5a5f67c5cfe16f361e71d83010bb48971fa8fa27ad5d99b24290cdfbae81311a

Analysis

max time kernel
145s
max time network
146s
platform
windows7_x64
resource
win7-20240215-en
resource tags

arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
submitted
13/05/2024, 21:07 UTC

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

3c943e06dde46a539186aae9c18b938f_JaffaCakes118.html
Size

35KB
MD5

3c943e06dde46a539186aae9c18b938f
SHA1

9618caf3aa20de42f6e77c8fddc3495f3fbc93a6
SHA256

5a5f67c5cfe16f361e71d83010bb48971fa8fa27ad5d99b24290cdfbae81311a
SHA512

3c706a9c8ccae08a6a467a28ff8a9fb3426ce9c672b75a7c9c923d77a96c45f28a1ef3ff33f433af13d449c5cae4290a33e18145b2dd36ba15c2d67fa86eddf3
SSDEEP

768:7lwJMHlC0TCqzN2c/DBIvkCmCz9pI90ilpn9ieO5VE:7lwJMHlCuTD/DBzFCLI90ilJ9ieO5VE

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 36 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{C5B73891-116C-11EF-B6F2-56A5B28DE56C} = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb010000009b106788dea7af4d98683a8983feb7c600000000020000000000106600000001000020000000048740270a3d046bf612a9e9e405044ff072729e5d65ff5831fa0ffbaf942fef000000000e8000000002000020000000b6f355146c0f00344cb38447ff1a455a15d0571508d75642efa5ad9b6a2f0dfd200000003538c80b441e790c086e4cc767e994cd8a6d5580ce7f1de8774327988c4344434000000087693ea4038972dd71bd47c153b08ae0a5a8562d247c303fb861f16c0226b96ef5d1b080a1ab5fea18e825b0e760bed30a4ee8b10ee9c616e637733fcf1c72aa	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 60f1699e79a5da01	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Set value (str)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "421796302"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
2308	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
2308	iexplore.exe
2308	iexplore.exe
2624	IEXPLORE.EXE
2624	IEXPLORE.EXE
2624	IEXPLORE.EXE
2624	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2308 wrote to memory of 2624	2308	iexplore.exe	28
PID 2308 wrote to memory of 2624	2308	iexplore.exe	28
PID 2308 wrote to memory of 2624	2308	iexplore.exe	28
PID 2308 wrote to memory of 2624	2308	iexplore.exe	28

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\3c943e06dde46a539186aae9c18b938f_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2308
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2308 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:2624

Network

DNS

qreativedesign.com

IEXPLORE.EXE

Remote address:

8.8.8.8:53

Request

qreativedesign.com

IN A

Response

qreativedesign.com

IN A

185.230.63.171

qreativedesign.com

IN A

185.230.63.107

qreativedesign.com

IN A

185.230.63.186
DNS

ajax.googleapis.com

IEXPLORE.EXE

Remote address:

8.8.8.8:53

Request

ajax.googleapis.com

IN A

Response

ajax.googleapis.com

IN A

216.58.215.42
GET

https://ajax.googleapis.com/ajax/libs/webfont/1.5.3/webfont.js

IEXPLORE.EXE

Remote address:

216.58.215.42:443

Request

GET /ajax/libs/webfont/1.5.3/webfont.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: ajax.googleapis.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 6791
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 09 May 2024 08:48:11 GMT
Expires: Fri, 09 May 2025 08:48:11 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 389945
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Vary: Accept-Encoding
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

http://qreativedesign.com/wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/min-css/ultimate.min.css

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/min-css/ultimate.min.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/min-css/ultimate.min.css
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.259563903265129379
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLvuBOHNZffAxbwTL99txlorJftmKrOReD3ukbbas4YDo,2d58ifebGbosy5xc+FRalidVQTpp6skdbiiO3fl8oA8XoTAUgGDU4sve4E/gHiZLUemC78UstulKzYR9gU1M2Q==,2UNV7KOq4oGjA5+PKsX47LYxvJTCU1Md55lAkjhWLGNYgeUJqUXtid+86vZww+nL,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,toq+1Ac4ndV9aCBsCQpGvOh3GcJwK8eh6CrYG9Np6yI=,m86p0LbwQP79i4nFFg3Yprje+Ssmj2Uc5pT+9M5TZU6RObe6E62DgAnw6+1h60IaFfOIXyFiKixOa9TzP4F5sA==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/themes/ronneby/assets/css/mobile-responsive.css

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/themes/ronneby/assets/css/mobile-responsive.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/mobile-responsive.css
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.358563903265229379
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLvuBOHNZffAxbwTL99txlorJftmKrOReD3ukbbas4YDo,2d58ifebGbosy5xc+FRalsGbc7U/Pu25MonOzANdc5pVSXB1lDUBs8l0QCneyyMkQh1PvGWKUcoAOsIgNHUFEg==,2UNV7KOq4oGjA5+PKsX47K8js8LZFoNsYvLQWACVtG9YgeUJqUXtid+86vZww+nL,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,ghLYoVBYUDao9ezLIM+Fk4aXWU0SpxR5be4Nd73rv2o=,m86p0LbwQP79i4nFFg3YppRIWdjiSlBd3ACjcrvTtVbfCqedIJHSNk9EIxHo2yZ5ocBadH1+ZVP5dEqjyu9iKQ==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-includes/js/jquery/jquery.js?ver=1.12.4

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.465563903265329379
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLvuBOHNZffAxbwTL99txlorJftmKrOReD3ukbbas4YDo,2d58ifebGbosy5xc+FRaluPwykZalTXE3L89Eh3atarLRRpt+0Os/BZgi8Ku5AN3mvT+ukaLv3Ai1BpGUPBx2A==,2UNV7KOq4oGjA5+PKsX47KGVzv3IxRyIcz9j5sGMMZy8ZDY613cHYLbuhNMgAom1,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,iZHtFMyahnXR5HqNJMdYUZLZhBj7BaxY/abiIUWJ4Vg=,m86p0LbwQP79i4nFFg3Ypn0xXXZoIVGw0d+Pm2K+5sJj+hqZ3fWnd7S17QeRahBZh9Ehy38J4yiUM5juyzO0kw==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-includes/js/jquery/jquery.form.min.js?ver=3.37.0

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-includes/js/jquery/jquery.form.min.js?ver=3.37.0 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-includes/js/jquery/jquery.form.min.js?ver=3.37.0
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.553563903265429379
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLvuBOHNZffAxbwTL99txlorJftmKrOReD3ukbbas4YDo,2d58ifebGbosy5xc+FRalnsvSK+wMcNAO7IaraRyYViKB7mFbw8LRggcZ9VK0RdpKDFLGT5nrznQYjCmR6aTnA==,2UNV7KOq4oGjA5+PKsX47K8js8LZFoNsYvLQWACVtG9YgeUJqUXtid+86vZww+nL,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,dVwKUN32x1sCjtpKWqqakvs4v17hq4a9+vnWX8hJM1Q=,m86p0LbwQP79i4nFFg3YppTFG4gjI7uShxvkewRglZxlHTZhYNHPQdkGdrGVhbmhuHU8Jbdbn1iI1knIrSAZZA==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/themes/ronneby/assets/js/jquery.mega-menu.run.min.js

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/themes/ronneby/assets/js/jquery.mega-menu.run.min.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/jquery.mega-menu.run.min.js
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.649563903265529379
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLvuBOHNZffAxbwTL99txlorJftmKrOReD3ukbbas4YDo,2d58ifebGbosy5xc+FRalvMjIFFvueiRv6v0zKTII5XBYs577e45iI3qgp9gfIS7+sftAPg9CQY4na+6lNttQg==,2UNV7KOq4oGjA5+PKsX47AWAk/VOec6Jdv53Z5I0tnhYgeUJqUXtid+86vZww+nL,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,znn/mNQgrDpx6yiSFkerzbUFbSfkzvDmFbAuhGZtbpE=,m86p0LbwQP79i4nFFg3YplHHUEBm9KvfopKz45BgxZfypx6HXPH3JhGFqYSEo1ubyd2skvNG6n5ZfCfrgu/o4A==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/uploads/2016/04/whitelogo.png

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/uploads/2016/04/whitelogo.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/uploads/2016/04/whitelogo.png
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.728563903265629379
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLvuBOHNZffAxbwTL99txlorJftmKrOReD3ukbbas4YDo,2d58ifebGbosy5xc+FRalsGbc7U/Pu25MonOzANdc5pVSXB1lDUBs8l0QCneyyMkQh1PvGWKUcoAOsIgNHUFEg==,2UNV7KOq4oGjA5+PKsX47K8js8LZFoNsYvLQWACVtG9YgeUJqUXtid+86vZww+nL,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,dVwKUN32x1sCjtpKWqqakvs4v17hq4a9+vnWX8hJM1Q=,m86p0LbwQP79i4nFFg3YppTFG4gjI7uShxvkewRglZxlHTZhYNHPQdkGdrGVhbmhuHU8Jbdbn1iI1knIrSAZZA==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/themes/ronneby/assets/css/styled-button.css

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/themes/ronneby/assets/css/styled-button.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/styled-button.css
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.2581144860506117613
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLrjAMl1QewRKjWjp2YfgqGDDa2gaReObvoMyILa0JRsy,2d58ifebGbosy5xc+FRallVPQCLNjBtZtXYY9KKFU9Wt26Y+Wegpvi+91LQ+J89kd379nNXFEw4x3xBe4e3azg==,2UNV7KOq4oGjA5+PKsX47E8vuwy8i4iHyoNZ4rkpz968ZDY613cHYLbuhNMgAom1,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,QSHN4lyR9QUYzqgTyXpAA39SVDpElM4OxR0qDs4w178=,m86p0LbwQP79i4nFFg3Ypl5HBg2ymCrzBULojWI9poQeCKlPOj6JV1f+rhfuKNckSmvCqSg0p0u6576MUixACQ==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-includes/js/wp-emoji-release.min.js?ver=4.7.11

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-includes/js/wp-emoji-release.min.js?ver=4.7.11 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-includes/js/wp-emoji-release.min.js?ver=4.7.11
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.3401144860506217613
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLrjAMl1QewRKjWjp2YfgqGDDa2gaReObvoMyILa0JRsy,2d58ifebGbosy5xc+FRalidVQTpp6skdbiiO3fl8oA8XoTAUgGDU4sve4E/gHiZLUemC78UstulKzYR9gU1M2Q==,2UNV7KOq4oGjA5+PKsX47K8js8LZFoNsYvLQWACVtG9YgeUJqUXtid+86vZww+nL,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,ogm5jEiYRU3MvhMv037+W9JK2Pjqyost0W8fd8zWKuo=,m86p0LbwQP79i4nFFg3Ypt2w41LH1/s9Pt6fUpEhACAnKS09jwAT1zrd8Mn4jWOfgRH3beqeYzF6CXHJlhLrbA==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/themes/ronneby/css/options.css

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/themes/ronneby/css/options.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/themes/ronneby/css/options.css
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.4371144860506317613
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLrjAMl1QewRKjWjp2YfgqGDDa2gaReObvoMyILa0JRsy,2d58ifebGbosy5xc+FRalidVQTpp6skdbiiO3fl8oA8XoTAUgGDU4sve4E/gHiZLUemC78UstulKzYR9gU1M2Q==,2UNV7KOq4oGjA5+PKsX47LYxvJTCU1Md55lAkjhWLGNYgeUJqUXtid+86vZww+nL,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,ghLYoVBYUDao9ezLIM+Fk4aXWU0SpxR5be4Nd73rv2o=,m86p0LbwQP79i4nFFg3YppRIWdjiSlBd3ACjcrvTtVbfCqedIJHSNk9EIxHo2yZ5ocBadH1+ZVP5dEqjyu9iKQ==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.2

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.2 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.2
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.5221144860506417613
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLrjAMl1QewRKjWjp2YfgqGDDa2gaReObvoMyILa0JRsy,2d58ifebGbosy5xc+FRaljIZMWEPOvlzMph5ubvG2fyUktdaCAZrJO0/JsS99OHrDyfRUwmBu3/oukwMUlVboQ==,2UNV7KOq4oGjA5+PKsX47LYxvJTCU1Md55lAkjhWLGNYgeUJqUXtid+86vZww+nL,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,NAVC8/7vjJ8lqeyx0mHztD5epSqNATNu4bo3E1S+MIk=,m86p0LbwQP79i4nFFg3YplVfY98MFubAh3OLyC09+RIwExNO3EvcPBSXLVsMjzGJqLhmjnUPLKXRYp0Xken1hQ==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/themes/ronneby/assets/js/jquery.smoothscroll.js

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/themes/ronneby/assets/js/jquery.smoothscroll.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/jquery.smoothscroll.js
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.6261144860506517613
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLrjAMl1QewRKjWjp2YfgqGDDa2gaReObvoMyILa0JRsy,2d58ifebGbosy5xc+FRalvSo9VmfizCrY3YVu1UeZP3R968SYzn+x7cFNNEhfOp6WjoUs+CeYPg0K4+ZSKTxKg==,2UNV7KOq4oGjA5+PKsX47KGVzv3IxRyIcz9j5sGMMZy8ZDY613cHYLbuhNMgAom1,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,NAVC8/7vjJ8lqeyx0mHztD5epSqNATNu4bo3E1S+MIk=,m86p0LbwQP79i4nFFg3YplVfY98MFubAh3OLyC09+RIwExNO3EvcPBSXLVsMjzGJqLhmjnUPLKXRYp0Xken1hQ==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/themes/ronneby/assets/js/widget-facebook.js

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/themes/ronneby/assets/js/widget-facebook.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/widget-facebook.js
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.7121144860506617613
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLrjAMl1QewRKjWjp2YfgqGDDa2gaReObvoMyILa0JRsy,2d58ifebGbosy5xc+FRalphMww3/IY4gpN7oZCSvlV5YC3u5dHM3JsYrwluSNMNbFet6AfFnCNDnmGLx/IdzJw==,2UNV7KOq4oGjA5+PKsX47K8js8LZFoNsYvLQWACVtG9YgeUJqUXtid+86vZww+nL,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,QAQKuqAfbfo2D2E6eXvU9Bg/fsYkOuyhCdtbp+8gLoY=,m86p0LbwQP79i4nFFg3YpqsDOQrmY4nkfqm7fnMfC310kTZ+0Ej/+NOJkdy5fOG0BnR6lS2GFRe9XxWOR0cNBg==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.2

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.2 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.2
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.259822482061124529
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLnBCRbqCTHlqQfUNg32l/JXDa2gaReObvoMyILa0JRsy,2d58ifebGbosy5xc+FRalumqQZGrpKPbKsPamA30uXTjNTp+yL2+WJKIzqx821BTux5sQlp+2QcBy8tLJKnMCw==,2UNV7KOq4oGjA5+PKsX47H8fcDDTK1h4pebfMCDOGYS8ZDY613cHYLbuhNMgAom1,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,znn/mNQgrDpx6yiSFkerzbUFbSfkzvDmFbAuhGZtbpE=,m86p0LbwQP79i4nFFg3YplHHUEBm9KvfopKz45BgxZfypx6HXPH3JhGFqYSEo1ubyd2skvNG6n5ZfCfrgu/o4A==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/themes/ronneby/assets/css/app.css

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/themes/ronneby/assets/css/app.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/app.css
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.356822482061224529
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLnBCRbqCTHlqQfUNg32l/JXDa2gaReObvoMyILa0JRsy,2d58ifebGbosy5xc+FRalr4jfZCFwCtnWKtkm0NDMoM3X01aPwAm6yht2ogpP5942nyBk10wiDKVINYuG7kFkw==,2UNV7KOq4oGjA5+PKsX47E8vuwy8i4iHyoNZ4rkpz968ZDY613cHYLbuhNMgAom1,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,qY3MWicu/0LNAzllbMUPUqLCnBRM0b8f+8gCKfLBVhA=,m86p0LbwQP79i4nFFg3YpnUzP4gMbptW5sOm5igVWcfKZx2B/le8NKNipmoC1b8254kycAQ3b2z4tsbGHiSsnQ==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/plugins/news-page-slider/js/jquery.jcarousel.min.js?ver=1.0.0

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/plugins/news-page-slider/js/jquery.jcarousel.min.js?ver=1.0.0 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/plugins/news-page-slider/js/jquery.jcarousel.min.js?ver=1.0.0
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.469822482061324529
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLnBCRbqCTHlqQfUNg32l/JXDa2gaReObvoMyILa0JRsy,2d58ifebGbosy5xc+FRalr4jfZCFwCtnWKtkm0NDMoM3X01aPwAm6yht2ogpP5942nyBk10wiDKVINYuG7kFkw==,2UNV7KOq4oGjA5+PKsX47AWAk/VOec6Jdv53Z5I0tnhYgeUJqUXtid+86vZww+nL,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,znn/mNQgrDpx6yiSFkerzbUFbSfkzvDmFbAuhGZtbpE=,m86p0LbwQP79i4nFFg3YplHHUEBm9KvfopKz45BgxZfypx6HXPH3JhGFqYSEo1ubyd2skvNG6n5ZfCfrgu/o4A==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/themes/ronneby/assets/js/plugins.min.js

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/themes/ronneby/assets/js/plugins.min.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/plugins.min.js
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.570822482061424529
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLnBCRbqCTHlqQfUNg32l/JXDa2gaReObvoMyILa0JRsy,2d58ifebGbosy5xc+FRalpXVTDv+Y4yst3TPa/AYkOnWV3U7tp0C0ELGdfiprYFvtxHle3TKNfkZwTvug1jShg==,2UNV7KOq4oGjA5+PKsX47K8js8LZFoNsYvLQWACVtG9YgeUJqUXtid+86vZww+nL,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,dVwKUN32x1sCjtpKWqqakvs4v17hq4a9+vnWX8hJM1Q=,m86p0LbwQP79i4nFFg3YppTFG4gjI7uShxvkewRglZxlHTZhYNHPQdkGdrGVhbmhuHU8Jbdbn1iI1knIrSAZZA==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/themes/ronneby/assets/js/jflickrfeed.min.js

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/themes/ronneby/assets/js/jflickrfeed.min.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/jflickrfeed.min.js
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.656822482061524529
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLnBCRbqCTHlqQfUNg32l/JXDa2gaReObvoMyILa0JRsy,2d58ifebGbosy5xc+FRalr/sV6CpcxalCThqKjTv3PCMFVogGRPZXH9mRfDq+9oxkJu+i0VaEAWezFLRyKrQhw==,2UNV7KOq4oGjA5+PKsX47H8fcDDTK1h4pebfMCDOGYS8ZDY613cHYLbuhNMgAom1,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,QAQKuqAfbfo2D2E6eXvU9Bg/fsYkOuyhCdtbp+8gLoY=,m86p0LbwQP79i4nFFg3YpqsDOQrmY4nkfqm7fnMfC310kTZ+0Ej/+NOJkdy5fOG0BnR6lS2GFRe9XxWOR0cNBg==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/uploads/2016/01/flyer2.jpg

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/uploads/2016/01/flyer2.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/uploads/2016/01/flyer2.jpg
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.743822482061624529
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLnBCRbqCTHlqQfUNg32l/JXDa2gaReObvoMyILa0JRsy,2d58ifebGbosy5xc+FRaluPwykZalTXE3L89Eh3atarLRRpt+0Os/BZgi8Ku5AN3mvT+ukaLv3Ai1BpGUPBx2A==,2UNV7KOq4oGjA5+PKsX47K8js8LZFoNsYvLQWACVtG9YgeUJqUXtid+86vZww+nL,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,znn/mNQgrDpx6yiSFkerzbUFbSfkzvDmFbAuhGZtbpE=,m86p0LbwQP79i4nFFg3YplHHUEBm9KvfopKz45BgxZfypx6HXPH3JhGFqYSEo1ubyd2skvNG6n5ZfCfrgu/o4A==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/themes/ronneby/style.css

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/themes/ronneby/style.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/themes/ronneby/style.css
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.258114917310112304
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLmHFmhKuriwfX/MoZPOzw5ceGdLDLXwpLd0CTVHPbfOd,2d58ifebGbosy5xc+FRaloIS06Nwl5BoMQkn6EB1ckcxGAzJPNqxbmzpf4m6jDHsQu+gyjMgR39WKzFGdrNKDg==,2UNV7KOq4oGjA5+PKsX47AWAk/VOec6Jdv53Z5I0tnhYgeUJqUXtid+86vZww+nL,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,dVwKUN32x1sCjtpKWqqakvs4v17hq4a9+vnWX8hJM1Q=,m86p0LbwQP79i4nFFg3YppTFG4gjI7uShxvkewRglZxlHTZhYNHPQdkGdrGVhbmhuHU8Jbdbn1iI1knIrSAZZA==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/themes/ronneby/assets/css/prettyPhoto.css

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/themes/ronneby/assets/css/prettyPhoto.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/prettyPhoto.css
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.385114917310122304
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLmHFmhKuriwfX/MoZPOzw5ceGdLDLXwpLd0CTVHPbfOd,2d58ifebGbosy5xc+FRalumqQZGrpKPbKsPamA30uXTjNTp+yL2+WJKIzqx821BTux5sQlp+2QcBy8tLJKnMCw==,2UNV7KOq4oGjA5+PKsX47E8vuwy8i4iHyoNZ4rkpz968ZDY613cHYLbuhNMgAom1,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,qY3MWicu/0LNAzllbMUPUqLCnBRM0b8f+8gCKfLBVhA=,m86p0LbwQP79i4nFFg3YpnUzP4gMbptW5sOm5igVWcfKZx2B/le8NKNipmoC1b8254kycAQ3b2z4tsbGHiSsnQ==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/plugins/news-page-slider/js/news-page-slider.js?ver=1.0.0

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/plugins/news-page-slider/js/news-page-slider.js?ver=1.0.0 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/plugins/news-page-slider/js/news-page-slider.js?ver=1.0.0
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.487114917310132304
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLmHFmhKuriwfX/MoZPOzw5ceGdLDLXwpLd0CTVHPbfOd,2d58ifebGbosy5xc+FRalphMww3/IY4gpN7oZCSvlV5YC3u5dHM3JsYrwluSNMNbFet6AfFnCNDnmGLx/IdzJw==,2UNV7KOq4oGjA5+PKsX47GsUvTC4jhKjIE80ndHXjzFYgeUJqUXtid+86vZww+nL,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,ghLYoVBYUDao9ezLIM+Fk4aXWU0SpxR5be4Nd73rv2o=,m86p0LbwQP79i4nFFg3YppRIWdjiSlBd3ACjcrvTtVbfCqedIJHSNk9EIxHo2yZ5ocBadH1+ZVP5dEqjyu9iKQ==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/themes/ronneby/assets/js/hammer.min.js

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/themes/ronneby/assets/js/hammer.min.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/hammer.min.js
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.570114917310142304
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLmHFmhKuriwfX/MoZPOzw5ceGdLDLXwpLd0CTVHPbfOd,2d58ifebGbosy5xc+FRalno7d2bIRQ19uCTOZUkPyfAIEW3ilSJbRfL7pmbbRyGbLltXI2gLEQ5zAzn41/PDTg==,2UNV7KOq4oGjA5+PKsX47GsUvTC4jhKjIE80ndHXjzFYgeUJqUXtid+86vZww+nL,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,qY3MWicu/0LNAzllbMUPUqLCnBRM0b8f+8gCKfLBVhA=,m86p0LbwQP79i4nFFg3YpnUzP4gMbptW5sOm5igVWcfKZx2B/le8NKNipmoC1b8254kycAQ3b2z4tsbGHiSsnQ==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/themes/ronneby/assets/js/jquery.mega-menu.min.js

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/themes/ronneby/assets/js/jquery.mega-menu.min.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/jquery.mega-menu.min.js
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.649114917310152304
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLmHFmhKuriwfX/MoZPOzw5ceGdLDLXwpLd0CTVHPbfOd,2d58ifebGbosy5xc+FRalml4JsvDBgUucvc4jIB2CETHWhCvjp6w+h8ytXcVrFmD1bEFKkILbdzQaDoyOE9koQ==,2UNV7KOq4oGjA5+PKsX47LYxvJTCU1Md55lAkjhWLGNYgeUJqUXtid+86vZww+nL,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,NAVC8/7vjJ8lqeyx0mHztD5epSqNATNu4bo3E1S+MIk=,m86p0LbwQP79i4nFFg3YplVfY98MFubAh3OLyC09+RIwExNO3EvcPBSXLVsMjzGJqLhmjnUPLKXRYp0Xken1hQ==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/uploads/2016/04/whitelogo-138x42.png

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/uploads/2016/04/whitelogo-138x42.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/uploads/2016/04/whitelogo-138x42.png
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.727114917310162304
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLmHFmhKuriwfX/MoZPOzw5ceGdLDLXwpLd0CTVHPbfOd,2d58ifebGbosy5xc+FRaljIZMWEPOvlzMph5ubvG2fyUktdaCAZrJO0/JsS99OHrDyfRUwmBu3/oukwMUlVboQ==,2UNV7KOq4oGjA5+PKsX47GsUvTC4jhKjIE80ndHXjzFYgeUJqUXtid+86vZww+nL,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,toq+1Ac4ndV9aCBsCQpGvOh3GcJwK8eh6CrYG9Np6yI=,m86p0LbwQP79i4nFFg3Yprje+Ssmj2Uc5pT+9M5TZU6RObe6E62DgAnw6+1h60IaFfOIXyFiKixOa9TzP4F5sA==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/uploads/2016/09/QLogo-Blksmall.png

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/uploads/2016/09/QLogo-Blksmall.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/uploads/2016/09/QLogo-Blksmall.png
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.808114917310172304
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLmHFmhKuriwfX/MoZPOzw5ceGdLDLXwpLd0CTVHPbfOd,2d58ifebGbosy5xc+FRalumqQZGrpKPbKsPamA30uXTjNTp+yL2+WJKIzqx821BTux5sQlp+2QcBy8tLJKnMCw==,2UNV7KOq4oGjA5+PKsX47H8fcDDTK1h4pebfMCDOGYS8ZDY613cHYLbuhNMgAom1,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,qY3MWicu/0LNAzllbMUPUqLCnBRM0b8f+8gCKfLBVhA=,m86p0LbwQP79i4nFFg3YpnUzP4gMbptW5sOm5igVWcfKZx2B/le8NKNipmoC1b8254kycAQ3b2z4tsbGHiSsnQ==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/uploads//dfd_ronneby_fonts/ronneby/Defaults.css?ver=4.7.11

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/uploads//dfd_ronneby_fonts/ronneby/Defaults.css?ver=4.7.11 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/uploads/dfd_ronneby_fonts/ronneby/Defaults.css?ver=4.7.11
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.2581149001963114533
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLqv1Icz/+auWkycB0m9nz7sFJmEKNgQ96+wiTVoMq713,2d58ifebGbosy5xc+FRalpXVTDv+Y4yst3TPa/AYkOnWV3U7tp0C0ELGdfiprYFvtxHle3TKNfkZwTvug1jShg==,2UNV7KOq4oGjA5+PKsX47AWAk/VOec6Jdv53Z5I0tnhYgeUJqUXtid+86vZww+nL,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,toq+1Ac4ndV9aCBsCQpGvOh3GcJwK8eh6CrYG9Np6yI=,m86p0LbwQP79i4nFFg3Yprje+Ssmj2Uc5pT+9M5TZU6RObe6E62DgAnw6+1h60IaFfOIXyFiKixOa9TzP4F5sA==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/themes/ronneby/assets/css/visual-composer.css

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/themes/ronneby/assets/css/visual-composer.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/visual-composer.css
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.3521149001963214533
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLqv1Icz/+auWkycB0m9nz7sFJmEKNgQ96+wiTVoMq713,2d58ifebGbosy5xc+FRalsWD6uWq45o0zRxBzPqPd/OZJBRJbD3GTlSsTkx0xjOSpY4SAcw6Vz6XRLI2MrbXzg==,2UNV7KOq4oGjA5+PKsX47H8fcDDTK1h4pebfMCDOGYS8ZDY613cHYLbuhNMgAom1,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,QAQKuqAfbfo2D2E6eXvU9Bg/fsYkOuyhCdtbp+8gLoY=,m86p0LbwQP79i4nFFg3YpqsDOQrmY4nkfqm7fnMfC310kTZ+0Ej/+NOJkdy5fOG0BnR6lS2GFRe9XxWOR0cNBg==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.4641149001963314533
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLqv1Icz/+auWkycB0m9nz7sFJmEKNgQ96+wiTVoMq713,2d58ifebGbosy5xc+FRalml4JsvDBgUucvc4jIB2CETHWhCvjp6w+h8ytXcVrFmD1bEFKkILbdzQaDoyOE9koQ==,2UNV7KOq4oGjA5+PKsX47LYxvJTCU1Md55lAkjhWLGNYgeUJqUXtid+86vZww+nL,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,qY3MWicu/0LNAzllbMUPUqLCnBRM0b8f+8gCKfLBVhA=,m86p0LbwQP79i4nFFg3YpnUzP4gMbptW5sOm5igVWcfKZx2B/le8NKNipmoC1b8254kycAQ3b2z4tsbGHiSsnQ==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/min-js/ultimate.min.js

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/min-js/ultimate.min.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/min-js/ultimate.min.js
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.5591149001963414533
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLqv1Icz/+auWkycB0m9nz7sFJmEKNgQ96+wiTVoMq713,2d58ifebGbosy5xc+FRalv+GRvZ7h0TfiUaNKrQaQ8/66/Bd9JQ400dh/SzeMOOpnsCWvX8Z/EH35egRTNEB9w==,2UNV7KOq4oGjA5+PKsX47LYxvJTCU1Md55lAkjhWLGNYgeUJqUXtid+86vZww+nL,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,qY3MWicu/0LNAzllbMUPUqLCnBRM0b8f+8gCKfLBVhA=,m86p0LbwQP79i4nFFg3YpnUzP4gMbptW5sOm5igVWcfKZx2B/le8NKNipmoC1b8254kycAQ3b2z4tsbGHiSsnQ==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-includes/js/wp-embed.min.js?ver=4.7.11

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-includes/js/wp-embed.min.js?ver=4.7.11 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-includes/js/wp-embed.min.js?ver=4.7.11
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.6481149001963514533
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLqv1Icz/+auWkycB0m9nz7sFJmEKNgQ96+wiTVoMq713,2d58ifebGbosy5xc+FRalrFCqxiIblTUvizc+c0Ki5VIBHyY7LS1fGJ8xhB4NEitAoIf/VZvK+MM6Ccbt0+Cyw==,2UNV7KOq4oGjA5+PKsX47H8fcDDTK1h4pebfMCDOGYS8ZDY613cHYLbuhNMgAom1,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,dVwKUN32x1sCjtpKWqqakvs4v17hq4a9+vnWX8hJM1Q=,m86p0LbwQP79i4nFFg3YppTFG4gjI7uShxvkewRglZxlHTZhYNHPQdkGdrGVhbmhuHU8Jbdbn1iI1knIrSAZZA==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/uploads/2016/01/flyer3.jpg

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/uploads/2016/01/flyer3.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/uploads/2016/01/flyer3.jpg
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.7641149001963614533
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLqv1Icz/+auWkycB0m9nz7sFJmEKNgQ96+wiTVoMq713,2d58ifebGbosy5xc+FRallVPQCLNjBtZtXYY9KKFU9Wt26Y+Wegpvi+91LQ+J89kd379nNXFEw4x3xBe4e3azg==,2UNV7KOq4oGjA5+PKsX47AWAk/VOec6Jdv53Z5I0tnhYgeUJqUXtid+86vZww+nL,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,qY3MWicu/0LNAzllbMUPUqLCnBRM0b8f+8gCKfLBVhA=,m86p0LbwQP79i4nFFg3YpnUzP4gMbptW5sOm5igVWcfKZx2B/le8NKNipmoC1b8254kycAQ3b2z4tsbGHiSsnQ==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/themes/ronneby/inc/news-page-slider/custom.css?ver=1.0.0

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/themes/ronneby/inc/news-page-slider/custom.css?ver=1.0.0 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/themes/ronneby/inc/news-page-slider/custom.css?ver=1.0.0
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.25811484893791891
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: W1c2/pqHBqplxcWufHCkILxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLm+RUUxFrhyTYE58WvxHjklsl0ueLMGCVziLUYuJmnC9,2d58ifebGbosy5xc+FRalvSo9VmfizCrY3YVu1UeZP3R968SYzn+x7cFNNEhfOp6WjoUs+CeYPg0K4+ZSKTxKg==,2UNV7KOq4oGjA5+PKsX47K8js8LZFoNsYvLQWACVtG9YgeUJqUXtid+86vZww+nL,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,ghLYoVBYUDao9ezLIM+Fk4aXWU0SpxR5be4Nd73rv2o=,m86p0LbwQP79i4nFFg3YppRIWdjiSlBd3ACjcrvTtVbfCqedIJHSNk9EIxHo2yZ5ocBadH1+ZVP5dEqjyu9iKQ==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/themes/ronneby/assets/css/jquery.isotope.css

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/themes/ronneby/assets/css/jquery.isotope.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/jquery.isotope.css
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.36211484893792891
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: W1c2/pqHBqplxcWufHCkILxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLm+RUUxFrhyTYE58WvxHjklsl0ueLMGCVziLUYuJmnC9,2d58ifebGbosy5xc+FRalidVQTpp6skdbiiO3fl8oA8XoTAUgGDU4sve4E/gHiZLUemC78UstulKzYR9gU1M2Q==,2UNV7KOq4oGjA5+PKsX47LYxvJTCU1Md55lAkjhWLGNYgeUJqUXtid+86vZww+nL,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,ogm5jEiYRU3MvhMv037+W9JK2Pjqyost0W8fd8zWKuo=,m86p0LbwQP79i4nFFg3Ypt2w41LH1/s9Pt6fUpEhACAnKS09jwAT1zrd8Mn4jWOfgRH3beqeYzF6CXHJlhLrbA==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/slick/slick.css

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/slick/slick.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/slick/slick.css
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.43811484893793891
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: W1c2/pqHBqplxcWufHCkILxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLm+RUUxFrhyTYE58WvxHjklsl0ueLMGCVziLUYuJmnC9,2d58ifebGbosy5xc+FRalumqQZGrpKPbKsPamA30uXTjNTp+yL2+WJKIzqx821BTux5sQlp+2QcBy8tLJKnMCw==,2UNV7KOq4oGjA5+PKsX47AWAk/VOec6Jdv53Z5I0tnhYgeUJqUXtid+86vZww+nL,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,ghLYoVBYUDao9ezLIM+Fk4aXWU0SpxR5be4Nd73rv2o=,m86p0LbwQP79i4nFFg3YppRIWdjiSlBd3ACjcrvTtVbfCqedIJHSNk9EIxHo2yZ5ocBadH1+ZVP5dEqjyu9iKQ==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.2

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.2 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.2
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.51811484893794891
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: W1c2/pqHBqplxcWufHCkILxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLm+RUUxFrhyTYE58WvxHjklsl0ueLMGCVziLUYuJmnC9,2d58ifebGbosy5xc+FRalnsvSK+wMcNAO7IaraRyYVi+EG6J/W36R4isYtaUiUSoyPoq0+9316V4MBo8d1mkew==,2UNV7KOq4oGjA5+PKsX47H8fcDDTK1h4pebfMCDOGYS8ZDY613cHYLbuhNMgAom1,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,QAQKuqAfbfo2D2E6eXvU9Bg/fsYkOuyhCdtbp+8gLoY=,m86p0LbwQP79i4nFFg3YpqsDOQrmY4nkfqm7fnMfC310kTZ+0Ej/+NOJkdy5fOG0BnR6lS2GFRe9XxWOR0cNBg==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/themes/ronneby/assets/js/post-like.min.js

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/themes/ronneby/assets/js/post-like.min.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/post-like.min.js
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.62711484893795891
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: W1c2/pqHBqplxcWufHCkILxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLm+RUUxFrhyTYE58WvxHjklsl0ueLMGCVziLUYuJmnC9,2d58ifebGbosy5xc+FRaln8WxPUAPGRSAELFQrXEnmQL+TK9dgFsk7kJ+tGunpp8/QWt4dP2O9grb6RSl2LYMw==,2UNV7KOq4oGjA5+PKsX47LYxvJTCU1Md55lAkjhWLGNYgeUJqUXtid+86vZww+nL,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,GatM435oC9hQ0gdgv2FvLvd0KcU/vYW9H+jr0wBOLfk=,m86p0LbwQP79i4nFFg3YpqGjwVVWRx3PGkT+JZGYDEZ9JBWDR2cvN3hd/EJxypHGBbh9qXqaUbSG3gzZXgLCig==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/uploads/2016/04/small-138x42.png

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/uploads/2016/04/small-138x42.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/uploads/2016/04/small-138x42.png
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.71511484893796891
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: W1c2/pqHBqplxcWufHCkILxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLm+RUUxFrhyTYE58WvxHjklsl0ueLMGCVziLUYuJmnC9,2d58ifebGbosy5xc+FRalpXVTDv+Y4yst3TPa/AYkOnWV3U7tp0C0ELGdfiprYFvtxHle3TKNfkZwTvug1jShg==,2UNV7KOq4oGjA5+PKsX47LYxvJTCU1Md55lAkjhWLGNYgeUJqUXtid+86vZww+nL,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,ghLYoVBYUDao9ezLIM+Fk4aXWU0SpxR5be4Nd73rv2o=,m86p0LbwQP79i4nFFg3YppRIWdjiSlBd3ACjcrvTtVbfCqedIJHSNk9EIxHo2yZ5ocBadH1+ZVP5dEqjyu9iKQ==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
GET

http://qreativedesign.com/wp-content/uploads/2016/01/flyer5.jpg

IEXPLORE.EXE

Remote address:

185.230.63.171:80

Request

GET /wp-content/uploads/2016/01/flyer5.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Date: Mon, 13 May 2024 21:07:16 GMT
Content-Length: 0
Connection: keep-alive
location: https://www.qreativedesign.com/wp-content/uploads/2016/01/flyer5.jpg
strict-transport-security: max-age=86400
x-wix-request-id: 1715634436.80311484893797891
Age: 0
Server-Timing: cache;desc=miss, varnish;desc=miss, dc;desc=84
X-Seen-By: W1c2/pqHBqplxcWufHCkILxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLm+RUUxFrhyTYE58WvxHjklsl0ueLMGCVziLUYuJmnC9,2d58ifebGbosy5xc+FRalphMww3/IY4gpN7oZCSvlV5YC3u5dHM3JsYrwluSNMNbFet6AfFnCNDnmGLx/IdzJw==,2UNV7KOq4oGjA5+PKsX47LYxvJTCU1Md55lAkjhWLGNYgeUJqUXtid+86vZww+nL,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,qY3MWicu/0LNAzllbMUPUqLCnBRM0b8f+8gCKfLBVhA=,m86p0LbwQP79i4nFFg3YpnUzP4gMbptW5sOm5igVWcfKZx2B/le8NKNipmoC1b8254kycAQ3b2z4tsbGHiSsnQ==
Cache-Control: no-cache
X-Content-Type-Options: nosniff
DNS

www.qreativedesign.com

IEXPLORE.EXE

Remote address:

8.8.8.8:53

Request

www.qreativedesign.com

IN A

Response

www.qreativedesign.com

IN CNAME

cdn1.wixdns.net

cdn1.wixdns.net

IN CNAME

td-ccm-neg-87-45.wixdns.net

td-ccm-neg-87-45.wixdns.net

IN A

34.149.87.45
DNS

www.qreativedesign.com

IEXPLORE.EXE

Remote address:

8.8.8.8:53

Request

www.qreativedesign.com

IN A
GET

https://www.qreativedesign.com/wp-content/uploads/dfd_ronneby_fonts/ronneby/Defaults.css?ver=4.7.11

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/uploads/dfd_ronneby_fonts/ronneby/Defaults.css?ver=4.7.11 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634437.98311460094379315040
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lcy-eglc8600094-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLrb3eKb2faxipHpDHW1Enb7QYjEJxCMSl2Cb+N3EkeV+,2d58ifebGbosy5xc+FRalr/sV6CpcxalCThqKjTv3PCMFVogGRPZXH9mRfDq+9oxkJu+i0VaEAWezFLRyKrQhw==,2UNV7KOq4oGjA5+PKsX47E8vuwy8i4iHyoNZ4rkpz968ZDY613cHYLbuhNMgAom1,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,toq+1Ac4ndV9aCBsCQpGvOh3GcJwK8eh6CrYG9Np6yI=,m86p0LbwQP79i4nFFg3Yprje+Ssmj2Uc5pT+9M5TZU6RObe6E62DgAnw6+1h60IaFfOIXyFiKixOa9TzP4F5sA==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/styled-button.css

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/themes/ronneby/assets/css/styled-button.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634437.9441149000872714533
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lcy-eglc8600094-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,yI4PPEXc3bvXNWfpzSkUarxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLqv1Icz/+auWkycB0m9nz7sFJmEKNgQ96+wiTVoMq713,2d58ifebGbosy5xc+FRalnDoftATc4BBlEf/jz3gnBoWJxFhfqM1N6WoZ/n0FN6D8+Ss7k2I+ahroSTsp33cQQ==,2UNV7KOq4oGjA5+PKsX47H8fcDDTK1h4pebfMCDOGYS8ZDY613cHYLbuhNMgAom1,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,qY3MWicu/0LNAzllbMUPUqLCnBRM0b8f+8gCKfLBVhA=,m86p0LbwQP79i4nFFg3YpnUzP4gMbptW5sOm5igVWcfKZx2B/le8NKNipmoC1b8254kycAQ3b2z4tsbGHiSsnQ==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.2

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.2 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634437.93311486534261617475
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:17 GMT
X-Served-By: cache-lcy-eglc8600095-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLlE5ByQns6DUljTJazv+2SeLmllC79dLg9RqGdr3j4eT,2d58ifebGbosy5xc+FRalrFCqxiIblTUvizc+c0Ki5VIBHyY7LS1fGJ8xhB4NEitAoIf/VZvK+MM6Ccbt0+Cyw==,2UNV7KOq4oGjA5+PKsX47AWAk/VOec6Jdv53Z5I0tnhYgeUJqUXtid+86vZww+nL,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,toq+1Ac4ndV9aCBsCQpGvOh3GcJwK8eh6CrYG9Np6yI=,m86p0LbwQP79i4nFFg3Yprje+Ssmj2Uc5pT+9M5TZU6RObe6E62DgAnw6+1h60IaFfOIXyFiKixOa9TzP4F5sA==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/min-css/ultimate.min.css

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/min-css/ultimate.min.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634438.18611448572072317611
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lcy-eglc8600021-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLrjAMl1QewRKjWjp2YfgqGDDa2gaReObvoMyILa0JRsy,2d58ifebGbosy5xc+FRalvSo9VmfizCrY3YVu1UeZP3R968SYzn+x7cFNNEhfOp6WjoUs+CeYPg0K4+ZSKTxKg==,2UNV7KOq4oGjA5+PKsX47LYxvJTCU1Md55lAkjhWLGNYgeUJqUXtid+86vZww+nL,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,ogm5jEiYRU3MvhMv037+W9JK2Pjqyost0W8fd8zWKuo=,m86p0LbwQP79i4nFFg3Ypt2w41LH1/s9Pt6fUpEhACAnKS09jwAT1zrd8Mn4jWOfgRH3beqeYzF6CXHJlhLrbA==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/themes/ronneby/inc/news-page-slider/custom.css?ver=1.0.0

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/themes/ronneby/inc/news-page-slider/custom.css?ver=1.0.0 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634437.93111451632306513721
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:17 GMT
X-Served-By: cache-lhr7384-LHR
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLm+RUUxFrhyTYE58WvxHjkmdv/c7uH0ky0wFkt5EFvml,2d58ifebGbosy5xc+FRalrFCqxiIblTUvizc+c0Ki5VIBHyY7LS1fGJ8xhB4NEitAoIf/VZvK+MM6Ccbt0+Cyw==,2UNV7KOq4oGjA5+PKsX47KGVzv3IxRyIcz9j5sGMMZy8ZDY613cHYLbuhNMgAom1,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,ghLYoVBYUDao9ezLIM+Fk4aXWU0SpxR5be4Nd73rv2o=,m86p0LbwQP79i4nFFg3YppRIWdjiSlBd3ACjcrvTtVbfCqedIJHSNk9EIxHo2yZ5ocBadH1+ZVP5dEqjyu9iKQ==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/themes/ronneby/style.css

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/themes/ronneby/style.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634437.9401148993565222193
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lcy-eglc8600044-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLn3pJ6os+jMZl8eSiOUhV8wFJmEKNgQ96+wiTVoMq713,2d58ifebGbosy5xc+FRalsWD6uWq45o0zRxBzPqPd/OZJBRJbD3GTlSsTkx0xjOSpY4SAcw6Vz6XRLI2MrbXzg==,2UNV7KOq4oGjA5+PKsX47KGVzv3IxRyIcz9j5sGMMZy8ZDY613cHYLbuhNMgAom1,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,toq+1Ac4ndV9aCBsCQpGvOh3GcJwK8eh6CrYG9Np6yI=,m86p0LbwQP79i4nFFg3Yprje+Ssmj2Uc5pT+9M5TZU6RObe6E62DgAnw6+1h60IaFfOIXyFiKixOa9TzP4F5sA==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/jquery.isotope.css

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/themes/ronneby/assets/css/jquery.isotope.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634437.93311451655879713722
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:17 GMT
X-Served-By: cache-lcy-eglc8600054-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,W1c2/pqHBqplxcWufHCkILxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLm+RUUxFrhyTYE58WvxHjkmdv/c7uH0ky0wFkt5EFvml,2d58ifebGbosy5xc+FRalr/sV6CpcxalCThqKjTv3PCMFVogGRPZXH9mRfDq+9oxkJu+i0VaEAWezFLRyKrQhw==,2UNV7KOq4oGjA5+PKsX47K8js8LZFoNsYvLQWACVtG9YgeUJqUXtid+86vZww+nL,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,GatM435oC9hQ0gdgv2FvLvd0KcU/vYW9H+jr0wBOLfk=,m86p0LbwQP79i4nFFg3YpqGjwVVWRx3PGkT+JZGYDEZ9JBWDR2cvN3hd/EJxypHGBbh9qXqaUbSG3gzZXgLCig==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-includes/js/wp-emoji-release.min.js?ver=4.7.11

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-includes/js/wp-emoji-release.min.js?ver=4.7.11 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634437.9331149161450682303
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lhr7354-LHR
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,W1c2/pqHBqplxcWufHCkILxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLmHFmhKuriwfX/MoZPOzw5ceGdLDLXwpLd0CTVHPbfOd,2d58ifebGbosy5xc+FRalr/sV6CpcxalCThqKjTv3PCMFVogGRPZXH9mRfDq+9oxkJu+i0VaEAWezFLRyKrQhw==,2UNV7KOq4oGjA5+PKsX47LYxvJTCU1Md55lAkjhWLGNYgeUJqUXtid+86vZww+nL,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,ghLYoVBYUDao9ezLIM+Fk4aXWU0SpxR5be4Nd73rv2o=,m86p0LbwQP79i4nFFg3YppRIWdjiSlBd3ACjcrvTtVbfCqedIJHSNk9EIxHo2yZ5ocBadH1+ZVP5dEqjyu9iKQ==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/mobile-responsive.css

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/themes/ronneby/assets/css/mobile-responsive.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634438.0821148217637142675
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lcy-eglc8600020-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,yI4PPEXc3bvXNWfpzSkUarxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLphidMtWzh3rsfhiQCDTS12PfR5Gq0aOvPi6ADB6Ij8Q,2d58ifebGbosy5xc+FRalv+GRvZ7h0TfiUaNKrQaQ8/66/Bd9JQ400dh/SzeMOOpnsCWvX8Z/EH35egRTNEB9w==,2UNV7KOq4oGjA5+PKsX47H8fcDDTK1h4pebfMCDOGYS8ZDY613cHYLbuhNMgAom1,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,NAVC8/7vjJ8lqeyx0mHztD5epSqNATNu4bo3E1S+MIk=,m86p0LbwQP79i4nFFg3YplVfY98MFubAh3OLyC09+RIwExNO3EvcPBSXLVsMjzGJqLhmjnUPLKXRYp0Xken1hQ==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/visual-composer.css

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/themes/ronneby/assets/css/visual-composer.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634438.1321149019925193480
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lcy-eglc8600027-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLk1Uxi5aVwrmRyfWZ8T7SgCdv/c7uH0ky0wFkt5EFvml,2d58ifebGbosy5xc+FRalpXVTDv+Y4yst3TPa/AYkOnWV3U7tp0C0ELGdfiprYFvtxHle3TKNfkZwTvug1jShg==,2UNV7KOq4oGjA5+PKsX47LYxvJTCU1Md55lAkjhWLGNYgeUJqUXtid+86vZww+nL,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,dVwKUN32x1sCjtpKWqqakvs4v17hq4a9+vnWX8hJM1Q=,m86p0LbwQP79i4nFFg3YppTFG4gjI7uShxvkewRglZxlHTZhYNHPQdkGdrGVhbmhuHU8Jbdbn1iI1knIrSAZZA==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/app.css

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/themes/ronneby/assets/css/app.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634438.2151148943850712010
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lhr7334-LHR
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLn3T7+WtWeNwumXaa7IOwWDJftmKrOReD3ukbbas4YDo,2d58ifebGbosy5xc+FRalv+GRvZ7h0TfiUaNKrQaQ8/66/Bd9JQ400dh/SzeMOOpnsCWvX8Z/EH35egRTNEB9w==,2UNV7KOq4oGjA5+PKsX47AWAk/VOec6Jdv53Z5I0tnhYgeUJqUXtid+86vZww+nL,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,NAVC8/7vjJ8lqeyx0mHztD5epSqNATNu4bo3E1S+MIk=,m86p0LbwQP79i4nFFg3YplVfY98MFubAh3OLyC09+RIwExNO3EvcPBSXLVsMjzGJqLhmjnUPLKXRYp0Xken1hQ==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/prettyPhoto.css

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/themes/ronneby/assets/css/prettyPhoto.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634438.2321144681352623684
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lcy-eglc8600044-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,W1c2/pqHBqplxcWufHCkILxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLjPDFZzqr/nlb7YyA5Dm8Ulsl0ueLMGCVziLUYuJmnC9,2d58ifebGbosy5xc+FRalv+GRvZ7h0TfiUaNKrQaQ8/66/Bd9JQ400dh/SzeMOOpnsCWvX8Z/EH35egRTNEB9w==,2UNV7KOq4oGjA5+PKsX47K8js8LZFoNsYvLQWACVtG9YgeUJqUXtid+86vZww+nL,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,NAVC8/7vjJ8lqeyx0mHztD5epSqNATNu4bo3E1S+MIk=,m86p0LbwQP79i4nFFg3YplVfY98MFubAh3OLyC09+RIwExNO3EvcPBSXLVsMjzGJqLhmjnUPLKXRYp0Xken1hQ==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/slick/slick.css

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/slick/slick.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634438.1881149166820202299
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lcy-eglc8600034-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,W1c2/pqHBqplxcWufHCkILxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLmHFmhKuriwfX/MoZPOzw5ceGdLDLXwpLd0CTVHPbfOd,2d58ifebGbosy5xc+FRalno7d2bIRQ19uCTOZUkPyfAIEW3ilSJbRfL7pmbbRyGbLltXI2gLEQ5zAzn41/PDTg==,2UNV7KOq4oGjA5+PKsX47K8js8LZFoNsYvLQWACVtG9YgeUJqUXtid+86vZww+nL,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,znn/mNQgrDpx6yiSFkerzbUFbSfkzvDmFbAuhGZtbpE=,m86p0LbwQP79i4nFFg3YplHHUEBm9KvfopKz45BgxZfypx6HXPH3JhGFqYSEo1ubyd2skvNG6n5ZfCfrgu/o4A==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/themes/ronneby/css/options.css

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/themes/ronneby/css/options.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634438.3538224797521524530
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lcy-eglc8600057-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,yI4PPEXc3bvXNWfpzSkUarxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLnBCRbqCTHlqQfUNg32l/JXDa2gaReObvoMyILa0JRsy,2d58ifebGbosy5xc+FRaljIZMWEPOvlzMph5ubvG2fyUktdaCAZrJO0/JsS99OHrDyfRUwmBu3/oukwMUlVboQ==,2UNV7KOq4oGjA5+PKsX47KGVzv3IxRyIcz9j5sGMMZy8ZDY613cHYLbuhNMgAom1,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,QSHN4lyR9QUYzqgTyXpAA39SVDpElM4OxR0qDs4w178=,m86p0LbwQP79i4nFFg3Ypl5HBg2ymCrzBULojWI9poQeCKlPOj6JV1f+rhfuKNckSmvCqSg0p0u6576MUixACQ==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-includes/js/jquery/jquery.js?ver=1.12.4

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634438.3441148947262882007
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lcy-eglc8600085-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,yI4PPEXc3bvXNWfpzSkUarxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLn3T7+WtWeNwumXaa7IOwWDJftmKrOReD3ukbbas4YDo,2d58ifebGbosy5xc+FRalumqQZGrpKPbKsPamA30uXTjNTp+yL2+WJKIzqx821BTux5sQlp+2QcBy8tLJKnMCw==,2UNV7KOq4oGjA5+PKsX47KGVzv3IxRyIcz9j5sGMMZy8ZDY613cHYLbuhNMgAom1,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,iZHtFMyahnXR5HqNJMdYUZLZhBj7BaxY/abiIUWJ4Vg=,m86p0LbwQP79i4nFFg3Ypn0xXXZoIVGw0d+Pm2K+5sJj+hqZ3fWnd7S17QeRahBZh9Ehy38J4yiUM5juyzO0kw==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634438.4531144683327603685
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lhr7322-LHR
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,W1c2/pqHBqplxcWufHCkILxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLjPDFZzqr/nlb7YyA5Dm8Ulsl0ueLMGCVziLUYuJmnC9,2d58ifebGbosy5xc+FRalphMww3/IY4gpN7oZCSvlV5YC3u5dHM3JsYrwluSNMNbFet6AfFnCNDnmGLx/IdzJw==,2UNV7KOq4oGjA5+PKsX47KGVzv3IxRyIcz9j5sGMMZy8ZDY613cHYLbuhNMgAom1,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,NAVC8/7vjJ8lqeyx0mHztD5epSqNATNu4bo3E1S+MIk=,m86p0LbwQP79i4nFFg3YplVfY98MFubAh3OLyC09+RIwExNO3EvcPBSXLVsMjzGJqLhmjnUPLKXRYp0Xken1hQ==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/plugins/news-page-slider/js/jquery.jcarousel.min.js?ver=1.0.0

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/plugins/news-page-slider/js/jquery.jcarousel.min.js?ver=1.0.0 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634438.4528224797521624530
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lcy-eglc8600024-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,yI4PPEXc3bvXNWfpzSkUarxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLnBCRbqCTHlqQfUNg32l/JXDa2gaReObvoMyILa0JRsy,2d58ifebGbosy5xc+FRalnsvSK+wMcNAO7IaraRyYViKB7mFbw8LRggcZ9VK0RdpKDFLGT5nrznQYjCmR6aTnA==,2UNV7KOq4oGjA5+PKsX47LYxvJTCU1Md55lAkjhWLGNYgeUJqUXtid+86vZww+nL,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,dVwKUN32x1sCjtpKWqqakvs4v17hq4a9+vnWX8hJM1Q=,m86p0LbwQP79i4nFFg3YppTFG4gjI7uShxvkewRglZxlHTZhYNHPQdkGdrGVhbmhuHU8Jbdbn1iI1knIrSAZZA==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/plugins/news-page-slider/js/news-page-slider.js?ver=1.0.0

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/plugins/news-page-slider/js/news-page-slider.js?ver=1.0.0 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634438.4401144680453843689
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lcy-eglc8600087-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,yI4PPEXc3bvXNWfpzSkUarxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLjPDFZzqr/nlb7YyA5Dm8Ulsl0ueLMGCVziLUYuJmnC9,2d58ifebGbosy5xc+FRalno7d2bIRQ19uCTOZUkPyfAIEW3ilSJbRfL7pmbbRyGbLltXI2gLEQ5zAzn41/PDTg==,2UNV7KOq4oGjA5+PKsX47E8vuwy8i4iHyoNZ4rkpz968ZDY613cHYLbuhNMgAom1,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,QSHN4lyR9QUYzqgTyXpAA39SVDpElM4OxR0qDs4w178=,m86p0LbwQP79i4nFFg3Ypl5HBg2ymCrzBULojWI9poQeCKlPOj6JV1f+rhfuKNckSmvCqSg0p0u6576MUixACQ==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.2

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.2 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634438.475167933673691489
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lcy-eglc8600089-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLnBCRbqCTHlqQfUNg32l/JUlJk2S3kV4GhWnrhiCH1G7,2d58ifebGbosy5xc+FRalsGbc7U/Pu25MonOzANdc5pVSXB1lDUBs8l0QCneyyMkQh1PvGWKUcoAOsIgNHUFEg==,2UNV7KOq4oGjA5+PKsX47GsUvTC4jhKjIE80ndHXjzFYgeUJqUXtid+86vZww+nL,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,qY3MWicu/0LNAzllbMUPUqLCnBRM0b8f+8gCKfLBVhA=,m86p0LbwQP79i4nFFg3YpnUzP4gMbptW5sOm5igVWcfKZx2B/le8NKNipmoC1b8254kycAQ3b2z4tsbGHiSsnQ==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.2

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.2 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634438.613563902384829382
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lhr7341-LHR
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,yI4PPEXc3bvXNWfpzSkUarxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLvuBOHNZffAxbwTL99txlorJftmKrOReD3ukbbas4YDo,2d58ifebGbosy5xc+FRalsGbc7U/Pu25MonOzANdc5pVSXB1lDUBs8l0QCneyyMkQh1PvGWKUcoAOsIgNHUFEg==,2UNV7KOq4oGjA5+PKsX47KGVzv3IxRyIcz9j5sGMMZy8ZDY613cHYLbuhNMgAom1,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,NAVC8/7vjJ8lqeyx0mHztD5epSqNATNu4bo3E1S+MIk=,m86p0LbwQP79i4nFFg3YplVfY98MFubAh3OLyC09+RIwExNO3EvcPBSXLVsMjzGJqLhmjnUPLKXRYp0Xken1hQ==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/min-js/ultimate.min.js

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/min-js/ultimate.min.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634438.55811460318742615040
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lcy-eglc8600066-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,yI4PPEXc3bvXNWfpzSkUarxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLrb3eKb2faxipHpDHW1Enb7QYjEJxCMSl2Cb+N3EkeV+,2d58ifebGbosy5xc+FRalsGbc7U/Pu25MonOzANdc5pVSXB1lDUBs8l0QCneyyMkQh1PvGWKUcoAOsIgNHUFEg==,2UNV7KOq4oGjA5+PKsX47AWAk/VOec6Jdv53Z5I0tnhYgeUJqUXtid+86vZww+nL,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,iZHtFMyahnXR5HqNJMdYUZLZhBj7BaxY/abiIUWJ4Vg=,m86p0LbwQP79i4nFFg3Ypn0xXXZoIVGw0d+Pm2K+5sJj+hqZ3fWnd7S17QeRahBZh9Ehy38J4yiUM5juyzO0kw==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/hammer.min.js

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/themes/ronneby/assets/js/hammer.min.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634438.6678228923912729486
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lcy-eglc8600034-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,yI4PPEXc3bvXNWfpzSkUarxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLtLvL2IBxT+qebfbUUJ9FLIeGdLDLXwpLd0CTVHPbfOd,2d58ifebGbosy5xc+FRalh74mY5NiJP3a2cdw2ynIors+hmiuPjChLPOJioGf9OdyJSzkuT7fxRCrXt2RlRYQg==,2UNV7KOq4oGjA5+PKsX47LYxvJTCU1Md55lAkjhWLGNYgeUJqUXtid+86vZww+nL,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,GatM435oC9hQ0gdgv2FvLvd0KcU/vYW9H+jr0wBOLfk=,m86p0LbwQP79i4nFFg3YpqGjwVVWRx3PGkT+JZGYDEZ9JBWDR2cvN3hd/EJxypHGBbh9qXqaUbSG3gzZXgLCig==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-includes/js/jquery/jquery.form.min.js?ver=3.37.0

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-includes/js/jquery/jquery.form.min.js?ver=3.37.0 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634438.6683568428014416652
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lhr7337-LHR
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLj8Me8HhPxZ96beJGbiST87Da2gaReObvoMyILa0JRsy,2d58ifebGbosy5xc+FRalphMww3/IY4gpN7oZCSvlV5YC3u5dHM3JsYrwluSNMNbFet6AfFnCNDnmGLx/IdzJw==,2UNV7KOq4oGjA5+PKsX47GsUvTC4jhKjIE80ndHXjzFYgeUJqUXtid+86vZww+nL,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,QSHN4lyR9QUYzqgTyXpAA39SVDpElM4OxR0qDs4w178=,m86p0LbwQP79i4nFFg3Ypl5HBg2ymCrzBULojWI9poQeCKlPOj6JV1f+rhfuKNckSmvCqSg0p0u6576MUixACQ==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/plugins.min.js

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/themes/ronneby/assets/js/plugins.min.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634438.7421148198675852677
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lcy-eglc8600038-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLphidMtWzh3rsfhiQCDTS12PfR5Gq0aOvPi6ADB6Ij8Q,2d58ifebGbosy5xc+FRalmCKhaHKa7CAgCljVbPmDb/R4HsePlkHx9mMPIyULkBE981eNVqS7tM6S7oSm87HDw==,2UNV7KOq4oGjA5+PKsX47LYxvJTCU1Md55lAkjhWLGNYgeUJqUXtid+86vZww+nL,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,QSHN4lyR9QUYzqgTyXpAA39SVDpElM4OxR0qDs4w178=,m86p0LbwQP79i4nFFg3Ypl5HBg2ymCrzBULojWI9poQeCKlPOj6JV1f+rhfuKNckSmvCqSg0p0u6576MUixACQ==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/jquery.smoothscroll.js

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/themes/ronneby/assets/js/jquery.smoothscroll.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634438.74911451780342713726
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lcy-eglc8600048-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLm+RUUxFrhyTYE58WvxHjkmdv/c7uH0ky0wFkt5EFvml,2d58ifebGbosy5xc+FRalrFCqxiIblTUvizc+c0Ki5VIBHyY7LS1fGJ8xhB4NEitAoIf/VZvK+MM6Ccbt0+Cyw==,2UNV7KOq4oGjA5+PKsX47AWAk/VOec6Jdv53Z5I0tnhYgeUJqUXtid+86vZww+nL,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,QAQKuqAfbfo2D2E6eXvU9Bg/fsYkOuyhCdtbp+8gLoY=,m86p0LbwQP79i4nFFg3YpqsDOQrmY4nkfqm7fnMfC310kTZ+0Ej/+NOJkdy5fOG0BnR6lS2GFRe9XxWOR0cNBg==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/post-like.min.js

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/themes/ronneby/assets/js/post-like.min.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634438.81611451780342813726
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lcy-eglc8600047-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLm+RUUxFrhyTYE58WvxHjkmdv/c7uH0ky0wFkt5EFvml,2d58ifebGbosy5xc+FRalumqQZGrpKPbKsPamA30uXTjNTp+yL2+WJKIzqx821BTux5sQlp+2QcBy8tLJKnMCw==,2UNV7KOq4oGjA5+PKsX47GsUvTC4jhKjIE80ndHXjzFYgeUJqUXtid+86vZww+nL,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,GatM435oC9hQ0gdgv2FvLvd0KcU/vYW9H+jr0wBOLfk=,m86p0LbwQP79i4nFFg3YpqGjwVVWRx3PGkT+JZGYDEZ9JBWDR2cvN3hd/EJxypHGBbh9qXqaUbSG3gzZXgLCig==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/jquery.mega-menu.min.js

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/themes/ronneby/assets/js/jquery.mega-menu.min.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634438.88511484951702117225
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:19 GMT
X-Served-By: cache-lcy-eglc8600055-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,yI4PPEXc3bvXNWfpzSkUarxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLqRuPvfvC6RzOgH6bZ0UWxkFJmEKNgQ96+wiTVoMq713,2d58ifebGbosy5xc+FRalml4JsvDBgUucvc4jIB2CETHWhCvjp6w+h8ytXcVrFmD1bEFKkILbdzQaDoyOE9koQ==,2UNV7KOq4oGjA5+PKsX47LYxvJTCU1Md55lAkjhWLGNYgeUJqUXtid+86vZww+nL,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,iZHtFMyahnXR5HqNJMdYUZLZhBj7BaxY/abiIUWJ4Vg=,m86p0LbwQP79i4nFFg3Ypn0xXXZoIVGw0d+Pm2K+5sJj+hqZ3fWnd7S17QeRahBZh9Ehy38J4yiUM5juyzO0kw==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
DNS

ida8.fr

IEXPLORE.EXE

Remote address:

8.8.8.8:53

Request

ida8.fr

IN A

Response
GET

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/jquery.mega-menu.run.min.js

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/themes/ronneby/assets/js/jquery.mega-menu.run.min.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634438.9171148960687362008
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:18 GMT
X-Served-By: cache-lcy-eglc8600045-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLn3T7+WtWeNwumXaa7IOwWDJftmKrOReD3ukbbas4YDo,2d58ifebGbosy5xc+FRalnsvSK+wMcNAO7IaraRyYVi+EG6J/W36R4isYtaUiUSoyPoq0+9316V4MBo8d1mkew==,2UNV7KOq4oGjA5+PKsX47KGVzv3IxRyIcz9j5sGMMZy8ZDY613cHYLbuhNMgAom1,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,dVwKUN32x1sCjtpKWqqakvs4v17hq4a9+vnWX8hJM1Q=,m86p0LbwQP79i4nFFg3YppTFG4gjI7uShxvkewRglZxlHTZhYNHPQdkGdrGVhbmhuHU8Jbdbn1iI1knIrSAZZA==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/jflickrfeed.min.js

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/themes/ronneby/assets/js/jflickrfeed.min.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634438.91811486357458717475
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:19 GMT
X-Served-By: cache-lcy-eglc8600026-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,W1c2/pqHBqplxcWufHCkILxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLlE5ByQns6DUljTJazv+2SeLmllC79dLg9RqGdr3j4eT,2d58ifebGbosy5xc+FRalvMjIFFvueiRv6v0zKTII5XBYs577e45iI3qgp9gfIS7+sftAPg9CQY4na+6lNttQg==,2UNV7KOq4oGjA5+PKsX47E8vuwy8i4iHyoNZ4rkpz968ZDY613cHYLbuhNMgAom1,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,qY3MWicu/0LNAzllbMUPUqLCnBRM0b8f+8gCKfLBVhA=,m86p0LbwQP79i4nFFg3YpnUzP4gMbptW5sOm5igVWcfKZx2B/le8NKNipmoC1b8254kycAQ3b2z4tsbGHiSsnQ==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-includes/js/wp-embed.min.js?ver=4.7.11

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-includes/js/wp-embed.min.js?ver=4.7.11 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634439.0571149157585672305
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:19 GMT
X-Served-By: cache-lhr7381-LHR
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLmHFmhKuriwfX/MoZPOzw5ceGdLDLXwpLd0CTVHPbfOd,2d58ifebGbosy5xc+FRalh74mY5NiJP3a2cdw2ynIors+hmiuPjChLPOJioGf9OdyJSzkuT7fxRCrXt2RlRYQg==,2UNV7KOq4oGjA5+PKsX47LYxvJTCU1Md55lAkjhWLGNYgeUJqUXtid+86vZww+nL,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,iZHtFMyahnXR5HqNJMdYUZLZhBj7BaxY/abiIUWJ4Vg=,m86p0LbwQP79i4nFFg3Ypn0xXXZoIVGw0d+Pm2K+5sJj+hqZ3fWnd7S17QeRahBZh9Ehy38J4yiUM5juyzO0kw==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/widget-facebook.js

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/themes/ronneby/assets/js/widget-facebook.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634439.0198224617214324531
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:19 GMT
X-Served-By: cache-lhr7380-LHR
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,W1c2/pqHBqplxcWufHCkILxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLnBCRbqCTHlqQfUNg32l/JXDa2gaReObvoMyILa0JRsy,2d58ifebGbosy5xc+FRalidVQTpp6skdbiiO3fl8oA8XoTAUgGDU4sve4E/gHiZLUemC78UstulKzYR9gU1M2Q==,2UNV7KOq4oGjA5+PKsX47E8vuwy8i4iHyoNZ4rkpz968ZDY613cHYLbuhNMgAom1,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,znn/mNQgrDpx6yiSFkerzbUFbSfkzvDmFbAuhGZtbpE=,m86p0LbwQP79i4nFFg3YplHHUEBm9KvfopKz45BgxZfypx6HXPH3JhGFqYSEo1ubyd2skvNG6n5ZfCfrgu/o4A==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/uploads/2016/04/small-138x42.png

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/uploads/2016/04/small-138x42.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634439.0221148204086672675
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:19 GMT
X-Served-By: cache-lhr7352-LHR
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,W1c2/pqHBqplxcWufHCkILxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLphidMtWzh3rsfhiQCDTS12PfR5Gq0aOvPi6ADB6Ij8Q,2d58ifebGbosy5xc+FRalml4JsvDBgUucvc4jIB2CETHWhCvjp6w+h8ytXcVrFmD1bEFKkILbdzQaDoyOE9koQ==,2UNV7KOq4oGjA5+PKsX47H8fcDDTK1h4pebfMCDOGYS8ZDY613cHYLbuhNMgAom1,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,dVwKUN32x1sCjtpKWqqakvs4v17hq4a9+vnWX8hJM1Q=,m86p0LbwQP79i4nFFg3YppTFG4gjI7uShxvkewRglZxlHTZhYNHPQdkGdrGVhbmhuHU8Jbdbn1iI1knIrSAZZA==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/uploads/2016/01/flyer3.jpg

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/uploads/2016/01/flyer3.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634439.13511486461435317476
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:19 GMT
X-Served-By: cache-lcy-eglc8600057-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLlE5ByQns6DUljTJazv+2SeLmllC79dLg9RqGdr3j4eT,2d58ifebGbosy5xc+FRalh74mY5NiJP3a2cdw2ynIors+hmiuPjChLPOJioGf9OdyJSzkuT7fxRCrXt2RlRYQg==,2UNV7KOq4oGjA5+PKsX47H8fcDDTK1h4pebfMCDOGYS8ZDY613cHYLbuhNMgAom1,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,QSHN4lyR9QUYzqgTyXpAA39SVDpElM4OxR0qDs4w178=,m86p0LbwQP79i4nFFg3Ypl5HBg2ymCrzBULojWI9poQeCKlPOj6JV1f+rhfuKNckSmvCqSg0p0u6576MUixACQ==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/uploads/2016/01/flyer5.jpg

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/uploads/2016/01/flyer5.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634439.2451149164625752300
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:19 GMT
X-Served-By: cache-lcy-eglc8600066-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLmHFmhKuriwfX/MoZPOzw5ceGdLDLXwpLd0CTVHPbfOd,2d58ifebGbosy5xc+FRalrFCqxiIblTUvizc+c0Ki5VIBHyY7LS1fGJ8xhB4NEitAoIf/VZvK+MM6Ccbt0+Cyw==,2UNV7KOq4oGjA5+PKsX47H8fcDDTK1h4pebfMCDOGYS8ZDY613cHYLbuhNMgAom1,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,GatM435oC9hQ0gdgv2FvLvd0KcU/vYW9H+jr0wBOLfk=,m86p0LbwQP79i4nFFg3YpqGjwVVWRx3PGkT+JZGYDEZ9JBWDR2cvN3hd/EJxypHGBbh9qXqaUbSG3gzZXgLCig==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/uploads/2016/04/whitelogo-138x42.png

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/uploads/2016/04/whitelogo-138x42.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634439.12411484831845417225
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:19 GMT
X-Served-By: cache-lhr7340-LHR
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLqRuPvfvC6RzOgH6bZ0UWxkFJmEKNgQ96+wiTVoMq713,2d58ifebGbosy5xc+FRalr4jfZCFwCtnWKtkm0NDMoM3X01aPwAm6yht2ogpP5942nyBk10wiDKVINYuG7kFkw==,2UNV7KOq4oGjA5+PKsX47LYxvJTCU1Md55lAkjhWLGNYgeUJqUXtid+86vZww+nL,0M9PHGUCcuDacun2z4wXaJyNHHZlkLZqbvP6KFYtGP0=,toq+1Ac4ndV9aCBsCQpGvOh3GcJwK8eh6CrYG9Np6yI=,m86p0LbwQP79i4nFFg3Yprje+Ssmj2Uc5pT+9M5TZU6RObe6E62DgAnw6+1h60IaFfOIXyFiKixOa9TzP4F5sA==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/uploads/2016/01/flyer2.jpg

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/uploads/2016/01/flyer2.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634439.18211489872551322192
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:19 GMT
X-Served-By: cache-lhr7352-LHR
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLn3pJ6os+jMZl8eSiOUhV8wFJmEKNgQ96+wiTVoMq713,2d58ifebGbosy5xc+FRalvSo9VmfizCrY3YVu1UeZP3R968SYzn+x7cFNNEhfOp6WjoUs+CeYPg0K4+ZSKTxKg==,2UNV7KOq4oGjA5+PKsX47E8vuwy8i4iHyoNZ4rkpz968ZDY613cHYLbuhNMgAom1,ZUQXXOOWKAUuDtSdOLVK0AduKp4OnH8DDiDOI+s+QPY=,znn/mNQgrDpx6yiSFkerzbUFbSfkzvDmFbAuhGZtbpE=,m86p0LbwQP79i4nFFg3YplHHUEBm9KvfopKz45BgxZfypx6HXPH3JhGFqYSEo1ubyd2skvNG6n5ZfCfrgu/o4A==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/uploads/2016/04/whitelogo.png

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/uploads/2016/04/whitelogo.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634439.23811460268644215040
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:19 GMT
X-Served-By: cache-lhr7323-LHR
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,REmTqJKTo7BM/eF7JdTbUrxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLrb3eKb2faxipHpDHW1Enb7QYjEJxCMSl2Cb+N3EkeV+,2d58ifebGbosy5xc+FRalnsvSK+wMcNAO7IaraRyYVi+EG6J/W36R4isYtaUiUSoyPoq0+9316V4MBo8d1mkew==,2UNV7KOq4oGjA5+PKsX47LYxvJTCU1Md55lAkjhWLGNYgeUJqUXtid+86vZww+nL,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,QAQKuqAfbfo2D2E6eXvU9Bg/fsYkOuyhCdtbp+8gLoY=,m86p0LbwQP79i4nFFg3YpqsDOQrmY4nkfqm7fnMfC310kTZ+0Ej/+NOJkdy5fOG0BnR6lS2GFRe9XxWOR0cNBg==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.qreativedesign.com/wp-content/uploads/2016/09/QLogo-Blksmall.png

IEXPLORE.EXE

Remote address:

34.149.87.45:443

Request

GET /wp-content/uploads/2016/09/QLogo-Blksmall.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.qreativedesign.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Strict-Transport-Security: max-age=86400
X-Wix-Request-Id: 1715634439.275114847600557891
Age: 0
Cache-Control: no-cache
Server: Pepyaka
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Mon, 13 May 2024 21:07:19 GMT
X-Served-By: cache-lcy-eglc8600023-LCY
X-Cache: MISS
Vary: Accept-Encoding
Server-Timing: cache;desc=miss, varnish;desc=miss_miss, dc;desc=fastly_84_g
X-Seen-By: yvSunuo/8ld62ehjr5B7kA==,W1c2/pqHBqplxcWufHCkILxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLm+RUUxFrhyTYE58WvxHjklsl0ueLMGCVziLUYuJmnC9,2d58ifebGbosy5xc+FRalsWD6uWq45o0zRxBzPqPd/OZJBRJbD3GTlSsTkx0xjOSpY4SAcw6Vz6XRLI2MrbXzg==,2UNV7KOq4oGjA5+PKsX47K8js8LZFoNsYvLQWACVtG9YgeUJqUXtid+86vZww+nL,RE3zeycImnB0BocjhRAQoaXhVyuOdM3Wc1DlEMZ//VM=,iZHtFMyahnXR5HqNJMdYUZLZhBj7BaxY/abiIUWJ4Vg=,m86p0LbwQP79i4nFFg3Ypn0xXXZoIVGw0d+Pm2K+5sJj+hqZ3fWnd7S17QeRahBZh9Ehy38J4yiUM5juyzO0kw==
Via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
DNS

rnbtheme.com

IEXPLORE.EXE

Remote address:

8.8.8.8:53

Request

rnbtheme.com

IN A

Response

rnbtheme.com

IN A

212.83.166.133
GET

http://rnbtheme.com/wp-content/uploads/2015/10/facebook.jpg

IEXPLORE.EXE

Remote address:

212.83.166.133:80

Request

GET /wp-content/uploads/2015/10/facebook.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: rnbtheme.com
Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently

Server: nginx
Date: Mon, 13 May 2024 21:07:23 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://rnbtheme.com:443/wp-content/uploads/2015/10/facebook.jpg
GET

http://fonts.googleapis.com/css?family=Raleway:100,200,300,400,500,600,700,800,900%7CDroid+Serif:400,700,400italic,700italic%7CLora:400,700,400italic,700italic&subset=latin

IEXPLORE.EXE

Remote address:

142.250.178.138:80

Request

GET /css?family=Raleway:100,200,300,400,500,600,700,800,900%7CDroid+Serif:400,700,400italic,700italic%7CLora:400,700,400italic,700italic&subset=latin HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: fonts.googleapis.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Mon, 13 May 2024 21:07:23 GMT
Date: Mon, 13 May 2024 21:07:23 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
GET

https://rnbtheme.com/wp-content/uploads/2015/10/facebook.jpg

IEXPLORE.EXE

Remote address:

212.83.166.133:443

Request

GET /wp-content/uploads/2015/10/facebook.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: rnbtheme.com
Connection: Keep-Alive

Response

HTTP/1.1 500 Internal Server Error

Server: nginx
Date: Mon, 13 May 2024 21:07:23 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
GET

http://fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvao7CIPrc.woff

IEXPLORE.EXE

Remote address:

172.217.20.163:80

Request

GET /s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvao7CIPrc.woff HTTP/1.1
Accept: */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Origin: file:
Accept-Encoding: gzip, deflate
Host: fonts.gstatic.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 26236
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 13 May 2024 12:46:58 GMT
Expires: Tue, 13 May 2025 12:46:58 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 01 May 2024 20:31:55 GMT
Content-Type: font/woff
Age: 30025
GET

http://fonts.gstatic.com/s/droidserif/v19/tDbI2oqRg1oM3QBjjcaDkOr9rAM.woff

IEXPLORE.EXE

Remote address:

172.217.20.163:80

Request

GET /s/droidserif/v19/tDbI2oqRg1oM3QBjjcaDkOr9rAM.woff HTTP/1.1
Accept: */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Origin: file:
Accept-Encoding: gzip, deflate
Host: fonts.gstatic.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 26140
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 10 May 2024 19:50:17 GMT
Expires: Sat, 10 May 2025 19:50:17 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 19:18:57 GMT
Content-Type: font/woff
Age: 263826
GET

http://fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVuEorCIPrc.woff

IEXPLORE.EXE

Remote address:

172.217.20.163:80

Request

GET /s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVuEorCIPrc.woff HTTP/1.1
Accept: */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Origin: file:
Accept-Encoding: gzip, deflate
Host: fonts.gstatic.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 27360
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 10 May 2024 07:29:06 GMT
Expires: Sat, 10 May 2025 07:29:06 GMT
Cache-Control: public, max-age=31536000
Age: 308297
Last-Modified: Wed, 01 May 2024 20:31:54 GMT
Content-Type: font/woff
GET

http://fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVtzpbCIPrc.woff

IEXPLORE.EXE

Remote address:

172.217.20.163:80

Request

GET /s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVtzpbCIPrc.woff HTTP/1.1
Accept: */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Origin: file:
Accept-Encoding: gzip, deflate
Host: fonts.gstatic.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 26796
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 13 May 2024 12:46:58 GMT
Expires: Tue, 13 May 2025 12:46:58 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 01 May 2024 20:31:52 GMT
Content-Type: font/woff
Age: 30025
GET

http://fonts.gstatic.com/s/lora/v35/0QI6MX1D_JOuGQbT0gvTJPa787z5vBJBkqs.woff

IEXPLORE.EXE

Remote address:

172.217.20.163:80

Request

GET /s/lora/v35/0QI6MX1D_JOuGQbT0gvTJPa787z5vBJBkqs.woff HTTP/1.1
Accept: */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Origin: file:
Accept-Encoding: gzip, deflate
Host: fonts.gstatic.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 25756
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sun, 12 May 2024 09:29:13 GMT
Expires: Mon, 12 May 2025 09:29:13 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 31 Jan 2024 23:11:44 GMT
Content-Type: font/woff
Age: 128290
GET

http://fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrc.woff

IEXPLORE.EXE

Remote address:

172.217.20.163:80

Request

GET /s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrc.woff HTTP/1.1
Accept: */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Origin: file:
Accept-Encoding: gzip, deflate
Host: fonts.gstatic.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 27488
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 09 May 2024 16:23:03 GMT
Expires: Fri, 09 May 2025 16:23:03 GMT
Cache-Control: public, max-age=31536000
Age: 362660
Last-Modified: Wed, 01 May 2024 20:31:55 GMT
Content-Type: font/woff
GET

http://fonts.gstatic.com/s/droidserif/v19/tDbX2oqRg1oM3QBjjcaDkOr4lLz5CwOnTg.woff

IEXPLORE.EXE

Remote address:

172.217.20.163:80

Request

GET /s/droidserif/v19/tDbX2oqRg1oM3QBjjcaDkOr4lLz5CwOnTg.woff HTTP/1.1
Accept: */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Origin: file:
Accept-Encoding: gzip, deflate
Host: fonts.gstatic.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 27476
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 13 May 2024 09:17:12 GMT
Expires: Tue, 13 May 2025 09:17:12 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 19:16:33 GMT
Content-Type: font/woff
Age: 42611
GET

http://fonts.gstatic.com/s/lora/v35/0QI6MX1D_JOuGQbT0gvTJPa787weuxJBkqs.woff

IEXPLORE.EXE

Remote address:

172.217.20.163:80

Request

GET /s/lora/v35/0QI6MX1D_JOuGQbT0gvTJPa787weuxJBkqs.woff HTTP/1.1
Accept: */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Origin: file:
Accept-Encoding: gzip, deflate
Host: fonts.gstatic.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 25732
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 11 May 2024 23:10:18 GMT
Expires: Sun, 11 May 2025 23:10:18 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 31 Jan 2024 23:12:28 GMT
Content-Type: font/woff
Age: 165425
GET

http://fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVtaorCIPrc.woff

IEXPLORE.EXE

Remote address:

172.217.20.163:80

Request

GET /s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVtaorCIPrc.woff HTTP/1.1
Accept: */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Origin: file:
Accept-Encoding: gzip, deflate
Host: fonts.gstatic.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 27304
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 13 May 2024 12:46:58 GMT
Expires: Tue, 13 May 2025 12:46:58 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 01 May 2024 20:31:52 GMT
Content-Type: font/woff
Age: 30025
GET

http://fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVs9pbCIPrc.woff

IEXPLORE.EXE

Remote address:

172.217.20.163:80

Request

GET /s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVs9pbCIPrc.woff HTTP/1.1
Accept: */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Origin: file:
Accept-Encoding: gzip, deflate
Host: fonts.gstatic.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 27824
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 09 May 2024 16:23:03 GMT
Expires: Fri, 09 May 2025 16:23:03 GMT
Cache-Control: public, max-age=31536000
Age: 362660
Last-Modified: Wed, 01 May 2024 20:31:55 GMT
Content-Type: font/woff
GET

http://fonts.gstatic.com/s/droidserif/v19/tDbV2oqRg1oM3QBjjcaDkOJGiRD7Owc.woff

IEXPLORE.EXE

Remote address:

172.217.20.163:80

Request

GET /s/droidserif/v19/tDbV2oqRg1oM3QBjjcaDkOJGiRD7Owc.woff HTTP/1.1
Accept: */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Origin: file:
Accept-Encoding: gzip, deflate
Host: fonts.gstatic.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 29864
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sun, 12 May 2024 17:20:20 GMT
Expires: Mon, 12 May 2025 17:20:20 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 18:47:45 GMT
Content-Type: font/woff
Age: 100023
GET

http://fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVsEpbCIPrc.woff

IEXPLORE.EXE

Remote address:

172.217.20.163:80

Request

GET /s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVsEpbCIPrc.woff HTTP/1.1
Accept: */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Origin: file:
Accept-Encoding: gzip, deflate
Host: fonts.gstatic.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 27784
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 11 May 2024 15:28:52 GMT
Expires: Sun, 11 May 2025 15:28:52 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 01 May 2024 20:31:50 GMT
Content-Type: font/woff
Age: 193111
GET

http://fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVtapbCIPrc.woff

IEXPLORE.EXE

Remote address:

172.217.20.163:80

Request

GET /s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVtapbCIPrc.woff HTTP/1.1
Accept: */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Origin: file:
Accept-Encoding: gzip, deflate
Host: fonts.gstatic.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 27644
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 13 May 2024 12:46:58 GMT
Expires: Tue, 13 May 2025 12:46:58 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 01 May 2024 20:31:57 GMT
Content-Type: font/woff
Age: 30025
GET

http://fonts.gstatic.com/s/lora/v35/0QI8MX1D_JOuMw_hLdO6T2wV9KnW-MoFoq92mg.woff

IEXPLORE.EXE

Remote address:

172.217.20.163:80

Request

GET /s/lora/v35/0QI8MX1D_JOuMw_hLdO6T2wV9KnW-MoFoq92mg.woff HTTP/1.1
Accept: */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Origin: file:
Accept-Encoding: gzip, deflate
Host: fonts.gstatic.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 27644
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 13 May 2024 12:46:58 GMT
Expires: Tue, 13 May 2025 12:46:58 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 31 Jan 2024 23:11:27 GMT
Content-Type: font/woff
Age: 30025
GET

http://fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvoorCIPrc.woff

IEXPLORE.EXE

Remote address:

172.217.20.163:80

Request

GET /s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvoorCIPrc.woff HTTP/1.1
Accept: */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Origin: file:
Accept-Encoding: gzip, deflate
Host: fonts.gstatic.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 26924
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 10 May 2024 07:29:06 GMT
Expires: Sat, 10 May 2025 07:29:06 GMT
Cache-Control: public, max-age=31536000
Age: 308297
Last-Modified: Wed, 01 May 2024 20:31:56 GMT
Content-Type: font/woff
GET

http://fonts.gstatic.com/s/droidserif/v19/tDbK2oqRg1oM3QBjjcaDkOr4nAfcGA.woff

IEXPLORE.EXE

Remote address:

172.217.20.163:80

Request

GET /s/droidserif/v19/tDbK2oqRg1oM3QBjjcaDkOr4nAfcGA.woff HTTP/1.1
Accept: */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Origin: file:
Accept-Encoding: gzip, deflate
Host: fonts.gstatic.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 24736
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 13 May 2024 04:12:38 GMT
Expires: Tue, 13 May 2025 04:12:38 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 19:28:10 GMT
Content-Type: font/woff
Age: 60885
GET

http://fonts.gstatic.com/s/lora/v35/0QI8MX1D_JOuMw_hLdO6T2wV9KnW-C0Coq92mg.woff

IEXPLORE.EXE

Remote address:

172.217.20.163:80

Request

GET /s/lora/v35/0QI8MX1D_JOuMw_hLdO6T2wV9KnW-C0Coq92mg.woff HTTP/1.1
Accept: */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Origin: file:
Accept-Encoding: gzip, deflate
Host: fonts.gstatic.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 27200
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 13 May 2024 09:36:52 GMT
Expires: Tue, 13 May 2025 09:36:52 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 31 Jan 2024 23:11:29 GMT
Content-Type: font/woff
Age: 41431
DNS

www.microsoft.com

iexplore.exe

Remote address:

8.8.8.8:53

Request

www.microsoft.com

IN A

Response

www.microsoft.com

IN CNAME

www.microsoft.com-c-3.edgekey.net

www.microsoft.com-c-3.edgekey.net

IN CNAME

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

IN CNAME

e13678.dscb.akamaiedge.net

e13678.dscb.akamaiedge.net

IN A

2.21.17.194
DNS

www.microsoft.com

iexplore.exe

Remote address:

8.8.8.8:53

Request

www.microsoft.com

IN A

Response

www.microsoft.com

IN CNAME

www.microsoft.com-c-3.edgekey.net

www.microsoft.com-c-3.edgekey.net

IN CNAME

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

IN CNAME

e13678.dscb.akamaiedge.net

e13678.dscb.akamaiedge.net

IN A

2.21.17.194

216.58.215.42:443

https://ajax.googleapis.com/ajax/libs/webfont/1.5.3/webfont.js

tls, http

IEXPLORE.EXE

1.2kB
13.2kB
13
14

HTTP Request

GET https://ajax.googleapis.com/ajax/libs/webfont/1.5.3/webfont.js

HTTP Response

200
185.230.63.171:80

http://qreativedesign.com/wp-content/uploads/2016/04/whitelogo.png

http

IEXPLORE.EXE

2.3kB
6.9kB
12
16

HTTP Request

GET http://qreativedesign.com/wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/min-css/ultimate.min.css

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/themes/ronneby/assets/css/mobile-responsive.css

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-includes/js/jquery/jquery.js?ver=1.12.4

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-includes/js/jquery/jquery.form.min.js?ver=3.37.0

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/themes/ronneby/assets/js/jquery.mega-menu.run.min.js

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/uploads/2016/04/whitelogo.png

HTTP Response

301
185.230.63.171:80

http://qreativedesign.com/wp-content/themes/ronneby/assets/js/widget-facebook.js

http

IEXPLORE.EXE

2.3kB
6.0kB
11
15

HTTP Request

GET http://qreativedesign.com/wp-content/themes/ronneby/assets/css/styled-button.css

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-includes/js/wp-emoji-release.min.js?ver=4.7.11

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/themes/ronneby/css/options.css

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.2

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/themes/ronneby/assets/js/jquery.smoothscroll.js

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/themes/ronneby/assets/js/widget-facebook.js

HTTP Response

301
185.230.63.171:80

http://qreativedesign.com/wp-content/uploads/2016/01/flyer2.jpg

http

IEXPLORE.EXE

2.3kB
6.8kB
12
16

HTTP Request

GET http://qreativedesign.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.2

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/themes/ronneby/assets/css/app.css

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/plugins/news-page-slider/js/jquery.jcarousel.min.js?ver=1.0.0

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/themes/ronneby/assets/js/plugins.min.js

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/themes/ronneby/assets/js/jflickrfeed.min.js

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/uploads/2016/01/flyer2.jpg

HTTP Response

301
216.58.215.42:443

ajax.googleapis.com

tls

IEXPLORE.EXE

704 B
5.0kB
9
8
185.230.63.171:80

http://qreativedesign.com/wp-content/uploads/2016/09/QLogo-Blksmall.png

http

IEXPLORE.EXE

2.6kB
6.9kB
12
17

HTTP Request

GET http://qreativedesign.com/wp-content/themes/ronneby/style.css

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/themes/ronneby/assets/css/prettyPhoto.css

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/plugins/news-page-slider/js/news-page-slider.js?ver=1.0.0

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/themes/ronneby/assets/js/hammer.min.js

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/themes/ronneby/assets/js/jquery.mega-menu.min.js

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/uploads/2016/04/whitelogo-138x42.png

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/uploads/2016/09/QLogo-Blksmall.png

HTTP Response

301
185.230.63.171:80

http://qreativedesign.com/wp-content/uploads/2016/01/flyer3.jpg

http

IEXPLORE.EXE

2.3kB
6.9kB
11
16

HTTP Request

GET http://qreativedesign.com/wp-content/uploads//dfd_ronneby_fonts/ronneby/Defaults.css?ver=4.7.11

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/themes/ronneby/assets/css/visual-composer.css

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/min-js/ultimate.min.js

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-includes/js/wp-embed.min.js?ver=4.7.11

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/uploads/2016/01/flyer3.jpg

HTTP Response

301
185.230.63.171:80

http://qreativedesign.com/wp-content/uploads/2016/01/flyer5.jpg

http

IEXPLORE.EXE

2.7kB
7.8kB
13
18

HTTP Request

GET http://qreativedesign.com/wp-content/themes/ronneby/inc/news-page-slider/custom.css?ver=1.0.0

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/themes/ronneby/assets/css/jquery.isotope.css

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/slick/slick.css

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.2

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/themes/ronneby/assets/js/post-like.min.js

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/uploads/2016/04/small-138x42.png

HTTP Response

301

HTTP Request

GET http://qreativedesign.com/wp-content/uploads/2016/01/flyer5.jpg

HTTP Response

301
34.149.87.45:443

https://www.qreativedesign.com/wp-content/uploads/dfd_ronneby_fonts/ronneby/Defaults.css?ver=4.7.11

tls, http

IEXPLORE.EXE

1.3kB
7.8kB
13
13

HTTP Request

GET https://www.qreativedesign.com/wp-content/uploads/dfd_ronneby_fonts/ronneby/Defaults.css?ver=4.7.11

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/styled-button.css

tls, http

IEXPLORE.EXE

1.2kB
7.9kB
12
13

HTTP Request

GET https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/styled-button.css

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.2

tls, http

IEXPLORE.EXE

1.3kB
7.8kB
13
14

HTTP Request

GET https://www.qreativedesign.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.2

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/min-css/ultimate.min.css

tls, http

IEXPLORE.EXE

1.2kB
7.7kB
11
12

HTTP Request

GET https://www.qreativedesign.com/wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/min-css/ultimate.min.css

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/themes/ronneby/inc/news-page-slider/custom.css?ver=1.0.0

tls, http

IEXPLORE.EXE

1.3kB
7.8kB
13
14

HTTP Request

GET https://www.qreativedesign.com/wp-content/themes/ronneby/inc/news-page-slider/custom.css?ver=1.0.0

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/themes/ronneby/style.css

tls, http

IEXPLORE.EXE

1.1kB
7.8kB
11
12

HTTP Request

GET https://www.qreativedesign.com/wp-content/themes/ronneby/style.css

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/jquery.isotope.css

tls, http

IEXPLORE.EXE

1.2kB
8.0kB
11
13

HTTP Request

GET https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/jquery.isotope.css

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-includes/js/wp-emoji-release.min.js?ver=4.7.11

tls, http

IEXPLORE.EXE

1.2kB
7.8kB
11
13

HTTP Request

GET https://www.qreativedesign.com/wp-includes/js/wp-emoji-release.min.js?ver=4.7.11

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/mobile-responsive.css

tls, http

IEXPLORE.EXE

977 B
2.8kB
8
7

HTTP Request

GET https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/mobile-responsive.css

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/visual-composer.css

tls, http

IEXPLORE.EXE

1.1kB
7.7kB
10
12

HTTP Request

GET https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/visual-composer.css

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/app.css

tls, http

IEXPLORE.EXE

1.1kB
7.6kB
10
12

HTTP Request

GET https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/app.css

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/prettyPhoto.css

tls, http

IEXPLORE.EXE

1.2kB
7.9kB
11
13

HTTP Request

GET https://www.qreativedesign.com/wp-content/themes/ronneby/assets/css/prettyPhoto.css

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/slick/slick.css

tls, http

IEXPLORE.EXE

993 B
3.0kB
8
7

HTTP Request

GET https://www.qreativedesign.com/wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/slick/slick.css

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/themes/ronneby/css/options.css

tls, http

IEXPLORE.EXE

1.1kB
7.8kB
10
12

HTTP Request

GET https://www.qreativedesign.com/wp-content/themes/ronneby/css/options.css

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-includes/js/jquery/jquery.js?ver=1.12.4

tls, http

IEXPLORE.EXE

977 B
3.0kB
8
7

HTTP Request

GET https://www.qreativedesign.com/wp-includes/js/jquery/jquery.js?ver=1.12.4

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1

tls, http

IEXPLORE.EXE

1.2kB
7.7kB
11
13

HTTP Request

GET https://www.qreativedesign.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/plugins/news-page-slider/js/jquery.jcarousel.min.js?ver=1.0.0

tls, http

IEXPLORE.EXE

1.1kB
7.8kB
10
12

HTTP Request

GET https://www.qreativedesign.com/wp-content/plugins/news-page-slider/js/jquery.jcarousel.min.js?ver=1.0.0

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/plugins/news-page-slider/js/news-page-slider.js?ver=1.0.0

tls, http

IEXPLORE.EXE

1.1kB
2.9kB
9
8

HTTP Request

GET https://www.qreativedesign.com/wp-content/plugins/news-page-slider/js/news-page-slider.js?ver=1.0.0

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.2

tls, http

IEXPLORE.EXE

1.1kB
2.9kB
10
8

HTTP Request

GET https://www.qreativedesign.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.2

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.2

tls, http

IEXPLORE.EXE

1.2kB
7.8kB
10
12

HTTP Request

GET https://www.qreativedesign.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.2

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/min-js/ultimate.min.js

tls, http

IEXPLORE.EXE

1.1kB
2.9kB
9
8

HTTP Request

GET https://www.qreativedesign.com/wp-content/themes/ronneby/inc/vc_custom/Ultimate_VC_Addons/assets/min-js/ultimate.min.js

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/hammer.min.js

tls, http

IEXPLORE.EXE

993 B
2.9kB
8
7

HTTP Request

GET https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/hammer.min.js

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-includes/js/jquery/jquery.form.min.js?ver=3.37.0

tls, http

IEXPLORE.EXE

993 B
2.8kB
8
7

HTTP Request

GET https://www.qreativedesign.com/wp-includes/js/jquery/jquery.form.min.js?ver=3.37.0

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/plugins.min.js

tls, http

IEXPLORE.EXE

1.2kB
7.6kB
10
12

HTTP Request

GET https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/plugins.min.js

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/jquery.smoothscroll.js

tls, http

IEXPLORE.EXE

993 B
3.0kB
8
7

HTTP Request

GET https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/jquery.smoothscroll.js

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/post-like.min.js

tls, http

IEXPLORE.EXE

1.0kB
3.0kB
9
8

HTTP Request

GET https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/post-like.min.js

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/jquery.mega-menu.min.js

tls, http

IEXPLORE.EXE

1.2kB
7.6kB
10
11

HTTP Request

GET https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/jquery.mega-menu.min.js

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/jquery.mega-menu.run.min.js

tls, http

IEXPLORE.EXE

1.2kB
7.8kB
10
12

HTTP Request

GET https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/jquery.mega-menu.run.min.js

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/jflickrfeed.min.js

tls, http

IEXPLORE.EXE

1.2kB
7.7kB
10
12

HTTP Request

GET https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/jflickrfeed.min.js

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-includes/js/wp-embed.min.js?ver=4.7.11

tls, http

IEXPLORE.EXE

1.0kB
3.0kB
9
8

HTTP Request

GET https://www.qreativedesign.com/wp-includes/js/wp-embed.min.js?ver=4.7.11

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/widget-facebook.js

tls, http

IEXPLORE.EXE

1.2kB
7.7kB
11
12

HTTP Request

GET https://www.qreativedesign.com/wp-content/themes/ronneby/assets/js/widget-facebook.js

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/uploads/2016/01/flyer5.jpg

tls, http

IEXPLORE.EXE

1.9kB
8.2kB
13
16

HTTP Request

GET https://www.qreativedesign.com/wp-content/uploads/2016/04/small-138x42.png

HTTP Response

404

HTTP Request

GET https://www.qreativedesign.com/wp-content/uploads/2016/01/flyer3.jpg

HTTP Response

404

HTTP Request

GET https://www.qreativedesign.com/wp-content/uploads/2016/01/flyer5.jpg

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/uploads/2016/04/whitelogo-138x42.png

tls, http

IEXPLORE.EXE

1.0kB
3.0kB
8
8

HTTP Request

GET https://www.qreativedesign.com/wp-content/uploads/2016/04/whitelogo-138x42.png

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/uploads/2016/01/flyer2.jpg

tls, http

IEXPLORE.EXE

1.0kB
3.0kB
9
9

HTTP Request

GET https://www.qreativedesign.com/wp-content/uploads/2016/01/flyer2.jpg

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/uploads/2016/04/whitelogo.png

tls, http

IEXPLORE.EXE

1.3kB
7.9kB
12
14

HTTP Request

GET https://www.qreativedesign.com/wp-content/uploads/2016/04/whitelogo.png

HTTP Response

404
34.149.87.45:443

https://www.qreativedesign.com/wp-content/uploads/2016/09/QLogo-Blksmall.png

tls, http

IEXPLORE.EXE

1.3kB
7.9kB
12
14

HTTP Request

GET https://www.qreativedesign.com/wp-content/uploads/2016/09/QLogo-Blksmall.png

HTTP Response

404
34.149.87.45:443

www.qreativedesign.com

tls

IEXPLORE.EXE

550 B
379 B
6
5
34.149.87.45:443

www.qreativedesign.com

tls

IEXPLORE.EXE

815 B
5.2kB
10
10
212.83.166.133:80

http://rnbtheme.com/wp-content/uploads/2015/10/facebook.jpg

http

IEXPLORE.EXE

851 B
584 B
12
4

HTTP Request

GET http://rnbtheme.com/wp-content/uploads/2015/10/facebook.jpg

HTTP Response

301
212.83.166.133:80

rnbtheme.com

IEXPLORE.EXE

466 B
92 B
10
2
142.250.178.138:80

fonts.googleapis.com

IEXPLORE.EXE

190 B
92 B
4
2
142.250.178.138:80

http://fonts.googleapis.com/css?family=Raleway:100,200,300,400,500,600,700,800,900%7CDroid+Serif:400,700,400italic,700italic%7CLora:400,700,400italic,700italic&subset=latin

http

IEXPLORE.EXE

655 B
1.2kB
6
5

HTTP Request

GET http://fonts.googleapis.com/css?family=Raleway:100,200,300,400,500,600,700,800,900%7CDroid+Serif:400,700,400italic,700italic%7CLora:400,700,400italic,700italic&subset=latin

HTTP Response

200
212.83.166.133:443

https://rnbtheme.com/wp-content/uploads/2015/10/facebook.jpg

tls, http

IEXPLORE.EXE

1.2kB
5.0kB
11
10

HTTP Request

GET https://rnbtheme.com/wp-content/uploads/2015/10/facebook.jpg

HTTP Response

500
172.217.20.163:80

http://fonts.gstatic.com/s/droidserif/v19/tDbI2oqRg1oM3QBjjcaDkOr9rAM.woff

http

IEXPLORE.EXE

1.8kB
55.6kB
26
43

HTTP Request

GET http://fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvao7CIPrc.woff

HTTP Response

200

HTTP Request

GET http://fonts.gstatic.com/s/droidserif/v19/tDbI2oqRg1oM3QBjjcaDkOr9rAM.woff

HTTP Response

200
172.217.20.163:80

http://fonts.gstatic.com/s/lora/v35/0QI6MX1D_JOuGQbT0gvTJPa787z5vBJBkqs.woff

http

IEXPLORE.EXE

2.6kB
84.9kB
38
67

HTTP Request

GET http://fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVuEorCIPrc.woff

HTTP Response

200

HTTP Request

GET http://fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVtzpbCIPrc.woff

HTTP Response

200

HTTP Request

GET http://fonts.gstatic.com/s/lora/v35/0QI6MX1D_JOuGQbT0gvTJPa787z5vBJBkqs.woff

HTTP Response

200
172.217.20.163:80

http://fonts.gstatic.com/s/lora/v35/0QI6MX1D_JOuGQbT0gvTJPa787weuxJBkqs.woff

http

IEXPLORE.EXE

2.6kB
85.6kB
38
65

HTTP Request

GET http://fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrc.woff

HTTP Response

200

HTTP Request

GET http://fonts.gstatic.com/s/droidserif/v19/tDbX2oqRg1oM3QBjjcaDkOr4lLz5CwOnTg.woff

HTTP Response

200

HTTP Request

GET http://fonts.gstatic.com/s/lora/v35/0QI6MX1D_JOuGQbT0gvTJPa787weuxJBkqs.woff

HTTP Response

200
172.217.20.163:80

http://fonts.gstatic.com/s/droidserif/v19/tDbV2oqRg1oM3QBjjcaDkOJGiRD7Owc.woff

http

IEXPLORE.EXE

2.7kB
90.0kB
41
69

HTTP Request

GET http://fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVtaorCIPrc.woff

HTTP Response

200

HTTP Request

GET http://fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVs9pbCIPrc.woff

HTTP Response

200

HTTP Request

GET http://fonts.gstatic.com/s/droidserif/v19/tDbV2oqRg1oM3QBjjcaDkOJGiRD7Owc.woff

HTTP Response

200
172.217.20.163:80

http://fonts.gstatic.com/s/lora/v35/0QI8MX1D_JOuMw_hLdO6T2wV9KnW-MoFoq92mg.woff

http

IEXPLORE.EXE

2.7kB
88.0kB
41
67

HTTP Request

GET http://fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVsEpbCIPrc.woff

HTTP Response

200

HTTP Request

GET http://fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVtapbCIPrc.woff

HTTP Response

200

HTTP Request

GET http://fonts.gstatic.com/s/lora/v35/0QI8MX1D_JOuMw_hLdO6T2wV9KnW-MoFoq92mg.woff

HTTP Response

200
172.217.20.163:80

http://fonts.gstatic.com/s/lora/v35/0QI8MX1D_JOuMw_hLdO6T2wV9KnW-C0Coq92mg.woff

http

IEXPLORE.EXE

2.6kB
83.7kB
38
64

HTTP Request

GET http://fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvoorCIPrc.woff

HTTP Response

200

HTTP Request

GET http://fonts.gstatic.com/s/droidserif/v19/tDbK2oqRg1oM3QBjjcaDkOr4nAfcGA.woff

HTTP Response

200

HTTP Request

GET http://fonts.gstatic.com/s/lora/v35/0QI8MX1D_JOuMw_hLdO6T2wV9KnW-C0Coq92mg.woff

HTTP Response

200
204.79.197.200:443

ieonline.microsoft.com

tls

iexplore.exe

799 B
7.7kB
10
13
204.79.197.200:443

ieonline.microsoft.com

tls

iexplore.exe

799 B
7.7kB
10
13
204.79.197.200:443

ieonline.microsoft.com

tls

iexplore.exe

779 B
7.6kB
9
12

8.8.8.8:53

qreativedesign.com

dns

IEXPLORE.EXE

64 B
112 B
1
1

DNS Request

qreativedesign.com

DNS Response

185.230.63.171

185.230.63.107

185.230.63.186
8.8.8.8:53

ajax.googleapis.com

dns

IEXPLORE.EXE

65 B
81 B
1
1

DNS Request

ajax.googleapis.com

DNS Response

216.58.215.42
8.8.8.8:53

www.qreativedesign.com

dns

IEXPLORE.EXE

136 B
144 B
2
1

DNS Request

www.qreativedesign.com

DNS Request

www.qreativedesign.com

DNS Response

34.149.87.45
8.8.8.8:53

ida8.fr

dns

IEXPLORE.EXE

53 B
111 B
1
1

DNS Request

ida8.fr
8.8.8.8:53

rnbtheme.com

dns

IEXPLORE.EXE

58 B
74 B
1
1

DNS Request

rnbtheme.com

DNS Response

212.83.166.133
8.8.8.8:53

www.microsoft.com

dns

iexplore.exe

63 B
230 B
1
1

DNS Request

www.microsoft.com

DNS Response

2.21.17.194
8.8.8.8:53

www.microsoft.com

dns

iexplore.exe

63 B
230 B
1
1

DNS Request

www.microsoft.com

DNS Response

2.21.17.194

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

Filesize
914B

MD5
e4a68ac854ac5242460afd72481b2a44

SHA1
df3c24f9bfd666761b268073fe06d1cc8d4f82a4

SHA256
cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

SHA512
5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

Filesize
68KB

MD5
29f65ba8e88c063813cc50a4ea544e93

SHA1
05a7040d5c127e68c25d81cc51271ffb8bef3568

SHA256
1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

SHA512
e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\987BC2B5BB807136A0179E3E90BC06AC_E60B19E50038EC4F9621B17B23756B1A

Filesize
472B

MD5
2561dc4cab1c7c53ee0b6cf7c25791da

SHA1
07a7e98434ac3ff64fd0b2f3762ad7f79243556e

SHA256
368c920f9cfe52276f91994abc51d34e24bef6802a6cd1ebde5dbeb8f71a8e7f

SHA512
e4947f8d15a993ca1d7356b6c2d6461f9737cee2d2be85b03459701aa46d96f8073e1c48e630d1e771618773a41afedb6c285bf4414ab27c772daae2ee487181

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464

Filesize
724B

MD5
8202a1cd02e7d69597995cabbe881a12

SHA1
8858d9d934b7aa9330ee73de6c476acf19929ff6

SHA256
58f381c3a0a0ace6321da22e40bd44a597bd98b9c9390ab9258426b5cf75a7a5

SHA512
97ba9fceab995d4bef706f8deef99e06862999734ebe6a05832c710104479c6337cbf0a76e1c1e0f91566a61334dc100d837dfd049e20da765fe49def684f9c9

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

Filesize
1KB

MD5
a266bb7dcc38a562631361bbf61dd11b

SHA1
3b1efd3a66ea28b16697394703a72ca340a05bd5

SHA256
df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

SHA512
0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

Filesize
252B

MD5
81348fc8a892639b54d2697c4b97fb15

SHA1
9069fa8caa1d10e99434fe553f3e5fab1b8506d4

SHA256
6624b8ea318732ae5313416aeb5ebc820d5d1302b23761116df37ab1a4ad78e9

SHA512
d30908774ff6ddce8bd46aeccb3880a2c26ebb037f4ca1ab44e814007af5b39be1aca222c90045821b6e547da537d174644917df29c3600177f432b53283eea9

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
d70024285dd287eb475eacbe3860ba18

SHA1
8038d7af3d4b1c904c1562c4869b9c9fd716a53f

SHA256
9bd172d2c761c9e6a25b02d1bd9e8fa5d948de5cc9159f190771c80c57d1174e

SHA512
e98c24c2d4e87afc2f1870a9a3850b674bc4195c23978c049370b0d1a27e95e50818ee8e1e008c235cc16d5b23af8f9414d8f0d012dc11938fe56d2bc5d062f0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
d4ab4c6d5e173d253d512eb8f3a85439

SHA1
00da3a894651aadb9f32ae59c6f707a4f1d6bb3f

SHA256
6e995952feb9807edb80115fbfd83b8eb7dbd01c354f081e5fc149da5f82bef9

SHA512
715bf7ffefc15cce69d21db1db49d3c034c1d4f8f2fbc29a60281f0a9e7968a8a7b830b1506f23dafd1d4d8138dd8e48e58000cc3a304e0d82846561565e1cb2

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
bb67735b2f42bf4b61774072cc0951b9

SHA1
be3b00e299568931c44fcadf5efd8e88e252bacb

SHA256
2bec7d678a904307cc6f7d3abd30990ed206c3f53fd3177793f20e26354eca51

SHA512
6ae48d47be846da9888446a3647557751784872856ef1a5a4dc8d903235332337f7c52714c2c2fba561d22dbad497d01197ade6a5af6f79f19a9133600dc786c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
96a247f186745b3792d4968925f718fb

SHA1
3e663d50a92ca97bd2bd59bf6c3fa696da8e3d9e

SHA256
42ed29a3e59458aa53b75c99cfb781adef42eb33c6d1550b0030238233b57f46

SHA512
945ad6bcba06f18494f8ec928da3e036e0920f8fcb18ae2011f502d4efaa0fc6e6db4ff1df74db4f0d4907f534b8f7b50fdd5b477323c25bf3f999b6e295985f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
1d256f75fa24d1beb28311f851be4a6f

SHA1
de836e0d5e4fb242e9da52808d420b90dfa837bb

SHA256
7a6b4ffb391a7997a2313f135dbe6e8dfdae720edcc42aa29d644517bce210de

SHA512
b36c460bf84caa48f07c69b03c32f9eb6da46321b1c50191e7e6ce76cf49814828c7cb1d7a13a08c57b1576287c4bed5f1fe59ebb616c4eb19eaff45890dea4a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
37be963362038f2a074df3b841c9d147

SHA1
9d94b1c819db92d3f565bc7b171c8710a9dfb7fd

SHA256
22576f1ce8ea87296aa477e11fad5194521b55aa3655dbf1a0284b1932e5bb96

SHA512
0a01055620d5abef984cb472fda0d501347cdf3594bac3f8eeb0e3999f9167cdd2309471e8c4a9be84126eaa9258a4587f96801daa685b0a1ff7b5495bac7705

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
c111fbb51effde41d3259f7f65c214c1

SHA1
c03e9ebdbd0dfca112bf5cb4be1a5c089d0f8b00

SHA256
9b0ae6db2715376043ed44c16462c9659868e0a4a7b75b6714c439b318bb3824

SHA512
ea7eb76f2b8473d432a7f27f6b75195a4f631090706776785beb50ac66aed238a79da5551d0017507037d5913608ba1fdf15eaf24fee825ba3f96e739e2d7121

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
a44f4f0274fca3283b6625d96edc23b6

SHA1
2bc4193ffed40614fcab08cd5624a4bc6c7c92fb

SHA256
af92522022ee82906836cfde0b088d474708ce2ca825c1673a53bc2e80ee9248

SHA512
d09096754bb92f0fd68e1f08488c01dedd7259d35cb9a52196117810d0eb2e48996944d6a4d8852c2ba89776e1d15d7a40c4cc828733a14288c923a68566c6cf

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
4a48f1958d9f58a6ba1204c508c7ee8f

SHA1
ebc3fe1da23d53e10c9e1f773a871266edb2823b

SHA256
150344ee6bfca481fe8ae1080bbec9e97dbf5394abcb05053b027ceb24ad7020

SHA512
9a0dbae47657d4e12f95fcf3a51e3b96bb274d343e8a6ec3beed0626b562b9d22f3f694cb03c4b737b142760310eb9f812f504a663ca682f2b5180e352568c1b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
cd3b5870a7b45ce82d60f3024b043952

SHA1
886a4eafc25169c2e5e21ca3b9e60c0d5d4bfd74

SHA256
f57baaaf9f95dd96c4f57905211a4538992a60bc4cc50748f4ffb3d6bc70685d

SHA512
3dec8a109976104c95103d9f79912ab8fcc9bdcc56e4e045ed118fc81845084928617d72761d2a1888de5befd53a90c5cffbe58786bee7de1bf0a999d34427b4

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
7440ac950181d7569ef13a8491147032

SHA1
918bb91c51f9f289ab3b6e65d0dbb45f10a19045

SHA256
3dea73de3377bf7c113c770c59306dbd2f5d3a32920d0ef518fafca161c430c7

SHA512
5004218cec83391a4324391e901053baa8bf0388ea710828572e8891c9e81b44015731910c05a81bc8cc74578063bdf78d374fd5a0ca342b2e1ee754a0d91697

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
ea86c3c36753b389c08813e9a0bcf678

SHA1
1360f5ff66862e9bb8345a59d8fe35185a0fc735

SHA256
e5c392104cebf9bc93f1d148924e61cafa048bdacbc65181f28ab2d76c9e8949

SHA512
08a80d41ae8eb817c8ec417e412ebb01b067ac5d9567583befc2e7177705fdcbbb7e3da31c6dd5ff98b45d3ea5d712d1a322abd0a45039a657a47b2bdc36308e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
0e16fefea5b0bfd1dda9d60968f0f042

SHA1
c3e32fafc4b412c87af9ae0178e530c9d4c8adff

SHA256
fe791b408f4b8eabb68d11183b51102976c624862564529b008cfccf8723ee72

SHA512
465ef55e513f8d0d16e046910906d73ae0a56eb6e75c58976d0247d2ffbf4e0fe2f0205b21d61a7252bb9ccf48be72d54853820c1c75c1abac1bb3b0472939ab

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
a3121fc0d81732883b4ea730a45275f6

SHA1
74f4766df8993f1bc9bd591a9e2135365d000ad0

SHA256
029d8b22622a5fbb490c99d523438bea5131d1e2b0dcefcfd1b6d3fae2e0073a

SHA512
dcc9794ab897e44ddc5569e773e0de155be51d69650834f75cfcd00a992b26a86d07f2875c25fa6b38f1402ac95df33cf95ec2970996df515204eab5e22e16fa

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
98b08be8a2e85e712c7da6206683aa55

SHA1
cad5fc88c2df512ec946fe5ef06da9607f117a0f

SHA256
7a1239630d11427b3cf9f8c573d4e4a8963703931839c2b2a24df5ed57b3f8d4

SHA512
6d06097ef6625981d14026544fdf215d60ce27617b7288086521b02d430d577b364b018e1c5f6131c2ab7311ffe6f9a12e8ab7b5e14d37cdc0110f943178bf23

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
76de091616a696ef33f9f2057f45ccdf

SHA1
66fb21c76d7335154eaa69d832d535361cd1ec61

SHA256
d6e6c7837f95c62f0c664e934697d1b83f8af9e7781335e51e1ea4af91092dc2

SHA512
5828ac1264fd4299a296894a8ebdecc3631f826c716c9fa371088ea706cacacf1015ab2bf5536f88fd1a900041f82408bf3b88031a60bb41ba6bcc0fe28d1283

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
c8ef4f05acaae63d06847c75027b4721

SHA1
3c4061510ad9319c25f7c6b7c4599b19a1a61d16

SHA256
f8685e3a0d2f3c3a1a594a03981d704dff8b3b52caa88716ff6af669a5cb6e5b

SHA512
149a1c557beef0f4192136c8174a4cf61407601a270469a053780638f005241a79ffadf37275898a3ae0c50d9a1e288a3574afa341062a8c7dd14c1aa7569270

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
8fac83e15cf61f6a31f63102cf1f1548

SHA1
09f95e37efc32336502cdc8bb0578030b3140885

SHA256
d57f4cbab8d7fba0d66ac4af5f67ff53156d6e11a7c3a21f1c0f0fb85cb34b02

SHA512
f3169218a530f1aed86011a7f51d2f064269d4a31a9979e9523e937f1fcfa2c6fd47e016d5c2df57afe5e66ab0fb51dbab3d71ce55ac16072c785a597b60c081

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
14214c2f2380107e449d2efc6700a08a

SHA1
fc08575169b27a2f56da9776cdb80518ebfa0234

SHA256
430cc79ba6efaab7b5d66145842622b76b0fd1cfdef0b2fe525cc2219dfce6fa

SHA512
79a67b3681b8b71dd9cd7bec659bec19b409f07e3867057a20bae315f76bca80c84de6a4a93a0d5f896404f5660a31ccbbf478c5ff655cfe25803bdc68e0b5b3

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
234f93d522ec7996d4c5abf0efaba9e5

SHA1
e83c805826591e38381a5f2207d32d79164ebfe4

SHA256
6787f47a45cefa6a8e77d189f7aadb4a97e90f867f9457e2c87b0809555c58ad

SHA512
2a7dc9a1fc910c2828a977ba5ad11701d17bf18521cbdc71b1d821059fa9289fc374a03226d4c8bb743ba67353d65be4080e5569f7aed5bc48da5a286eacedab

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464

Filesize
392B

MD5
0ed6fc717736a8bebde2fd3e912c3ead

SHA1
5943153961ec3c91d6f89282861247bb434c42d2

SHA256
1d7bcec64230fdc0142d2ecfc306ed74e90c63f1a548fd1f24faf94f33f1be6a

SHA512
0f70094339bf33d213326f9f509a92ae6a7573854e6f8b15b9cf508d8cdbdea833963248de0a77fd93e0f91a67471fbae2ddf7aab4b41de42dd5d0d54d8224a1

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

Filesize
242B

MD5
cccc36ad3c044a26085287d9b3530b01

SHA1
da7b70efd4409f6ba3b6a73d3b4fcc3b0fcf464d

SHA256
587dba86ca84b6e5585a9baeb9f055246ee4d813d78450dfa4b6421640e6a893

SHA512
0519df69fc5752ca848ef3a30f59ac70f17798c77356b7f5981bbb415031ecd3f208cac61e8a9813c02ba961ad0435df41f5ac90bff668702e0d1cefe795e857

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab426E.tmp

Filesize
65KB

MD5
ac05d27423a85adc1622c714f2cb6184

SHA1
b0fe2b1abddb97837ea0195be70ab2ff14d43198

SHA256
c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

SHA512
6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar4271.tmp

Filesize
171KB

MD5
9c0c641c06238516f27941aa1166d427

SHA1
64cd549fb8cf014fcd9312aa7a5b023847b6c977

SHA256
4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

SHA512
936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar4380.tmp

Filesize
177KB

MD5
435a9ac180383f9fa094131b173a2f7b

SHA1
76944ea657a9db94f9a4bef38f88c46ed4166983

SHA256
67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

SHA512
1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request