firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 21 Sep 2022 07:13:32 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0IZwbP3N_bA7kPHpiMvRR7cYjdeSMJKD4j7UghXtzTC99t2BxGKCDg==
Age: 2100
culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
107.180.51.243301 Moved Permanently 0 B URL HTTP/1.1 culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/05/mr/files/CV/MyCV.zip HTTP/1.1
Host: culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 21 Sep 2022 07:48:32 GMT
Server: Apache
X-Powered-By: PHP/7.2.34
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8483
Expires: Wed, 21 Sep 2022 10:09:56 GMT
Date: Wed, 21 Sep 2022 07:48:33 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 21 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: J2UX1g07ZbrNs-O6vM25_1zv9raa_86WmTLO3WHMQIhCrHcw366OXg==
age: 11600
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 07:48:33 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
107.180.51.243404 Not Found 61 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4819), with CRLF, LF line terminators
Hash a854c1bdfcb0b3f80afe67d6fda5f2b6
eab7c8986dbf465bde424614f53a0e3866b59fc4
88a7a2f901408573958329200d1d30076b7ca9cbd0e099805668935a5a9d5ba1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/05/mr/files/CV/MyCV.zip HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
X-Powered-By: PHP/7.2.34
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://www.culinarypassportatlanta.com/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Keep-Alive: timeout=5
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
fonts.googleapis.com/css?family=Poppins%3A300%2Cregular%2C700%2C900&ver=4.9.21
216.58.211.10200 OK 489 B URL HTTP/1.1 fonts.googleapis.com/css?family=Poppins%3A300%2Cregular%2C700%2C900&ver=4.9.21
IP 216.58.211.10:0
Hash cd694131fe4853dd743de448bf471e13
b025257dd87bf36c6127e8647e250d4f9e05655e
887ff1882f98d5161d3a4102e6d77abc148552a9547d75c477b8fc26dead4d8b
GET /css?family=Poppins%3A300%2Cregular%2C700%2C900&ver=4.9.21 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Wed, 21 Sep 2022 07:48:33 GMT
Date: Wed, 21 Sep 2022 07:48:33 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
www.culinarypassportatlanta.com/wp-content/plugins/hogash-mailchimp/assets/css/hg-mailchimp.css?ver=1.0.0
107.180.51.243200 OK 406 B URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/plugins/hogash-mailchimp/assets/css/hg-mailchimp.css?ver=1.0.0
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash f2c309c6339d344cb57ade0d8ebd1396
d55fed126e91efe05a98c70e0e8995aebf0c2e73
852af4474ff5c2dc49a075fa14230308a8b24597f854c16470aaee27ff2b4c37
GET /wp-content/plugins/hogash-mailchimp/assets/css/hg-mailchimp.css?ver=1.0.0 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Last-Modified: Mon, 26 Feb 2018 06:43:08 GMT
ETag: "4b01791-484-56617d2a71700-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 406
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.culinarypassportatlanta.com/wp-content/plugins/wordpress-popular-posts/public/css/wpp.css?ver=4.2.2
107.180.51.243200 OK 531 B URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/plugins/wordpress-popular-posts/public/css/wpp.css?ver=4.2.2
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash aa07c82d5a5cca1fa5f982ce0a000228
a79278ebf1f2c192629880f018ad551232c0aa6b
de458260b825573460bb2976252980246834994058b9a1db5dc830a205c32025
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wordpress-popular-posts/public/css/wpp.css?ver=4.2.2 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 07 May 2019 08:40:09 GMT
ETag: "4b80af8-4c1-588482a25beff-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 531
Keep-Alive: timeout=5
Content-Type: text/css
www.culinarypassportatlanta.com/wp-content/themes/dannys-restaurant/assets/css-vendors/slick.css?ver=4.9.21
107.180.51.243200 OK 569 B URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/themes/dannys-restaurant/assets/css-vendors/slick.css?ver=4.9.21
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 8089b828484e2269d5dcb1089c4004ba
9b61a0f5bf48ef08890dbae954ee9b5a90015d2c
35c1c8741af6e18aa88caca3d060e26808e1103a29b3ee0415ae3e3b648bcd09
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/dannys-restaurant/assets/css-vendors/slick.css?ver=4.9.21 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Last-Modified: Tue, 07 May 2019 08:41:01 GMT
ETag: "4b203fe-6f0-588482d42c62f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 569
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.culinarypassportatlanta.com/wp-content/themes/dannys-restaurant/assets/css-vendors/bootstrap.min.css?ver=4.9.21
107.180.51.243200 OK 9.7 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/themes/dannys-restaurant/assets/css-vendors/bootstrap.min.css?ver=4.9.21
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (50838), with CRLF line terminators
Hash c05e5e3fcbd6c29c141508901da89bc8
965b9cd5e8e9a3bb37aafe71c9228b57948dc02e
32199e416be70727792f475461e9d8f8ca8d63dd8d0ec9ecb8648adbc311bd45
GET /wp-content/themes/dannys-restaurant/assets/css-vendors/bootstrap.min.css?ver=4.9.21 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 07 May 2019 08:41:01 GMT
ETag: "4b20400-c8ca-588482d42c62f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9714
Keep-Alive: timeout=5
Content-Type: text/css
www.culinarypassportatlanta.com/wp-content/plugins/insta-gallery/assets/css/qligg.min.css?ver=2.2.3
107.180.51.243200 OK 5.0 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/plugins/insta-gallery/assets/css/qligg.min.css?ver=2.2.3
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (29611), with no line terminators
Hash d2fb108bf10eb031d8e71e0842f66b78
fc79e4b1171357ca7d4e1ca96ee26d8bf4d5dc37
3955c38de248612a4fca8454145e7dae87b0d8b3618506c2822af97227bb4153
GET /wp-content/plugins/insta-gallery/assets/css/qligg.min.css?ver=2.2.3 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 07 May 2019 08:38:50 GMT
ETag: "4b63b6f-73ab-58848256b921d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5029
Keep-Alive: timeout=5
Content-Type: text/css
www.culinarypassportatlanta.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.7.1
107.180.51.243200 OK 9.6 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.7.1
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (5178), with CRLF line terminators
Hash 3c7f295d5d0c4ae7fc2a952a15e52955
bffc889b83980ff7072302b6a9a259995a71869e
69abe3628e56319b88059ce432fcc943a086d3b203aa396534ec46ca527f43dc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.7.1 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 26 Feb 2018 06:43:47 GMT
ETag: "4b0275d-9b4b-56617d4fa2ec0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9552
Keep-Alive: timeout=5
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 67b756e82caefc7860b9f2d4a4f40341
adeae15d52089bcca4ca247fc4aebceef8406e34
72ff9f52080a633dc841554f7d4cc70083edd2572b535d84093ae63f0c50b832
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 07:48:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 21 Sep 2022 07:03:22 GMT
Expires: Wed, 21 Sep 2022 07:43:08 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: aLqpbguVlr6FLo2DH4NfzUwfYbvkdoBvqgMB9_GPYCUr6C3BL6QcXQ==
Age: 2711
www.culinarypassportatlanta.com/wp-content/themes/dannys-restaurant/assets/css-vendors/slick-theme.css?ver=4.9.21
107.180.51.243200 OK 866 B URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/themes/dannys-restaurant/assets/css-vendors/slick-theme.css?ver=4.9.21
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash a0a41b7961c9098542a99b88aa0e8cb5
c19fd0e60b4fa3568ce433a70ae84b6a18eb9ff4
677339cc4ed8403c9531ba3f47d11a00412cd42dd13429414a44e622d46e2faa
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/dannys-restaurant/assets/css-vendors/slick-theme.css?ver=4.9.21 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Last-Modified: Tue, 07 May 2019 08:41:01 GMT
ETag: "4b203ff-c49-588482d42c62f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 866
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.google.com/recaptcha/api.js?onload=znCaptchaOnloadCallback&render=explicit&hl=en&ver=1.0.10
142.250.74.164200 OK 585 B URL HTTP/2 www.google.com/recaptcha/api.js?onload=znCaptchaOnloadCallback&render=explicit&hl=en&ver=1.0.10
IP 142.250.74.164:0
File type ASCII text, with very long lines (918), with no line terminators
Hash f417e484f9ad9c4ee51b2fe8e2284640
829b2fc826ffb85c208a0d806159687ebbc35c32
e178f641d07ed1fd0955145a3ff50b4fb758620fe29d080f3dd19dcdf73a4900
GET /recaptcha/api.js?onload=znCaptchaOnloadCallback&render=explicit&hl=en&ver=1.0.10 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Wed, 21 Sep 2022 07:48:33 GMT
date: Wed, 21 Sep 2022 07:48:33 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.culinarypassportatlanta.com/wp-content/plugins/zion-builder/assets/css/znb_frontend.css?ver=1.0.10
107.180.51.243200 OK 5.5 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/plugins/zion-builder/assets/css/znb_frontend.css?ver=1.0.10
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (30313)
Hash 0116c1f960e443d02891c710ceccd415
3a82a6ab237e62af8815b5773fc7d0f2ac8aca95
5f9ea959a8e9ebacc97aed51c899a534280f687dd378633a8b3784482af5975e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/zion-builder/assets/css/znb_frontend.css?ver=1.0.10 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Last-Modified: Mon, 26 Feb 2018 06:24:26 GMT
ETag: "4b20036-766a-566178fc6ba80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5544
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.culinarypassportatlanta.com/wp-content/uploads/zn_dynamic.css?ver=1557218568
107.180.51.243200 OK 1.4 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/uploads/zn_dynamic.css?ver=1557218568
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (6212), with no line terminators
Hash b74cbfa566f157d96bde3d170d98a28d
4da77f6f98a9e77a17d1f7b9e1951903f0964502
22be44a7a461934f02e26d1724494d7947ef7d7c4bee55bbca8f4c294f9ecaec
GET /wp-content/uploads/zn_dynamic.css?ver=1557218568 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Last-Modified: Tue, 07 May 2019 08:42:48 GMT
ETag: "4b005e8-1844-5884833a3407f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1352
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.culinarypassportatlanta.com/wp-content/uploads/zion-builder/cache/368-smart-layout.css?ver=454fdc7c754ae73895ddaed09860d573
107.180.51.243200 OK 4.1 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/uploads/zion-builder/cache/368-smart-layout.css?ver=454fdc7c754ae73895ddaed09860d573
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (22579), with no line terminators
Hash eb10b4e7b7f171dce1d01ea9203662c1
0aa3ea4d539ae571e91c3da30a6594bc1ee2a99d
9f2547d71b84fa3bb80a2ef43e733c67dbded206d8dfd42289ca06dda4674c55
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/zion-builder/cache/368-smart-layout.css?ver=454fdc7c754ae73895ddaed09860d573 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Last-Modified: Sun, 12 May 2019 17:20:12 GMT
ETag: "4b20622-5833-588b4033026c1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4119
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.culinarypassportatlanta.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
107.180.51.243200 OK 34 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (31997)
Hash 6b2ceda6218e6810713286b29db017fb
71175271d84c90ca5f05ecc04d7f7a1052873380
de7a4d9a1cb75f0d1a4bf1a71907a44b85b9356da5c4f9e7f6729b8e69a38974
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Last-Modified: Wed, 04 Sep 2019 21:45:33 GMT
ETag: "4b61849-17a6a-591c11fdf5940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 33776
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash bb4bdc4c3c6869c822618f0b9ef1bdc5
6a438b8d9d87aa30e0989ace7fc0d4cafce1f29d
eb762661b0a0ecc4ccdf50229ce134d0062e8d60698b7ed1970c5073b18f31ac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 07:48:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.culinarypassportatlanta.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
107.180.51.243200 OK 4.0 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (9959)
Hash a6c81e2f02bd04160d2de88c4e8f3559
e3f3c91427d785820ca97dabe738f01faf041f36
b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Last-Modified: Fri, 20 May 2016 06:11:28 GMT
ETag: "4b61843-2748-5333ff613c400-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4014
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.culinarypassportatlanta.com/wp-content/plugins/wordpress-popular-posts/public/js/wpp-4.2.0.min.js?ver=4.2.2
107.180.51.243200 OK 581 B URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/plugins/wordpress-popular-posts/public/js/wpp-4.2.0.min.js?ver=4.2.2
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (506), with CRLF line terminators
Hash 116b202851233f4cd17a31a2efe84edd
e0f686ea2e22bbedf56777d048fe2614b09f344a
676511980c7fb58e861963628e77ad04978c9775692f8e8a09813f47a42f29e0
GET /wp-content/plugins/wordpress-popular-posts/public/js/wpp-4.2.0.min.js?ver=4.2.2 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Last-Modified: Tue, 07 May 2019 08:40:09 GMT
ETag: "4b80afb-47b-588482a25c2e7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 581
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.culinarypassportatlanta.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.7.1
107.180.51.243200 OK 18 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.7.1
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (64567), with CRLF line terminators
Hash 2f287b04043eea548856b25652c26841
ef341d6545bfe2bb12bbc12666bb548021fe7cb7
8c50b22a780d5ef9d47be2c79bbe9437a18cce742324a099d03b69b927f45c06
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.7.1 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Last-Modified: Mon, 26 Feb 2018 06:43:47 GMT
ETag: "4b02788-fd88-56617d4fa2ec0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 17984
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.culinarypassportatlanta.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.7.1
107.180.51.243200 OK 38 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.7.1
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (27287), with CRLF line terminators
Hash b3f6ae7f52e3ddf070f5feabadc734bf
dac54ab898bdcf072dbdbbde6f9510a297fe0a77
cdefb165539978a80a9f42c532f89ca421cf95ee58a1ac1a60704b7985b8301e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.7.1 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Last-Modified: Mon, 26 Feb 2018 06:43:47 GMT
ETag: "4b02789-1afe3-56617d4fa2ec0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 38335
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.culinarypassportatlanta.com/wp-includes/js/wp-emoji-release.min.js?ver=4.9.21
107.180.51.243200 OK 4.3 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-includes/js/wp-emoji-release.min.js?ver=4.9.21
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (9063)
Hash bc89387b6a6f886f99511cca233b5071
77c1103c6d84263a73bff007bd635750d5b26296
baf8e3410e57e5650ad72f25eb93d82ea36ac8bd51904948e3d2f2a05faa3e78
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=4.9.21 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Last-Modified: Fri, 05 Feb 2021 04:07:43 GMT
ETag: "4b618bb-2ea7-5ba8ef63f01c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4347
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.culinarypassportatlanta.com/wp-content/plugins/hogash-mailchimp/assets/js/hg-mailchimp.js?ver=1.0.0
107.180.51.243200 OK 699 B URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/plugins/hogash-mailchimp/assets/js/hg-mailchimp.js?ver=1.0.0
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 471ed30cbf861aee1696349537a7ba21
cb69a23ed28644d107118e68c593ebd7cab2332e
45d3e72ad6f513cda376654f06fa9351d76c97cd76c1e482396845e85c0d9ac2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/hogash-mailchimp/assets/js/hg-mailchimp.js?ver=1.0.0 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 26 Feb 2018 06:43:08 GMT
ETag: "4b01793-733-56617d2a71700-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 699
Keep-Alive: timeout=5
Content-Type: application/javascript
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash edf07cd621f733b0eb50c632387ebf4f
61a082d26501c2c8d481b1676d0de2e585269613
e5c4324e4c55824b86f48bf0b9a1d317a82e7d3c19bdea7a91d78ce98d68a980
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5636
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 07:48:33 GMT
Last-Modified: Wed, 21 Sep 2022 06:14:37 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
www.culinarypassportatlanta.com/wp-content/plugins/insta-gallery/assets/js/qligg.min.js?ver=2.2.3
107.180.51.243200 OK 1.8 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/plugins/insta-gallery/assets/js/qligg.min.js?ver=2.2.3
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document, ASCII text, with very long lines (4907), with no line terminators
Hash c4391a65f453b6266bc6059090e21989
c1433dd426edc0a0d962c4545845344405c8db35
5d7f2a76ae7f6c027492fea715faae37a32a8f68254936c87a2871dd21894deb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/insta-gallery/assets/js/qligg.min.js?ver=2.2.3 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Last-Modified: Tue, 07 May 2019 08:38:50 GMT
ETag: "4b63b73-132b-58848256b9605-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1795
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.culinarypassportatlanta.com/wp-content/plugins/insta-gallery/assets/magnific-popup/jquery.magnific-popup.min.js
107.180.51.243200 OK 7.3 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/plugins/insta-gallery/assets/magnific-popup/jquery.magnific-popup.min.js
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (20087)
Hash efa6db60af1529649bd3b95c4220e9ba
4b6b8cd07ee784e67c7702c147e0c80e0bb3bd90
5723d10c2697c434b25b904f2fcec179ad231ccaebc4c77daa7732c7949a1e99
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/insta-gallery/assets/magnific-popup/jquery.magnific-popup.min.js HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Last-Modified: Tue, 07 May 2019 08:38:50 GMT
ETag: "4b63b78-4ef8-58848256b99ed-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7346
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.culinarypassportatlanta.com/wp-content/plugins/insta-gallery/assets/swiper/swiper.min.js
107.180.51.243200 OK 33 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/plugins/insta-gallery/assets/swiper/swiper.min.js
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65270)
Hash 241124af67f8656bc9fcef8f664aa30b
53fe794dce467d865e63c78f0a5f374db8caa5a4
dd19c0e47ed39fc8d6d88421a0eb30a9e224705224f4068a185820aab66e836a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/insta-gallery/assets/swiper/swiper.min.js HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Last-Modified: Tue, 07 May 2019 08:38:50 GMT
ETag: "4b63b7c-1f3be-58848256ba1bd-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 33284
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.culinarypassportatlanta.com/wp-content/themes/dannys-restaurant/assets/js-vendors/slick/slick.min.js?ver=1
107.180.51.243200 OK 10 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/themes/dannys-restaurant/assets/js-vendors/slick/slick.min.js?ver=1
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (32076), with CRLF line terminators
Hash bb1f2a4ecf759f4b6f195fb91ded0673
6556c790c3612ad09b4b59a4ed83c611a46a0e86
3382bb7b245236c89d8c05a968bcc44d486a4b7ddad7896dede2e89a8ebc286f
GET /wp-content/themes/dannys-restaurant/assets/js-vendors/slick/slick.min.js?ver=1 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Last-Modified: Tue, 07 May 2019 08:41:01 GMT
ETag: "4b203ed-a3f2-588482d42b2a7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 10177
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.culinarypassportatlanta.com/wp-content/themes/dannys-restaurant/assets/js/app.min.js?ver=1
107.180.51.243200 OK 6.2 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/themes/dannys-restaurant/assets/js/app.min.js?ver=1
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (19188), with no line terminators
Hash 6a8144e4ee0e29ba1fdfd9fae52f4210
ac9a6aaa8e16971c3b64f0cb4ac48196b336a1d8
9f9c9a85f49a12501b78f43705661743bb29f3aa16cb3bef15ed887d4414b2bd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/dannys-restaurant/assets/js/app.min.js?ver=1 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Last-Modified: Tue, 07 May 2019 08:41:01 GMT
ETag: "4b203ea-4af4-588482d42aebf-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6219
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.culinarypassportatlanta.com/wp-content/themes/dannys-restaurant/assets/js/vendors.min.js?ver=1
107.180.51.243200 OK 17 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/themes/dannys-restaurant/assets/js/vendors.min.js?ver=1
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document, ASCII text, with very long lines (31962)
Hash fb7d71cbb643c38b04fb1f8a809fd193
15e6bd80244f69bdd80f3ed5c0722d1871d7087f
e4377b40c4b94dae5282cb18469d5807b844437390bd3bc298930cbbca08dede
GET /wp-content/themes/dannys-restaurant/assets/js/vendors.min.js?ver=1 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Last-Modified: Tue, 07 May 2019 08:41:01 GMT
ETag: "4b203e1-d9b4-588482d42a307-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16883
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.culinarypassportatlanta.com/wp-content/themes/dannys-restaurant/assets/js-vendors/smooth-scroll/SmoothScroll.js?ver=1
107.180.51.243200 OK 6.5 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/themes/dannys-restaurant/assets/js-vendors/smooth-scroll/SmoothScroll.js?ver=1
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 31a42297c07768deacbffe1a06bc580a
f03cfe8676106f5baf74b1ea38b252f3db1edebd
10bcd580d1af91da9ff16b9b9443f543cc05373a11afb0a89e2cd85c532e33e6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/dannys-restaurant/assets/js-vendors/smooth-scroll/SmoothScroll.js?ver=1 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:33 GMT
Server: Apache
Last-Modified: Tue, 07 May 2019 08:41:01 GMT
ETag: "4b203ef-5699-588482d42b68f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6501
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.culinarypassportatlanta.com/wp-content/plugins/zion-builder/dist/znpb_frontend.bundle.js?ver=1.0.10
107.180.51.243200 OK 15 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/plugins/zion-builder/dist/znpb_frontend.bundle.js?ver=1.0.10
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (48326), with no line terminators
Hash f4e4816f66cb8846abe4fac2ba22a1ec
15c90d76f6603ab45d72ab6ce44addbceb9d0961
20f6f22739b5aa6ab9579d5f038c84b4307409d33e11f7e16a7fdb1061610166
GET /wp-content/plugins/zion-builder/dist/znpb_frontend.bundle.js?ver=1.0.10 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:34 GMT
Server: Apache
Last-Modified: Mon, 26 Feb 2018 06:24:26 GMT
ETag: "4b2004e-bcc6-566178fc6ba80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14737
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.culinarypassportatlanta.com/wp-content/plugins/wordpress-countdown-widget/js/jquery.countdown.min.js?ver=1.0
107.180.51.243200 OK 4.3 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/plugins/wordpress-countdown-widget/js/jquery.countdown.min.js?ver=1.0
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (12242), with CRLF line terminators
Hash 5ed30ac6c1a23a3efefae6dd26c1db87
8abf043185db4a9d0f7bd6198bf1dff8b5acebca
da317009801a9420ddfee9bb7f091ca8b112521082570d34fc4bce8709ea023f
GET /wp-content/plugins/wordpress-countdown-widget/js/jquery.countdown.min.js?ver=1.0 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:34 GMT
Server: Apache
Last-Modified: Tue, 07 May 2019 08:38:49 GMT
ETag: "4b63b38-3142-588482561129d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4282
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.culinarypassportatlanta.com/wp-includes/js/wp-embed.min.js?ver=4.9.21
107.180.51.243200 OK 739 B URL HTTP/1.1 www.culinarypassportatlanta.com/wp-includes/js/wp-embed.min.js?ver=4.9.21
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1391), with no line terminators
Hash 60d8829560031a011771efa2f39708af
a4689c3b70f773deb896eec78028e0902ef15097
a0176bd4cc53bd2e920b0dfd10f56d2a4a3820d671539414ef4b3e2b3e50b9b7
GET /wp-includes/js/wp-embed.min.js?ver=4.9.21 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:34 GMT
Server: Apache
Last-Modified: Fri, 05 Feb 2021 04:07:43 GMT
ETag: "4b61829-56f-5ba8ef63f01c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 739
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.culinarypassportatlanta.com/wp-content/themes/dannys-restaurant/style.css?ver=4.9.21
107.180.51.243200 OK 16 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/themes/dannys-restaurant/style.css?ver=4.9.21
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type assembler source, ASCII text, with very long lines (914)
Hash 2e27efae1f649c56117317da87c4807a
e8246a27904eae6e82e8f694e584539a8b46e9ba
42958d75a6a3dd1755e95e2c67136b15d62ae50541cb93b1cfa5d1a5976b44ff
GET /wp-content/themes/dannys-restaurant/style.css?ver=4.9.21 HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:34 GMT
Server: Apache
Last-Modified: Tue, 07 May 2019 08:41:04 GMT
ETag: "4b2061e-16ed1-588482d674dc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16278
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
push.services.mozilla.com/
44.228.207.167101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.228.207.167:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HXWFwUILynjIkXT4rC5GfA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Eia20+z5WB3gfOZfjhNiWVbXMKo=
www.culinarypassportatlanta.com/wp-content/uploads/2018/03/border-1-1600x134_c.png
107.180.51.243200 OK 7.0 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/uploads/2018/03/border-1-1600x134_c.png
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 1600 x 134, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e1ea250b7428ebba696e3190098010c
66f097356beb84ed09fc74af63a601f9ac70b01b
8622231614defa3f00b6e10aaf4cc640bf900f8519a9aacbb7b795c97af7b411
GET /wp-content/uploads/2018/03/border-1-1600x134_c.png HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:34 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 00:44:27 GMT
ETag: "4b20730-1b32-56754ad5cb0c0"
Accept-Ranges: bytes
Content-Length: 6962
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
www.culinarypassportatlanta.com/wp-content/uploads/2017/05/404_image.jpg
107.180.51.243200 OK 19 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/uploads/2017/05/404_image.jpg
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x470, components 3\012- data
Hash ca5cb07a03ae037904991edc5d1cff86
7e3339e1ff87262df9f5918c239aebdd72d243f2
65215379cc6a21fc11a5f65e9446681c9d2d5b05de1078b4dde266cd0b0b0576
GET /wp-content/uploads/2017/05/404_image.jpg HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:34 GMT
Server: Apache
Last-Modified: Mon, 26 Feb 2018 07:16:15 GMT
ETag: "4b20680-4ad0-5661849164dc0"
Accept-Ranges: bytes
Content-Length: 19152
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
www.culinarypassportatlanta.com/wp-content/uploads/2018/04/robotoslab-regular-webfont.woff
107.180.51.243200 OK 29 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/uploads/2018/04/robotoslab-regular-webfont.woff
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Web Open Font Format, TrueType, length 28932, version 1.0\012- data
Hash d9e9060a410f03b4f6367f9b795cbb49
7131de5f843bebb8580a9712a82541f505dc288f
421f8274cd57a083c73f67c569ee8768d9aaab439a8e98389775f92b07f99af1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2018/04/robotoslab-regular-webfont.woff HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/zn_dynamic.css?ver=1557218568
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:34 GMT
Server: Apache
Last-Modified: Sun, 15 Apr 2018 21:26:24 GMT
ETag: "4b2078b-7104-569e9c1d7e000"
Accept-Ranges: bytes
Content-Length: 28932
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: font/woff
www.culinarypassportatlanta.com/wp-content/uploads/2018/02/preloader_logo.png
107.180.51.243200 OK 120 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/uploads/2018/02/preloader_logo.png
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size 120 kB (120498 bytes)
Hash a9da1913ea06c7bbff2bfe68173853a0
9dbd46ad33d9a8f504e9d86f82259d51f1c7766c
6abdb51f7e2c5014518e806cf4018b54e906c75d5737ea80e5c0a0e549c54df0
GET /wp-content/uploads/2018/02/preloader_logo.png HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:34 GMT
Server: Apache
Last-Modified: Mon, 26 Feb 2018 07:23:50 GMT
ETag: "4b206d1-1d6b2-5661864350d80"
Accept-Ranges: bytes
Content-Length: 120498
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
www.culinarypassportatlanta.com/wp-content/uploads/zn_fonts/icomoon/icomoon.woff
107.180.51.243200 OK 2.4 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/uploads/zn_fonts/icomoon/icomoon.woff
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Web Open Font Format, TrueType, length 2352, version 1.0\012- data
Hash b72124e5a399846694698c91d2a159cd
bfa6f40d3ccd1f14c740ece41856cb43d8c881b6
d5e7c94bd0445f6c7c0309787df69a5fb1515743ba81011e0f87c312d4e7f4d7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/zn_fonts/icomoon/icomoon.woff HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/zn_dynamic.css?ver=1557218568
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:34 GMT
Server: Apache
Last-Modified: Tue, 27 Feb 2018 08:24:12 GMT
ETag: "4b209d3-930-5662d59efc300"
Accept-Ranges: bytes
Content-Length: 2352
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: font/woff
www.culinarypassportatlanta.com/wp-content/uploads/2018/04/header-logo2.png
107.180.51.243200 OK 193 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/uploads/2018/04/header-logo2.png
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 660 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size 193 kB (192897 bytes)
Hash 1c0c9877786c3776070b184b146d9b80
4d027d3afe629cc4549877e3d5ebcd1d524b1051
5bfe67db133b538559819cb7027601aeba883548b0f554b5c27ed07bc913b642
GET /wp-content/uploads/2018/04/header-logo2.png HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:34 GMT
Server: Apache
Last-Modified: Mon, 16 Apr 2018 08:16:14 GMT
ETag: "4b20773-2f181-569f2d5d40f80"
Accept-Ranges: bytes
Content-Length: 192897
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
www.culinarypassportatlanta.com/wp-content/uploads/2018/04/robotoslab-bold-webfont.woff
107.180.51.243200 OK 29 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/uploads/2018/04/robotoslab-bold-webfont.woff
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Web Open Font Format, TrueType, length 28804, version 1.0\012- data
Hash 4c4e5726956edec1fe6348a02b3807aa
fc6e123c10b8e94e579628fe677071ae055306a1
132244bf1430d653653590cf457705b6081dccda5e4135c3ac1370cc24d364c3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2018/04/robotoslab-bold-webfont.woff HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/zn_dynamic.css?ver=1557218568
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:34 GMT
Server: Apache
Last-Modified: Sun, 15 Apr 2018 21:27:13 GMT
ETag: "4b20788-7084-569e9c4c38e40"
Accept-Ranges: bytes
Content-Length: 28804
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: font/woff
www.culinarypassportatlanta.com/wp-content/uploads/2018/03/bg-logo-about.jpg
107.180.51.243200 OK 140 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/uploads/2018/03/bg-logo-about.jpg
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=16, height=1274, bps=206, PhotometricIntepretation=RGB, manufacturer=NIKON CORPORATION, model=NIKON D4S, orientation=upper-left, width=1600], baseline, precision 8, 1600x812, components 3\012- data
Size 140 kB (140491 bytes)
Hash 92878179caeeeb1ba635413111bd2a0e
fb76f64c7294218ff0ef51f64f6e9001f9483ec6
3927ed93116aee7da0935ca1f50e3d415cfe3abcbd96989778165df2d2668fc1
GET /wp-content/uploads/2018/03/bg-logo-about.jpg HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:34 GMT
Server: Apache
Last-Modified: Tue, 13 Mar 2018 23:36:47 GMT
ETag: "4b20725-224cb-56753bb5e01c0"
Accept-Ranges: bytes
Content-Length: 140491
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
www.culinarypassportatlanta.com/wp-content/uploads/2018/03/white-bg.jpg
107.180.51.243200 OK 741 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/uploads/2018/03/white-bg.jpg
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=16, height=1274, bps=206, PhotometricIntepretation=RGB, manufacturer=NIKON CORPORATION, model=NIKON D4S, orientation=upper-left, width=1600], baseline, precision 8, 1600x1200, components 3\012- data
Size 741 kB (741084 bytes)
Hash 6b3bb2a16f50c455b658e94a2c558625
ed8b5a9aed487f3f4054afa66de3dea61ff8ab1f
551629e037d2c02e78afc84d47ffc77db9f95056b3f1341439a0cd84cf42af87
GET /wp-content/uploads/2018/03/white-bg.jpg HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:34 GMT
Server: Apache
Last-Modified: Tue, 13 Mar 2018 22:22:46 GMT
ETag: "4b20761-b4edc-56752b2a9b980"
Accept-Ranges: bytes
Content-Length: 741084
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
www.culinarypassportatlanta.com/wp-content/uploads/2018/04/trendrhslabone-webfont.woff
107.180.51.243200 OK 1.2 MB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/uploads/2018/04/trendrhslabone-webfont.woff
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Web Open Font Format, TrueType, length 1223588, version 1.0\012- data
Size 1.2 MB (1223588 bytes)
Hash ca5360dc78e20d57bbf179f8d79ca4b1
4f107ea44ef0ad74d05e45021427ddcb4d779a65
1b28594c348454a7816675d2ed58fc33a4e6341e7b0921196c417487d8c8ac51
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2018/04/trendrhslabone-webfont.woff HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/zn_dynamic.css?ver=1557218568
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:34 GMT
Server: Apache
Last-Modified: Sun, 15 Apr 2018 21:24:09 GMT
ETag: "4b2078e-12aba4-569e9b9cbf040"
Accept-Ranges: bytes
Content-Length: 1223588
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: font/woff
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 07:48:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js
142.250.74.163200 OK 158 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (581)
Size 158 kB (157726 bytes)
Hash 6519c7c04cf32a57b1c5ee45a73c233e
4939bb921988e9eb13780cc2244f3099776e9bfb
8352dd4e3e0fe82562cdc280c020fc31d2c6d054f7ead441a3b18de8ef04401b
GET /recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.culinarypassportatlanta.com
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 05:37:29 GMT
expires: Thu, 21 Sep 2023 05:37:29 GMT
cache-control: public, max-age=31536000
age: 7866
last-modified: Wed, 14 Sep 2022 00:24:01 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.culinarypassportatlanta.com/wp-content/uploads/2018/02/cropped-icon-32x32.png
107.180.51.243200 OK 3.0 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/uploads/2018/02/cropped-icon-32x32.png
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 6c1a44fb767d6b3034f9ba838e1a20ba
ee248d6449dc5c708fe06b0ef2456d982137f610
6d01a2307e192f966959e977229b7aea89025b03d60b1cbba343e51fddf8c2a1
GET /wp-content/uploads/2018/02/cropped-icon-32x32.png HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:35 GMT
Server: Apache
Last-Modified: Mon, 26 Feb 2018 05:59:13 GMT
ETag: "4b206bc-bbc-5661735982e40"
Accept-Ranges: bytes
Content-Length: 3004
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
www.culinarypassportatlanta.com/wp-content/uploads/2018/02/cropped-icon-192x192.png
107.180.51.243200 OK 53 kB URL HTTP/1.1 www.culinarypassportatlanta.com/wp-content/uploads/2018/02/cropped-icon-192x192.png
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 1566af40b41eed169094e5ce7094c97b
7c9990a018d64f9ef2683df615409431aee41b3f
292cba4b199064910c93f0acfbf50131ba0b75161c7c4e786b5c095956582a44
GET /wp-content/uploads/2018/02/cropped-icon-192x192.png HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:35 GMT
Server: Apache
Last-Modified: Mon, 26 Feb 2018 05:59:13 GMT
ETag: "4b206b9-cf83-5661735982e40"
Accept-Ranges: bytes
Content-Length: 53123
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 07:48:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2183
Expires: Wed, 21 Sep 2022 08:24:58 GMT
Date: Wed, 21 Sep 2022 07:48:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2183
Expires: Wed, 21 Sep 2022 08:24:58 GMT
Date: Wed, 21 Sep 2022 07:48:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2183
Expires: Wed, 21 Sep 2022 08:24:58 GMT
Date: Wed, 21 Sep 2022 07:48:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2183
Expires: Wed, 21 Sep 2022 08:24:58 GMT
Date: Wed, 21 Sep 2022 07:48:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2183
Expires: Wed, 21 Sep 2022 08:24:58 GMT
Date: Wed, 21 Sep 2022 07:48:35 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28c514e2-3b27-42b0-a913-853081b33d5b.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28c514e2-3b27-42b0-a913-853081b33d5b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8718016fd606d22c29d7d781f0bdd1db
690f537d16ce17adeeb72246418f13795b08ea67
43d3d95e47ef25b0b823c7242cf872ada8e789547fc3df8c1f85d65fcd407818
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28c514e2-3b27-42b0-a913-853081b33d5b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7722
x-amzn-requestid: 8543ed2d-e87c-40bd-be54-4779ef5474b7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YjSVnEXpoAMFY3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63246423-35ad8a2a703f6bdd77818b1b;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 11:55:15 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: euJ90339SLqJCYgO7NGmctu0pfXBEw81W0YZE2EZsnNuc5tefaFWQg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 11:10:59 GMT
age: 74256
etag: "690f537d16ce17adeeb72246418f13795b08ea67"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf057f43-44fd-440b-bd96-67b16eb4eb13.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf057f43-44fd-440b-bd96-67b16eb4eb13.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f7b780d39877eea116277625aaa01f1b
d8ac8a7e19b06e38070a0319cde24b5bf0eaa7db
ca9d59056e0a3f512d36db11f4a4bd3109c2ce1e13b29b5f40dce84df079e71f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf057f43-44fd-440b-bd96-67b16eb4eb13.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12654
x-amzn-requestid: efc99152-2b51-462d-b48b-67ba8263b1cf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YpOJOGVYoAMFcvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6326c3d4-00eeb6913e06ac151f293263;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wK03Lqow6u4lrQ3QI21klXXHGZqbKYathhCO87k0rZWBbF8o5YYjXw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 07:05:16 GMT
age: 2599
etag: "d8ac8a7e19b06e38070a0319cde24b5bf0eaa7db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c2db94039cb675cb250519fe57b2b3c9
37222a70df5d9a69073b4b32ebc3a5da60006001
444f4359ac25747e7c5d7e09202f195d407bc94a4933ac7ebbbaf9839bf59aff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12048
x-amzn-requestid: d9bd4ac9-5032-45d5-9689-c5c3347912d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO2wuFz4oAMFZug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3804-6fb7d6a52eecab471f67d9a9;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:08:52 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sfGk3C3HLGDYDSXw1d4R7wPRsGdHNKD31chUVzQ8KYBRnsIL0aOW1g==
via: 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:41:17 GMT
age: 36438
etag: "37222a70df5d9a69073b4b32ebc3a5da60006001"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F689f6ab4-a759-42b3-82a8-f66964d5ece4.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F689f6ab4-a759-42b3-82a8-f66964d5ece4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eff7103898a5102e685ce6741cdf19f8
3371965b4417ee0b74a3a5094adfc1632d4849b1
c326683c06d56a02d8c1a36dd34c1eff1b9d242b8b5280a1824b0602ccd28020
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F689f6ab4-a759-42b3-82a8-f66964d5ece4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9574
x-amzn-requestid: 3dfa0e8c-77e6-4fc5-9f64-00ac854abbfa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yxy1mEj2IAMFWdQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a31bd-745819ba4b5c16ee6e649ad7;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:33:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _3w3cbABzhrIn3y9Spo6-NCZDzf4gHAfU30Zpvk3WTp8_kgWT7NAMw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:41:04 GMT
age: 36451
etag: "3371965b4417ee0b74a3a5094adfc1632d4849b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24bb3042-6621-4dd2-99f1-4b50cc7da808.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24bb3042-6621-4dd2-99f1-4b50cc7da808.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10ad73e887b57566c4ba3ae763552a2e
63252bd8cc72452c4c6be84593d704ae9bf97d1f
7d58d096045066af053eb1a1fc3878d3e2080aa50b71aa30fa5b7929693ab004
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24bb3042-6621-4dd2-99f1-4b50cc7da808.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9399
x-amzn-requestid: 44705828-c137-4ab5-8538-5d4595a2b058
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYvkJGjxoAMF6-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202c80-3cb542a303a59002480c82b2;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:08:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: PIZx2S4HyPokzOhbut6yFxH_-32I3SvT1jbeo2rSxQtkgYZGcqjBJA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:55:57 GMT
age: 35558
etag: "63252bd8cc72452c4c6be84593d704ae9bf97d1f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a692964324dbb9c460a1b855808d02e6
1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54
3fa9e780d62fffb635064aeed542c8e04923ff943c6080476836fab6c24e2426
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9201
x-amzn-requestid: 6dbfae76-f9ab-4f31-9b62-bcf5d9ce4515
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YxzxlEYcoAMFaQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a333d-7d147481402cc46a751b72ed;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:40:13 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hI3FlJJRAUfr0EAcSvvuJajmyQDwBpTxuQIhYfA0Mtp9JyQgKnoDvA==
via: 1.1 7dcaa43cd0535d889b549e6a30a57aa0.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:43:18 GMT
age: 36317
etag: "1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 12:31:58 GMT
expires: Sun, 17 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 328597
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.culinarypassportatlanta.com/wp-admin/admin-ajax.php
107.180.51.243200 OK 26 B URL HTTP/1.1 www.culinarypassportatlanta.com/wp-admin/admin-ajax.php
IP 107.180.51.243:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JSON data\012- , ASCII text, with no line terminators
Hash fb021797c59fa406e524fc1ca2b3c8f8
15d92c8369a877108c4978552c092c25e1e571dd
813e0fecc08de7dec78e7517e5a563c6cf7b740583c5418366462bf73fa913b8
Analyzer Verdict Alert fortinet Malware
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: www.culinarypassportatlanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 30
Origin: http://www.culinarypassportatlanta.com
Connection: keep-alive
Referer: http://www.culinarypassportatlanta.com/wp-content/uploads/2019/05/mr/files/CV/MyCV.zip
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 07:48:34 GMT
Server: Apache
X-Powered-By: PHP/7.2.34
Access-Control-Allow-Origin: http://www.culinarypassportatlanta.com
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Frame-Options: SAMEORIGIN
Referrer-Policy: strict-origin-when-cross-origin
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json; charset=UTF-8