victory.style/usps/verification/
185.154.54.6301 Moved Permanently 169 B URL HTTP/1.1 victory.style/usps/verification/
IP 185.154.54.6:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash b51956ed2a6129f43c5d0ecc011cc5a5
c03157aff80067b6b57903d3843b9fd9e07b33ab
1ac63374d015eee8d9d875502aa63981dbeb9d86a14096de0d504763808e429b
Analyzer Verdict Alert fortinet Phishing
GET /usps/verification/ HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.22.0
Date: Thu, 06 Oct 2022 22:14:42 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://victory.style:443/usps/verification/
firefox.settings.services.mozilla.com/v1/
54.230.111.7200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.7:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: eZyFqw7lT3j8Pmh49dJcasVSuKHDkAHDzFPOM9arTZXXLbsJy69dqw==
Age: 109644
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 282f6e1328452c1cb41f6a6272fff757
20b9ff1b5f4f81b645769bd4b4cf7bf7dfc16262
6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12325
Expires: Fri, 07 Oct 2022 01:40:07 GMT
Date: Thu, 06 Oct 2022 22:14:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 94a09d62ab3057cda67a091c8d7478f5
b1c9d223a951d0bc9f17c9f3b84501266a552b58
582364f9f6014520c269f1f794e7c34027bd2697b53e5d02fad43e74a735e471
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "582364F9F6014520C269F1F794E7C34027BD2697B53E5D02FAD43E74A735E471"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4112
Expires: Thu, 06 Oct 2022 23:23:14 GMT
Date: Thu, 06 Oct 2022 22:14:42 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: BECOBa3VuSOgM9KqtJzbp5hspXoSAVRCcQ9hP6k4Jwi/QsRRxfbEAjXT2K85N+JxjvcfD59bcGg=
x-amz-request-id: SXD4350VQBVCGKQG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 06 Oct 2022 21:30:56 GMT
age: 2626
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 82543ebb7e4f707f88d7baf3c47db215
b67c05b5a94e8570dd08f226d8e0ff268aad8d98
af15e767d7dc9bcc0ed03e6236de5d5ed85364c678ff818c298784f9713484fb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AF15E767D7DC9BCC0ED03E6236DE5D5ED85364C678FF818C298784F9713484FB"
Last-Modified: Tue, 04 Oct 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5629
Expires: Thu, 06 Oct 2022 23:48:31 GMT
Date: Thu, 06 Oct 2022 22:14:42 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 22:14:42 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.7200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.7:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Thu, 06 Oct 2022 22:01:58 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Thu, 06 Oct 2022 22:09:55 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: bntBaCaEqxfa_qzTof7R-UxvcUtDFla3emQFNKNDeLfi4VVgzlOqpQ==
Age: 2702
victory.style/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6
185.154.54.6200 OK 24 kB URL HTTP/2 victory.style/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6
IP 185.154.54.6:0
File type ASCII text, with very long lines (24504)
Hash 7c073b910d79ad465dcfd1894caef986
526c28d076c1aaae387cdbbf04cb2e64b13b29ab
2428388ee7fb9c89fdfd1191a1fb4a45794d7fd64777ecfd9bc4c06052a17522
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 24505
last-modified: Wed, 06 Jul 2022 10:10:32 GMT
etag: "62c55f98-5fb9"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
185.154.54.6200 OK 89 kB URL HTTP/2 victory.style/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 185.154.54.6:0
File type ASCII text, with very long lines (43771)
Hash b7915926fe42d76e9c802353ab01dae4
3a8192a4312f25f53de25b100d62829c0f14d67c
d7705700d24d5919255576642ad2c28bfc790390b7183a369038ff5c1e814d51
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 88932
last-modified: Wed, 13 Jul 2022 15:50:59 GMT
etag: "62cee9e3-15b64"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.2
185.154.54.6200 OK 2.7 kB URL HTTP/2 victory.style/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.2
IP 185.154.54.6:0
Hash e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.2 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 2731
last-modified: Sat, 20 Aug 2022 08:35:10 GMT
etag: "63009cbe-aab"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/uploads/stm_fonts/stmicons/stmicons.css?ver=1.0.1
185.154.54.6200 OK 12 kB URL HTTP/2 victory.style/wp-content/uploads/stm_fonts/stmicons/stmicons.css?ver=1.0.1
IP 185.154.54.6:0
File type ASCII text, with very long lines (11624), with no line terminators
Hash f3422597ee6e8e9b6838980279b0cae8
07e964edcfee2bd11e69f25c71877af58cb3c85a
129421bcba7858c2604c191630ff014df9ebabe2320ca01555fbdff599b9c3d1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/stm_fonts/stmicons/stmicons.css?ver=1.0.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 11624
last-modified: Tue, 06 Mar 2018 13:41:27 GMT
etag: "5a9e9a87-2d68"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/uploads/stm_fonts/stmicons/beauty/stmicons.css?ver=1.0.1
185.154.54.6200 OK 2.4 kB URL HTTP/2 victory.style/wp-content/uploads/stm_fonts/stmicons/beauty/stmicons.css?ver=1.0.1
IP 185.154.54.6:0
File type ASCII text, with very long lines (2447), with no line terminators
Hash 2c8741d73725fc67f9c19a6caff66fb8
a3327983a45e1261aaf7c63bf3faffa06c04e1af
49c19009314a31e6c115c010ec79857bf44fb58935ae14c112387871b8f86e72
GET /wp-content/uploads/stm_fonts/stmicons/beauty/stmicons.css?ver=1.0.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 2447
last-modified: Tue, 06 Mar 2018 13:41:27 GMT
etag: "5a9e9a87-98f"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/uploads/stm_fonts/stmicons/church/stmicons.css?ver=1.0.1
185.154.54.6200 OK 1.4 kB URL HTTP/2 victory.style/wp-content/uploads/stm_fonts/stmicons/church/stmicons.css?ver=1.0.1
IP 185.154.54.6:0
File type ASCII text, with very long lines (1410), with no line terminators
Hash f654bdfaef40e371c30b95b48717a67a
ee44d21672f2c5e66aef468dd4cc4376b7f1a337
e3bdb1b0bd1bd401659645f5d4ffb0fa7d742af8562a1e31536f31bd8add72ad
GET /wp-content/uploads/stm_fonts/stmicons/church/stmicons.css?ver=1.0.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 1410
last-modified: Tue, 06 Mar 2018 13:41:27 GMT
etag: "5a9e9a87-582"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/usps/verification/
185.154.54.6404 Not Found 37 kB URL HTTP/2 victory.style/usps/verification/
IP 185.154.54.6:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 7700a86b132004b4210d3bf92a808959
7b54995be5513f44d3de33d39021ebc04b1adade
4346905c146289697e69a3d8883a846af14c5ea39e2d0789918f3c6ba5d0e966
Analyzer Verdict Alert fortinet Phishing
GET /usps/verification/ HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.3.33
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-transform, no-cache, no-store, must-revalidate
link: <https://victory.style/wp-json/>; rel="https://api.w.org/"
set-cookie: utm_source=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.victory.style
utm_medium=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.victory.style
utm_term=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.victory.style
utm_content=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.victory.style
utm_campaign=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.victory.style
gclid=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.victory.style
handl_original_ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.victory.style
handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; expires=Sat, 05-Nov-2022 22:14:43 GMT; Max-Age=2592000; path=/; domain=.victory.style
handl_ip=91.90.42.154; expires=Sat, 05-Nov-2022 22:14:43 GMT; Max-Age=2592000; path=/; domain=.victory.style
handl_ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.victory.style
handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; expires=Sat, 05-Nov-2022 22:14:43 GMT; Max-Age=2592000; path=/; domain=.victory.style
email=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.victory.style
username=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.victory.style
X-Firefox-Spdy: h2
victory.style/wp-content/uploads/stm_fonts/stmicons/feather/stmicons.css?ver=1.0.1
185.154.54.6200 OK 6.2 kB URL HTTP/2 victory.style/wp-content/uploads/stm_fonts/stmicons/feather/stmicons.css?ver=1.0.1
IP 185.154.54.6:0
File type ASCII text, with very long lines (6206), with no line terminators
Hash 35491fe234c23ddf73b08c1ed8ec0508
4eb4ad763bca978aa3551cb047a49ef071f5443e
599219e9a6ce1df22a384cc7795d9d80b0ea1728d02571d97e8b3096aeb0d50d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/stm_fonts/stmicons/feather/stmicons.css?ver=1.0.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 6206
last-modified: Tue, 06 Mar 2018 13:41:27 GMT
etag: "5a9e9a87-183e"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/uploads/stm_fonts/stmicons/healthcoach/stmicons.css?ver=1.0.1
185.154.54.6200 OK 2.9 kB URL HTTP/2 victory.style/wp-content/uploads/stm_fonts/stmicons/healthcoach/stmicons.css?ver=1.0.1
IP 185.154.54.6:0
File type ASCII text, with very long lines (2921), with no line terminators
Hash 3028b37c1df72f21cd9c5ac5039740e6
5113362568a04954ad4bdabda98c4cadea4db5e0
f6cad34adb18ad248a340a61d98506094a223615590960ddeaf576ff5251e14d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/stm_fonts/stmicons/healthcoach/stmicons.css?ver=1.0.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 2921
last-modified: Tue, 06 Mar 2018 13:41:27 GMT
etag: "5a9e9a87-b69"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/uploads/stm_fonts/stmicons/icomoon/stmicons.css?ver=1.0.1
185.154.54.6200 OK 5.6 kB URL HTTP/2 victory.style/wp-content/uploads/stm_fonts/stmicons/icomoon/stmicons.css?ver=1.0.1
IP 185.154.54.6:0
File type ASCII text, with very long lines (5556), with no line terminators
Hash 20d02c684ba5ad59bc4a26381bb0216e
a87c0eb75ec06e82b366be9e08a948f2f88b8869
c01b0bbebda70a0894815a2d1c9d09775c36d880479baba233d1a55f9a165b8e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/stm_fonts/stmicons/icomoon/stmicons.css?ver=1.0.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 5556
last-modified: Tue, 06 Mar 2018 13:41:27 GMT
etag: "5a9e9a87-15b4"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/uploads/stm_fonts/stmicons/linear/stmicons.css?ver=1.0.1
185.154.54.6200 OK 8.1 kB URL HTTP/2 victory.style/wp-content/uploads/stm_fonts/stmicons/linear/stmicons.css?ver=1.0.1
IP 185.154.54.6:0
File type ASCII text, with very long lines (8132), with no line terminators
Hash a4a25f336513d72cf6f4f65610d9d1c4
cfc2c73ddf5aeafe712e968da7306ef9806870e9
8f47b4864dce8efc4fc79b7f95c4c7201fe496f3e4bf8ffe62487d7958544cfa
GET /wp-content/uploads/stm_fonts/stmicons/linear/stmicons.css?ver=1.0.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 8132
last-modified: Tue, 06 Mar 2018 13:41:27 GMT
etag: "5a9e9a87-1fc4"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/uploads/stm_fonts/stmicons/logistics/stmicons.css?ver=1.0.1
185.154.54.6200 OK 3.7 kB URL HTTP/2 victory.style/wp-content/uploads/stm_fonts/stmicons/logistics/stmicons.css?ver=1.0.1
IP 185.154.54.6:0
File type ASCII text, with very long lines (3726), with no line terminators
Hash 34cef77dd0a733d6780850367048ba8f
8b63291fe959c4bac5edf99eb9e2463c0d87f4f7
3093bc794bfa48f470fc409be02db0244916be032bbf0028f2a96306176a3632
GET /wp-content/uploads/stm_fonts/stmicons/logistics/stmicons.css?ver=1.0.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 3726
last-modified: Tue, 06 Mar 2018 13:41:27 GMT
etag: "5a9e9a87-e8e"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/uploads/stm_fonts/stmicons/medicall/stmicons.css?ver=1.0.1
185.154.54.6200 OK 2.6 kB URL HTTP/2 victory.style/wp-content/uploads/stm_fonts/stmicons/medicall/stmicons.css?ver=1.0.1
IP 185.154.54.6:0
File type ASCII text, with very long lines (2569), with no line terminators
Hash 7eb679af9a91022f4145ac1991d36499
de1f5b65f65f332c7c3c765d9a7e631b40238098
e2516f3ab6f966e7bc4f3ef3018429f7db02c42cdc6175e19443f476dae190d8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/stm_fonts/stmicons/medicall/stmicons.css?ver=1.0.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 2569
last-modified: Tue, 06 Mar 2018 13:41:27 GMT
etag: "5a9e9a87-a09"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/uploads/stm_fonts/stmicons/personal_blog/stmicons.css?ver=1.0.1
185.154.54.6200 OK 863 B URL HTTP/2 victory.style/wp-content/uploads/stm_fonts/stmicons/personal_blog/stmicons.css?ver=1.0.1
IP 185.154.54.6:0
File type ASCII text, with very long lines (863), with no line terminators
Hash 1a8717a6d2e9dbba0c531e80a6c2b06b
ce7179e627b351bfbec2ab04cb12e8beb4991f75
2d407012c0eabe427aea06a6d20dade936d69926941472d432b073e4b6b01861
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/stm_fonts/stmicons/personal_blog/stmicons.css?ver=1.0.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 863
last-modified: Tue, 06 Mar 2018 13:41:27 GMT
etag: "5a9e9a87-35f"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/uploads/stm_fonts/stmicons/rental/stmicons.css?ver=1.0.1
185.154.54.6200 OK 1.7 kB URL HTTP/2 victory.style/wp-content/uploads/stm_fonts/stmicons/rental/stmicons.css?ver=1.0.1
IP 185.154.54.6:0
File type ASCII text, with very long lines (1650), with no line terminators
Hash 49425e3b251cd1374b9ee99501107ee2
6a339253ca3944ec862d1997007359749258ba6a
354bf37a02a1aa844f04a875d7750d969a83a980dcc17dbe18ef6c50c1c07102
GET /wp-content/uploads/stm_fonts/stmicons/rental/stmicons.css?ver=1.0.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 1650
last-modified: Tue, 06 Mar 2018 13:41:27 GMT
etag: "5a9e9a87-672"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/uploads/stm_fonts/stmicons/startup/stmicons.css?ver=1.0.1
185.154.54.6200 OK 802 B URL HTTP/2 victory.style/wp-content/uploads/stm_fonts/stmicons/startup/stmicons.css?ver=1.0.1
IP 185.154.54.6:0
File type ASCII text, with very long lines (802), with no line terminators
Hash ab28567381dc61d081490b088abc32ba
a9574cea53402de7ac24bc966864f7bb48b8ac79
f7bb062d424056cc733452dfdd8d16224956e4c0c89e3a1317642485defd4107
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/stm_fonts/stmicons/startup/stmicons.css?ver=1.0.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 802
last-modified: Tue, 06 Mar 2018 13:41:27 GMT
etag: "5a9e9a87-322"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/uploads/stm_fonts/stmicons/store/stmicons.css?ver=1.0.1
185.154.54.6200 OK 1.9 kB URL HTTP/2 victory.style/wp-content/uploads/stm_fonts/stmicons/store/stmicons.css?ver=1.0.1
IP 185.154.54.6:0
File type ASCII text, with very long lines (1861), with no line terminators
Hash e0146720225b7047b6a7e0e0b8615d20
9aad2db910cd7f671945a9e99053b6ff9273a347
f908d7f2ad33c33b1a216c388e7a8c69e6b61486dbecd7a42463661d382ec861
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/stm_fonts/stmicons/store/stmicons.css?ver=1.0.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 1861
last-modified: Tue, 06 Mar 2018 13:41:27 GMT
etag: "5a9e9a87-745"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/uploads/stm_fonts/stmicons/vicons/stmicons.css?ver=1.0.1
185.154.54.6200 OK 3.1 kB URL HTTP/2 victory.style/wp-content/uploads/stm_fonts/stmicons/vicons/stmicons.css?ver=1.0.1
IP 185.154.54.6:0
File type ASCII text, with very long lines (3091), with no line terminators
Hash a26e03069e29932e3c885f55cdfd847c
a25cc22e818d2061157c9bb720654ae3a8aac969
ebee5f578e481533ff68c4130f57b48a55f848869e624d7b2a4d679c6cd8442b
GET /wp-content/uploads/stm_fonts/stmicons/vicons/stmicons.css?ver=1.0.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 3091
last-modified: Tue, 06 Mar 2018 13:41:27 GMT
etag: "5a9e9a87-c13"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/plugins/stm-configurations/megamenu/assets/css/megamenu.css?ver=1.2
185.154.54.6200 OK 31 kB URL HTTP/2 victory.style/wp-content/plugins/stm-configurations/megamenu/assets/css/megamenu.css?ver=1.2
IP 185.154.54.6:0
Hash 5532462d02277009851a76504c0e16f8
485c07be277ff2db0beb809fc49f9f4323b26c59
4dd45871bc2248955e0ed6752bb4b54b381503a0d7c577045fa62d93c1f34297
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/stm-configurations/megamenu/assets/css/megamenu.css?ver=1.2 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 31145
last-modified: Sat, 22 Feb 2020 15:53:18 GMT
etag: "5e514e6e-79a9"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/plugins/woo-variation-swatches/assets/css/frontend.min.css?ver=1660984533
185.154.54.6200 OK 35 kB URL HTTP/2 victory.style/wp-content/plugins/woo-variation-swatches/assets/css/frontend.min.css?ver=1660984533
IP 185.154.54.6:0
File type ASCII text, with very long lines (34869)
Hash b7174d8453f080f948ccf80011ede2a7
56743f6dc6d9fd1ba9b880b65343138f05849252
e88c694162d226c4cfbf77ff8d3cbb03e64154023501b6e7fbc863bbfae0927b
GET /wp-content/plugins/woo-variation-swatches/assets/css/frontend.min.css?ver=1660984533 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 34870
last-modified: Sat, 20 Aug 2022 08:35:33 GMT
etag: "63009cd5-8836"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/plugins/yith-woocommerce-product-bundles-premium/assets/css/frontend.css?ver=6.0.2
185.154.54.6200 OK 8.4 kB URL HTTP/2 victory.style/wp-content/plugins/yith-woocommerce-product-bundles-premium/assets/css/frontend.css?ver=6.0.2
IP 185.154.54.6:0
Hash d149338997bce63efa3326f33d798274
90a17af426f1616da8fda330053932d405384c8e
46d78a322542d5d9fcd5dc900e477a8ca3f53d6ac5d9fbeed2fe9643f41257ac
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-product-bundles-premium/assets/css/frontend.css?ver=6.0.2 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 8371
last-modified: Thu, 09 Apr 2020 12:54:53 GMT
etag: "5e8f1b1d-20b3"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl-child/style.css?ver=6.0.2
185.154.54.6200 OK 21 kB URL HTTP/2 victory.style/wp-content/themes/pearl-child/style.css?ver=6.0.2
IP 185.154.54.6:0
File type Unicode text, UTF-8 text, with very long lines (354)
Hash adfb88f75231bc872a9037f7a1ba391f
8a12d6c4d5ff196ad265bfaf6a2087876b3ff2ba
07e15467f51edf476e23bb7450ba4fe72e0b1cc9b4614e96569fb877e4a7654a
GET /wp-content/themes/pearl-child/style.css?ver=6.0.2 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 20829
last-modified: Fri, 26 Aug 2022 14:27:20 GMT
etag: "6308d848-515d"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/css/tabs/style_1.css?ver=1.1.1
185.154.54.6200 OK 0 B URL HTTP/2 victory.style/wp-content/themes/pearl/assets/css/tabs/style_1.css?ver=1.1.1
IP 185.154.54.6:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/themes/pearl/assets/css/tabs/style_1.css?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 0
last-modified: Sat, 22 Feb 2020 15:21:35 GMT
etag: "5e5146ff-0"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/css/tour/style_1.css?ver=1.1.1
185.154.54.6200 OK 0 B URL HTTP/2 victory.style/wp-content/themes/pearl/assets/css/tour/style_1.css?ver=1.1.1
IP 185.154.54.6:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/themes/pearl/assets/css/tour/style_1.css?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 0
last-modified: Sat, 22 Feb 2020 15:21:35 GMT
etag: "5e5146ff-0"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/css/404/style_7.css?ver=1.1.1
185.154.54.6200 OK 1.7 kB URL HTTP/2 victory.style/wp-content/themes/pearl/assets/css/404/style_7.css?ver=1.1.1
IP 185.154.54.6:0
Hash 0dd67043388524bc8f8049478a44ed28
a1dc542324ec3e86910d725e3011c8c2c3602e64
303e5b65e32577bc7a77f24a476f236f96d917538ae973e1785dca8b72a38a49
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/pearl/assets/css/404/style_7.css?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 1702
last-modified: Sat, 22 Feb 2020 15:21:35 GMT
etag: "5e5146ff-6a6"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/vendor/font-awesome.min.css?ver=1.1.1
185.154.54.6200 OK 31 kB URL HTTP/2 victory.style/wp-content/themes/pearl/assets/vendor/font-awesome.min.css?ver=1.1.1
IP 185.154.54.6:0
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/pearl/assets/vendor/font-awesome.min.css?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 31000
last-modified: Sat, 22 Feb 2020 15:21:35 GMT
etag: "5e5146ff-7918"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.1
185.154.54.6200 OK 34 kB URL HTTP/2 victory.style/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.1
IP 185.154.54.6:0
File type ASCII text, with very long lines (34217)
Hash ffb96099720dde6483d7cab290c543ee
1a6ece8eee36923d795cdf78674b47e7f1b8e94f
cdfdf586f38cfb19c6264343cc6a64adce7ff0961834e96a2f912f01dc29e3f0
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 34399
last-modified: Thu, 23 Jan 2020 21:41:26 GMT
etag: "5e2a1306-865f"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.1
185.154.54.6200 OK 57 kB URL HTTP/2 victory.style/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.1
IP 185.154.54.6:0
File type ASCII text, with very long lines (56408)
Hash 1756fd00c7017d273a956fd649166247
685ed9c24434b3daa2e1dca97a13431badfd6d63
5cf48cbe32e33820643123b8852d1fde7f0ba7d23aa24d5496ce804ac34af13c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 56590
last-modified: Thu, 23 Jan 2020 21:41:26 GMT
etag: "5e2a1306-dd0e"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.5.14
185.154.54.6200 OK 66 kB URL HTTP/2 victory.style/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.5.14
IP 185.154.54.6:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash e7e6a0406a3fc00f71bec2706c3d7c75
7d978c127f614128616a6d6d0f628728bd7bbc88
a68103cf6f0359010607eac8ecca00cc18f75f820928fbc280d20e4b3e860702
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.5.14 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 66058
last-modified: Fri, 11 Mar 2022 03:48:46 GMT
etag: "622ac69e-1020a"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/css/buttons/styles/style_13.css?ver=1.1.1
185.154.54.6200 OK 5.2 kB URL HTTP/2 victory.style/wp-content/themes/pearl/assets/css/buttons/styles/style_13.css?ver=1.1.1
IP 185.154.54.6:0
Hash 2dc931f745ab41d2e35cac006c6e9a02
79cfdaea68a7170432710b2a0d99377e29ea7297
da560ef6410041ff6d56ebfcea2a7aed01326616ed45345e2d75b6279f9fdc3c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/pearl/assets/css/buttons/styles/style_13.css?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 5217
last-modified: Sat, 29 Feb 2020 11:57:16 GMT
etag: "5e5a519c-1461"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/css/sidebar/style_1.css?ver=1.1.1
185.154.54.6200 OK 4.8 kB URL HTTP/2 victory.style/wp-content/themes/pearl/assets/css/sidebar/style_1.css?ver=1.1.1
IP 185.154.54.6:0
Hash f826bc0738ec06cb3ff4942aa0d95ef7
fe4c6f79bd0df939c42504ed7c2e686df2804427
27d288ec04986ff554efcee2352dad717d41cc0702178fa5856e94ebecaf9538
GET /wp-content/themes/pearl/assets/css/sidebar/style_1.css?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 4771
last-modified: Sat, 22 Feb 2020 15:21:35 GMT
etag: "5e5146ff-12a3"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/css/form/style_4.css?ver=1.1.1
185.154.54.6200 OK 4.9 kB URL HTTP/2 victory.style/wp-content/themes/pearl/assets/css/form/style_4.css?ver=1.1.1
IP 185.154.54.6:0
File type assembler source, ASCII text, with very long lines (433)
Hash d1fdb4eac4cf53825d2f3905482cb379
a0b94db8f7581757ee43ea923c9202183fa25dae
0b3f1af10290c125131ca2b80755ebb21848704fb13d9f8dddda2b64e7afde16
GET /wp-content/themes/pearl/assets/css/form/style_4.css?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 4853
last-modified: Sat, 29 Feb 2020 19:58:36 GMT
etag: "5e5ac26c-12f5"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/css/blockquote/style_3.css?ver=1.1.1
185.154.54.6200 OK 408 B URL HTTP/2 victory.style/wp-content/themes/pearl/assets/css/blockquote/style_3.css?ver=1.1.1
IP 185.154.54.6:0
Hash 61ba43a0c47e6599f31714a4a5b379b5
057ca2645609a10c0a0068d399979333c69a0031
22dadd701ae9ccbe6e40770bf01615bbf5218fe162f5b4bc3bf5ffa852c09a72
GET /wp-content/themes/pearl/assets/css/blockquote/style_3.css?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 408
last-modified: Sat, 22 Feb 2020 15:21:35 GMT
etag: "5e5146ff-198"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/css/post/style_1.css?ver=1.1.1
185.154.54.6200 OK 7.8 kB URL HTTP/2 victory.style/wp-content/themes/pearl/assets/css/post/style_1.css?ver=1.1.1
IP 185.154.54.6:0
Hash 7214d20daaeb2861b66b81b4aad314ee
f4cdc7b96648204526603ff2ac617657ffc4665f
ca62c671e0cf030ab0c0a384af30cd8e0bc0e1345e285744570d61e2f40a3337
GET /wp-content/themes/pearl/assets/css/post/style_1.css?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 7824
last-modified: Sat, 22 Feb 2020 15:21:35 GMT
etag: "5e5146ff-1e90"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/css/pagination/style_16.css?ver=1.1.1
185.154.54.6200 OK 1.9 kB URL HTTP/2 victory.style/wp-content/themes/pearl/assets/css/pagination/style_16.css?ver=1.1.1
IP 185.154.54.6:0
Hash 530cf1d70c168ee682168c71541e64c3
1232c4a61b722d5bb3484e1d52b369dbf38fa2d5
5f8ff31595b26424079ffea0e75265613dfd212e70f8a308208215045fcfe5c5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/pearl/assets/css/pagination/style_16.css?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 1852
last-modified: Sat, 22 Feb 2020 15:21:35 GMT
etag: "5e5146ff-73c"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/css/lists/style_1.css?ver=1.1.1
185.154.54.6200 OK 1.5 kB URL HTTP/2 victory.style/wp-content/themes/pearl/assets/css/lists/style_1.css?ver=1.1.1
IP 185.154.54.6:0
Hash de552322024d7774becae45b25ee6915
5e96394bb67d9b2bae8f375aae2c00a097acdadd
c71cfd5c9f5ea029a9cbc366a39df700c00d59fb7f1c73be61b1afb326d3fbca
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/pearl/assets/css/lists/style_1.css?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 1489
last-modified: Sat, 22 Feb 2020 15:21:35 GMT
etag: "5e5146ff-5d1"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/css/accordion/style_2.css?ver=1.1.1
185.154.54.6200 OK 2.2 kB URL HTTP/2 victory.style/wp-content/themes/pearl/assets/css/accordion/style_2.css?ver=1.1.1
IP 185.154.54.6:0
Hash 4ae7002d59cb4749cd7d114410bfeee4
c41449171eaefd4253ac87a6a766ee62f12b0c33
b09b09c92703ab3ae04a43f305ccf69f919612f34b67281ad84d8e146404f38b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/pearl/assets/css/accordion/style_2.css?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 2232
last-modified: Sat, 22 Feb 2020 15:21:35 GMT
etag: "5e5146ff-8b8"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/css/header/style_1.css?ver=1.1.1
185.154.54.6200 OK 2.8 kB URL HTTP/2 victory.style/wp-content/themes/pearl/assets/css/header/style_1.css?ver=1.1.1
IP 185.154.54.6:0
Hash 9ac06de4a64a8e088fb4baca14e52337
9b1421b49c0666eae812a528befe3d0a9210c81f
e787d5292bb3c9cf2742e67592fb1f4236cba4ff22c821112172fb5864211ad6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/pearl/assets/css/header/style_1.css?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 2798
last-modified: Wed, 18 Nov 2020 14:22:34 GMT
etag: "5fb52e2a-aee"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/css/footer/style_1.css?ver=1.1.1
185.154.54.6200 OK 60 B URL HTTP/2 victory.style/wp-content/themes/pearl/assets/css/footer/style_1.css?ver=1.1.1
IP 185.154.54.6:0
Hash e3a8d1e9a839111f7ca1dfbc955805eb
e87768e79a5cd53ff4820b8da417740170a80783
0db1354e3ea86df678d78761640905952451ec1d2f8faf954ad259e80b5ee4be
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/pearl/assets/css/footer/style_1.css?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 60
last-modified: Sat, 22 Feb 2020 15:21:35 GMT
etag: "5e5146ff-3c"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/css/titlebox/style_2.css?ver=1.1.1
185.154.54.6200 OK 3.5 kB URL HTTP/2 victory.style/wp-content/themes/pearl/assets/css/titlebox/style_2.css?ver=1.1.1
IP 185.154.54.6:0
Hash ffc2454a8a7f4f96f559f1ab79877749
d78f393569babc1fa6cc66abda2a476f4b1e5a7d
9d7ed9dee21a3b9cd7e09208d8a5b8f04c6b9dc108e368ce8227ef71c803685e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/pearl/assets/css/titlebox/style_2.css?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 3505
last-modified: Sat, 22 Feb 2020 15:21:35 GMT
etag: "5e5146ff-db1"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/vendor/lightgallery.css?ver=1.1.1
185.154.54.6200 OK 25 kB URL HTTP/2 victory.style/wp-content/themes/pearl/assets/vendor/lightgallery.css?ver=1.1.1
IP 185.154.54.6:0
Hash 78b69e20394c848657fa057f2e3c5d5a
52772615e69b75098a5dadcd68977e6a1cc8e97b
2efac072f16c57a77ca93ba9985ff8dc963c274801d61295b3c1e6dab0257077
GET /wp-content/themes/pearl/assets/vendor/lightgallery.css?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 24861
last-modified: Sat, 22 Feb 2020 15:21:35 GMT
etag: "5e5146ff-611d"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/vendor/jquery.timepicker.css?ver=1.1.1
185.154.54.6200 OK 1.8 kB URL HTTP/2 victory.style/wp-content/themes/pearl/assets/vendor/jquery.timepicker.css?ver=1.1.1
IP 185.154.54.6:0
Hash bfe752c7f4123ad6b8985ba1249c5f83
96e2ec550361fef5b211b2a23c98117768cd757d
d20ad83c28a8d3b392bbf93eccdc7bd37370de4bffa566ccd4bd3217350ba476
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/pearl/assets/vendor/jquery.timepicker.css?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 1768
last-modified: Sat, 22 Feb 2020 15:21:35 GMT
etag: "5e5146ff-6e8"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/css/vendors/instagram.css?ver=1.1.1
185.154.54.6200 OK 591 B URL HTTP/2 victory.style/wp-content/themes/pearl/assets/css/vendors/instagram.css?ver=1.1.1
IP 185.154.54.6:0
Hash a70b659a4197c34451e9e061411e4273
eaa84cbe054a289879bc65b689ae85cbcbdde98a
e2e2858cf096b79f2839bc17817af55ecbbcaa2caba967133ea6b29fa9b8d6a1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/pearl/assets/css/vendors/instagram.css?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 591
last-modified: Sat, 22 Feb 2020 15:21:35 GMT
etag: "5e5146ff-24f"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
185.154.54.6200 OK 11 kB URL HTTP/2 victory.style/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 185.154.54.6:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 11224
last-modified: Wed, 31 Mar 2021 11:22:25 GMT
etag: "60645b71-2bd8"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/plugins/handl-utm-grabber/js/js.cookie.js?ver=6.0.2
185.154.54.6200 OK 3.6 kB URL HTTP/2 victory.style/wp-content/plugins/handl-utm-grabber/js/js.cookie.js?ver=6.0.2
IP 185.154.54.6:0
File type ASCII text, with CRLF line terminators
Hash e0c122ae05afa1674e94d0c58dfa8249
d3b32aa8b28e0bede9bf68a633b53b3f80a8ceef
be9fd8fcea458eae07d70cfbb97851f8aaffa032eb02faafe871b30b2df13d60
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/handl-utm-grabber/js/js.cookie.js?ver=6.0.2 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 3569
last-modified: Sat, 20 Aug 2022 08:35:22 GMT
etag: "63009cca-df1"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/plugins/handl-utm-grabber/js/handl-utm-grabber.js?ver=6.0.2
185.154.54.6200 OK 1.5 kB URL HTTP/2 victory.style/wp-content/plugins/handl-utm-grabber/js/handl-utm-grabber.js?ver=6.0.2
IP 185.154.54.6:0
Hash dddbd45903a3107da46f947d35c44207
d03245c7ef2dca0f1bc8af681a3f24dd4231f136
e8a932b4e6e3de688605f22fa40537286b71813bce3fcfee7879f1390de88a62
GET /wp-content/plugins/handl-utm-grabber/js/handl-utm-grabber.js?ver=6.0.2 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 1525
last-modified: Sat, 20 Aug 2022 08:35:22 GMT
etag: "63009cca-5f5"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/plugins/stm-configurations/megamenu/assets/js/megamenu.js?ver=1.2
185.154.54.6200 OK 1.7 kB URL HTTP/2 victory.style/wp-content/plugins/stm-configurations/megamenu/assets/js/megamenu.js?ver=1.2
IP 185.154.54.6:0
Hash 20b7e8d84b7e9859179a0a23f235e947
ee44cad22be9e0e7758e6242a3a02be4a280478a
539c89044ef7aad36b07a864d9e8538b14fdc0364d18ad6b0df2793cae86838d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/stm-configurations/megamenu/assets/js/megamenu.js?ver=1.2 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 1738
last-modified: Sat, 22 Feb 2020 15:53:18 GMT
etag: "5e514e6e-6ca"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
185.154.54.6200 OK 9.6 kB URL HTTP/2 victory.style/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
IP 185.154.54.6:0
File type ASCII text, with very long lines (9172)
Hash 81b2be18696c4dfe620f7b6d0d75a566
0c3cd7bdf58a65b07e17be39cfe4e386571bb4bd
120aaf6681ca6d34a40c559779f0a0038582a79fce1b868ff901c94d27c89c72
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 9566
last-modified: Fri, 11 Mar 2022 03:48:46 GMT
etag: "622ac69e-255e"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.9.5
185.154.54.6200 OK 2.8 kB URL HTTP/2 victory.style/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.9.5
IP 185.154.54.6:0
File type HTML document, ASCII text, with very long lines (2750), with no line terminators
Hash 51826bf206887d13ab2e82a8a7245c64
72f4d6b6c3f88daa45c9ce042d9cb7e5166e9165
7b082daadd28b14604f37e9476dab0a901dbc19f82808056e27be8ca2af1fd98
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.9.5 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 2750
last-modified: Fri, 11 Mar 2022 03:48:46 GMT
etag: "622ac69e-abe"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.1
185.154.54.6200 OK 992 B URL HTTP/2 victory.style/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.1
IP 185.154.54.6:0
Hash 787fe4f547a6cb7f4ce4934641085910
c2dee88d5bdfef214ce9c56f71a1df51cda0f328
654aaebdea944313257827be97eb196a8218a2cdfc9ba399db23e2cd4c02bd79
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 992
last-modified: Sat, 22 Feb 2020 16:03:18 GMT
etag: "5e5150c6-3e0"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
185.154.54.6200 OK 6.5 kB URL HTTP/2 victory.style/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 185.154.54.6:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash 61449413a42d2daaa79dbe7298b40e21
d86c474164c603084397bdc50fb0e469d28b5772
f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 6475
last-modified: Wed, 06 Jul 2022 15:06:32 GMT
etag: "62c5a4f8-194b"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
185.154.54.6200 OK 19 kB URL HTTP/2 victory.style/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 185.154.54.6:0
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 57459b58fd7665a5e20b2345463df9c9
71c3b177ad1412d5e0b56d99f18bc345148df88b
6fecb89a29ee2bd397bb1bf58ecaa530a76f0654db71fadefd3cc70b0bc302bf
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 19142
last-modified: Wed, 06 Jul 2022 15:06:32 GMT
etag: "62c5a4f8-4ac6"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/css/vendors/woo.css?ver=1.1.1
185.154.54.6200 OK 237 kB URL HTTP/2 victory.style/wp-content/themes/pearl/assets/css/vendors/woo.css?ver=1.1.1
IP 185.154.54.6:0
File type Unicode text, UTF-8 text, with very long lines (1148)
Size 237 kB (236731 bytes)
Hash 335009e25206c5a714bdaafa0e5cfb69
e3501b2e56d254b5eaf291e58eb09f47f1ff7144
b558e06682fa4d2dde331b09cdae85aa0268a2c0034ec310082118155b47e7f1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/pearl/assets/css/vendors/woo.css?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 236731
last-modified: Mon, 28 Sep 2020 19:00:29 GMT
etag: "5f7232cd-39cbb"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
185.154.54.6200 OK 90 kB URL HTTP/2 victory.style/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 185.154.54.6:0
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 89521
last-modified: Wed, 06 Jul 2022 15:06:32 GMT
etag: "62c5a4f8-15db1"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.2
185.154.54.6200 OK 22 kB URL HTTP/2 victory.style/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.2
IP 185.154.54.6:0
File type ASCII text, with very long lines (21905), with no line terminators
Hash ae0f40d4f21faa4c3ae5e3ec85853384
c94eb67feaf4d226d3e08ccd7e2d236d1a013c5d
32dd00604df8db3415240d450341558b6827b1e02dc0f211d8a6d9a4287c522e
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.2 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 21905
last-modified: Sat, 20 Aug 2022 08:35:10 GMT
etag: "63009cbe-5591"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
185.154.54.6200 OK 1.8 kB URL HTTP/2 victory.style/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
IP 185.154.54.6:0
File type ASCII text, with very long lines (1680)
Hash 943f6eb962c25bd965e0f0e5a284fcd0
b050a98ebaef01d7597bf8c1acb995c0ef3bcbd9
50de09b0bb8d0ac656aa9b3a1e4ef58a3f2d1abd734cad68b0e12191e9d215ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 1846
last-modified: Fri, 11 Mar 2022 03:48:46 GMT
etag: "622ac69e-736"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.9.5
185.154.54.6200 OK 2.0 kB URL HTTP/2 victory.style/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.9.5
IP 185.154.54.6:0
File type ASCII text, with very long lines (1985), with no line terminators
Hash 40953576e25e9c52aa63b68e69b882cd
25d84c2836201f5f580d320a10fdf94ff2daf95c
51792d876ad46401a206cb2ff927b6906e60ffec5e03676d6f4f4d92a33c3490
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.9.5 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 1985
last-modified: Fri, 11 Mar 2022 03:48:46 GMT
etag: "622ac69e-7c1"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.9.5
185.154.54.6200 OK 2.9 kB URL HTTP/2 victory.style/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.9.5
IP 185.154.54.6:0
File type ASCII text, with very long lines (2940), with no line terminators
Hash 3518c9cf4786d55c48e6b318cdf3c8de
ee13e5307a87355b9c35aa2e2907f642839a80cf
bed0bd033705c33f1742d8fab2bfed8e945567319fd00e529838392eca49eac0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.9.5 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 2940
last-modified: Fri, 11 Mar 2022 03:48:46 GMT
etag: "622ac69e-b7c"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-includes/js/underscore.min.js?ver=1.13.3
185.154.54.6200 OK 19 kB URL HTTP/2 victory.style/wp-includes/js/underscore.min.js?ver=1.13.3
IP 185.154.54.6:0
File type ASCII text, with very long lines (18876)
Hash 42aa17e1f850a414638ee4a32a3aa807
2e42d03a5e042701191650c041eae1cfb2d6c7b9
0da4791b446818516f710c51707081aec7b23a7c5212fc0b2629c973210136a4
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 18911
last-modified: Wed, 06 Jul 2022 15:06:32 GMT
etag: "62c5a4f8-49df"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-includes/js/wp-util.min.js?ver=6.0.2
185.154.54.6200 OK 1.3 kB URL HTTP/2 victory.style/wp-includes/js/wp-util.min.js?ver=6.0.2
IP 185.154.54.6:0
File type ASCII text, with very long lines (1305)
Hash 8637362089372427b52fa10a43d8109c
6009bed674718329dce6055ab09fa95181162d81
b8e78b48acc08ce31457aff168d6fb2c814d51a8739a97693cdba585d60f5b35
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-util.min.js?ver=6.0.2 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 1340
last-modified: Wed, 06 Jul 2022 15:06:32 GMT
etag: "62c5a4f8-53c"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/plugins/woo-variation-swatches/assets/js/frontend.min.js?ver=1660984533
185.154.54.6200 OK 13 kB URL HTTP/2 victory.style/wp-content/plugins/woo-variation-swatches/assets/js/frontend.min.js?ver=1660984533
IP 185.154.54.6:0
File type ASCII text, with very long lines (12750), with no line terminators
Hash c3e4cfa38f77cd1de133ac7e49eb50a9
a0580ed1cddff889f9126edcd05674658965f7d3
45817b4837903417648ff75b1dd02b77816d7909ce99ea009741b2c2ef1220d5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woo-variation-swatches/assets/js/frontend.min.js?ver=1660984533 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 12750
last-modified: Sat, 20 Aug 2022 08:35:33 GMT
etag: "63009cd5-31ce"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=3.9.5
185.154.54.6200 OK 14 kB URL HTTP/2 victory.style/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=3.9.5
IP 185.154.54.6:0
File type ASCII text, with very long lines (13460), with no line terminators
Hash 1ad1292da7039c0cfb031dca2b481880
cf73295c60e92dfd66dde73c94159fb06618a45f
15d4525ed5efdf59f8600a96d8bcf4909294c8ec6fcfe4bc00b37fdff5791f6d
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=3.9.5 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 13460
last-modified: Fri, 11 Mar 2022 03:48:46 GMT
etag: "622ac69e-3494"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/plugins/yith-woocommerce-product-bundles-premium/assets/js/frontend_add_to_cart.js?ver=1.3.5
185.154.54.6200 OK 17 kB URL HTTP/2 victory.style/wp-content/plugins/yith-woocommerce-product-bundles-premium/assets/js/frontend_add_to_cart.js?ver=1.3.5
IP 185.154.54.6:0
Hash d22d15abf5dffe1ecce7259f551f0024
0eb31507a5f1a96bd210b85cad52f07dec8a97f1
6dc7f721be9e33759a9bbd39de364bdf4db6b70d72c6cc81c7212d59855a537b
GET /wp-content/plugins/yith-woocommerce-product-bundles-premium/assets/js/frontend_add_to_cart.js?ver=1.3.5 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 17005
last-modified: Wed, 08 Apr 2020 19:50:19 GMT
etag: "5e8e2afb-426d"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl-child/assets/js/app.js
185.154.54.6200 OK 30 kB URL HTTP/2 victory.style/wp-content/themes/pearl-child/assets/js/app.js
IP 185.154.54.6:0
File type ASCII text, with very long lines (2028)
Hash 634a89e2debdb56751ac885c3d6d2fa1
452985e2fb7ba73c091837600b69129ab7faa704
4830a6268c5b068e96290ab8011e06e915b74a9340bbd69c195014fbec7a4cf6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/pearl-child/assets/js/app.js HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 30316
last-modified: Tue, 06 Mar 2018 13:41:28 GMT
etag: "5a9e9a88-766c"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.2
185.154.54.6200 OK 999 B URL HTTP/2 victory.style/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.2
IP 185.154.54.6:0
File type ASCII text, with very long lines (999), with no line terminators
Hash 6a0e8318d42803736d2fafcc12238026
c955314a7e0a9a9871329b0f042c8f0b5df49a78
2648a1333fa24d383fd73a6beaac17156ae78f4267ff7407ad60e05a788df44c
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.2 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 999
last-modified: Sat, 20 Aug 2022 08:35:10 GMT
etag: "63009cbe-3e7"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/vendor/bootstrap.min.js?ver=1.1.1
185.154.54.6200 OK 40 kB URL HTTP/2 victory.style/wp-content/themes/pearl/assets/vendor/bootstrap.min.js?ver=1.1.1
IP 185.154.54.6:0
File type ASCII text, with very long lines (39553)
Hash 2f34b630ffe30ba2ff2b91e3f3c322a1
b16fd8226bd6bfb08e568f1b1d0a21d60247cefb
9ee2fcff6709e4d0d24b09ca0fc56aade12b4961ed9c43fd13b03248bfb57afe
GET /wp-content/themes/pearl/assets/vendor/bootstrap.min.js?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 39680
last-modified: Sat, 22 Feb 2020 15:21:35 GMT
etag: "5e5146ff-9b00"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/vendor/SmoothScroll.js?ver=1.1.1
185.154.54.6200 OK 23 kB URL HTTP/2 victory.style/wp-content/themes/pearl/assets/vendor/SmoothScroll.js?ver=1.1.1
IP 185.154.54.6:0
Hash 28caad470346a31bde5404ea7c6be837
927590e21de028a332a5fa2f036c6d063860ed3c
11a137a3aa4740aa67ff3f25ec5034c22c5d4532b7112e3f116170039371016b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/pearl/assets/vendor/SmoothScroll.js?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 23367
last-modified: Sat, 22 Feb 2020 15:21:35 GMT
etag: "5e5146ff-5b47"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/js/sticky-kit.js?ver=1.1.1
185.154.54.6200 OK 10 kB URL HTTP/2 victory.style/wp-content/themes/pearl/assets/js/sticky-kit.js?ver=1.1.1
IP 185.154.54.6:0
Hash 4009149b657fcf119b873014df37b0cc
0574a26198627759191352cc3f62b3b9818a1895
8254792f413584d8cb992fac7d55a7c3b28347d2daee987825a1f6c641f7d5a5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/pearl/assets/js/sticky-kit.js?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 9979
last-modified: Sat, 22 Feb 2020 15:21:35 GMT
etag: "5e5146ff-26fb"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/vendor/jquery.touchSwipe.min.js?ver=1.1.1
185.154.54.6200 OK 20 kB URL HTTP/2 victory.style/wp-content/themes/pearl/assets/vendor/jquery.touchSwipe.min.js?ver=1.1.1
IP 185.154.54.6:0
File type ASCII text, with very long lines (19963)
Hash 47a0b3f24d24543697941db37e39f74e
c2112a0b67d52db0c40257025ed74995fab0c6ab
9ecd4e7843f749e744f5385eaa6bb8e38238e2c8a46e9d4ef9b17fe81354532d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/pearl/assets/vendor/jquery.touchSwipe.min.js?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 20375
last-modified: Sat, 22 Feb 2020 15:21:35 GMT
etag: "5e5146ff-4f97"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/js/woo.js?ver=1.1.1
185.154.54.6200 OK 3.5 kB URL HTTP/2 victory.style/wp-content/themes/pearl/assets/js/woo.js?ver=1.1.1
IP 185.154.54.6:0
Hash d05ed5c3b7e9d91b97e2841e3c89bf81
557f4582228dd5bea29ddae988519c9e7fd4f241
2dcf18d507a817497120a3731b429ed1c8413818158c83493feac746f807fe69
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/pearl/assets/js/woo.js?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 3503
last-modified: Sat, 22 Feb 2020 15:21:35 GMT
etag: "5e5146ff-daf"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/vendor/lightgallery.min.js?ver=1.1.1
185.154.54.6200 OK 18 kB URL HTTP/2 victory.style/wp-content/themes/pearl/assets/vendor/lightgallery.min.js?ver=1.1.1
IP 185.154.54.6:0
File type ASCII text, with very long lines (18223)
Hash b355e9961ac3a54dd05bedc5ccd060ed
f2fd2b118453b65237a5d4708bd19f7a18e72576
1a74e18550eeb1de8c9e1a65937952e9e5ff0be43d8da491e8a72d60ff0e940a
GET /wp-content/themes/pearl/assets/vendor/lightgallery.min.js?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 18359
last-modified: Sat, 22 Feb 2020 15:21:35 GMT
etag: "5e5146ff-47b7"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 18e0e019cd697bb16806d8f00408a319
60ceb13c31595e6cf9bb6800657e4593a1fbd670
7cb0778c80be637b67a5d198ca180a76bbfa4c32e502a0fa472a4c6946ffb56e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 22:14:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8be5570b9a5ca76c580da007a824b029
38840f2ac6476bdd5608121c5653e338c7ad9715
0b94e05080ef85432b1815eb3c6c7594c9613cfde1b51eeabee46d0d9fde64b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1516
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 22:14:43 GMT
Last-Modified: Thu, 06 Oct 2022 21:49:27 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
victory.style/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
185.154.54.6200 OK 19 kB URL HTTP/2 victory.style/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 185.154.54.6:0
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: application/javascript
content-length: 18617
last-modified: Wed, 06 Jul 2022 15:06:32 GMT
etag: "62c5a4f8-48b9"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 38c8ed81c69d2af0003394c9fb9274c5
a71c6fb6d685275f8a8c7d9d87860df08a450038
fdff30d374603ecd62c6d244a1175731787725dba48777122802055969be28f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 22:14:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6Lc1kp8gAAAAAJ6MnV4ru4ZSIojL0GAEWw8h47Ww&ver=3.0
142.250.74.164200 OK 586 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6Lc1kp8gAAAAAJ6MnV4ru4ZSIojL0GAEWw8h47Ww&ver=3.0
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 44724086d7d6a6c61700734e9d8e1ea4
522ad3aa022db60b13fe9c19d589bddfd17be89e
4a5dd7e451346c1bd64362e718a9d4e1ebc6ced958874a714a0ae62dcec67e4d
GET /recaptcha/api.js?render=6Lc1kp8gAAAAAJ6MnV4ru4ZSIojL0GAEWw8h47Ww&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 06 Oct 2022 22:14:44 GMT
date: Thu, 06 Oct 2022 22:14:44 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 586
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 18e0e019cd697bb16806d8f00408a319
60ceb13c31595e6cf9bb6800657e4593a1fbd670
7cb0778c80be637b67a5d198ca180a76bbfa4c32e502a0fa472a4c6946ffb56e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 22:14:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 87465c15992fe10c24c62a185f8c171d
fa938b624d06d1e2927c8eda6a44b2a32d930f59
239ef7fe5df8c396d96a928c20d66c842a5ec3e9ff71a3cd7c0068906fc3e537
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 22:14:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
victory.style/wp-content/uploads/2018/12/%D1%87%D0%B5%D1%80%D0%BD%D1%8B%D0%B9-16-9.jpg
185.154.54.6200 OK 15 kB URL HTTP/2 victory.style/wp-content/uploads/2018/12/%D1%87%D0%B5%D1%80%D0%BD%D1%8B%D0%B9-16-9.jpg
IP 185.154.54.6:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Hash 4dad2d48a9eb3294633d999cdfb1cebe
3d20322a72a6efd61fe5e75790fdd8eb341d7c31
fe0fe23416a02e6b7c36b3eae2aea934462a8dd8e3ee0a6c26567e3f5100383f
GET /wp-content/uploads/2018/12/%D1%87%D0%B5%D1%80%D0%BD%D1%8B%D0%B9-16-9.jpg HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:44 GMT
content-type: image/jpeg
content-length: 15027
last-modified: Sat, 29 Dec 2018 13:33:40 GMT
etag: "5c2777b4-3ab3"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/uploads/stm_fonts/stmicons/vicons/stmicons.ttf?wudxbj
185.154.54.6200 OK 14 kB URL HTTP/2 victory.style/wp-content/uploads/stm_fonts/stmicons/vicons/stmicons.ttf?wudxbj
IP 185.154.54.6:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, stmicons \012- data
Hash 94256942e5d031083d6dff8bec2edf4c
883d146bcbc89150cdd905c2a626e0ea134083da
4f648805ee9fe341ed8f66bd31ce56aea6095a3cc85fb84a9904fada1687a7ab
GET /wp-content/uploads/stm_fonts/stmicons/vicons/stmicons.ttf?wudxbj HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/wp-content/uploads/stm_fonts/stmicons/vicons/stmicons.css?ver=1.0.1
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:44 GMT
content-type: application/font-sfnt
content-length: 13584
last-modified: Tue, 06 Mar 2018 13:41:27 GMT
etag: "3510-566be99666fc0"
accept-ranges: bytes
strict-transport-security: max-age=31536000;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash aea480478c3be7392d09e8a92826542f
b660fb42c8122efb07b3d1de1a8907ad1f6e1a60
ee691969e4d61ba3145fe90b28c5051367c223f31c0e0ee001d8481035090760
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 22:14:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash aea480478c3be7392d09e8a92826542f
b660fb42c8122efb07b3d1de1a8907ad1f6e1a60
ee691969e4d61ba3145fe90b28c5051367c223f31c0e0ee001d8481035090760
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 22:14:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash aea480478c3be7392d09e8a92826542f
b660fb42c8122efb07b3d1de1a8907ad1f6e1a60
ee691969e4d61ba3145fe90b28c5051367c223f31c0e0ee001d8481035090760
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 22:14:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash aea480478c3be7392d09e8a92826542f
b660fb42c8122efb07b3d1de1a8907ad1f6e1a60
ee691969e4d61ba3145fe90b28c5051367c223f31c0e0ee001d8481035090760
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 22:14:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://victory.style
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 05:42:51 GMT
expires: Fri, 06 Oct 2023 05:42:51 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 59513
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.27.12.161101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.27.12.161:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 10hd85F59PQ22kMG3YrYOw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Qdkwgw9qgaTXgHZxQd70HbXwo10=
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2
216.58.207.195200 OK 26 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 26240, version 1.0\012- data
Hash 4a90976686fcbd8296c7d7fccc04c273
bcb82e93ac7ad1fa2af6a37009a200f79f4cb4e5
59bd288e64c57e034672999e33ebda6eb5ad1575945eb563dbfb5b44f226e1e1
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://victory.style
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26240
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 19:01:39 GMT
expires: Tue, 03 Oct 2023 19:01:39 GMT
cache-control: public, max-age=31536000
age: 270785
last-modified: Mon, 15 Aug 2022 18:14:37 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
victory.style/wp-content/uploads/stm_fonts/stmicons/store/stmicons.ttf?5j6te2
185.154.54.6200 OK 15 kB URL HTTP/2 victory.style/wp-content/uploads/stm_fonts/stmicons/store/stmicons.ttf?5j6te2
IP 185.154.54.6:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, stmicons \012- data
Hash dc13d2af2317a4aeaa0ed64ed239ffb8
7bf2c6199dad90f20de43b56ca8dfc5108c0b0f5
59e5a0301145cba4a4db2a9f272f5db57780d5a41655be14171d4c3a59e32daf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/stm_fonts/stmicons/store/stmicons.ttf?5j6te2 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/wp-content/uploads/stm_fonts/stmicons/store/stmicons.css?ver=1.0.1
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:44 GMT
content-type: application/font-sfnt
content-length: 14808
last-modified: Tue, 06 Mar 2018 13:41:27 GMT
etag: "39d8-566be99666fc0"
accept-ranges: bytes
strict-transport-security: max-age=31536000;
X-Firefox-Spdy: h2
victory.style/wp-content/uploads/2019/06/fav.png
185.154.54.6200 OK 15 kB URL HTTP/2 victory.style/wp-content/uploads/2019/06/fav.png
IP 185.154.54.6:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash df1a1bc8169cffce2044bb7e7c761cac
7f6133fcd256bbaf11a8b3c0d4510b1f7b7c4a7f
d5a28b0e77d654636ab38244f8cb1bc707de537d0782dcd0d02c056e3be39285
GET /wp-content/uploads/2019/06/fav.png HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:44 GMT
content-type: image/png
content-length: 14744
last-modified: Thu, 20 Jun 2019 13:18:54 GMT
etag: "5d0b87be-3998"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash aea480478c3be7392d09e8a92826542f
b660fb42c8122efb07b3d1de1a8907ad1f6e1a60
ee691969e4d61ba3145fe90b28c5051367c223f31c0e0ee001d8481035090760
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 22:14:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
142.250.74.163200 OK 159 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (711)
Size 159 kB (158844 bytes)
Hash b4ed95d4318e3b78b936c9c0f1ffa96e
b53c9376b1459afb07fb4b5c2e8d8dad776d3a02
3c21880cb7be6bec40f9d40c23ad39c9758999cf950cec07b86c83b21fde175f
GET /recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://victory.style
Connection: keep-alive
Referer: https://victory.style/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158844
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 21:02:07 GMT
expires: Thu, 05 Oct 2023 21:02:07 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 Sep 2022 04:02:34 GMT
content-type: text/javascript
age: 90757
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
victory.style/wp-content/uploads/stm_fonts/stmicons/startup/stmicons.ttf?2gjtc0
185.154.54.6200 OK 3.3 kB URL HTTP/2 victory.style/wp-content/uploads/stm_fonts/stmicons/startup/stmicons.ttf?2gjtc0
IP 185.154.54.6:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, stmicons \012- data
Hash 0b98eda3f7548d9a79cdf94345bd63e8
a54ae13caf81f92d0b398610ceb6187c51f6e757
6467592c97adcf4730685bbaaf12ebaa704b0c7868cb04739f9eb5c1fcb9f133
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/stm_fonts/stmicons/startup/stmicons.ttf?2gjtc0 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/wp-content/uploads/stm_fonts/stmicons/startup/stmicons.css?ver=1.0.1
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:44 GMT
content-type: application/font-sfnt
content-length: 3264
last-modified: Tue, 06 Mar 2018 13:41:27 GMT
etag: "cc0-566be99666fc0"
accept-ranges: bytes
strict-transport-security: max-age=31536000;
X-Firefox-Spdy: h2
victory.style/wp-content/uploads/stm_fonts/stmicons/rental/stmicons.ttf?flnufk
185.154.54.6200 OK 23 kB URL HTTP/2 victory.style/wp-content/uploads/stm_fonts/stmicons/rental/stmicons.ttf?flnufk
IP 185.154.54.6:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, stmicons \012- data
Hash 57ff799d60a915ba89dedbc99fb25e8d
484227f373872b5f6a4829eeac84f69b2a75ff74
0a7f5859332665d14d9da49492cf41db4ddfaed0bca2e7fde0c8e2d8a1cf4ca0
GET /wp-content/uploads/stm_fonts/stmicons/rental/stmicons.ttf?flnufk HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/wp-content/uploads/stm_fonts/stmicons/rental/stmicons.css?ver=1.0.1
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:44 GMT
content-type: application/font-sfnt
content-length: 23048
last-modified: Tue, 06 Mar 2018 13:41:27 GMT
etag: "5a08-566be99666fc0"
accept-ranges: bytes
strict-transport-security: max-age=31536000;
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 12:31:58 GMT
expires: Sun, 01 Oct 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 466966
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 00:48:31 GMT
expires: Sat, 30 Sep 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 595573
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12307
Expires: Fri, 07 Oct 2022 01:39:51 GMT
Date: Thu, 06 Oct 2022 22:14:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12307
Expires: Fri, 07 Oct 2022 01:39:51 GMT
Date: Thu, 06 Oct 2022 22:14:44 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38d969a0-82cd-4d27-8f25-f1b95cacc89f.webp
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38d969a0-82cd-4d27-8f25-f1b95cacc89f.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ed3fa86bbe319c9a2f81ff625e677cb0
e3d5210207f6ff922bc28e328285059c19a523a4
5919694bd942a4f25d5b7ffc3f8aee1af6cdb8461d4ba3dba9a2e72cf19164c8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38d969a0-82cd-4d27-8f25-f1b95cacc89f.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7261
x-amzn-requestid: e1bdf299-b29e-4f58-9c8a-33f5dacdb081
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZmirBELYoAMFfgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4b13-1969b32c6f4f7e5749e7caa0;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: FO5iGJFmDfdklhzIVOxp4x3AV7ltFqBDDlYBz39Zzx99t7oykNR2WQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 a4479a6315f90864adc6175b280f8f44.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:43:40 GMT
age: 1864
etag: "e3d5210207f6ff922bc28e328285059c19a523a4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc902aef-d39a-4522-af06-32745f1f98f1.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc902aef-d39a-4522-af06-32745f1f98f1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 54e5cb120b19e849a196a1ead868e4c4
15e26ce930dc747f058810837c47a4728efe0b75
a95640f974032f37a613af7648bd83697c72bb4ddf4a459e1393f7c9e8f926c3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc902aef-d39a-4522-af06-32745f1f98f1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6662
x-amzn-requestid: ea908895-144e-4211-8363-b721f2e4490a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zmi9BFvFoAMF89A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4b86-1514f8460877c8c31b7136f9;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:41:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: cdG_-k3tyBdbZfZGbk-CD7ii8ZJ2EBr5kaUcvnEoyAmSR6PEdKhZmw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:43:41 GMT
age: 1863
etag: "15e26ce930dc747f058810837c47a4728efe0b75"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F925ee025-58b0-436d-8cda-192ec7c44c33.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F925ee025-58b0-436d-8cda-192ec7c44c33.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ae567a6922213a56f35ddc5d5cc1d0f1
fc49df76e8625d8542b0634bfcf12b8d6cda445c
135f25c0350ad26235447cdfba53a45e5d0f9f4c07a6c1e66dd2ed4a4a487f86
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F925ee025-58b0-436d-8cda-192ec7c44c33.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9995
x-amzn-requestid: 46d789c8-c830-4003-a752-472ee853a14b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zmhi-GRZIAMFzag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4946-5d69f864308ea18c0440203e;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:50 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: AhetYWEoOD9HJelPo3_Uo1Jng9xDy_qbIwt1H-_Qyxxtcf0O52pYmw==
via: 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 0800f067ff646622f3e8e507cb9b52e8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:43:40 GMT
age: 1864
etag: "fc49df76e8625d8542b0634bfcf12b8d6cda445c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F773e2560-6c32-4224-8404-2794a40799cd.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F773e2560-6c32-4224-8404-2794a40799cd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 39cf77bd6009d3c538455b3846680278
ad0ed304e5173bdb8f08254c2e4a5032e8fcafa5
792997f1f9a485ca57d274c7899e4f526476bf15ed564a8b74d248c4458b188f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F773e2560-6c32-4224-8404-2794a40799cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9564
x-amzn-requestid: 38d87e57-3600-4e0e-bd24-a8f857800bc6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZmhkGHtZIAMFz0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f494d-21b041d97b406dea36b9f35b;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:57 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: rqw7Z-JNaRJZf8828i9HPcP-J3mn3ROnnXRJwD6dCiRvFSZAKp3WDw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 57bd3a2d9e0e4cbf89d9eb3d7dfb916e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:43:40 GMT
age: 1864
etag: "ad0ed304e5173bdb8f08254c2e4a5032e8fcafa5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e30ca5022768294665070cafc9d489c
c6ebf53c21206cfcf8e70279d3ae43f0170ade3a
6b834cdae692318a114c0d82ebff4fa8f4e65526983758e08ffb130d4d86020f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9046
x-amzn-requestid: d560c8ba-6e81-46f7-a451-30c40fbfce6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zmhi_F7qIAMFkQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4946-012e65d675558ec8544a1f30;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: Vy9jQu1a8BGypY4C4u_9gao5wPEkVHgArhG2zMNdH8KfBS0lfmyHBA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 57bd3a2d9e0e4cbf89d9eb3d7dfb916e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:43:40 GMT
age: 1864
etag: "c6ebf53c21206cfcf8e70279d3ae43f0170ade3a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F90038edb-d110-41cd-98e0-d47715e9135b.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F90038edb-d110-41cd-98e0-d47715e9135b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f2ac0ed19ef64f2f765ce7adb2a8fa7c
b6ea582befd01324dd456d59d3f610101dcf910c
d324c9f67b0efc38a935195076488dd0a62f61b893706ecf40ad1f2c5550a7d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F90038edb-d110-41cd-98e0-d47715e9135b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11492
x-amzn-requestid: 7ac7e364-5204-4101-87f6-89fbdf3c5cb0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zmhi_GKSoAMFdkg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4946-4ae692e2617657225c88e5fb;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:50 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: trKPg7J7s_BuMlog8HXU2ipo4dQlR3RAJ93KqFxf0BhcrzB8FDx3_A==
via: 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 25b9a991f871f75614e7f92f97b136a4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:43:40 GMT
age: 1864
etag: "b6ea582befd01324dd456d59d3f610101dcf910c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A100%2C200%2C300%2C400%2C400i%2C500%2C600%2C700%2C800%2C900%7COpen+Sans%3A100%2C200%2C300%2C400%2C400i%2C500%2C600%2C700%2C800%2C900&ver=1.1.1
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A100%2C200%2C300%2C400%2C400i%2C500%2C600%2C700%2C800%2C900%7COpen+Sans%3A100%2C200%2C300%2C400%2C400i%2C500%2C600%2C700%2C800%2C900&ver=1.1.1
IP 142.250.74.10:0
GET /css?family=Open+Sans%3A100%2C200%2C300%2C400%2C400i%2C500%2C600%2C700%2C800%2C900%7COpen+Sans%3A100%2C200%2C300%2C400%2C400i%2C500%2C600%2C700%2C800%2C900&ver=1.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 06 Oct 2022 22:14:44 GMT
date: Thu, 06 Oct 2022 22:14:44 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
victory.style/?wc-ajax=get_refreshed_fragments
185.154.54.6200 OK 0 B URL HTTP/2 victory.style/?wc-ajax=get_refreshed_fragments
IP 185.154.54.6:0
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://victory.style
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:44 GMT
content-type: application/json; charset=UTF-8
x-powered-by: PHP/7.3.33
access-control-allow-origin: https://victory.style
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-transform, no-cache, no-store, must-revalidate
set-cookie: utm_source=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.victory.style
utm_medium=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.victory.style
utm_term=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.victory.style
utm_content=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.victory.style
utm_campaign=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.victory.style
gclid=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.victory.style
handl_original_ref=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; expires=Sat, 05-Nov-2022 22:14:44 GMT; Max-Age=2592000; path=/; domain=.victory.style
handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; expires=Sat, 05-Nov-2022 22:14:44 GMT; Max-Age=2592000; path=/; domain=.victory.style
handl_ip=91.90.42.154; expires=Sat, 05-Nov-2022 22:14:44 GMT; Max-Age=2592000; path=/; domain=.victory.style
handl_ref=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; expires=Sat, 05-Nov-2022 22:14:44 GMT; Max-Age=2592000; path=/; domain=.victory.style
handl_url=https%3A%2F%2Fvictory.style%2F%3Fwc-ajax%3Dget_refreshed_fragments; expires=Sat, 05-Nov-2022 22:14:44 GMT; Max-Age=2592000; path=/; domain=.victory.style
email=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.victory.style
username=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.victory.style
strict-transport-security: max-age=31536000;
X-Firefox-Spdy: h2
victory.style/wp-content/themes/pearl/assets/css/app.css?ver=1.1.1
185.154.54.6200 OK 0 B URL HTTP/2 victory.style/wp-content/themes/pearl/assets/css/app.css?ver=1.1.1
IP 185.154.54.6:0
GET /wp-content/themes/pearl/assets/css/app.css?ver=1.1.1 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 337189
last-modified: Sat, 25 Apr 2020 21:29:36 GMT
etag: "5ea4abc0-52525"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
victory.style/wp-content/uploads/stm_uploads/skin-custom.css?ver=1036
185.154.54.6200 OK 0 B URL HTTP/2 victory.style/wp-content/uploads/stm_uploads/skin-custom.css?ver=1036
IP 185.154.54.6:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/stm_uploads/skin-custom.css?ver=1036 HTTP/1.1
Host: victory.style
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory.style/usps/verification/
Cookie: handl_landing_page=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F; handl_ip=91.90.42.154; handl_url=https%3A%2F%2Fvictory.style%2Fusps%2Fverification%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 06 Oct 2022 22:14:43 GMT
content-type: text/css
content-length: 93308
last-modified: Fri, 26 Aug 2022 14:12:22 GMT
etag: "6308d4c6-16c7c"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2