 jojoexports.com/wp-content/cache/min/1/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=1681805236
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (65359)
Hash 6be56b569acb7c3e0927b907cab39eff
a5031b9e8275489b01202fadff10d4dcd5ba8bf1
a6dd6cdfc02da39b902fdfdf863b4afa001f1d3d8e9014379aa90d4e9a7498f2
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=1681805236 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 08:07:16 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 44283
content-type: text/css; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
166.62.30.154200 OK 2.5 kB URL GET HTTP/2 jojoexports.com/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (8171), with no line terminators
Hash dda652db133fddb9b80a05c6d1b5c540
60c8514c57a5db2980c4b046b0dd479bd427357b
c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 18 Jan 2023 11:16:33 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 2484
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/plugins/js_composer/assets/lib/bower/skrollr/dist/skrollr.min.js?ver=6.10.0
166.62.30.154200 OK 5.7 kB URL GET HTTP/2 jojoexports.com/wp-content/plugins/js_composer/assets/lib/bower/skrollr/dist/skrollr.min.js?ver=6.10.0
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (12478)
Hash c5435148b11560c8fca9c2f32fb51da8
0925e819e0952b9e47826ee794b2657382cd0242
07edd93ddd16d77b8a64d17ea9e24c6fe7ca547fa7843363289da278bfc99809
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/lib/bower/skrollr/dist/skrollr.min.js?ver=6.10.0 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 24 Nov 2022 08:32:18 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 5725
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
166.62.30.154200 OK 6.5 kB URL GET HTTP/2 jojoexports.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash e495a4709e3eae31c67f8263f25d2d39
d43ba6a092e4823a71f3bff75d5ed279a481636b
1c1fef6e6b4f9832603850b9b6562e74d9a6a3700ba836efe88facc577121e8b
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 20 Sep 2022 15:43:29 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 6532
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11
166.62.30.154200 OK 2.5 kB URL GET HTTP/2 jojoexports.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (6607), with no line terminators
Hash 9a4f28a615173df36cb84be2b345816e
f709263841708d9e40268f24a0072ff4fe811b35
6974bfd8fa06b7831f05cb4b25860c851a5ad3f02a6699ebe688987dd7a6ebe6
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 07 Feb 2023 15:56:37 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 2499
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=7.6.0
166.62.30.154200 OK 3.8 kB URL GET HTTP/2 jojoexports.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=7.6.0
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (14202), with no line terminators
Hash 1124c89c0e2911b2d582640d46fea34f
f5288a20032ea55e9d15bcb5da925269c6b72595
ca1c153c22b979e6f915b0e2ac7d6070a6f3e74bb822cbe93632b90a0507c7ff
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=7.6.0 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 07:33:39 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 3840
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/plugins/wp-job-openings/assets/js/script.min.js?ver=3.3.3
166.62.30.154200 OK 15 kB URL GET HTTP/2 jojoexports.com/wp-content/plugins/wp-job-openings/assets/js/script.min.js?ver=3.3.3
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (48811), with no line terminators
Hash 48ea82dc63a71049666f1913ba33d87a
c0ae735cfd9cb882e8b8c3bb3fd5981c0afe1c66
7330d7da68ac64bdbe4f341176ea7f6a78826ba6681b34ad29d72be3c8d0cd59
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/wp-job-openings/assets/js/script.min.js?ver=3.3.3 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 11 Nov 2022 17:53:48 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-length: 15214
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-B081B05K2Y>m=45je35o0&_p=950276311&_gaz=1&cid=1206163066.1685115423&ul=en-us&sr=1280x1024&_s=1&sid=1685115422&sct=1&seg=0&dl=https%3A%2F%2Fjojoexports.com%2F&dt=Blanket%20Manufacturer%20Company%20in%20India%20%7C%20Jagdambe%20Textile%20Mills%20%7C%20JTM&en=page_view&_fv=2&_nsi=1&_ss=2&_c=1&_ee=1
216.239.34.36204 No Content 0 B URL POST HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-B081B05K2Y>m=45je35o0&_p=950276311&_gaz=1&cid=1206163066.1685115423&ul=en-us&sr=1280x1024&_s=1&sid=1685115422&sct=1&seg=0&dl=https%3A%2F%2Fjojoexports.com%2F&dt=Blanket%20Manufacturer%20Company%20in%20India%20%7C%20Jagdambe%20Textile%20Mills%20%7C%20JTM&en=page_view&_fv=2&_nsi=1&_ss=2&_c=1&_ee=1
IP 216.239.34.36:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint55:51:32:58:36:72:A1:C8:50:5E:5A:8D:CE:A5:2F:DC:D7:1E:62:03
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-B081B05K2Y>m=45je35o0&_p=950276311&_gaz=1&cid=1206163066.1685115423&ul=en-us&sr=1280x1024&_s=1&sid=1685115422&sct=1&seg=0&dl=https%3A%2F%2Fjojoexports.com%2F&dt=Blanket%20Manufacturer%20Company%20in%20India%20%7C%20Jagdambe%20Textile%20Mills%20%7C%20JTM&en=page_view&_fv=2&_nsi=1&_ss=2&_c=1&_ee=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jojoexports.com
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://jojoexports.com
date: Fri, 26 May 2023 15:37:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash a5dc40788a7f03b449952c9e029f8099
74a40e0eabcecb7b84aac44e760b89c268886e4f
598e0b0f420de344bed7201b5eb3d74e45f118a165922a754c3b74aa6d659e19
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:37:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.analytics.google.com/g/collect?v=2&tid=G-B081B05K2Y>m=45je35o0&_p=950276311&cid=1206163066.1685115423&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1685115422&sct=1&seg=0&dl=https%3A%2F%2Fjojoexports.com%2F&dt=Blanket%20Manufacturer%20Company%20in%20India%20%7C%20Jagdambe%20Textile%20Mills%20%7C%20JTM&en=scroll&_c=1&epn.percent_scrolled=90
216.239.34.36204 No Content 0 B URL POST HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-B081B05K2Y>m=45je35o0&_p=950276311&cid=1206163066.1685115423&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1685115422&sct=1&seg=0&dl=https%3A%2F%2Fjojoexports.com%2F&dt=Blanket%20Manufacturer%20Company%20in%20India%20%7C%20Jagdambe%20Textile%20Mills%20%7C%20JTM&en=scroll&_c=1&epn.percent_scrolled=90
IP 216.239.34.36:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint55:51:32:58:36:72:A1:C8:50:5E:5A:8D:CE:A5:2F:DC:D7:1E:62:03
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-B081B05K2Y>m=45je35o0&_p=950276311&cid=1206163066.1685115423&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1685115422&sct=1&seg=0&dl=https%3A%2F%2Fjojoexports.com%2F&dt=Blanket%20Manufacturer%20Company%20in%20India%20%7C%20Jagdambe%20Textile%20Mills%20%7C%20JTM&en=scroll&_c=1&epn.percent_scrolled=90 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jojoexports.com
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://jojoexports.com
date: Fri, 26 May 2023 15:37:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash a5dc40788a7f03b449952c9e029f8099
74a40e0eabcecb7b84aac44e760b89c268886e4f
598e0b0f420de344bed7201b5eb3d74e45f118a165922a754c3b74aa6d659e19
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:37:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-B081B05K2Y
142.250.74.72200 OK 80 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-B081B05K2Y
IP 142.250.74.72:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint55:51:32:58:36:72:A1:C8:50:5E:5A:8D:CE:A5:2F:DC:D7:1E:62:03
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type ASCII text, with very long lines (3288)
Hash f19f097c0daaa7bf453e57c785cd8e84
c27b6c8c22b5c114a0c9e91b3c7eff55b819702d
ac9a87a663640026042d89fbcfdfd2c20682eb6352282d715fd9f0d4b9680887
GET /gtag/js?id=G-B081B05K2Y HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 May 2023 15:37:03 GMT
expires: Fri, 26 May 2023 15:37:03 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80186
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash fc757271ec057273ef886c129a7bffd0
2e6c8df3cbe82d4dde32cdf7f71a6668dd536287
72cd2bbd96698941fa58cb6a7dfa4340187c0eb2499bd5a0e6cf4d7240c3a225
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:37:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash fc757271ec057273ef886c129a7bffd0
2e6c8df3cbe82d4dde32cdf7f71a6668dd536287
72cd2bbd96698941fa58cb6a7dfa4340187c0eb2499bd5a0e6cf4d7240c3a225
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:37:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/josefinsans/v26/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2
216.58.207.227200 OK 29 kB URL GET HTTP/2 fonts.gstatic.com/s/josefinsans/v26/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 28600, version 1.0\012- data
Hash de104ab8acb1088aebea1aae24724a91
b613f95c303c539ef3fe4fe65db0fbc5e5a55fe1
c94f080a550a1f2d4fe07d371969b7a40c01606bd5624e8c03c976cbf5e06058
GET /s/josefinsans/v26/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jojoexports.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 18:15:15 GMT
expires: Wed, 22 May 2024 18:15:15 GMT
cache-control: public, max-age=31536000
age: 249708
last-modified: Tue, 02 May 2023 14:59:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jojoexports.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 07:44:41 GMT
expires: Sun, 19 May 2024 07:44:41 GMT
cache-control: public, max-age=31536000
age: 546742
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3397.3249823246897!2d74.95097011448576!3d31.62495124913616!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x39197d450a5a65b5%3A0x208e673d8e0d38db!2sBlanket%20Manufacturer%20in%20India%20%7C%20Jojo%20Exports%20%7C%20JTM!5e0!3m2!1sen!2sin!4v1600156484941!5m2!1sen!2sin
142.250.74.132200 OK 1.6 kB URL GET HTTP/3 www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3397.3249823246897!2d74.95097011448576!3d31.62495124913616!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x39197d450a5a65b5%3A0x208e673d8e0d38db!2sBlanket%20Manufacturer%20in%20India%20%7C%20Jojo%20Exports%20%7C%20JTM!5e0!3m2!1sen!2sin!4v1600156484941!5m2!1sen!2sin
IP 142.250.74.132:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3311)
Hash cd72d7f7d277d64396434c6da86e36aa
b05d4fee023a557b18b5860df1fe7b9c42ba6709
4c682945b7268d18d6f635aa97b42cbe1359dce808d6e2bd3e3ffa4a6bd746f1
GET /maps/embed?pb=!1m18!1m12!1m3!1d3397.3249823246897!2d74.95097011448576!3d31.62495124913616!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x39197d450a5a65b5%3A0x208e673d8e0d38db!2sBlanket%20Manufacturer%20in%20India%20%7C%20Jojo%20Exports%20%7C%20JTM!5e0!3m2!1sen!2sin!4v1600156484941!5m2!1sen!2sin HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-e4nbINKDbmLn7EXs_XJJ1A' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 26 May 2023 15:37:03 GMT
server: scaffolding on HTTPServer2
content-length: 1612
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash fc757271ec057273ef886c129a7bffd0
2e6c8df3cbe82d4dde32cdf7f71a6668dd536287
72cd2bbd96698941fa58cb6a7dfa4340187c0eb2499bd5a0e6cf4d7240c3a225
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:37:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jojoexports.com/wp-content/themes/ohio/assets/fonts/fa/webfonts/fa-brands-400.woff2
166.62.30.154200 OK 77 kB URL GET HTTP/2 jojoexports.com/wp-content/themes/ohio/assets/fonts/fa/webfonts/fa-brands-400.woff2
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type Web Open Font Format (Version 2), TrueType, length 77400, version 331.17301\012- data
Hash cac68c831145804808381a7032fdc7c2
62584b9868428fd75af3fc5ee2f9918dda428be5
1c87d2b26de7d55c66037916bbb4cba6c791da0e2adfa378332678ff13e12d9d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/ohio/assets/fonts/fa/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/wp-content/cache/min/1/wp-content/themes/ohio/assets/fonts/fa/css/fontawesome.min.css?ver=1681805236
Cookie: _gcl_au=1.1.60656620.1685115423; _ga_B081B05K2Y=GS1.1.1685115422.1.0.1685115422.60.0.0; _ga=GA1.1.1206163066.1685115423
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 05:50:16 GMT
accept-ranges: bytes
content-length: 77400
cache-control: max-age=10368000
expires: Sat, 23 Sep 2023 15:37:03 GMT
vary: Accept-Encoding
content-type: font/woff2
date: Fri, 26 May 2023 15:37:03 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jojoexports.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 07:44:41 GMT
expires: Sun, 19 May 2024 07:44:41 GMT
cache-control: public, max-age=31536000
age: 546743
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jojoexports.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 03:11:48 GMT
expires: Sun, 19 May 2024 03:11:48 GMT
cache-control: public, max-age=31536000
age: 563116
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jojoexports.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 21:39:40 GMT
expires: Wed, 22 May 2024 21:39:40 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 237444
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL GET HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jojoexports.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 00:25:28 GMT
expires: Thu, 23 May 2024 00:25:28 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
age: 227496
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash 13b26f5afbecdd78566b3b54ab77caed
6b16c5910ad9ea57236d6954290be6fce8f62c6b
9fd32213a6b40b68ac06d5d6bf9c6ab0793f7f0464407b348c6e290f91870a90
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:37:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en®ion=in&callback=onApiLoad
142.250.74.106200 OK 67 kB URL GET HTTP/3 maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en®ion=in&callback=onApiLoad
IP 142.250.74.106:443
Requested by https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3397.3249823246897!2d74.95097011448576!3d31.62495124913616!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x39197d450a5a65b5%3A0x208e673d8e0d38db!2sBlanket%20Manufacturer%20in%20India%20%7C%20Jojo%20Exports%20%7C%20JTM!5e0!3m2!1sen!2sin!4v1600156484941!5m2!1sen!2sin
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (2553)
Hash 83bfb8a731e062985e2a79d8ccb7a9fa
3b74506d8cde7fb4e1e22552cc3b2035960a39a9
44bf08ef92895d6cc5b0bb7f39fd7584aecfcefeb09365f54efeb79ff4624ddf
GET /maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en®ion=in&callback=onApiLoad HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
cache-control: public, max-age=1800
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 26 May 2023 15:37:04 GMT
server: scaffolding on HTTPServer2
content-length: 66889
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash 13b26f5afbecdd78566b3b54ab77caed
6b16c5910ad9ea57236d6954290be6fce8f62c6b
9fd32213a6b40b68ac06d5d6bf9c6ab0793f7f0464407b348c6e290f91870a90
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:37:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
142.250.74.106200 OK 23 B URL GET HTTP/3 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 142.250.74.106:443
Requested by https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3397.3249823246897!2d74.95097011448576!3d31.62495124913616!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x39197d450a5a65b5%3A0x208e673d8e0d38db!2sBlanket%20Manufacturer%20in%20India%20%7C%20Jojo%20Exports%20%7C%20JTM!5e0!3m2!1sen!2sin!4v1600156484941!5m2!1sen!2sin
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type JSON data\012- , ASCII text
Hash 8a80554c91d9fca8acb82f023de02f11
5f36b2ea290645ee34d943220a14b54ee5ea5be5
ca3d163bab055381827226140568f3bef7eaac187cebd76878e0b63e9e442356
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 26 May 2023 15:37:04 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.google.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
region1.analytics.google.com/g/collect?v=2&tid=G-B081B05K2Y>m=45je35o0&_p=950276311&cid=1206163066.1685115423&ul=en-us&sr=1280x1024&_eu=AAAC&_s=3&sid=1685115422&sct=1&seg=1&dl=https%3A%2F%2Fjojoexports.com%2F&dt=Blanket%20Manufacturer%20Company%20in%20India%20%7C%20Jagdambe%20Textile%20Mills%20%7C%20JTM&en=page_view&_c=1&_ee=1
216.239.34.36204 No Content 0 B URL POST HTTP/3 region1.analytics.google.com/g/collect?v=2&tid=G-B081B05K2Y>m=45je35o0&_p=950276311&cid=1206163066.1685115423&ul=en-us&sr=1280x1024&_eu=AAAC&_s=3&sid=1685115422&sct=1&seg=1&dl=https%3A%2F%2Fjojoexports.com%2F&dt=Blanket%20Manufacturer%20Company%20in%20India%20%7C%20Jagdambe%20Textile%20Mills%20%7C%20JTM&en=page_view&_c=1&_ee=1
IP 216.239.34.36:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintEB:A2:AF:B3:20:F1:B1:77:23:0B:85:D2:B1:16:33:A7:97:49:EE:51
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-B081B05K2Y>m=45je35o0&_p=950276311&cid=1206163066.1685115423&ul=en-us&sr=1280x1024&_eu=AAAC&_s=3&sid=1685115422&sct=1&seg=1&dl=https%3A%2F%2Fjojoexports.com%2F&dt=Blanket%20Manufacturer%20Company%20in%20India%20%7C%20Jagdambe%20Textile%20Mills%20%7C%20JTM&en=page_view&_c=1&_ee=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jojoexports.com
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://jojoexports.com
date: Fri, 26 May 2023 15:37:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maps.gstatic.com/maps-api-v3/embed/js/53/4a/init_embed.js
142.250.74.3200 OK 61 kB URL GET HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/53/4a/init_embed.js
IP 142.250.74.3:443
Requested by https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3397.3249823246897!2d74.95097011448576!3d31.62495124913616!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x39197d450a5a65b5%3A0x208e673d8e0d38db!2sBlanket%20Manufacturer%20in%20India%20%7C%20Jojo%20Exports%20%7C%20JTM!5e0!3m2!1sen!2sin!4v1600156484941!5m2!1sen!2sin
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (2611)
Hash 0477c1d6fb2a6aa8e56f71116e55e317
81aef252ba7e2a9fa803cdda632f51b6f6ff3b19
f3d7c5dc0e14602ade7c32fc1f3fa71f05229118d144c6c77b64cd5d07ce316f
GET /maps-api-v3/embed/js/53/4a/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 60972
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 22:45:58 GMT
expires: Wed, 22 May 2024 22:45:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 May 2023 21:42:10 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 233466
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jojoexports.com/wp-content/themes/ohio/assets/fonts/ionicons/webfonts/ionicons.woff2?v=4.0.0
166.62.30.154200 OK 51 kB URL GET HTTP/2 jojoexports.com/wp-content/themes/ohio/assets/fonts/ionicons/webfonts/ionicons.woff2?v=4.0.0
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type Web Open Font Format (Version 2), TrueType, length 50580, version 1.0\012- data
Hash 4193a567490347f8f2161165036cdf65
c3fd000564b8b0341d1592d68b4299dcdc2c120a
488cfc0d0ea75a7d0ff8b701d9afb9caecfbbd2619c470c19076ab484a79aa2a
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/ohio/assets/fonts/ionicons/webfonts/ionicons.woff2?v=4.0.0 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/wp-content/cache/min/1/wp-content/themes/ohio/assets/fonts/ionicons/css/ionicons.min.css?ver=1681805236
Cookie: _gcl_au=1.1.60656620.1685115423; _ga_B081B05K2Y=GS1.1.1685115422.1.1.1685115423.59.0.0; _ga=GA1.1.1206163066.1685115423
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 05:50:19 GMT
accept-ranges: bytes
content-length: 50580
cache-control: max-age=10368000
expires: Sat, 23 Sep 2023 15:37:04 GMT
vary: Accept-Encoding
content-type: font/woff2
date: Fri, 26 May 2023 15:37:04 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/uploads/2022/12/Jojo-Premium-Quality-Blankets-min-1.webp
166.62.30.154200 OK 186 kB URL GET HTTP/2 jojoexports.com/wp-content/uploads/2022/12/Jojo-Premium-Quality-Blankets-min-1.webp
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 2560x1200, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 186 kB (186508 bytes)
Hash efde95f75e9a095101298efd073180a0
c27969f558c5116c531864e56a36f018a69682f1
d741c532b74f30569e3167a84b3c3c2e98ab8c3d229d172567c30e40ce8c062d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2022/12/Jojo-Premium-Quality-Blankets-min-1.webp HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Cookie: _gcl_au=1.1.60656620.1685115423; _ga_B081B05K2Y=GS1.1.1685115422.1.1.1685115423.59.0.0; _ga=GA1.1.1206163066.1685115423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 14:14:35 GMT
accept-ranges: bytes
content-length: 186508
cache-control: max-age=10368000
expires: Sat, 23 Sep 2023 15:37:04 GMT
content-type: image/webp
date: Fri, 26 May 2023 15:37:04 GMT
server: Apache
X-Firefox-Spdy: h2
maps.googleapis.com/maps-api-v3/api/js/53/4a/common.js
142.250.74.106200 OK 62 kB URL GET HTTP/3 maps.googleapis.com/maps-api-v3/api/js/53/4a/common.js
IP 142.250.74.106:443
Requested by https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3397.3249823246897!2d74.95097011448576!3d31.62495124913616!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x39197d450a5a65b5%3A0x208e673d8e0d38db!2sBlanket%20Manufacturer%20in%20India%20%7C%20Jojo%20Exports%20%7C%20JTM!5e0!3m2!1sen!2sin!4v1600156484941!5m2!1sen!2sin
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (581)
Hash b09a8ab5c7dafd8e773ca97d53d9df25
79070a46bcf07b0c568e7684e4eeeaa47b592167
74e19ada8ea88405e74c6fead009c59d74e57c0d3c5eeeb8e3e596081b96a224
GET /maps-api-v3/api/js/53/4a/common.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 61530
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 22:45:58 GMT
expires: Wed, 22 May 2024 22:45:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 May 2023 21:42:33 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 233466
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maps.googleapis.com/maps-api-v3/api/js/53/4a/map.js
142.250.74.106200 OK 24 kB URL GET HTTP/3 maps.googleapis.com/maps-api-v3/api/js/53/4a/map.js
IP 142.250.74.106:443
Requested by https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3397.3249823246897!2d74.95097011448576!3d31.62495124913616!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x39197d450a5a65b5%3A0x208e673d8e0d38db!2sBlanket%20Manufacturer%20in%20India%20%7C%20Jojo%20Exports%20%7C%20JTM!5e0!3m2!1sen!2sin!4v1600156484941!5m2!1sen!2sin
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (1666)
Hash 8f061792b3dc7b05736e9069e106786b
20383540cf0601478ac129f6ff231083de052f45
c661e7429ade3824cd763566850fb7653da153b0954193077ce66798499a2db2
GET /maps-api-v3/api/js/53/4a/map.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 23736
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 22:45:58 GMT
expires: Wed, 22 May 2024 22:45:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 May 2023 21:42:33 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 233466
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maps.googleapis.com/maps-api-v3/api/js/53/4a/util.js
142.250.74.106200 OK 52 kB URL GET HTTP/3 maps.googleapis.com/maps-api-v3/api/js/53/4a/util.js
IP 142.250.74.106:443
Requested by https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3397.3249823246897!2d74.95097011448576!3d31.62495124913616!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x39197d450a5a65b5%3A0x208e673d8e0d38db!2sBlanket%20Manufacturer%20in%20India%20%7C%20Jojo%20Exports%20%7C%20JTM!5e0!3m2!1sen!2sin!4v1600156484941!5m2!1sen!2sin
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (564)
Hash f8a9f4d12c02e4bec71bff879aa8e1b0
30397fd3d0745662737193df9b597ef1e682e86f
9ac9b56e350c6cec6bd73800bd07fdf4e46aa642511106914ab520a05bb0d68f
GET /maps-api-v3/api/js/53/4a/util.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 52070
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 22:45:58 GMT
expires: Wed, 22 May 2024 22:45:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 May 2023 21:42:33 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 233466
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maps.googleapis.com/maps-api-v3/api/js/53/4a/overlay.js
142.250.74.106200 OK 1.3 kB URL GET HTTP/3 maps.googleapis.com/maps-api-v3/api/js/53/4a/overlay.js
IP 142.250.74.106:443
Requested by https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3397.3249823246897!2d74.95097011448576!3d31.62495124913616!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x39197d450a5a65b5%3A0x208e673d8e0d38db!2sBlanket%20Manufacturer%20in%20India%20%7C%20Jojo%20Exports%20%7C%20JTM!5e0!3m2!1sen!2sin!4v1600156484941!5m2!1sen!2sin
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (1823)
Hash d88f924e04132fa328218e494f17b110
500ddb61c21aa07d326d19ebaf731b5476454074
8b70a95eab5f61e72e168b5b3abd17075a2a90c242f6ff1ebd303f535e47924a
GET /maps-api-v3/api/js/53/4a/overlay.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 1262
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 22:46:03 GMT
expires: Wed, 22 May 2024 22:46:03 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 May 2023 21:42:33 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 233461
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maps.googleapis.com/maps-api-v3/api/js/53/4a/onion.js
142.250.74.106200 OK 8.9 kB URL GET HTTP/3 maps.googleapis.com/maps-api-v3/api/js/53/4a/onion.js
IP 142.250.74.106:443
Requested by https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3397.3249823246897!2d74.95097011448576!3d31.62495124913616!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x39197d450a5a65b5%3A0x208e673d8e0d38db!2sBlanket%20Manufacturer%20in%20India%20%7C%20Jojo%20Exports%20%7C%20JTM!5e0!3m2!1sen!2sin!4v1600156484941!5m2!1sen!2sin
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (2845)
Hash 2d4debc9361d9d3c63198bfc0b59dca3
a72b207c946c35b380b6faacf378a157a65a7521
34818ab1c45ac09d9ad90ec5a6b71e1bd0aa86cc8a3bb84ac25fff92ec6fdecb
GET /maps-api-v3/api/js/53/4a/onion.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 8911
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 22:46:03 GMT
expires: Wed, 22 May 2024 22:46:03 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 May 2023 21:42:33 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 233461
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maps.googleapis.com/maps-api-v3/api/js/53/4a/search_impl.js
142.250.74.106200 OK 1.2 kB URL GET HTTP/3 maps.googleapis.com/maps-api-v3/api/js/53/4a/search_impl.js
IP 142.250.74.106:443
Requested by https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3397.3249823246897!2d74.95097011448576!3d31.62495124913616!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x39197d450a5a65b5%3A0x208e673d8e0d38db!2sBlanket%20Manufacturer%20in%20India%20%7C%20Jojo%20Exports%20%7C%20JTM!5e0!3m2!1sen!2sin!4v1600156484941!5m2!1sen!2sin
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (1086)
Hash 66e1b341cec04ca984df57aecc7ae718
1f2774f25d6fdaf6116ef7448d8d98ebdf614fc3
dc65c796289f31317994a3dc2a438bccaa0e04a5514b2972f4445454fc12cb2c
GET /maps-api-v3/api/js/53/4a/search_impl.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 1207
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 22:46:03 GMT
expires: Wed, 22 May 2024 22:46:03 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 May 2023 21:42:33 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 233461
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maps.googleapis.com/maps/api/js/StaticMapService.GetMapImage?1m2&1i11881418&2i6833459&2e1&3u16&4m2&1u520&2u450&5m6&1e0&5sen&6sin&10b1&12b1&14i1379903&client=google-maps-embed&token=99899
142.250.74.106200 OK 18 kB URL GET HTTP/3 maps.googleapis.com/maps/api/js/StaticMapService.GetMapImage?1m2&1i11881418&2i6833459&2e1&3u16&4m2&1u520&2u450&5m6&1e0&5sen&6sin&10b1&12b1&14i1379903&client=google-maps-embed&token=99899
IP 142.250.74.106:443
Requested by https://www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3397.3249823246897!2d74.95097011448576!3d31.62495124913616!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x39197d450a5a65b5%3A0x208e673d8e0d38db!2sBlanket%20Manufacturer%20in%20India%20%7C%20Jojo%20Exports%20%7C%20JTM!5e0!3m2!1sen!2sin!4v1600156484941!5m2!1sen!2sin
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type PNG image data, 520 x 450, 8-bit colormap, non-interlaced\012- data
Hash 08c622a4a1e2eebf6393a8dfcdb1a00c
a37b1f0d6f11ff8812f51fad7ab7c70d6363927d
9a0dc4e59f208f134700ae7d0af6be482edb7c87d9d747ff98531ec7d4343816
GET /maps/api/js/StaticMapService.GetMapImage?1m2&1i11881418&2i6833459&2e1&3u16&4m2&1u520&2u450&5m6&1e0&5sen&6sin&10b1&12b1&14i1379903&client=google-maps-embed&token=99899 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/png
date: Fri, 26 May 2023 15:37:04 GMT
expires: Sat, 27 May 2023 15:37:04 GMT
cache-control: public, max-age=86400
server: scaffolding on HTTPServer2
content-length: 18138
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=73
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
jojoexports.com/wp-content/uploads/2020/09/Jojo-Exports-JTM-Logo-Mob.png
166.62.30.154200 OK 3.8 kB URL GET HTTP/2 jojoexports.com/wp-content/uploads/2020/09/Jojo-Exports-JTM-Logo-Mob.png
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type PNG image data, 124 x 61, 8-bit/color RGBA, non-interlaced\012- data
Hash 2953b548d789aac4c6841638e3098e3d
a6e662d5425d238b5d8b8302a5d72c8b605f67af
6c92068dfab69bdb55112e5bfdec3187e97e86b1b5c1e143f2424a278bc8d4ad
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2020/09/Jojo-Exports-JTM-Logo-Mob.png HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Cookie: _gcl_au=1.1.60656620.1685115423; _ga_B081B05K2Y=GS1.1.1685115422.1.1.1685115423.59.0.0; _ga=GA1.1.1206163066.1685115423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 10 Sep 2020 12:03:41 GMT
accept-ranges: bytes
content-length: 3754
cache-control: max-age=10368000, public
expires: Sat, 23 Sep 2023 15:37:04 GMT
content-type: image/png
date: Fri, 26 May 2023 15:37:04 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/uploads/2020/09/Jojo-Exports-JTM-Logo-10.0-1.png
166.62.30.154200 OK 5.1 kB URL GET HTTP/2 jojoexports.com/wp-content/uploads/2020/09/Jojo-Exports-JTM-Logo-10.0-1.png
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type PNG image data, 245 x 80, 8-bit colormap, non-interlaced\012- data
Hash 3d6172ceb1e15be10aa8f2a9d6a351df
a133a2b5040667dc9b46980ca1bf2080643dcaf6
eb346f77d2c5f3b1e38275067301b2d1ef701b6b7b2f1f79a3fab5342a8aef41
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2020/09/Jojo-Exports-JTM-Logo-10.0-1.png HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Cookie: _gcl_au=1.1.60656620.1685115423; _ga_B081B05K2Y=GS1.1.1685115422.1.1.1685115423.59.0.0; _ga=GA1.1.1206163066.1685115423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 10 Sep 2020 12:35:10 GMT
accept-ranges: bytes
content-length: 5148
cache-control: max-age=10368000, public
expires: Sat, 23 Sep 2023 15:37:04 GMT
content-type: image/png
date: Fri, 26 May 2023 15:37:04 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/uploads/2021/01/Stiching.jpg
166.62.30.154200 OK 192 kB URL GET HTTP/2 jojoexports.com/wp-content/uploads/2021/01/Stiching.jpg
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2560x1706, components 3\012- data
Size 192 kB (192455 bytes)
Hash 8e83027ac16af6e3a44f960b15a73b00
426e6697771d3679bf0ed57fced3be4a735289ae
9ba974b3e3f478fb8a905e07e4c0d308868919b1e2bab30d70f884d9c9228b61
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/01/Stiching.jpg HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Cookie: _gcl_au=1.1.60656620.1685115423; _ga_B081B05K2Y=GS1.1.1685115422.1.1.1685115423.59.0.0; _ga=GA1.1.1206163066.1685115423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 17 Jan 2021 08:19:30 GMT
accept-ranges: bytes
content-length: 192455
cache-control: max-age=10368000, public
expires: Sat, 23 Sep 2023 15:37:04 GMT
content-type: image/jpeg
date: Fri, 26 May 2023 15:37:04 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/josefinsans/v26/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2
216.58.207.227200 OK 29 kB URL GET HTTP/2 fonts.gstatic.com/s/josefinsans/v26/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 28600, version 1.0\012- data
Hash de104ab8acb1088aebea1aae24724a91
b613f95c303c539ef3fe4fe65db0fbc5e5a55fe1
c94f080a550a1f2d4fe07d371969b7a40c01606bd5624e8c03c976cbf5e06058
GET /s/josefinsans/v26/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jojoexports.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 18:15:15 GMT
expires: Wed, 22 May 2024 18:15:15 GMT
cache-control: public, max-age=31536000
age: 249709
last-modified: Tue, 02 May 2023 14:59:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
jojoexports.com/wp-content/uploads/2022/12/JTM-Premium-Quality-Blanket-min.jpg
166.62.30.154200 OK 391 kB URL GET HTTP/2 jojoexports.com/wp-content/uploads/2022/12/JTM-Premium-Quality-Blanket-min.jpg
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2560x1200, components 3\012- data
Size 391 kB (390743 bytes)
Hash 2e2cfba971857b19b977bb7350ef2c50
5e330e2bc616ea32d3fe6a4b71785b8f2f00fe21
5f89f3db75fe71306667e504e42cf1eb7f19e5de6b218788ac7852f909e398e5
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2022/12/JTM-Premium-Quality-Blanket-min.jpg HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Cookie: _gcl_au=1.1.60656620.1685115423; _ga_B081B05K2Y=GS1.1.1685115422.1.1.1685115423.59.0.0; _ga=GA1.1.1206163066.1685115423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 29 Dec 2022 15:16:48 GMT
accept-ranges: bytes
content-length: 390743
cache-control: max-age=10368000, public
expires: Sat, 23 Sep 2023 15:37:04 GMT
content-type: image/jpeg
date: Fri, 26 May 2023 15:37:04 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/plugins/chaty/images/whatsapp.png
166.62.30.154200 OK 106 kB URL GET HTTP/2 jojoexports.com/wp-content/plugins/chaty/images/whatsapp.png
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type PNG image data, 550 x 999, 8-bit colormap, non-interlaced\012- data
Size 106 kB (105898 bytes)
Hash ac16b58dab286451f37dc9e0286ccbea
763cbea1c8a9a97f60fc8abecc8304d6e67aadc5
69c383a1cca56628ad0bc45c83a67112b0851d57a77c18252f79de50364af9d4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/chaty/images/whatsapp.png HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/wp-content/plugins/chaty/css/chaty-front.min.css?ver=3.0.71614316755
Cookie: _gcl_au=1.1.60656620.1685115423; _ga_B081B05K2Y=GS1.1.1685115422.1.1.1685115423.59.0.0; _ga=GA1.1.1206163066.1685115423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 25 Apr 2023 11:25:26 GMT
accept-ranges: bytes
content-length: 105898
cache-control: max-age=10368000, public
expires: Sat, 23 Sep 2023 15:37:04 GMT
content-type: image/png
date: Fri, 26 May 2023 15:37:04 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/uploads/2021/01/Woolen-Blanket-Covers-1536x614-1.jpg
166.62.30.154200 OK 125 kB URL GET HTTP/2 jojoexports.com/wp-content/uploads/2021/01/Woolen-Blanket-Covers-1536x614-1.jpg
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1536x614, components 3\012- data
Size 125 kB (125072 bytes)
Hash c945a488af9c9a6c76ff7b63fe30b601
ebf957753d92cb997fe1b83cda522e616ef28503
8fb0c3669706c2682eda88e2619e82a04c582353907ff9cd43e9e0616b18309f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/01/Woolen-Blanket-Covers-1536x614-1.jpg HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Cookie: _gcl_au=1.1.60656620.1685115423; _ga_B081B05K2Y=GS1.1.1685115422.1.1.1685115423.59.0.0; _ga=GA1.1.1206163066.1685115423; chatyWidget_0=[{"k":"v-widget","v":"2023-05-26T15:37:03.951Z"}]; activechatyWidgets=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 14 Jan 2021 05:00:33 GMT
accept-ranges: bytes
content-length: 125072
cache-control: max-age=10368000, public
expires: Sat, 23 Sep 2023 15:37:04 GMT
content-type: image/jpeg
date: Fri, 26 May 2023 15:37:04 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/uploads/2021/01/Fire-Blanket-1536x614-1.jpg
166.62.30.154200 OK 113 kB URL GET HTTP/2 jojoexports.com/wp-content/uploads/2021/01/Fire-Blanket-1536x614-1.jpg
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1536x614, components 3\012- data
Size 113 kB (113231 bytes)
Hash db52d90b34bb0e15c0a6f9baa468864a
6a8de34cbeca87c93bebda7bf33347af553012a9
f899b1e37837073a2a2606d1c5b7291ebb959bafbbaffa543959c2667f274677
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/01/Fire-Blanket-1536x614-1.jpg HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Cookie: _gcl_au=1.1.60656620.1685115423; _ga_B081B05K2Y=GS1.1.1685115422.1.1.1685115423.59.0.0; _ga=GA1.1.1206163066.1685115423; chatyWidget_0=[{"k":"v-widget","v":"2023-05-26T15:37:03.951Z"}]; activechatyWidgets=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 14 Jan 2021 04:56:21 GMT
accept-ranges: bytes
content-length: 113231
cache-control: max-age=10368000, public
expires: Sat, 23 Sep 2023 15:37:04 GMT
content-type: image/jpeg
date: Fri, 26 May 2023 15:37:04 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-json/contact-form-7/v1/contact-forms/34/feedback/schema
166.62.30.154200 OK 169 B URL GET HTTP/2 jojoexports.com/wp-json/contact-form-7/v1/contact-forms/34/feedback/schema
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 5372ff390c965695ed4c0e9a0d78b745
fd8be3e60d934fe60f3713be141a7d3599f4671f
ce2083549997a501ab0cf5b88d498cb51ada351ea9b8a8a71075949af3a08b07
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-json/contact-form-7/v1/contact-forms/34/feedback/schema HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jojoexports.com/
DNT: 1
Connection: keep-alive
Cookie: _gcl_au=1.1.60656620.1685115423; _ga_B081B05K2Y=GS1.1.1685115422.1.1.1685115423.59.0.0; _ga=GA1.1.1206163066.1685115423
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/8.1.17
x-robots-tag: noindex
link: <https://jojoexports.com/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
allow: GET
vary: Origin,Accept-Encoding
cache-control: max-age=0
expires: Fri, 26 May 2023 15:37:04 GMT
content-encoding: gzip
content-length: 169
content-type: application/json; charset=UTF-8
date: Fri, 26 May 2023 15:37:04 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/?wc-ajax=get_refreshed_fragments
166.62.30.154200 OK 302 B URL POST HTTP/2 jojoexports.com/?wc-ajax=get_refreshed_fragments
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type JSON data\012- , ASCII text, with very long lines (527), with no line terminators
Hash 282655d24023583670faacec1ebc3a2c
1270c909bec32e75421735871fb73189b1ee5fb6
365c3eb3d61eed94eccff50367a9cc4269c3fefb420df988122a4052a67a039f
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jojoexports.com/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 18
Origin: https://jojoexports.com
DNT: 1
Connection: keep-alive
Cookie: _gcl_au=1.1.60656620.1685115423; _ga_B081B05K2Y=GS1.1.1685115422.1.1.1685115423.59.0.0; _ga=GA1.1.1206163066.1685115423; chatyWidget_0=[{"k":"v-widget","v":"2023-05-26T15:37:03.951Z"}]; activechatyWidgets=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/8.1.17
vary: Accept-Encoding
cache-control: max-age=0
expires: Fri, 26 May 2023 15:37:04 GMT
content-encoding: gzip
content-length: 302
content-type: application/json; charset=UTF-8
date: Fri, 26 May 2023 15:37:04 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash 70b2cb77a41128c31ef5977ce3b79ace
2c8495408419e6dc5dfea0a6ad22bedc94bb02bc
11a5f8733fe676a50b7de75ecf554cd15c9ae94916abfd425affd90b554e150f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:37:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
216.58.211.3200 OK 166 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 216.58.211.3:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jojoexports.com
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:49:29 GMT
expires: Tue, 21 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 316056
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-B081B05K2Y&cid=1206163066.1685115423>m=45je35o0&aip=1&z=1690211253
142.250.74.163200 OK 42 B URL GET HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-B081B05K2Y&cid=1206163066.1685115423>m=45je35o0&aip=1&z=1690211253
IP 142.250.74.163:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google.no
FingerprintDC:04:40:A7:66:FE:43:A4:60:74:CB:F5:05:B7:C5:30:60:15:0E:C8
ValidityMon, 24 Apr 2023 12:02:59 GMT - Mon, 17 Jul 2023 12:02:58 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-B081B05K2Y&cid=1206163066.1685115423>m=45je35o0&aip=1&z=1690211253 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 26 May 2023 15:37:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash 70b2cb77a41128c31ef5977ce3b79ace
2c8495408419e6dc5dfea0a6ad22bedc94bb02bc
11a5f8733fe676a50b7de75ecf554cd15c9ae94916abfd425affd90b554e150f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:37:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jojoexports.com/wp-content/uploads/2021/02/Facbook-Logo-200x200.png
166.62.30.154200 OK 15 kB URL GET HTTP/2 jojoexports.com/wp-content/uploads/2021/02/Facbook-Logo-200x200.png
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type PNG image data, 200 x 200, 8-bit gray+alpha, non-interlaced\012- data
Hash 2c939c21b66f30d3fdafb5ac74cac2b0
a33d11b90c19190878986990902dbf1f901c65c5
ac9cb613903b28ed82601772ab0a82a359923628f19f09e916e797403315169a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/02/Facbook-Logo-200x200.png HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Cookie: _gcl_au=1.1.60656620.1685115423; _ga_B081B05K2Y=GS1.1.1685115422.1.1.1685115423.59.0.0; _ga=GA1.1.1206163066.1685115423; chatyWidget_0=[{"k":"v-widget","v":"2023-05-26T15:37:03.951Z"}]; activechatyWidgets=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sat, 20 Feb 2021 08:39:43 GMT
accept-ranges: bytes
content-length: 14778
cache-control: max-age=10368000, public
expires: Sat, 23 Sep 2023 15:37:05 GMT
content-type: image/png
date: Fri, 26 May 2023 15:37:05 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/uploads/2021/02/Facbook-Logo-100x100.png
166.62.30.154200 OK 5.5 kB URL GET HTTP/2 jojoexports.com/wp-content/uploads/2021/02/Facbook-Logo-100x100.png
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type PNG image data, 100 x 100, 8-bit gray+alpha, non-interlaced\012- data
Hash 6d79268f81d140f9303622d16fb3702a
7e5d5b11f2705d3ab7e47897849136252170652c
ed575054486b2510486d89fe1d752a9818d1b38591d66894eaa99bc14cf1c261
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/02/Facbook-Logo-100x100.png HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Cookie: _gcl_au=1.1.60656620.1685115423; _ga_B081B05K2Y=GS1.1.1685115422.1.1.1685115423.59.0.0; _ga=GA1.1.1206163066.1685115423; chatyWidget_0=[{"k":"v-widget","v":"2023-05-26T15:37:03.951Z"}]; activechatyWidgets=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sat, 20 Feb 2021 08:39:43 GMT
accept-ranges: bytes
content-length: 5498
cache-control: max-age=10368000, public
expires: Sat, 23 Sep 2023 15:37:05 GMT
content-type: image/png
date: Fri, 26 May 2023 15:37:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/anchor?ar=1&k=6LeHvCIaAAAAAFre-h83ANqeFtHtA4ySq2nXw0PT&co=aHR0cHM6Ly9qb2pvZXhwb3J0cy5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=m9m5s0tzdfzb
142.250.74.132200 OK 28 kB URL GET HTTP/3 www.google.com/recaptcha/api2/anchor?ar=1&k=6LeHvCIaAAAAAFre-h83ANqeFtHtA4ySq2nXw0PT&co=aHR0cHM6Ly9qb2pvZXhwb3J0cy5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=m9m5s0tzdfzb
IP 142.250.74.132:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (42424)
Hash ab4d88d44b7643a489fe11d11442f7e4
268824bf3063418f25e9f092ad728f5d67a08503
14452ef8d20dea2f2c263d3a61f769bbdfbf23357f92e3acd9cd3b2fbbeea25f
GET /recaptcha/api2/anchor?ar=1&k=6LeHvCIaAAAAAFre-h83ANqeFtHtA4ySq2nXw0PT&co=aHR0cHM6Ly9qb2pvZXhwb3J0cy5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=m9m5s0tzdfzb HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 26 May 2023 15:37:05 GMT
content-security-policy: script-src 'nonce-3ivfDnKKlX0zIflrUZM6pg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 27634
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
216.58.211.3200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
IP 216.58.211.3:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeHvCIaAAAAAFre-h83ANqeFtHtA4ySq2nXw0PT&co=aHR0cHM6Ly9qb2pvZXhwb3J0cy5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=m9m5s0tzdfzb
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (56403), with no line terminators
Hash 83f90c5a4c20afb44429fa346fbadc10
7c278ec721d3880fbafaadeba9ee80bdf294b014
952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:55:34 GMT
expires: Tue, 21 May 2024 23:55:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/css
vary: Accept-Encoding
age: 315691
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
216.58.211.3200 OK 166 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 216.58.211.3:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:49:29 GMT
expires: Tue, 21 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 316056
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeHvCIaAAAAAFre-h83ANqeFtHtA4ySq2nXw0PT&co=aHR0cHM6Ly9qb2pvZXhwb3J0cy5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=m9m5s0tzdfzb
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 17:31:32 GMT
expires: Wed, 22 May 2024 17:31:32 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 252333
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeHvCIaAAAAAFre-h83ANqeFtHtA4ySq2nXw0PT&co=aHR0cHM6Ly9qb2pvZXhwb3J0cy5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=m9m5s0tzdfzb
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 21:40:21 GMT
expires: Wed, 22 May 2024 21:40:21 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 237404
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9
142.250.74.132200 OK 112 B URL GET HTTP/3 www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9
IP 142.250.74.132:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeHvCIaAAAAAFre-h83ANqeFtHtA4ySq2nXw0PT&co=aHR0cHM6Ly9qb2pvZXhwb3J0cy5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=m9m5s0tzdfzb
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type ASCII text, with no line terminators
Hash ffdfcf8fae84f7684f006bf5af012c06
b31182bbb1c60a114919bf05e698805b61f76aba
1bf768716a75b7620d341f775d10d79ee73a3a47f6609a24ca25dd88e4aeda95
GET /recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeHvCIaAAAAAFre-h83ANqeFtHtA4ySq2nXw0PT&co=aHR0cHM6Ly9qb2pvZXhwb3J0cy5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=m9m5s0tzdfzb
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
expires: Fri, 26 May 2023 15:37:05 GMT
date: Fri, 26 May 2023 15:37:05 GMT
cache-control: private, max-age=300
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 112
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/api2/logo_48.png
216.58.211.3200 OK 2.2 kB URL GET HTTP/3 www.gstatic.com/recaptcha/api2/logo_48.png
IP 216.58.211.3:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeHvCIaAAAAAFre-h83ANqeFtHtA4ySq2nXw0PT&co=aHR0cHM6Ly9qb2pvZXhwb3J0cy5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=m9m5s0tzdfzb
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 21:48:58 GMT
expires: Mon, 29 May 2023 21:48:58 GMT
cache-control: public, max-age=604800
age: 323287
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
216.58.211.3200 OK 166 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 216.58.211.3:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:49:29 GMT
expires: Tue, 21 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 316056
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/reload?k=6LeHvCIaAAAAAFre-h83ANqeFtHtA4ySq2nXw0PT
142.250.74.132200 OK 19 kB URL POST HTTP/3 www.google.com/recaptcha/api2/reload?k=6LeHvCIaAAAAAFre-h83ANqeFtHtA4ySq2nXw0PT
IP 142.250.74.132:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeHvCIaAAAAAFre-h83ANqeFtHtA4ySq2nXw0PT&co=aHR0cHM6Ly9qb2pvZXhwb3J0cy5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=m9m5s0tzdfzb
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type ASCII text, with very long lines (33624)
Hash 97a28a7ba98786d6e18331089dd484eb
a55ec8d09744d6f5e093227574ee0a9369bc37c5
3cbbd35f86d6ccd346d7f192fcd3bdffcf1ef3b49956d176056b1f7e5b6d1c84
POST /recaptcha/api2/reload?k=6LeHvCIaAAAAAFre-h83ANqeFtHtA4ySq2nXw0PT HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuffer
Content-Length: 6178
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeHvCIaAAAAAFre-h83ANqeFtHtA4ySq2nXw0PT&co=aHR0cHM6Ly9qb2pvZXhwb3J0cy5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=m9m5s0tzdfzb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
date: Fri, 26 May 2023 15:37:06 GMT
expires: Fri, 26 May 2023 15:37:06 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 19323
server: GSE
set-cookie: _GRECAPTCHA=09AFoYGg0WyfjrHx7D8OU6nyk2T3BYPDlXGyymhIZAEc_8Z-IFjV1fi7XANOBcSLvvK6uA68NHITv6teUXfCnUcMI;Path=/recaptcha;Expires=Wed, 22-Nov-2023 15:37:06 GMT;Secure;HttpOnly;Priority=HIGH;SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
jojoexports.com/wp-json/contact-form-7/v1/contact-forms/34/refill
166.62.30.154200 OK 22 B URL GET HTTP/2 jojoexports.com/wp-json/contact-form-7/v1/contact-forms/34/refill
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-json/contact-form-7/v1/contact-forms/34/refill HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jojoexports.com/
DNT: 1
Connection: keep-alive
Cookie: _gcl_au=1.1.60656620.1685115423; _ga_B081B05K2Y=GS1.1.1685115422.1.1.1685115423.59.0.0; _ga=GA1.1.1206163066.1685115423; chatyWidget_0=[{"k":"v-widget","v":"2023-05-26T15:37:03.951Z"}]; activechatyWidgets=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/8.1.17
x-robots-tag: noindex
link: <https://jojoexports.com/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
allow: GET
vary: Origin,Accept-Encoding
cache-control: max-age=0
expires: Fri, 26 May 2023 15:37:05 GMT
content-encoding: gzip
content-length: 22
content-type: application/json; charset=UTF-8
date: Fri, 26 May 2023 15:37:05 GMT
server: Apache
X-Firefox-Spdy: h2
jojoexports.com/wp-content/plugins/slider-revolution/public/assets/js/rs6.min.js?ver=6.6.9
166.62.30.154200 OK 414 kB URL GET HTTP/2 jojoexports.com/wp-content/plugins/slider-revolution/public/assets/js/rs6.min.js?ver=6.6.9
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (64288)
Size 414 kB (413891 bytes)
Hash 1165eb4abfe233d2fea1079805805dc5
0f80ce44614a9b3cb967bcce9569a789f8791765
58721fb9409cd32ae7ad5ebcee496a23cbfe1cb8d4838bc19076b574f1405867
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/slider-revolution/public/assets/js/rs6.min.js?ver=6.6.9 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 29 Jan 2023 05:52:21 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A900i%2C900%2C700i%2C700%2C500i%2C500%2C400i%2C400%2C300i%2C300%2C100i%2C100%7CMontserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%26subset%3Dvietnamese%2Clatin-ext%2Cgreek-ext%2Cgreek%2Ccyrillic-ext%2Ccyrillic%2Cvietnamese%2Clatin-ext%2Cgreek-ext%2Cgreek%2Ccyrillic-ext%2Ccyrillic%2Cvietnamese%2Clatin-ext%2Cgreek-ext%2Cgreek%2Ccyrillic-ext%2Ccyrillic%2Cvietnamese%2Clatin-ext%2Cgreek-ext%2Cgreek%2Ccyrillic-ext%2Ccyrillic%2Cvietnamese%2Clatin-ext%2Cgreek-ext%2Cgreek%2Ccyrillic-ext%2Ccyrillic%2Ccyrillic%2Ccyrillic-ext%2Clatin-ext%2Cvietnamese%2Ccyrillic%2Ccyrillic-ext%2Clatin-ext%2Cvietnamese%2Ccyrillic%2Ccyrillic-ext%2Clatin-ext%2Cvietnamese%2Ccyrillic%2Ccyrillic-ext%2Clatin-ext%2Cvietnamese%2Ccyrillic%2Ccyrillic-ext%2Clatin-ext%2Cvietnamese%2Ccyrillic%2Ccyrillic-ext%2Clatin-ext%2Cvietnamese%2Ccyrillic%2Ccyrillic-ext%2Clatin-ext%2Cvietnamese%2Cvietnamese%2Clatin-ext%2Cgreek-ext%2Cgreek%2Ccyrillic-ext%2Ccyrillic%26display%3Dswap&ver=6.2
142.250.74.106200 OK 57 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto%3A900i%2C900%2C700i%2C700%2C500i%2C500%2C400i%2C400%2C300i%2C300%2C100i%2C100%7CMontserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%26subset%3Dvietnamese%2Clatin-ext%2Cgreek-ext%2Cgreek%2Ccyrillic-ext%2Ccyrillic%2Cvietnamese%2Clatin-ext%2Cgreek-ext%2Cgreek%2Ccyrillic-ext%2Ccyrillic%2Cvietnamese%2Clatin-ext%2Cgreek-ext%2Cgreek%2Ccyrillic-ext%2Ccyrillic%2Cvietnamese%2Clatin-ext%2Cgreek-ext%2Cgreek%2Ccyrillic-ext%2Ccyrillic%2Cvietnamese%2Clatin-ext%2Cgreek-ext%2Cgreek%2Ccyrillic-ext%2Ccyrillic%2Ccyrillic%2Ccyrillic-ext%2Clatin-ext%2Cvietnamese%2Ccyrillic%2Ccyrillic-ext%2Clatin-ext%2Cvietnamese%2Ccyrillic%2Ccyrillic-ext%2Clatin-ext%2Cvietnamese%2Ccyrillic%2Ccyrillic-ext%2Clatin-ext%2Cvietnamese%2Ccyrillic%2Ccyrillic-ext%2Clatin-ext%2Cvietnamese%2Ccyrillic%2Ccyrillic-ext%2Clatin-ext%2Cvietnamese%2Ccyrillic%2Ccyrillic-ext%2Clatin-ext%2Cvietnamese%2Cvietnamese%2Clatin-ext%2Cgreek-ext%2Cgreek%2Ccyrillic-ext%2Ccyrillic%26display%3Dswap&ver=6.2
IP 142.250.74.106:443
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
Hash c09db2e7456148d71e8851bc19147a86
6414405bbb7da6458f9d8f581b1cb5ef1befed60
faabc0dd756cbec43d2cf179d8f2a3d10132d18b038c0903feade0b38cc244a4
GET /css?family=Roboto%3A900i%2C900%2C700i%2C700%2C500i%2C500%2C400i%2C400%2C300i%2C300%2C100i%2C100%7CMontserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%26subset%3Dvietnamese%2Clatin-ext%2Cgreek-ext%2Cgreek%2Ccyrillic-ext%2Ccyrillic%2Cvietnamese%2Clatin-ext%2Cgreek-ext%2Cgreek%2Ccyrillic-ext%2Ccyrillic%2Cvietnamese%2Clatin-ext%2Cgreek-ext%2Cgreek%2Ccyrillic-ext%2Ccyrillic%2Cvietnamese%2Clatin-ext%2Cgreek-ext%2Cgreek%2Ccyrillic-ext%2Ccyrillic%2Cvietnamese%2Clatin-ext%2Cgreek-ext%2Cgreek%2Ccyrillic-ext%2Ccyrillic%2Ccyrillic%2Ccyrillic-ext%2Clatin-ext%2Cvietnamese%2Ccyrillic%2Ccyrillic-ext%2Clatin-ext%2Cvietnamese%2Ccyrillic%2Ccyrillic-ext%2Clatin-ext%2Cvietnamese%2Ccyrillic%2Ccyrillic-ext%2Clatin-ext%2Cvietnamese%2Ccyrillic%2Ccyrillic-ext%2Clatin-ext%2Cvietnamese%2Ccyrillic%2Ccyrillic-ext%2Clatin-ext%2Cvietnamese%2Ccyrillic%2Ccyrillic-ext%2Clatin-ext%2Cvietnamese%2Cvietnamese%2Clatin-ext%2Cgreek-ext%2Cgreek%2Ccyrillic-ext%2Ccyrillic%26display%3Dswap&ver=6.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 May 2023 15:37:02 GMT
date: Fri, 26 May 2023 15:37:02 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400%7CJosefin+Sans:600%2C700&display=swap
142.250.74.106200 OK 4.7 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto:400%7CJosefin+Sans:600%2C700&display=swap
IP 142.250.74.106:443
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (4815), with no line terminators
Hash 09bbbbf066276ddfb5a48cc1c287aab8
eb4be529ac31ebccaaba74123b71b87e79f96f38
39460547af8ed643c825b1f5b60d851758167ac7662f0fa0458f498b5a5fc890
GET /css?family=Roboto:400%7CJosefin+Sans:600%2C700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 May 2023 15:37:02 GMT
date: Fri, 26 May 2023 15:37:02 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jojoexports.com/wp-content/plugins/slider-revolution/public/assets/js/rbtools.min.js?ver=6.6.9
166.62.30.154200 OK 165 kB URL GET HTTP/2 jojoexports.com/wp-content/plugins/slider-revolution/public/assets/js/rbtools.min.js?ver=6.6.9
IP 166.62.30.154:443
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectjojoexports.com
FingerprintB9:B7:CF:2D:60:54:96:C4:55:7C:08:A8:A3:43:2B:D2:E1:5E:34:1E
ValidityMon, 08 Aug 2022 08:53:41 GMT - Mon, 14 Aug 2023 04:24:11 GMT
File type ASCII text, with very long lines (45047)
Size 165 kB (165339 bytes)
Hash 0a7176e860c4303f557950b75fb8a898
c292eb1b902ed06fccd65a684d6b311e1290caa9
c4596b16b126326b0d8fc2fb8bf91389ad3dc4671a269187913c19a8f2ad1094
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/slider-revolution/public/assets/js/rbtools.min.js?ver=6.6.9 HTTP/1.1
Host: jojoexports.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jojoexports.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 29 Jan 2023 05:52:25 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 25 May 2024 15:37:02 GMT
content-encoding: gzip
content-type: application/javascript; charset=utf-8
date: Fri, 26 May 2023 15:37:02 GMT
server: Apache
X-Firefox-Spdy: h2