r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d27590a1d3cbe1e9632b8ae92aaae3f4
202b34e8a0c3b88c8826fd56c6227b34f2cd6f46
6bcfa518476658128c1fb4ea2435c4e58531454cf97138dce7ece9def589aead
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BCFA518476658128C1FB4EA2435C4E58531454CF97138DCE7ECE9DEF589AEAD"
Last-Modified: Wed, 16 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3489
Expires: Fri, 18 Nov 2022 11:39:14 GMT
Date: Fri, 18 Nov 2022 10:41:05 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash be1be806b5dca7facbb45a6c3db44652
7ae9380a2f3eca959fe6ff6b3832a17cffd12cf4
1f3338058f8e9cae5c9fdd733c74564312726b01c6efdcd628d851d0c99876b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4592
Cache-Control: max-age=90410
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:41:05 GMT
Etag: "63760d7b-1d7"
Expires: Sat, 19 Nov 2022 11:47:55 GMT
Last-Modified: Thu, 17 Nov 2022 10:31:23 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3a38b6dd8a4cc335c026aebf2ed348b6
8a386e0ccb0ca4dc502746c45b2ebc3aa3f83cf8
8b4040a645cec1841a00a22765eb3a74978559daf15c54bd4b41b6b48aab7f95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B4040A645CEC1841A00A22765EB3A74978559DAF15C54BD4B41B6B48AAB7F95"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4714
Expires: Fri, 18 Nov 2022 11:59:39 GMT
Date: Fri, 18 Nov 2022 10:41:05 GMT
Connection: keep-alive
vivonodesigns.com/es/imalqauuat
45.113.122.66301 Moved Permanently 251 B URL HTTP/1.1 vivonodesigns.com/es/imalqauuat
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash cd5b7b783387e14eb1c9c9eb38c24c93
4e0375bb5c8c2eebcf5f498a1ebff4fcf8b5417e
21eaf9fcf5482ba08738f1eedca5c3ea924b219446c7af6bb70c2d0593bab219
Analyzer Verdict Alert fortinet Malware
GET /es/imalqauuat HTTP/1.1
Host: vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 18 Nov 2022 10:40:53 GMT
Server: nginx/1.17.6
Content-Type: text/html; charset=iso-8859-1
Content-Length: 251
Location: https://www.vivonodesigns.com/es/imalqauuat
Cache-Control: max-age=172800
Expires: Sun, 20 Nov 2022 10:41:05 GMT
X-Server-Cache: true
X-Proxy-Cache: MISS
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 18 Nov 2022 09:44:47 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3378
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 8M3SRVBJlGE886U9hczYWrO1Ft1Iopmv7cqZjmGTRv9rp6I4raWp83PqsUmIjcgKEjVpoPunstM=
x-amz-request-id: 1TFXKB84P96K6VS1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 18 Nov 2022 10:15:34 GMT
age: 1531
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 10:41:06 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 18 Nov 2022 09:44:49 GMT
cache-control: public,max-age=3600
age: 3377
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a7e9e0a154a7f925610a46a25407b2c9
412b3520f350e89b5e68eca4cfc0f06925abb129
d9b88b120a6382d47a216e63c59d6ca77bff9fb2864fee23c10b1c5f32698064
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D9B88B120A6382D47A216E63C59D6CA77BFF9FB2864FEE23C10B1C5F32698064"
Last-Modified: Wed, 16 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21529
Expires: Fri, 18 Nov 2022 16:39:55 GMT
Date: Fri, 18 Nov 2022 10:41:06 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c10055ce87434f700ff8b20e3be1f919
477b3c9f1da0c464282bb54572737e76b6e346da
4d78eb296876122e5ff40fcd7667adf1bf8a4b1ee4c8203c88a63ce8d7910a57
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5226
Cache-Control: max-age=85975
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:41:06 GMT
Etag: "6375f9af-1d7"
Expires: Sat, 19 Nov 2022 10:34:01 GMT
Last-Modified: Thu, 17 Nov 2022 09:06:55 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
www.vivonodesigns.com/es/imalqauuat
45.113.122.66302 Found 221 B URL HTTP/2 www.vivonodesigns.com/es/imalqauuat
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a46abbc2ae6591607cfc9cbdd38ea7ec
8d2366e681d1e4e04a80e4c0cdda63fd8f9d3fb3
51aeea2732c5a39f2e89d35e22902673c26b053a3277d21dc97ea93f9058ff4b
Analyzer Verdict Alert fortinet Malware
GET /es/imalqauuat HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Fri, 18 Nov 2022 10:41:06 GMT
server: Apache
content-type: text/html; charset=iso-8859-1
content-length: 221
location: https://www.vivonodesigns.com/404.php
cache-control: max-age=172800
expires: Sun, 20 Nov 2022 04:50:19 GMT
x-server-cache: true
x-proxy-cache: HIT
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.42.74.230101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.42.74.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: AsM0CklkvyWZlhN02iX9fQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: bbTigXaATCOPtF9H3xWYwmHRv74=
www.vivonodesigns.com/404.php
45.113.122.66200 OK 5.3 kB URL HTTP/2 www.vivonodesigns.com/404.php
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash d979633079759eecb699c92f9ce482c3
16dcf4a5e678f3f21fafc9ddbccfded2201dd6fd
635af4a04db4356b2e614aec57c5c2356d70e5fc6d7085608d7ba5d248093665
Analyzer Verdict Alert fortinet Malware
GET /404.php HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 10:41:06 GMT
server: Apache
content-type: text/html; charset=UTF-8
content-length: 5304
cache-control: max-age=172800
expires: Sun, 20 Nov 2022 10:41:06 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-server-cache: true
x-proxy-cache: MISS
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:41:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:41:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.vivonodesigns.com/css/style.css
45.113.122.66200 OK 17 kB URL HTTP/2 www.vivonodesigns.com/css/style.css
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 3dadfa6e90cb28669ccd0e3bc5e3179b
0df0e371c7446c71f02b4719f633b46629dde6f8
521e6d1f46200412f4e120cbba5f429c72f1ee5009333efed05b27828ff0786d
GET /css/style.css HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 22 Dec 2018 16:13:56 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 16765
content-type: text/css
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/images/logo.png
45.113.122.66200 OK 16 kB URL HTTP/2 www.vivonodesigns.com/images/logo.png
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 611 x 136, 8-bit/color RGBA, non-interlaced\012- data
Hash 86833bb9b836393c62049476f09e0cf3
1ec16e4f33a69a8a965bc2cb3ff2da12d2afee89
cca773a98d8970f19b830432eeba9386b1057723eda3a7e8ef3d74bfc4b0f5d6
GET /images/logo.png HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:48:48 GMT
accept-ranges: bytes
content-length: 16073
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 10:41:07 GMT
vary: User-Agent
content-type: image/png
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
104.17.25.14200 OK 5.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (30837)
Hash 109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 10:41:07 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 585176
expires: Wed, 08 Nov 2023 10:41:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q5q2PII%2BuUqrs5J3zm39mi36sKwhAgDNakt2Vsf4YXKriH%2Fu4a75wAUn2%2BMV%2BnqnkoDk7PEV7Wx52sT0iDwda%2FsbA61eqzNulNXv%2BH%2BfF0ZT8J%2FBT%2B1QOIqOq4QVPt8atBv7dMrU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76c01785ad01b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.vivonodesigns.com/css/animsition.css
45.113.122.66200 OK 3.3 kB URL HTTP/2 www.vivonodesigns.com/css/animsition.css
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash e553ded34e1f37547a4907072d309e9e
1e1ab007de2beaab207d6c4aafd7c135457ceee3
df65a125b4a0d06197a4c19373f6c5f1e7f5406adc8388118e52d5b75d365bb3
GET /css/animsition.css HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Feb 2019 15:17:16 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3321
content-type: text/css
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/css/linearicons.css
45.113.122.66200 OK 7.8 kB URL HTTP/2 www.vivonodesigns.com/css/linearicons.css
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 4eae14f59826ee0e5790d435a02376b0
eec972e0342e438255a93e82121b57c920360ea0
b76d7395e13466fbdef1e8c5a0c387ee7e250fff2104ee5ce72b4f46aa714ac9
GET /css/linearicons.css HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Oct 2018 13:17:18 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7808
content-type: text/css
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/js/animsition.min.js
45.113.122.66200 OK 2.2 kB URL HTTP/2 www.vivonodesigns.com/js/animsition.min.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (5415)
Hash ffa67ed25cc4519c5edb415bb7e3b560
e2bc07caad35c056dd7a322d171f5e45703c596e
0540dbf57b36e14f96aaa69041d3f8298917a1f2483f181047736cb1ceb9f649
Analyzer Verdict Alert fortinet Malware
GET /js/animsition.min.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:36 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2164
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/js/plugins.js
45.113.122.66200 OK 1.5 kB URL HTTP/2 www.vivonodesigns.com/js/plugins.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (4645), with no line terminators
Hash 7148f83d08590dd0fb5a5aa602b6b595
a91e45c9fe3f60e15ef3cf2b5a27abd4822d3782
38e4edaf45f30e402e82bfd6d85102debd24db5128c4bf74c04975785125dc77
Analyzer Verdict Alert fortinet Malware
GET /js/plugins.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:40 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1526
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15645
Expires: Fri, 18 Nov 2022 15:01:53 GMT
Date: Fri, 18 Nov 2022 10:41:08 GMT
Connection: keep-alive
www.vivonodesigns.com/js/imagesloaded.pkgd.min.js
45.113.122.66200 OK 2.0 kB URL HTTP/2 www.vivonodesigns.com/js/imagesloaded.pkgd.min.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (5324)
Hash 422e1b8247953b0b4ec02fef17fd3866
da46bd225bd2c67b4ce27b4d0360dcf421013d3c
178a9f3dda0741a05ab84f556b142af7e3f958ff6669e6770548f90dbc78959e
Analyzer Verdict Alert fortinet Malware
GET /js/imagesloaded.pkgd.min.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:36 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2006
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15645
Expires: Fri, 18 Nov 2022 15:01:53 GMT
Date: Fri, 18 Nov 2022 10:41:08 GMT
Connection: keep-alive
www.vivonodesigns.com/js/rev-slider/revolution.extension.migration.min.js
45.113.122.66200 OK 1.8 kB URL HTTP/2 www.vivonodesigns.com/js/rev-slider/revolution.extension.migration.min.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (5692)
Hash 6414f4d270973ca4103a062060679f74
95f2a82e3b5504617e5dd444ae65b7ecdfb40639
c3c60bf3acabfb009e1110677d03f9798fd7890bd6255cb934ab295c64d5a4aa
Analyzer Verdict Alert fortinet Malware
GET /js/rev-slider/revolution.extension.migration.min.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:42 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1842
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/js/rev-slider/revolution.extension.kenburn.min.js
45.113.122.66200 OK 1.4 kB URL HTTP/2 www.vivonodesigns.com/js/rev-slider/revolution.extension.kenburn.min.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (3150)
Hash 4af1822a0508c465c1c21e37e136ed89
9b0dcaab7a90998ca8d649a4eff483a2bcf1213a
4421f3fe19c4071bde5f1ee9f2a36a0336bdaf34641f731a758c976bd3b0153c
Analyzer Verdict Alert fortinet Malware
GET /js/rev-slider/revolution.extension.kenburn.min.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:42 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1448
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/js/rev-slider-init.js
45.113.122.66200 OK 1.6 kB URL HTTP/2 www.vivonodesigns.com/js/rev-slider-init.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1164)
Hash c4373f0b04ad35039323ce5c5ac064bd
4335a83cfca7caa618509f05b1ad1c5fbe18e45d
fdd816064f50ffef0cd9925d6d2d6294010e5ea46a0148fab132142e9bf5ce8a
Analyzer Verdict Alert fortinet Malware
GET /js/rev-slider-init.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:40 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1553
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/js/scripts.js
45.113.122.66200 OK 2.5 kB URL HTTP/2 www.vivonodesigns.com/js/scripts.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2152)
Hash 79a535fb1bfee180bedc45822ba8810a
5cb94765b52d0882c3206948eec038266ab0f951
bcf2d46ab660d8ced71b3b8f963c8d1e155e5099739a5b22e2c8f8493a1b6a70
Analyzer Verdict Alert fortinet Malware
GET /js/scripts.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:40 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2472
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/css/animate.css
45.113.122.66200 OK 7.1 kB URL HTTP/2 www.vivonodesigns.com/css/animate.css
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 2e3e181ba09aeef1598179afb032952b
0628d62595a6ba3ebcd6140bbaad6e171bd82240
a6ba0f79e8f4e59774bbd380cbfa624208b960c7cb11a8d76bc4f9b8566a8c1c
GET /css/animate.css HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:47:28 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7114
content-type: text/css
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/js/wow.min.js
45.113.122.66200 OK 3.2 kB URL HTTP/2 www.vivonodesigns.com/js/wow.min.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 (with BOM) text, with very long lines (8396)
Hash beb7d88052fd4f1fa37897cd04bdc6e1
047815920525af8963a145a7900a740128845c3c
5b5bb7e0821a1f99cb9a676ae8d9b8bd006a827ab810e609bfc8c0b785a90cc0
Analyzer Verdict Alert fortinet Malware
GET /js/wow.min.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:40 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3223
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Playfair+Display:400,400i,700,700i|Poppins:300,400,500,600,700
142.250.74.10200 OK 4.5 kB URL HTTP/2 fonts.googleapis.com/css?family=Playfair+Display:400,400i,700,700i|Poppins:300,400,500,600,700
IP 142.250.74.10:0
Hash 3aa82cf3cbb15990aba4f4cb4e57581d
09007719cc8010868e3373890767ba97c6e7ffaa
4848c151a86542813105b313dd8eaac4cb18c4d961ae1a2091e7697e35cff4d1
GET /css?family=Playfair+Display:400,400i,700,700i|Poppins:300,400,500,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 18 Nov 2022 10:41:07 GMT
date: Fri, 18 Nov 2022 10:41:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15645
Expires: Fri, 18 Nov 2022 15:01:53 GMT
Date: Fri, 18 Nov 2022 10:41:08 GMT
Connection: keep-alive
www.vivonodesigns.com/css/owl.carousel.css
45.113.122.66200 OK 1.3 kB URL HTTP/2 www.vivonodesigns.com/css/owl.carousel.css
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 790401c8013134c23de0d6a780bbfeb3
ce5d266403de88cecfdf4b481f08a5d040000337
0de8fdb4c3efbf31d0f19dfe6d51647e67b706534c53eb3ec8d5a227f8fe6aec
GET /css/owl.carousel.css HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:47:30 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1263
content-type: text/css
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9672fb80-baaa-4ab8-b080-dc8c1ce94400.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9672fb80-baaa-4ab8-b080-dc8c1ce94400.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 05289172c1455c4134e496c6f4606efd
ce1bb33256b0754f9acc01e7e9f3e5dc85f89244
a8b4411a0310cc376efe2aec7c0830b8d3b63b8827631b0ff43ec092f1f80f82
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9672fb80-baaa-4ab8-b080-dc8c1ce94400.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12065
x-amzn-requestid: 45c97153-71c7-4985-a1ad-fc21a509d153
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-K5FyVIAMFtDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376aa45-0f9d22dd544a4580570f3089;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:40:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: dxT2WJB7m5tUhgBn2PwTIN4Zskzm3X7CW-29hl1nCyNPbKt5j6q5iA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:02:57 GMT
age: 45491
etag: "ce1bb33256b0754f9acc01e7e9f3e5dc85f89244"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.vivonodesigns.com/css/jquery.pagepiling.css
45.113.122.66200 OK 893 B URL HTTP/2 www.vivonodesigns.com/css/jquery.pagepiling.css
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 9bc6dd5605e66ad8ce29d1de9772fe06
4e68ffeb06fe0ef53636b29f02334605d1cde869
35924b5ac9e850bce301a1c332d0b61518e724ca9bd666d5dedd1de22dc6a7cb
GET /css/jquery.pagepiling.css HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:47:28 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 893
content-type: text/css
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd5bdc050716bb76afe8090fc81617e7
5109c156b180727767fc03c411190ccc0d3fb5fc
9b13e7838946c6654dda17886c2ca8d42de934acb93f4bddb1008dfa1bd1ea99
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11715
x-amzn-requestid: 20e508bd-6568-4225-9bee-c683a49d44f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUHkpIAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-7dc726b94a37fc667e2e6646;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: X3SUo1LP97TxraRav0ftskBhzWkTJInHaS44PW26yloF-dgD-bHBuA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 00:26:57 GMT
age: 36851
etag: "5109c156b180727767fc03c411190ccc0d3fb5fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd2b71261-68cc-40d8-9fce-033095c5889d.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd2b71261-68cc-40d8-9fce-033095c5889d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f22c78eb5d83b4a108e0fff0806ff1a1
7e246b0b4697140ae7429aeff92aa16ab88dd6f6
1afadc1fb89b5a321e067893609c154b6d7dbd39123d15883c799aab6214cd4a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd2b71261-68cc-40d8-9fce-033095c5889d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9661
x-amzn-requestid: dcff71d8-a6ac-45f2-acc1-e14314334495
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-7RHGAIAMFSOA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab7b-3598a746247615de161878e3;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:45:31 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nNm3mly0cy8etL6Tg2gC2jpSc37d77L8rNny7C5fSTG2jn4zRo04lg==
via: 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:49:45 GMT
age: 46283
etag: "7e246b0b4697140ae7429aeff92aa16ab88dd6f6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.vivonodesigns.com/js/rev-slider/revolution.extension.actions.min.js
45.113.122.66200 OK 3.1 kB URL HTTP/2 www.vivonodesigns.com/js/rev-slider/revolution.extension.actions.min.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (8665)
Hash aef85367db32619d3106116bd442ad4e
21f1ffe96eb28db51273d6f8e1ed9377bec147be
5dc9fa6b2ffec8f5912b5bd986a8a81da0392445853e270e4d4d7c62da798a2b
Analyzer Verdict Alert fortinet Malware
GET /js/rev-slider/revolution.extension.actions.min.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:42 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3079
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/css/magnific-popup.css
45.113.122.66200 OK 2.2 kB URL HTTP/2 www.vivonodesigns.com/css/magnific-popup.css
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 5691b07253c4a30382130c2da4be8343
4c12d34016c7061965c996599c4086683958e0f1
095326e797678e4aa4be8217bf991180f7b79cdcce552897123ffa68981a0747
GET /css/magnific-popup.css HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:47:28 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2190
content-type: text/css
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/css/jquery.fullPage.css
45.113.122.66200 OK 1.6 kB URL HTTP/2 www.vivonodesigns.com/css/jquery.fullPage.css
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash d8f485eaedb429105070b792b73549e0
d3d3a65c1b0c9e36b0df6e4a00c03572d572872e
1a72a7f5eaa04dff6fffc67fa65ee6aca9b814da221fea504c943c5d6a452376
GET /css/jquery.fullPage.css HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:47:28 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1576
content-type: text/css
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15645
Expires: Fri, 18 Nov 2022 15:01:53 GMT
Date: Fri, 18 Nov 2022 10:41:08 GMT
Connection: keep-alive
www.vivonodesigns.com/js/rev-slider/revolution.extension.carousel.min.js
45.113.122.66200 OK 2.9 kB URL HTTP/2 www.vivonodesigns.com/js/rev-slider/revolution.extension.carousel.min.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (7370)
Hash 194471d6d7c0db97d53f1846ee43a826
b7d1f2aca95aee6419dc0ae0e4a2a4e6e7982b83
33ed826d27bdc72ef38d48979b3a1b37a3df8e7d5dbaa8a132016adc57d5ee41
Analyzer Verdict Alert fortinet Malware
GET /js/rev-slider/revolution.extension.carousel.min.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:42 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2935
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d9d6315-de31-43b3-8c19-dc3528c7eefe.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d9d6315-de31-43b3-8c19-dc3528c7eefe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 158a07cdb0174c0cf0c2473cb069a459
46753b0476f8a272a047b07070db272a0fd3b42e
40bacc15755d920085e52af0bc9f6e8eac0379a31765f6ba72cf53546e296a2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d9d6315-de31-43b3-8c19-dc3528c7eefe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5917
x-amzn-requestid: 47ec37aa-10ef-4e35-a76c-301d34e4a102
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw9VaHt9oAMFpIg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376a8ef-6eb9776b4df9facd0f19c974;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:34:39 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qReov2_mDTOantzcbI8dBALwKBsq58MGL2yHuJwk0DxNL7um6T_M1g==
via: 1.1 76dcc62b68091cc715d50b5017be77fc.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:55:57 GMT
age: 45911
etag: "46753b0476f8a272a047b07070db272a0fd3b42e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.vivonodesigns.com/js/jquery.stellar.min.js
45.113.122.66200 OK 4.1 kB URL HTTP/2 www.vivonodesigns.com/js/jquery.stellar.min.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (12453)
Hash 3525f2201b4f09032255aa580b5ffb6f
00b2c0b860cdc0a4d466575d57b6f3d9b748decc
700f7e51cd1033335fd0dff2838e02e9cbf3fd206eb4635de5fd07ccaa92dfaa
Analyzer Verdict Alert fortinet Malware
GET /js/jquery.stellar.min.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:38 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4109
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/js/smoothscroll.js
45.113.122.66200 OK 4.2 kB URL HTTP/2 www.vivonodesigns.com/js/smoothscroll.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (688)
Hash c5435bb3a056984b28be12f9c3f74718
15058109f8972bbff20681f7c0a45d03f6ce74b5
73a337264faff34f05705d3358dcffbcd032e7b35578dd138d622f5718102da6
Analyzer Verdict Alert fortinet Malware
GET /js/smoothscroll.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:40 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4244
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/js/rev-slider/revolution.extension.parallax.min.js
45.113.122.66200 OK 4.0 kB URL HTTP/2 www.vivonodesigns.com/js/rev-slider/revolution.extension.parallax.min.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (10440)
Hash 58bb7f63c429ee28616107a4efb4090e
a12a7852e7a22f882838a439363fdeac3029c232
d8c0b14676a131fdb3df533f71847d306d77fbc43ee34e755b86bd7d3bd3a6d1
Analyzer Verdict Alert fortinet Malware
GET /js/rev-slider/revolution.extension.parallax.min.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:44 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4017
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/css/ionicons.min.css
45.113.122.66200 OK 8.8 kB URL HTTP/2 www.vivonodesigns.com/css/ionicons.min.css
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (50826)
Hash c829ddea8f5aa971ec978dd14f42ac4e
70278f25cb0ead0688980ec98c7c31cc4675d8f9
66444f9ae6768cf7bd574ccd90d6a7ea44a5ff355407485ccec436b77bb25e32
GET /css/ionicons.min.css HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:47:28 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8822
content-type: text/css
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84053cb2-edec-465e-8700-6af61bae8236.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84053cb2-edec-465e-8700-6af61bae8236.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 676b1603008690786aa36dc3113b7581
cbdc425467a5d41aba5e8e5c54354b4f03cd194a
7e5e7bf695ff31df6c97e502a44f4fa9197c6579b0c7a7c590457ea067d1cf1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84053cb2-edec-465e-8700-6af61bae8236.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8155
x-amzn-requestid: 5650af50-eb93-47d9-8322-8a2e263e12ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-7vFU5IAMFYGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab7e-759bbd5b5a22e07c1c181c0a;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XzJcm_AlMH4hb2urV7RORAjz7LR7NXZ2pAMEhx1foW2VJgj4mxVxJw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:05:52 GMT
age: 45316
etag: "cbdc425467a5d41aba5e8e5c54354b4f03cd194a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.vivonodesigns.com/css/settings.css
45.113.122.66200 OK 10 kB URL HTTP/2 www.vivonodesigns.com/css/settings.css
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (352)
Hash 6247785a49d5cdf0946259a48e2f6295
98c40581ac9479fc6189d38c6351c71e1bd34ccf
17d4b349923468b96e2cfb5c4ed375a17825c1aca60c34ab299dd8b0221f2b36
GET /css/settings.css HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:47:30 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 10211
content-type: text/css
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/css/layers.css
45.113.122.66200 OK 16 kB URL HTTP/2 www.vivonodesigns.com/css/layers.css
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash e9e98eaf7409c43d08ab1bd2490a1796
9aea0d9c6dbfdf4b49fc88bcae07d498c411eec8
23859ec4cfaceb183c3e7d0ed17ea4ff92c91226d7e39bb225ec35c861ec784d
GET /css/layers.css HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:47:30 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 15519
content-type: text/css
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/js/rev-slider/revolution.extension.navigation.min.js
45.113.122.66200 OK 9.0 kB URL HTTP/2 www.vivonodesigns.com/js/rev-slider/revolution.extension.navigation.min.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (25832)
Hash 662322dff847eedd7c72a6fb99d5f219
68d1feb1571e914f9f7e98ab4fc1cbc02fb22921
bedf828d6d17fab51d77e5f701d9eb28d19f4192eedd7347567caa2157afad53
Analyzer Verdict Alert fortinet Malware
GET /js/rev-slider/revolution.extension.navigation.min.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:44 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8958
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/js/sly.min.js
45.113.122.66200 OK 8.4 kB URL HTTP/2 www.vivonodesigns.com/js/sly.min.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (18589)
Hash 8077c460e8c63bd7230d35a77b6ca5fa
5e44617be9381e62d1c61d198153211fe96d8517
3b1e86d1158d73cdabc2197845a52e8243adf9641c73bac538edfd52c2fdfcb9
Analyzer Verdict Alert fortinet Malware
GET /js/sly.min.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:40 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8359
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/js/rev-slider/revolution.extension.video.min.js
45.113.122.66200 OK 8.7 kB URL HTTP/2 www.vivonodesigns.com/js/rev-slider/revolution.extension.video.min.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (23621)
Hash 72e205347688c79e366b7ddf8277605b
811ae2f9f73707c810f8923619afd2d68551a3db
072847a52f73adcffd42fbcfa649a45ba9deda041aefd81eae99b2a5157d80fe
Analyzer Verdict Alert fortinet Malware
GET /js/rev-slider/revolution.extension.video.min.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:44 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8735
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/js/rev-slider/revolution.extension.slideanims.min.js
45.113.122.66200 OK 8.2 kB URL HTTP/2 www.vivonodesigns.com/js/rev-slider/revolution.extension.slideanims.min.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (28168)
Hash 8b348c8b2b7a29d55ca2ebd771f0793e
315823a5c45c4e3f41d2aebfdc8f8d09248eb0e4
d46fa9aad411337d0468db39eeb4482f925ac916c6af046af0fe17db20c59755
Analyzer Verdict Alert fortinet Malware
GET /js/rev-slider/revolution.extension.slideanims.min.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:44 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8246
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/js/jquery.validate.min.js
45.113.122.66200 OK 9.2 kB URL HTTP/2 www.vivonodesigns.com/js/jquery.validate.min.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (22932)
Hash 3451419235cb60e66def9ef452507d2d
cbe1032290afb6b7b0ad15da697a4680e8c10c59
87b4ad2c30487e9c16dd79d3436df6b72eb408a0265861abc1c07091b2042046
Analyzer Verdict Alert fortinet Malware
GET /js/jquery.validate.min.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:40 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9179
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/js/jquery.magnific-popup.min.js
45.113.122.66200 OK 9.2 kB URL HTTP/2 www.vivonodesigns.com/js/jquery.magnific-popup.min.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (20087)
Hash 7a10ae63b238729dc4da7f7bd8986219
654c47168dca0ec7080f6c57e8c4482b57f879d4
b782185399b361358f7c409d6f23f22d45f695dcbb63876c35752c7b1de72db3
Analyzer Verdict Alert fortinet Malware
GET /js/jquery.magnific-popup.min.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:38 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9204
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/js/owl.carousel.min.js
45.113.122.66200 OK 15 kB URL HTTP/2 www.vivonodesigns.com/js/owl.carousel.min.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32012)
Hash ea94bfb22256c906d657a26b1c90b05c
d33be4c782c22b1e6630b0665f283c68a465669c
ace96c6af30f6292392735c759fe6d92dae6fa2957f7d92dda9bf8ee08bfbb17
Analyzer Verdict Alert fortinet Malware
GET /js/owl.carousel.min.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:40 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 15384
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/js/bootstrap.min.js
45.113.122.66200 OK 14 kB URL HTTP/2 www.vivonodesigns.com/js/bootstrap.min.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32033)
Hash ad7339964f395566ac9d75903d96b9de
ea5756ab8d399418e0f862a8ff1249df3f77790f
3adfc0a685bd6eee9638948b1085d3db733c75caff8409b7582e356671588491
Analyzer Verdict Alert fortinet Malware
GET /js/bootstrap.min.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:36 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 14394
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/js/rev-slider/revolution.extension.layeranimation.min.js
45.113.122.66200 OK 17 kB URL HTTP/2 www.vivonodesigns.com/js/rev-slider/revolution.extension.layeranimation.min.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32005)
Hash 48863332791fdedabe6179c389bb4d40
5c4d672307b5696eff9bafe12c9cdc5b3d866184
6ab70d4d1027beb78e0ae9e7f844a0f0f534d725266460f0ae7c947eaca03e4e
Analyzer Verdict Alert fortinet Malware
GET /js/rev-slider/revolution.extension.layeranimation.min.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:44 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 16562
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:41:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
216.58.207.195200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vivonodesigns.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 14:43:52 GMT
expires: Wed, 15 Nov 2023 14:43:52 GMT
cache-control: public, max-age=31536000
age: 244636
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.linearicons.com/free/1.0.0/icon-font.min.css
54.230.111.5200 OK 1.7 kB URL HTTP/2 cdn.linearicons.com/free/1.0.0/icon-font.min.css
IP 54.230.111.5:0
File type ASCII text, with very long lines (7191)
Hash 0b704046d76bb4d3929be4f7f20472f5
564f70325044cf9834f70d9689463cbfb8a53b71
511ae4f5d6a1803848d68c82cd61d2ad1ed3a1c65037e2cbcf9a7edd2fa6fa5d
GET /free/1.0.0/icon-font.min.css HTTP/1.1
Host: cdn.linearicons.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vivonodesigns.com
Connection: keep-alive
Referer: https://www.vivonodesigns.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-length: 1672
date: Wed, 07 Sep 2022 12:38:53 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
last-modified: Wed, 27 May 2015 16:04:10 GMT
etag: "0b704046d76bb4d3929be4f7f20472f5"
cache-control: max-age=31000000
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KSu4colZm0zYA2h6MFbFkHon-PbTsv8T291Ijl-_-xbpiUpKW6B-Pg==
age: 6213736
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:41:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.vivonodesigns.com/images/news/1-426x426.jpg
45.113.122.66200 OK 103 kB URL HTTP/2 www.vivonodesigns.com/images/news/1-426x426.jpg
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 426x426, components 3\012- data
Size 103 kB (102958 bytes)
Hash 4751a3b29e7079913bf79f2cc2d20540
ad2ba8eb9b1f362e79027eb2ac01b9e474bf3b6a
91ac92674ea5f5e96e83ec7d2eae1a66264b7d2c2530f3806c8795f34a878531
GET /images/news/1-426x426.jpg HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:49:46 GMT
accept-ranges: bytes
content-length: 102958
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 10:41:07 GMT
vary: User-Agent
content-type: image/jpeg
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/images/news/2-426x321.jpg
45.113.122.66200 OK 109 kB URL HTTP/2 www.vivonodesigns.com/images/news/2-426x321.jpg
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 426x321, components 3\012- data
Size 109 kB (109128 bytes)
Hash c2fa2a4f2b59307559d8c428054fa81b
1064b24d884be936c69963fa94ee140c396c9a03
5018474e847d890a815e058f7c14a4d26595d3b14b385c2c27d6fa21668dd637
GET /images/news/2-426x321.jpg HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:49:56 GMT
accept-ranges: bytes
content-length: 109128
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 10:41:07 GMT
vary: User-Agent
content-type: image/jpeg
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/images/news/3-426x321.jpg
45.113.122.66200 OK 113 kB URL HTTP/2 www.vivonodesigns.com/images/news/3-426x321.jpg
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 426x321, components 3\012- data
Size 113 kB (112823 bytes)
Hash 1019ff6e0f07d6b982f81ff61e69a252
e5196342d0b554fb55bfcf1ff298569f2b7fb978
2bc19646c646d0741a0cca2ad0bd54c181dc27dcc4efa552b3180e3f37bd5d26
GET /images/news/3-426x321.jpg HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:50:04 GMT
accept-ranges: bytes
content-length: 112823
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 10:41:07 GMT
vary: User-Agent
content-type: image/jpeg
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/images/news/1-426x321.jpg
45.113.122.66200 OK 134 kB URL HTTP/2 www.vivonodesigns.com/images/news/1-426x321.jpg
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 426x321, components 3\012- data
Size 134 kB (134230 bytes)
Hash 49e4ff7606cc8444fe45b822b21cc620
4432f778536b2910d757a1a702458aaa7334b512
efa6072bf178f0c4514098e6d4fe83c40170e840b31625d8ddd1761c0d5be5ed
GET /images/news/1-426x321.jpg HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:49:46 GMT
accept-ranges: bytes
content-length: 134230
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 10:41:07 GMT
vary: User-Agent
content-type: image/jpeg
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/images/news/1-426x550.jpg
45.113.122.66200 OK 159 kB URL HTTP/2 www.vivonodesigns.com/images/news/1-426x550.jpg
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 426x550, components 3\012- data
Size 159 kB (158944 bytes)
Hash afa004c4910bfc13ce9abf5cdcee9b20
e24f9ffc8b64b34cbee137b72251f078870371e2
84c00ad033f461bc39f09c854dc0c998daadcb0cda526da811f71ddd50a9f845
GET /images/news/1-426x550.jpg HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:49:48 GMT
accept-ranges: bytes
content-length: 158944
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 10:41:07 GMT
vary: User-Agent
content-type: image/jpeg
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/images/news/4-426x426.jpg
45.113.122.66200 OK 164 kB URL HTTP/2 www.vivonodesigns.com/images/news/4-426x426.jpg
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 426x426, components 3\012- data
Size 164 kB (163649 bytes)
Hash f241d2e7a8599ce1d20611f248be0b1e
4200e5bc090264d2279ff3918d938c08ab17c1c5
2b0574780c4b624dfea8cc30e1b6e624d59616cbd1458fe28ad379753d1cc003
GET /images/news/4-426x426.jpg HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:50:12 GMT
accept-ranges: bytes
content-length: 163649
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 10:41:07 GMT
vary: User-Agent
content-type: image/jpeg
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/images/news/2-426x426.jpg
45.113.122.66200 OK 169 kB URL HTTP/2 www.vivonodesigns.com/images/news/2-426x426.jpg
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 426x426, components 3\012- data
Size 169 kB (169011 bytes)
Hash b826501d34d21ba3a8d03f5c09dba286
2e91227b27d21b46b3c24c975a3a7a2b140e59f4
ca4a902ce2f7a7838652f3713a7bee72bfd2b005d6b69d623be48931ae2b9b18
GET /images/news/2-426x426.jpg HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:49:58 GMT
accept-ranges: bytes
content-length: 169011
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 10:41:07 GMT
vary: User-Agent
content-type: image/jpeg
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/images/news/6-426x321.jpg
45.113.122.66200 OK 142 kB URL HTTP/2 www.vivonodesigns.com/images/news/6-426x321.jpg
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 426x321, components 3\012- data
Size 142 kB (141617 bytes)
Hash 2cd17dd0e1714b998bd967dbf7e3524f
1063ece5e9d575cd8b5298db9a9c1536d73fa0c0
53e8332a0272bac6071bd8aad42ebd5ba434ae2f1be45c3fdbb6770b3199a913
GET /images/news/6-426x321.jpg HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:50:16 GMT
accept-ranges: bytes
content-length: 141617
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 10:41:07 GMT
vary: User-Agent
content-type: image/jpeg
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/images/news/3-426x426.jpg
45.113.122.66200 OK 187 kB URL HTTP/2 www.vivonodesigns.com/images/news/3-426x426.jpg
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 426x426, components 3\012- data
Size 187 kB (187251 bytes)
Hash 7b743b405c8c48980c99774e04d6cfb0
90309b75bf0826e593cf5848d60f1bb9121fca6e
c59db5e652871d917eb0db88a32fc1057a4b760a55974fea38ad3a3e531a4f68
GET /images/news/3-426x426.jpg HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:50:06 GMT
accept-ranges: bytes
content-length: 187251
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 10:41:07 GMT
vary: User-Agent
content-type: image/jpeg
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/images/news/5-426x321.jpg
45.113.122.66200 OK 173 kB URL HTTP/2 www.vivonodesigns.com/images/news/5-426x321.jpg
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 426x321, components 3\012- data
Size 173 kB (172962 bytes)
Hash 43fb6c58804dcd3269078338e3ca0cad
d6616833d82d9ba891024066a41c2aa4a03e534a
c6e59c20f449e2b56a2799133a8fadf7ddc8812b370499a3b8f72ee7805f512d
GET /images/news/5-426x321.jpg HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:50:14 GMT
accept-ranges: bytes
content-length: 172962
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 10:41:07 GMT
vary: User-Agent
content-type: image/jpeg
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/images/news/4-426x321.jpg
45.113.122.66200 OK 164 kB URL HTTP/2 www.vivonodesigns.com/images/news/4-426x321.jpg
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 426x321, components 3\012- data
Size 164 kB (164170 bytes)
Hash e76379f95636d687b8988aae010fcb7e
ecbda35bb8ad72c0efbeb1e84ab0bd18fc832dc3
01cb80916cd24035a6478d0049a6cf20096a6cea9bc49cf8dd54d22ba51bbcfa
GET /images/news/4-426x321.jpg HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:50:08 GMT
accept-ranges: bytes
content-length: 164170
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 10:41:07 GMT
vary: User-Agent
content-type: image/jpeg
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/images/news/2-426x550.jpg
45.113.122.66200 OK 186 kB URL HTTP/2 www.vivonodesigns.com/images/news/2-426x550.jpg
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 426x550, components 3\012- data
Size 186 kB (186426 bytes)
Hash 8e33059bd7063827f85962f2a3998ed9
5b2b0f335f17d50531270e8d2e4b310db8dbe661
ca6889b7a9e826fa577d00353f6b4e4e06fbf6082870108399231b9fbfc7b914
GET /images/news/2-426x550.jpg HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:49:58 GMT
accept-ranges: bytes
content-length: 186426
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 10:41:07 GMT
vary: User-Agent
content-type: image/jpeg
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/fonts/poppins-regular-webfont.woff2
45.113.122.66200 OK 17 kB URL HTTP/2 www.vivonodesigns.com/fonts/poppins-regular-webfont.woff2
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Web Open Font Format (Version 2), TrueType, length 16604, version 2.0\012- data
Hash 3776afe84fb10b7738b3f23cc2a679cb
26517fc1e67395877730605d7a2b54b2915df544
3f54a6e28ecaa5ea75ef98462c0216e2a2bf40b10ca50f859de1d27e662c8bdb
Analyzer Verdict Alert fortinet Malware
GET /fonts/poppins-regular-webfont.woff2 HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.vivonodesigns.com/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:48:42 GMT
accept-ranges: bytes
content-length: 16604
cache-control: max-age=172800
expires: Sun, 20 Nov 2022 10:41:08 GMT
vary: User-Agent
content-type: font/woff2
date: Fri, 18 Nov 2022 10:41:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/favicon.png
45.113.122.66200 OK 3.8 kB URL HTTP/2 www.vivonodesigns.com/favicon.png
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 9d436bb30a84a1c24302dd2e5d0400a9
4ed268e959614c8c68509e848522f7c38a0337d6
f97b156b94753b36d4ae7492f849f1b55fdd496c11c7b672442d613e12332571
GET /favicon.png HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Sep 2018 13:48:42 GMT
accept-ranges: bytes
content-length: 3800
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 10:41:09 GMT
vary: User-Agent
content-type: image/png
date: Fri, 18 Nov 2022 10:41:09 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/apple-touch-icon-114x114.png
45.113.122.66200 OK 2.7 kB URL HTTP/2 www.vivonodesigns.com/apple-touch-icon-114x114.png
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 114 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash 95c35eab0aea42120243fda8bed1cb32
6a57bb428a96f25b43a90e21483b198555604a1e
7a57bfffba0992b2e49337e0e2ad70f9847c03fec885bd2a8b4cb88fba5835ae
GET /apple-touch-icon-114x114.png HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:47:22 GMT
accept-ranges: bytes
content-length: 2743
cache-control: max-age=31536000
expires: Sat, 18 Nov 2023 10:41:09 GMT
vary: User-Agent
content-type: image/png
date: Fri, 18 Nov 2022 10:41:09 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/css/navigation.css
45.113.122.66200 OK 0 B URL HTTP/2 www.vivonodesigns.com/css/navigation.css
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
GET /css/navigation.css HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:47:30 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/css
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/js/jquery.min.js
45.113.122.66200 OK 0 B URL HTTP/2 www.vivonodesigns.com/js/jquery.min.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
GET /js/jquery.min.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:38 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/js/rev-slider/jquery.themepunch.tools.min.js
45.113.122.66200 OK 0 B URL HTTP/2 www.vivonodesigns.com/js/rev-slider/jquery.themepunch.tools.min.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
GET /js/rev-slider/jquery.themepunch.tools.min.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:42 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/css/bootstrap.css
45.113.122.66200 OK 0 B URL HTTP/2 www.vivonodesigns.com/css/bootstrap.css
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
GET /css/bootstrap.css HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:47:28 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/css
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/js/rev-slider/jquery.themepunch.revolution.min.js
45.113.122.66200 OK 0 B URL HTTP/2 www.vivonodesigns.com/js/rev-slider/jquery.themepunch.revolution.min.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
GET /js/rev-slider/jquery.themepunch.revolution.min.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:42 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.vivonodesigns.com/fonts/ionicons28b5.ttf?v=2.0.0
45.113.122.66200 OK 0 B URL HTTP/2 www.vivonodesigns.com/fonts/ionicons28b5.ttf?v=2.0.0
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
GET /fonts/ionicons28b5.ttf?v=2.0.0 HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/css/ionicons.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 10:41:08 GMT
server: Apache
content-type: font/ttf
last-modified: Wed, 05 Sep 2018 10:48:42 GMT
accept-ranges: bytes
cache-control: max-age=172800
expires: Sun, 20 Nov 2022 10:41:08 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-server-cache: true
x-proxy-cache: MISS
X-Firefox-Spdy: h2
www.vivonodesigns.com/js/isotope.pkgd.min.js
45.113.122.66200 OK 0 B URL HTTP/2 www.vivonodesigns.com/js/isotope.pkgd.min.js
IP 45.113.122.66:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
GET /js/isotope.pkgd.min.js HTTP/1.1
Host: www.vivonodesigns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vivonodesigns.com/404.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Sep 2018 10:51:36 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 18 Dec 2022 10:41:07 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 12794
content-type: application/javascript
date: Fri, 18 Nov 2022 10:41:07 GMT
server: Apache
X-Firefox-Spdy: h2