firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 12 Sep 2022 08:58:11 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EsH8TAr8Q-XpDuccaE0vNqB3ejpq_uWLMDtf6LUGx1-J3tPa_5MVxQ==
Age: 3296
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 76d5eb597558e3dee0d99719d17e71e0
f3a0f3932fa8059f27dc9422d523b938fa9a7d09
d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18167
Expires: Mon, 12 Sep 2022 14:55:55 GMT
Date: Mon, 12 Sep 2022 09:53:08 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 12 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kjIlelv7Er_ERZYdqJ15yFOVeBYSZ4HeNKMkDXtFUI4RcddYK7VGpg==
age: 9356
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 12 Sep 2022 09:53:08 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 12 Sep 2022 08:56:07 GMT
Cache-Control: max-age=3600
Expires: Mon, 12 Sep 2022 09:45:30 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: s--evX17f5S021IyLPrbrn66UyON0f8_2igDaFIb0de3RihbLD2-rQ==
Age: 3421
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cb674936db4af4be99c3c397eff8c6ae
de79d76bac3fae5799b0ff35ecc19360595dfb06
992b884b64f9f6fdb76a6ba91c48fed329325b95b99d8003b282879a52093c08
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2179
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 09:53:08 GMT
Last-Modified: Mon, 12 Sep 2022 09:16:49 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.148.228.45101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.228.45:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: u5Fpl90vsjBmkaPgGxbWjg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 9p8fmj4BmqkhgQEEMjDYGNRWJoc=
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16037
Expires: Mon, 12 Sep 2022 14:20:26 GMT
Date: Mon, 12 Sep 2022 09:53:09 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16037
Expires: Mon, 12 Sep 2022 14:20:26 GMT
Date: Mon, 12 Sep 2022 09:53:09 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16037
Expires: Mon, 12 Sep 2022 14:20:26 GMT
Date: Mon, 12 Sep 2022 09:53:09 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16037
Expires: Mon, 12 Sep 2022 14:20:26 GMT
Date: Mon, 12 Sep 2022 09:53:09 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8625e0707046e7a3715a8dbb40b1cae2
0f44ee871ad9d0a0ddd07d0c87d54f7e72b56f78
abc4c12561be08897341d9c8104c30a289357c0907e55c46895f7fb6afb2f75d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13568
x-amzn-requestid: ad06f499-3e04-414a-8a3f-6daa9e0124ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X3yN1F2BIAMFoqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312fd8b-3a17f11440d2f37b23ac7f6a;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 07:08:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: iNRnq8nMhoTo9oY379Ynb6uPW0vNyf3dNufU_HpXNfzxvhrAEKEzJQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 14:06:07 GMT
age: 71222
etag: "0f44ee871ad9d0a0ddd07d0c87d54f7e72b56f78"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c14088c4ca0d576e087feed41b7f1565
172b23f2ef39b6c3fdebb5441b10a95712206d0a
2699efa811ceac5420f5bd26c35a6f48b51854e29cbce7cbb62efb613db7d6b9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8799
x-amzn-requestid: 1bcdf387-9ad2-449a-861e-3352b1744d23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUI-0G6vIAMFgbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e552b-42aa46af6315148106c4fdee;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:37:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: g2mxKK8L5T4YkeD8JqNUuV_KfsIq8ypRMvxhsyzSZSEIP4gDl4zLVQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 21:41:51 GMT
age: 43878
etag: "172b23f2ef39b6c3fdebb5441b10a95712206d0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82cfbbd4-ab05-47a9-8f70-73405b312a0e.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82cfbbd4-ab05-47a9-8f70-73405b312a0e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 866ace739b788c7d6e9047d246985a8f
bec098ac12c44fc877555fea7b3ddb8cbef12b2d
1d8599845425acd4bf90d7da05efdd2a9c7e0b5a37efc291cdcf1a2277671429
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82cfbbd4-ab05-47a9-8f70-73405b312a0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8390
x-amzn-requestid: 43e68b0e-80fd-43ed-8f63-86ec0c94c0a6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUJAPGy8IAMFsdQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e5534-0d51f22d34cb67eb2319ebf1;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:37:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: e-lL-3G5SCGgrsm_9pp51JYvBtgtZB144EZPmBq6Mx16HfXYK2-nZw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 21:44:30 GMT
etag: "bec098ac12c44fc877555fea7b3ddb8cbef12b2d"
content-type: image/jpeg
age: 43719
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F877083da-81e2-47df-adc5-ba5b0f83249c.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F877083da-81e2-47df-adc5-ba5b0f83249c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6065db8d4276060fbc5f9e0ef04573bc
4077cf9a03f0fa3601bcbea161bfe762feb3a7e0
a14f6e8db246a321dbdcd8672e1914daa53cb9a27a926f63393e5ddc279e58de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F877083da-81e2-47df-adc5-ba5b0f83249c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9588
x-amzn-requestid: 61cc89f2-7e05-483a-a17b-be3041e0c096
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUJK7GvaIAMFoHw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e5578-068429955950e2374ca0dade;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:39:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: VJtwWtz9hw9B_bK6SXcRQbN7HXqDsVD3twNaSqIkwGQeRTeAbyReFg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 21:55:40 GMT
age: 43049
etag: "4077cf9a03f0fa3601bcbea161bfe762feb3a7e0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae1f7987-7b92-4cec-85ab-243250e02a06.webp
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae1f7987-7b92-4cec-85ab-243250e02a06.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7ccc33ae0c85a906f2c17db281ec790
1904722d70348235d5472c54f888d2b4b991e2aa
f48edc03624f582b05b596694b76bd784f85eb9f2ca5dd025bbea9cc2ff1f096
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae1f7987-7b92-4cec-85ab-243250e02a06.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6999
x-amzn-requestid: 61e3e817-fb62-47c7-b938-2dfc6a134622
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO1mlG3XIAMFo5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3629-37c2c8982c4ccf891875c59a;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:00:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: S2TR552YpZeEbhTSAn4vdXexYpvR4Lrr-LaJmfNd7LnO0L4QM8w-Dg==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 03:38:55 GMT
age: 22454
etag: "1904722d70348235d5472c54f888d2b4b991e2aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bb54538-5f31-44e8-8743-582e31d384e4.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bb54538-5f31-44e8-8743-582e31d384e4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 63d953ea7dce676e8b1c6fcab9f8eab7
5a359aed379e554c5c9885cc8f7a3bff7447d246
428029d6b65a52758df9fd8cb284df83ca4685031126b0ab5b60764a3e2d1a27
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bb54538-5f31-44e8-8743-582e31d384e4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5709
x-amzn-requestid: 747b7be7-356b-4a9e-9869-4b8f71e66f53
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YMl6sHaoIAMF2lA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631b5044-0c6b0f57046b79cf56ecbf39;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 14:40:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: WbzMgteMd5CxXXK6sARu-n39xAWcZiYHgkR2TCg2aNbzEXcaxS-TZQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 23:26:14 GMT
age: 37615
etag: "5a359aed379e554c5c9885cc8f7a3bff7447d246"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7COswald%3A200%2C300%2C400%2C500%2C600%2C700&subset=latin%2Clatin-ext&display=swap
216.58.211.10200 OK 1.2 kB URL HTTP/1.1 fonts.googleapis.com/css?family=Poppins%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7COswald%3A200%2C300%2C400%2C500%2C600%2C700&subset=latin%2Clatin-ext&display=swap
IP 216.58.211.10:0
Hash c35b4c0c0e618b4062e674568db1f512
2d0f2321c3c2226986ed1811d5f3b103484cd260
6d7e02e2d26432db87e750661bd2d4866b36dfe0b9e5fac1cb502355e36531d5
GET /css?family=Poppins%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7COswald%3A200%2C300%2C400%2C500%2C600%2C700&subset=latin%2Clatin-ext&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Mon, 12 Sep 2022 09:53:11 GMT
Date: Mon, 12 Sep 2022 09:53:11 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
www.0979616027.com/wp-content/plugins/cmyee-momentopress/css/momentopress.css?ver=6.0.2
172.104.80.12302 Found 279 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/cmyee-momentopress/css/momentopress.css?ver=6.0.2
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7a8d6cbc59bc4a8a6eeb209f41e0a5ef
bb3a5ca9fde71be665c08d02bfbf2a67921e0797
eef47c403a92229571d6f27cd9521ddbfd2adc64dbdc9b269e7b129ad9c6b341
GET /wp-content/plugins/cmyee-momentopress/css/momentopress.css?ver=6.0.2 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:12 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/cmyee-momentopress/css/momentopress.css?ver=6.0.2
Content-Length: 279
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
172.104.80.12302 Found 269 B URL HTTP/1.1 www.0979616027.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5bd118ea816e88fc4cde02cfee5467b7
b4a7cd6b71b76fe26594b0b0d7d759b705a5c145
bc9c291569e23f44c124ea64a941cdddeda1363d6946cdd57c8b2b6e717a067f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:12 GMT
Server: Apache
Location: https://www.0979616027.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
Content-Length: 269
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-includes/css/dist/nux/style.min.css?ver=6.0.2
172.104.80.12302 Found 259 B URL HTTP/1.1 www.0979616027.com/wp-includes/css/dist/nux/style.min.css?ver=6.0.2
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c30cc46d6c1350fd63e3ad4868a9dde9
e1b9d23d3d80fd7615cdb7378a8204babcc6f7b2
b1e425945e69afbb2ca3a2b56a4411975ef3f299905376ecf418868a70366601
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/nux/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:12 GMT
Server: Apache
Location: https://www.0979616027.com/wp-includes/css/dist/nux/style.min.css?ver=6.0.2
Content-Length: 259
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-includes/css/dist/block-editor/style.min.css?ver=6.0.2
172.104.80.12302 Found 268 B URL HTTP/1.1 www.0979616027.com/wp-includes/css/dist/block-editor/style.min.css?ver=6.0.2
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3e3f8bf426b6ad86d2b52ba5aad8ef24
db88e8f7dec7cd45da374d95a219149495dc992d
23e93c06c14688b135b9f42796c1f08f00ed6c17c87dd6c0b7d2b09ad7f9dd98
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-editor/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:12 GMT
Server: Apache
Location: https://www.0979616027.com/wp-includes/css/dist/block-editor/style.min.css?ver=6.0.2
Content-Length: 268
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-includes/css/dist/components/style.min.css?ver=6.0.2
172.104.80.12302 Found 266 B URL HTTP/1.1 www.0979616027.com/wp-includes/css/dist/components/style.min.css?ver=6.0.2
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1500e2b9b6202543f0e4fb40e7f563fc
c529285a628a28ab209657da5fb6efa695d96518
3b0798a650288805e7c657cff1edbbf7c32d2a8777b7ed1ff36d7a2b9846f4c1
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/components/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:12 GMT
Server: Apache
Location: https://www.0979616027.com/wp-includes/css/dist/components/style.min.css?ver=6.0.2
Content-Length: 266
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-includes/css/dist/reusable-blocks/style.min.css?ver=6.0.2
172.104.80.12302 Found 271 B URL HTTP/1.1 www.0979616027.com/wp-includes/css/dist/reusable-blocks/style.min.css?ver=6.0.2
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3b307e840c54325c150cb6fb4e52796a
ab78b21aa5d70136fa92349f9646c285ee61a3a7
c6d72cfb3c4d55eb374b4b7c1e5289995f617737bf2d50da97a8233b01fb1e60
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/reusable-blocks/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:12 GMT
Server: Apache
Location: https://www.0979616027.com/wp-includes/css/dist/reusable-blocks/style.min.css?ver=6.0.2
Content-Length: 271
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
172.104.80.12200 OK 179 kB URL HTTP/1.1 www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (23872)
Size 179 kB (178662 bytes)
Hash 39c49424b8a0055777e1a9b72cd80800
22a43fd4a078701cd6eecb06fa5c10543ee40485
f3ebc9f83cc4ac728ec652a68e521557e922da07f157272efa104db8e8c73f17
Analyzer Verdict Alert fortinet Phishing
GET /2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/ HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 09:53:08 GMT
Server: Apache
X-Powered-By: PHP/7.4.16
X-Pingback: http://www.0979616027.com/xmlrpc.php
Link: <http://www.0979616027.com/wp-json/>; rel="https://api.w.org/", <http://www.0979616027.com/wp-json/wp/v2/posts/3224>; rel="alternate"; type="application/json", <http://www.0979616027.com/?p=3224>; rel=shortlink
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.0979616027.com/wp-includes/css/dist/editor/style.min.css?ver=6.0.2
172.104.80.12302 Found 262 B URL HTTP/1.1 www.0979616027.com/wp-includes/css/dist/editor/style.min.css?ver=6.0.2
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a019e936c15545d745ae2a86dc501cf2
01b846ba295d825f071535bce3bcafc9d8b5e597
9237f061db049bebeb3463840c831679524ba9544d1ec9dbe0ec2a57c89fadae
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/editor/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:12 GMT
Server: Apache
Location: https://www.0979616027.com/wp-includes/css/dist/editor/style.min.css?ver=6.0.2
Content-Length: 262
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/360-image/dist/blocks.style.build.css
172.104.80.12302 Found 267 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/360-image/dist/blocks.style.build.css
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ce34eefa7fb747cd614fbd940f5b0be7
0fc519ba84eaca376ae5763e0dbf24826d8a06c7
d8cf61719ace5c2a9f52b7710412da44e3c1b35cea1d6bbe33d48de75711ed8a
GET /wp-content/plugins/360-image/dist/blocks.style.build.css HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:12 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/360-image/dist/blocks.style.build.css
Content-Length: 267
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2
172.104.80.12302 Found 272 B URL HTTP/1.1 www.0979616027.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3e0d9367d35ed5e20ce7bd853cb6da06
0a4291df01311479ab85d45ff670ddef8f2c6ec8
3479952f2f9265195be4695f6540d3eff4c9fe4bc1c4a911aa78eaae10f4cf0d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:12 GMT
Server: Apache
Location: https://www.0979616027.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2
Content-Length: 272
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
172.104.80.12302 Found 283 B URL HTTP/1.1 www.0979616027.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 839057393429a19453d5daec7fd1d855
f30ce4922aff62099012df7962b9a60229414990
b8d5c491c22b1b96952b0b947b985efbc9072fc568ccb0867056bd7c50a3b6f9
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:12 GMT
Server: Apache
Location: https://www.0979616027.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
Content-Length: 283
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
172.104.80.12302 Found 259 B URL HTTP/1.1 www.0979616027.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9dd59b0bd0209b316ccc529300748426
af64099bca1c655fa416af43e54b9bed06fd668d
c0ed16238c3c6067a54a7e3ff3a031517b844ebee0cc866725d00b928dba8a0e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:12 GMT
Server: Apache
Location: https://www.0979616027.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
Content-Length: 259
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/themes/total/css/animate.css?ver=2.1.12
172.104.80.12302 Found 261 B URL HTTP/1.1 www.0979616027.com/wp-content/themes/total/css/animate.css?ver=2.1.12
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash bc5195bbd3d33c9acdee93f69f8454e6
dfed8f99f21c083caedfb3828057ed560635e557
586ef42920d8f4a9fdd3bffd0b8b21b23018a61b2a4a57b61d882f4965191f84
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/css/animate.css?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:12 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/themes/total/css/animate.css?ver=2.1.12
Content-Length: 261
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/themes/total/js/jquery.nav.js?ver=2.1.12
172.104.80.12302 Found 262 B URL HTTP/1.1 www.0979616027.com/wp-content/themes/total/js/jquery.nav.js?ver=2.1.12
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9899e4f37a1535f1a74c2eb17a5ae351
258a41f90c68a92a9372b8f6b518f6de96584ab5
16e66bd8c04b7c3316ae8d7de0aca97a34e11183c1e3bc95d692631f8c0b193b
GET /wp-content/themes/total/js/jquery.nav.js?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:12 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/themes/total/js/jquery.nav.js?ver=2.1.12
Content-Length: 262
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/themes/total/js/owl.carousel.js?ver=2.1.12
172.104.80.12302 Found 264 B URL HTTP/1.1 www.0979616027.com/wp-content/themes/total/js/owl.carousel.js?ver=2.1.12
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 77cf45cdbf3655ebf5db607ad8aabcfc
033d88c280ef86c06f3fcad95d4d245d4b726110
79d75d47141a9d766deebcce575566d78a1a2e953d24dd1370b5f22031d3f493
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/js/owl.carousel.js?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:12 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/themes/total/js/owl.carousel.js?ver=2.1.12
Content-Length: 264
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/themes/total/js/isotope.pkgd.js?ver=2.1.12
172.104.80.12302 Found 264 B URL HTTP/1.1 www.0979616027.com/wp-content/themes/total/js/isotope.pkgd.js?ver=2.1.12
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f43e8a4a1a60f4fcc473082dd2ecabbd
4eae637b93010e905474355d76d709aec54752ee
2b10f2f9652eee6b524d3eefb794f08508e906b4e2fe8b52ac4de2ef6825e0f7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/js/isotope.pkgd.js?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:12 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/themes/total/js/isotope.pkgd.js?ver=2.1.12
Content-Length: 264
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
dvcasha2.ocsp-certum.com/
95.101.10.107200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.107:0
ASN #20940 Akamai International B.V.
Hash e5de5116db4e8c8920e736e634939ead
a5a1f9e1ce2531f5f0f17c731bc88ae1bd428e71
8a51a67fb638d093ce382fc61bbec5ef963f27db683e1f0da6569a9b8bf9f406
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: MISS
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Mon, 12 Sep 2022 09:53:12 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
95.101.10.107200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.107:0
ASN #20940 Akamai International B.V.
Hash e5de5116db4e8c8920e736e634939ead
a5a1f9e1ce2531f5f0f17c731bc88ae1bd428e71
8a51a67fb638d093ce382fc61bbec5ef963f27db683e1f0da6569a9b8bf9f406
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: MISS
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Mon, 12 Sep 2022 09:53:12 GMT
Connection: keep-alive
X-N: S
www.0979616027.com/wp-content/themes/total/css/font-awesome-4.7.0.css?ver=2.1.12
172.104.80.12302 Found 272 B URL HTTP/1.1 www.0979616027.com/wp-content/themes/total/css/font-awesome-4.7.0.css?ver=2.1.12
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash cac6b1588e6490d19284b202aa6fd2df
69450241a7f4660bc1753e59fb88bfdefc0800de
12cab6f6d072dfb87811e1f22edf5cab3143c0c22c3da9136cf7c418f37ba13a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/css/font-awesome-4.7.0.css?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:12 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/themes/total/css/font-awesome-4.7.0.css?ver=2.1.12
Content-Length: 272
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
dvcasha2.ocsp-certum.com/
95.101.10.107200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.107:0
ASN #20940 Akamai International B.V.
Hash e5de5116db4e8c8920e736e634939ead
a5a1f9e1ce2531f5f0f17c731bc88ae1bd428e71
8a51a67fb638d093ce382fc61bbec5ef963f27db683e1f0da6569a9b8bf9f406
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: MISS
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Mon, 12 Sep 2022 09:53:12 GMT
Connection: keep-alive
X-N: S
www.0979616027.com/wp-content/themes/total/css/font-awesome-5.2.0.css?ver=2.1.12
172.104.80.12302 Found 272 B URL HTTP/1.1 www.0979616027.com/wp-content/themes/total/css/font-awesome-5.2.0.css?ver=2.1.12
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2863282fa84e1a92a54fa7bce7180cbf
293787f358d091e6b6a408f28b225ec66b49627a
a2e79337264c2710e11c3d619852eab955d84f8e08adc2af462ee5fd61cb7429
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/css/font-awesome-5.2.0.css?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:12 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/themes/total/css/font-awesome-5.2.0.css?ver=2.1.12
Content-Length: 272
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/themes/total/css/owl.carousel.css?ver=2.1.12
172.104.80.12302 Found 266 B URL HTTP/1.1 www.0979616027.com/wp-content/themes/total/css/owl.carousel.css?ver=2.1.12
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 60d30f98e99a3db490861a89a5374261
5a790d7874d72c8a9d0ebfa84e35ad4c947bfd53
4b7b72821ffc215d214ddda9f977163ebe9120c0683ba58d2a8e6869db1b08e7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/css/owl.carousel.css?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:13 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/themes/total/css/owl.carousel.css?ver=2.1.12
Content-Length: 266
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/themes/total/style.css?ver=2.1.12
172.104.80.12302 Found 255 B URL HTTP/1.1 www.0979616027.com/wp-content/themes/total/style.css?ver=2.1.12
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6c2d9af1035939404a26786e8836e553
726efdb502ff74b71f944fe197fe17146236cd3c
6946168c692499ec1e169ac23b06bb6d64396ebc7a9e1c3e44bdcdf3e511492f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/style.css?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:13 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/themes/total/style.css?ver=2.1.12
Content-Length: 255
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/themes/total/css/nivo-lightbox.css?ver=2.1.12
172.104.80.12302 Found 267 B URL HTTP/1.1 www.0979616027.com/wp-content/themes/total/css/nivo-lightbox.css?ver=2.1.12
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7c9b9700684d5a516a795325154afd67
3d053840b713e306afb40425ecb6e154faf17784
db1b40a0009455823236c2ea66c48aa2574f14a3104e4d83c82a4773259a085d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/css/nivo-lightbox.css?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:13 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/themes/total/css/nivo-lightbox.css?ver=2.1.12
Content-Length: 267
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/css/loaders.css?ver=1.0.0
172.104.80.12302 Found 272 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/css/loaders.css?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8fcc296a0d80cee428a03722bd634ea2
c6ab815163143f15905ebfc7ec1746150bb06fb7
c09959a8baceb2600f3cf03a60fdebd88d7e4e08a1d6c2e60431a6e3bebf48c6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/css/loaders.css?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:13 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/css/loaders.css?ver=1.0.0
Content-Length: 272
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/css/lightgallery.css?ver=1.0.0
172.104.80.12302 Found 277 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/css/lightgallery.css?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b1f4930480c56e57e8fc92124e60d744
68f32b6072a6b5e3eca787d0138db1811dfa9634
1dbbb149d8064a6d8182b3b56a1592471766c367377f58073f11668e76ee0eba
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/css/lightgallery.css?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:13 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/css/lightgallery.css?ver=1.0.0
Content-Length: 277
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/cmyee-momentopress/css/momentopress.css?ver=6.0.2
172.104.80.12200 OK 287 B URL HTTP/2 www.0979616027.com/wp-content/plugins/cmyee-momentopress/css/momentopress.css?ver=6.0.2
IP 172.104.80.12:0
Hash d85496f427781dd8fb9cf37afa2befbd
018ae9b432a5378d6fd41d6739db2eeda94e12cc
bd2e06dc5334d86afe5742b045f62a33354854bcf557b1e9c5cbcd61b9cf6db1
GET /wp-content/plugins/cmyee-momentopress/css/momentopress.css?ver=6.0.2 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Mon, 28 Dec 2020 03:55:37 GMT
etag: "11f-5b77e3f298040"
accept-ranges: bytes
content-length: 287
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/css/slick.css?ver=1.0.0
172.104.80.12302 Found 270 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/css/slick.css?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 067cc3323e4a36b84dc1c04c26958caf
6c967b710d850740ba6cb92460e87462c8678061
40c5d74e14873dc59bf30b86eabb23d220bccdf92e116709480a0d5f42cde23b
GET /wp-content/plugins/totalplus/public/css/slick.css?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:13 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/css/slick.css?ver=1.0.0
Content-Length: 270
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/css/jquery.mb.YTPlayer.min.css?ver=1.0.0
172.104.80.12302 Found 287 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/css/jquery.mb.YTPlayer.min.css?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3a93001cac9ff9f2dcf4d45925f3d88e
1ce4466a16997b56806135da92b9fcc90ab62155
8f9bc47299280c05729c6ecda2a0aa79bb4284e2d4ea55f1a5fd74a973b63c33
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/css/jquery.mb.YTPlayer.min.css?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:13 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/css/jquery.mb.YTPlayer.min.css?ver=1.0.0
Content-Length: 287
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/css/jquery.flipster.css?ver=1.0.0
172.104.80.12302 Found 280 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/css/jquery.flipster.css?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash cb4098b1f9a58496a95b3c7542cdc27a
208fa39c78778206e4a6327cb8f8e9a663585a7f
421a6e152d851311fb090537485fb191b887d529e60bb89c47a3c465e64e4fa8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/css/jquery.flipster.css?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:13 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/css/jquery.flipster.css?ver=1.0.0
Content-Length: 280
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/css/jquery.mCustomScrollbar.css?ver=1.0.0
172.104.80.12302 Found 288 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/css/jquery.mCustomScrollbar.css?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6d51caadf5240a24d6692aa324f72460
3421314853dc4df74c62a8b402e790728de38a53
ae5380ae2d8064780e0987b00e54e3c2a3e1dfcaccc983572ff1535d8ad84f81
GET /wp-content/plugins/totalplus/public/css/jquery.mCustomScrollbar.css?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:13 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/css/jquery.mCustomScrollbar.css?ver=1.0.0
Content-Length: 288
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/css/justifiedGallery.min.css?ver=1.0.0
172.104.80.12302 Found 285 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/css/justifiedGallery.min.css?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 83b7e973d083deb658825ff176944a8f
60b725989aee51d9a0060f2a8154dd3aa68e010b
0917f116a9f70f3996fdd095a2102c7b8bb062c441d78f24413f07263f9eb376
GET /wp-content/plugins/totalplus/public/css/justifiedGallery.min.css?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:13 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/css/justifiedGallery.min.css?ver=1.0.0
Content-Length: 285
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/css/essential-icon.css?ver=1.0.0
172.104.80.12302 Found 279 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/css/essential-icon.css?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5d966abbe61efdde19eca31553427736
fb248bb2179e037600c05d7d2e8682a4d2688cc6
6df15c6616ba321011b71433820b765c9eb67c9535c78d99d57241c1e9476a96
GET /wp-content/plugins/totalplus/public/css/essential-icon.css?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:13 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/css/essential-icon.css?ver=1.0.0
Content-Length: 279
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-includes/css/dist/nux/style.min.css?ver=6.0.2
172.104.80.12200 OK 2.8 kB URL HTTP/2 www.0979616027.com/wp-includes/css/dist/nux/style.min.css?ver=6.0.2
IP 172.104.80.12:0
File type ASCII text, with very long lines (2256)
Hash 91865d3e0fb09e5febb1ad64d56827d1
e4ef380619e272990480f9aa3f66e0a38e171626
6da593bb41278863238449ee446ac7a689c10718f2351833aa9e6f1575c3ac21
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/nux/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Wed, 25 May 2022 06:58:29 GMT
etag: "ae2-5dfd099c6e592"
accept-ranges: bytes
content-length: 2786
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/css/materialdesignicons.css?ver=1.0.0
172.104.80.12302 Found 284 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/css/materialdesignicons.css?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 09561429d3813b512e8ab8868b0eb59a
139653f860126b9e7f8671fbaa3c3498b8f6d97c
b62925d72583140bed88358b0441861f4093406856bf1acbfb9d7ba3129c7ae7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/css/materialdesignicons.css?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:13 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/css/materialdesignicons.css?ver=1.0.0
Content-Length: 284
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/css/icofont.css?ver=1.0.0
172.104.80.12302 Found 272 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/css/icofont.css?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1658883670d50408dc3e0a8740c6a5cd
e6fac8c6a79efcd8b25cb33d6bad6453d3b3995e
e394a13ff5b091c535de0585420597f226de88a873d2893b1e1d68532fbcac04
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/css/icofont.css?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:13 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/css/icofont.css?ver=1.0.0
Content-Length: 272
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/css/totalplus-public.css?ver=1.0.0
172.104.80.12302 Found 281 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/css/totalplus-public.css?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 473f9695be71e4142024b01d615bc52d
2e8870415a7e04637d30aa14c515114de5bc51dc
2655e1a91d7a49be5db2b2073a53962a9a57f74f823216e32c78c3e04fc8953f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/css/totalplus-public.css?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:13 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/css/totalplus-public.css?ver=1.0.0
Content-Length: 281
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/jetpack/css/jetpack.css?ver=11.3.1
172.104.80.12302 Found 264 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/jetpack/css/jetpack.css?ver=11.3.1
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d71dcd5bcb27186de8a3e15439b1a46d
aa869ab548bbd0023bf48f4b3b43ea05cb04da42
247dbbe032eba39a771bac49ad6ce630990da0a41e8d48156dde5a533efeb25d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jetpack/css/jetpack.css?ver=11.3.1 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:13 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/jetpack/css/jetpack.css?ver=11.3.1
Content-Length: 264
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/360-image/dist/aframe-v1.0.4.min.js?ver=6.0.2
172.104.80.12302 Found 275 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/360-image/dist/aframe-v1.0.4.min.js?ver=6.0.2
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 088b8bb818359df21356b7cd41462be3
67319773828c25794e7c8232597494fce4c17138
dba13966d04b89220595cc0380485f1b13f94c520f80e744de6afd779220ccd6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/360-image/dist/aframe-v1.0.4.min.js?ver=6.0.2 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:13 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/360-image/dist/aframe-v1.0.4.min.js?ver=6.0.2
Content-Length: 275
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
172.104.80.12302 Found 256 B URL HTTP/1.1 www.0979616027.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9b7490c9deef11aeed4dd55f25a89324
624bc253a42d459ebdb9584268f154d4e1cca4e3
d4715e3b4429a3124d7a54c7c30e3fa09211f2004ca514a6610e9b0dbb3fc0c4
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:13 GMT
Server: Apache
Location: https://www.0979616027.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
Content-Length: 256
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
172.104.80.12302 Found 264 B URL HTTP/1.1 www.0979616027.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ab30a31c9245ab90ada295d1f378a85c
cc0df01de394fc87a5ab63ecac3069ef4870f5b0
1d38290b9f102c4cfeaeb42f49de5b79aa7afce0e1eada054a261d4cbaa07abc
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:13 GMT
Server: Apache
Location: https://www.0979616027.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
Content-Length: 264
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
172.104.80.12302 Found 255 B URL HTTP/1.1 www.0979616027.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0f994ab39d936fb94336b6d695bdb5e4
80276feedf447ca1342e2d5dff566b0c4ed05f03
659d413230f658c1ab0e93e563d0af294c73cd98087c8da2b06d079eafcfdb1c
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:13 GMT
Server: Apache
Location: https://www.0979616027.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
Content-Length: 255
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/themes/total/js/jquery.stellar.js?ver=2.1.12
172.104.80.12302 Found 266 B URL HTTP/1.1 www.0979616027.com/wp-content/themes/total/js/jquery.stellar.js?ver=2.1.12
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 34b029273a73f9f78719fddf2c239ba8
bb456813ab548f14c95a4346c83a04b959af45a7
60066e062498672e0c110028016de8b9786f761d6bd1712f03f5a9054291b71a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/js/jquery.stellar.js?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:13 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/themes/total/js/jquery.stellar.js?ver=2.1.12
Content-Length: 266
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/themes/total/js/nivo-lightbox.js?ver=2.1.12
172.104.80.12302 Found 265 B URL HTTP/1.1 www.0979616027.com/wp-content/themes/total/js/nivo-lightbox.js?ver=2.1.12
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 4d3b0f7e5b6eec4985584c9f89d77f7b
22588a7431cedee023deb80b8e4f12be336957a9
c44ddccd54eb19fdb7e6474c7c5e4e95c4e97284b9b8daf8cf009ecf2cf4ceec
GET /wp-content/themes/total/js/nivo-lightbox.js?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:13 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/themes/total/js/nivo-lightbox.js?ver=2.1.12
Content-Length: 265
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/themes/total/js/superfish.js?ver=2.1.12
172.104.80.12302 Found 261 B URL HTTP/1.1 www.0979616027.com/wp-content/themes/total/js/superfish.js?ver=2.1.12
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2f1b9a0a15122ec07a37c5085dc2ae14
d705be7e23c9f3d12bab58cbfad71f63466ad64d
b1f52e25c8a8e59ade6b5bd962fcd621ad46cfec285d25c88703c7b74d788f5b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/js/superfish.js?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:13 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/themes/total/js/superfish.js?ver=2.1.12
Content-Length: 261
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/360-image/dist/blocks.style.build.css
172.104.80.12200 OK 349 B URL HTTP/2 www.0979616027.com/wp-content/plugins/360-image/dist/blocks.style.build.css
IP 172.104.80.12:0
File type ASCII text, with very long lines (348)
Hash ed42d209e9050f22c10d0d18387884f9
4275fab85150693a172bd462762d7ce3fbb7befc
bdfc81fde77228e489c3823a3768d4d32e76862b368e2d6e1f5208ddb8111124
GET /wp-content/plugins/360-image/dist/blocks.style.build.css HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Tue, 26 Oct 2021 19:00:02 GMT
etag: "15d-5cf4615b36cad"
accept-ranges: bytes
content-length: 349
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-includes/css/dist/reusable-blocks/style.min.css?ver=6.0.2
172.104.80.12200 OK 522 B URL HTTP/2 www.0979616027.com/wp-includes/css/dist/reusable-blocks/style.min.css?ver=6.0.2
IP 172.104.80.12:0
File type ASCII text, with very long lines (522), with no line terminators
Hash 0511686b2d1751365589bb4ad6ebd381
9055cd550ec030497299985811ae0dfc78ada3ca
b065e641c0b9772a645e0596657a0bbabb8470f5ffbcfed95d5100f74c0da056
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/reusable-blocks/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Wed, 26 Jan 2022 07:00:21 GMT
etag: "20a-5d676c152f6e9"
accept-ranges: bytes
content-length: 522
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2
172.104.80.12200 OK 4.2 kB URL HTTP/2 www.0979616027.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2
IP 172.104.80.12:0
File type ASCII text, with very long lines (4186), with no line terminators
Hash ea958276b7de454bd3c2873f0dc47e5f
b143f6e8e8f79d8f104c26b0057ef5514d763219
2e10d353ff038c2cad3492fc17801af3e6ef2669c9e9713bdb78b1dcb104c4fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
etag: "105a-58ac1e7924f80"
accept-ranges: bytes
content-length: 4186
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-includes/css/dist/editor/style.min.css?ver=6.0.2
172.104.80.12200 OK 20 kB URL HTTP/2 www.0979616027.com/wp-includes/css/dist/editor/style.min.css?ver=6.0.2
IP 172.104.80.12:0
File type Unicode text, UTF-8 text, with very long lines (20364), with no line terminators
Hash a9f329af48461d5fc599f179bf5da842
2f3d5ac0413c931412d52836d3225aa78e38d3da
4abb7aa5439849a3cddb4085a9c39b6ef0a54da587c675c4cb4e9887974e5642
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/editor/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Wed, 25 May 2022 06:58:29 GMT
etag: "4fac-5dfd099c6d88d"
accept-ranges: bytes
content-length: 20396
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/themes/total/js/odometer.js?ver=2.1.12
172.104.80.12302 Found 260 B URL HTTP/1.1 www.0979616027.com/wp-content/themes/total/js/odometer.js?ver=2.1.12
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fec0fc23bda5f74c9d7b8b2ce7fac542
25aed0bbdaaba18b869d09d8f8c7355a2161b410
7aee6f8cc278a75b75d9f5f3300e2840ab36943da259874d461b5362c12a4ee3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/js/odometer.js?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:14 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/themes/total/js/odometer.js?ver=2.1.12
Content-Length: 260
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/themes/total/js/waypoint.js?ver=2.1.12
172.104.80.12302 Found 260 B URL HTTP/1.1 www.0979616027.com/wp-content/themes/total/js/waypoint.js?ver=2.1.12
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 101849a93b43e790234377362f21bbfe
41ac42c92e590240304c5cfe32690b0d0d71da54
03d315ab6b01451efccf67312cb580eee5696ad64569d1b484f7200489a5f2d0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/js/waypoint.js?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:14 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/themes/total/js/waypoint.js?ver=2.1.12
Content-Length: 260
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/themes/total/js/headroom.js?ver=2.1.12
172.104.80.12302 Found 260 B URL HTTP/1.1 www.0979616027.com/wp-content/themes/total/js/headroom.js?ver=2.1.12
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 686fdcc5ca501efce98213ae4292f6fc
54227edbf98174bff9344ec654f296625f275f13
50a0868d302f704cebf6f1dae45dc68f3fc0d6d7a31c884b71e532c73afb6d6c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/js/headroom.js?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:14 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/themes/total/js/headroom.js?ver=2.1.12
Content-Length: 260
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.cookie.js?ver=1.0.0
172.104.80.12302 Found 276 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.cookie.js?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8f17ab868ec592628a082fd698bdcabd
f2adc6554ec7684819df2e69fc3d8025a35e96e8
c3b422c4e8f205c5a6ab42f1fcd4fda6bffe397e86593a09917c589660c31c6a
GET /wp-content/plugins/totalplus/public/js/jquery.cookie.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:14 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.cookie.js?ver=1.0.0
Content-Length: 276
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.owl-filter.js?ver=1.0.0
172.104.80.12302 Found 280 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.owl-filter.js?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e22187069fedd495c46b0d3386d42c32
ad9404014af8faaaa7f6312b561e2c35a6cde8ca
e48420818e444aebbb0c501c97e859f29c58612797e25eb07f5cc8b81defa1cc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/js/jquery.owl-filter.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:14 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.owl-filter.js?ver=1.0.0
Content-Length: 280
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/js/lightgallery.js?ver=1.0.0
172.104.80.12302 Found 275 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/js/lightgallery.js?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fbacfdfa72fdb5e22468c7c8d1b0ca8e
b2dad6f7d1183c72380f79db470256ac628192e2
8a736a059e9a93c3fcda9fc9499e8a88c18788b5eb62ebbb13bbdd19d7228b7e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/js/lightgallery.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:14 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/js/lightgallery.js?ver=1.0.0
Content-Length: 275
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/themes/total/js/jquery.nav.js?ver=2.1.12
172.104.80.12200 OK 6.9 kB URL HTTP/2 www.0979616027.com/wp-content/themes/total/js/jquery.nav.js?ver=2.1.12
IP 172.104.80.12:0
Hash d664470c0bd4a949079b68b9f5e9b0db
124a65073ac3fd0dc4ed659ab1e158912e9ee725
9e26acb1e2121ed84ec8b4b9de40b9b4c016193998db0376f9fd97f4cc4ce772
GET /wp-content/themes/total/js/jquery.nav.js?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Fri, 06 May 2022 08:10:22 GMT
etag: "1b16-5de5363db2f6f"
accept-ranges: bytes
content-length: 6934
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/themes/total/css/owl.carousel.css?ver=2.1.12
172.104.80.12200 OK 4.8 kB URL HTTP/2 www.0979616027.com/wp-content/themes/total/css/owl.carousel.css?ver=2.1.12
IP 172.104.80.12:0
Hash a697859c29a86217c344dd8f7f30ec20
b29d92f8346f9723ce79b8a6b00af2b7d7618ae0
c00c027ed2eb47a30ba9e917bb5b8846a218dc89329b0fc7222b37cfb33c93ca
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/css/owl.carousel.css?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Fri, 06 May 2022 08:10:22 GMT
etag: "12db-5de5363dad44a"
accept-ranges: bytes
content-length: 4827
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/themes/total/css/nivo-lightbox.css?ver=2.1.12
172.104.80.12200 OK 8.5 kB URL HTTP/2 www.0979616027.com/wp-content/themes/total/css/nivo-lightbox.css?ver=2.1.12
IP 172.104.80.12:0
Hash 308ef326edb21f9c6dbc731b9d0d41e9
845874b992b273c895eef029e78ff54e74b5391e
c149e16fe998a0fb5333caf33ea99f61114d637eb82fde7186c7d0ec8e15bcf2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/css/nivo-lightbox.css?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Fri, 06 May 2022 08:10:22 GMT
etag: "212d-5de5363da5f1a"
accept-ranges: bytes
content-length: 8493
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/css/slick.css?ver=1.0.0
172.104.80.12200 OK 1.6 kB URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/css/slick.css?ver=1.0.0
IP 172.104.80.12:0
Hash 35bc20a59d5356d375c514c291303a4a
b8634f815447cc2018ac8e2c876b725f6f1996b2
3d6db4f7bc5e2f5e8fb0462046f65dd78c91729a0ca3019dc67dbea386ed6f7f
GET /wp-content/plugins/totalplus/public/css/slick.css?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "647-5cc153ecb1d12"
accept-ranges: bytes
content-length: 1607
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/css/justifiedGallery.min.css?ver=1.0.0
172.104.80.12200 OK 1.8 kB URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/css/justifiedGallery.min.css?ver=1.0.0
IP 172.104.80.12:0
File type ASCII text, with very long lines (1641)
Hash 2cbaf5d42ca1755790be96efb44ab28b
5a0b11287defc4b18fef056675304ee80c686989
26fe78a9d2ff41c0ed0c55deaf63a235e1bb49dc9c5a275c51c6deac5cf3ace4
GET /wp-content/plugins/totalplus/public/css/justifiedGallery.min.css?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "708-5cc153ecbb952"
accept-ranges: bytes
content-length: 1800
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
172.104.80.12200 OK 19 kB URL HTTP/2 www.0979616027.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 172.104.80.12:0
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Wed, 25 May 2022 06:58:29 GMT
etag: "48b9-5dfd099cb8678"
accept-ranges: bytes
content-length: 18617
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/js/wow.js?ver=1.0.0
172.104.80.12302 Found 266 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/js/wow.js?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 656479dda654456ded3e620bbff0af27
a99c054a6166fbd9014ba8488585c20116227337
7cc503af41b9058e6f160b784d0b49c2537b3760029c361697c26d65b984b74b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/js/wow.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:14 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/js/wow.js?ver=1.0.0
Content-Length: 266
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/js/hoverintent.js?ver=1.0.0
172.104.80.12302 Found 274 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/js/hoverintent.js?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5f3e42918f2a54e771e8aa8d81c65c34
5da816114b2d5bea9d429eea36e7b7f02f1383a6
de3ef854cff7276e1ea46ea4a70b5b54595459b99178c138b0d3b6fb9d2d6294
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/js/hoverintent.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:14 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/js/hoverintent.js?ver=1.0.0
Content-Length: 274
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/js/motio.min.js?ver=1.0.0
172.104.80.12302 Found 272 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/js/motio.min.js?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 52671ded3dacfe5cdad426570037f332
f12adcf41c5400c16ecf37cee921e0fdd0372541
5d9ae83e1952eb3df606dd7505fc437fa20489f8a40b13ccde3bc3d74aa9cb34
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/js/motio.min.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:14 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/js/motio.min.js?ver=1.0.0
Content-Length: 272
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.espy.min.js?ver=1.0.0
172.104.80.12302 Found 278 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.espy.min.js?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3f2318c3daf012966a22574c38e01f00
3e2298311a9c5ac935746abc4b5257f6f1420e1e
a1e6fc53d5982c58a874cdde441fd1a2e948edc66f09ec98cd95c5ea1b4a251b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/js/jquery.espy.min.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:14 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.espy.min.js?ver=1.0.0
Content-Length: 278
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/js/slick.js?ver=1.0.0
172.104.80.12302 Found 268 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/js/slick.js?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b1bbfde11155876c18cd8c133e17b641
4d988ec2e27da7608bc8085216afc4c9e914a71e
8787f53fcde74a523f667506711e097a47882bb72a505dde882ccbd157507544
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/js/slick.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:14 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/js/slick.js?ver=1.0.0
Content-Length: 268
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.flipster.min.js?ver=1.0.0
172.104.80.12302 Found 282 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.flipster.min.js?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62898cd4ef92b0ed157e040fe86cb045
39f419bdff2a487d7451c37834ad36e149563911
9b7c38d0872e6f4c0f9905a8de747cdd0fe7d8a9959843cb00236104a353eb12
GET /wp-content/plugins/totalplus/public/js/jquery.flipster.min.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:14 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.flipster.min.js?ver=1.0.0
Content-Length: 282
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
172.104.80.12200 OK 11 kB URL HTTP/2 www.0979616027.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
IP 172.104.80.12:0
File type ASCII text, with very long lines (11256), with no line terminators
Hash 2b0dd7eecea03b4bdedb94ba622fdb03
703becba85161118dd6fc66af465428ef43f561c
b7908a015a567ec2363011df2475368dbff34360e9da3fdff50604d6395fb646
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Wed, 09 Dec 2020 10:14:27 GMT
etag: "2bf8-5b60552fda6c0"
accept-ranges: bytes
content-length: 11256
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/css/jquery.mb.YTPlayer.min.css?ver=1.0.0
172.104.80.12200 OK 5.0 kB URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/css/jquery.mb.YTPlayer.min.css?ver=1.0.0
IP 172.104.80.12:0
Hash 31245a7932003d6f72ffbbcb57e46727
65d110e012af8d20c171552164a135febfc4d20d
020b651a0c118f1d5c190441f8da5ef2f82478e1b20dd06327bb91527bd50683
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/css/jquery.mb.YTPlayer.min.css?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "137c-5cc153ecbb952"
accept-ranges: bytes
content-length: 4988
content-type: text/css
X-Firefox-Spdy: h2
stats.wp.com/e-202237.js
192.0.76.3200 OK 10 kB IP 192.0.76.3:0
File type ASCII text, with very long lines (2690)
Hash 377e21ee0aa09997957731753dd81a58
ad091f2aeb176ffe9f1601e62728a1cd50d1a27a
04bbaa41ed67d5a3a65edf0d7e4e93ad072feadcc0404e408f37408ef35ca989
GET /e-202237.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.0979616027.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 12 Sep 2022 09:53:12 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-3508"
content-encoding: br
expires: Sun, 03 Sep 2023 22:56:03 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
www.0979616027.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
172.104.80.12200 OK 89 kB URL HTTP/2 www.0979616027.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 172.104.80.12:0
File type ASCII text, with very long lines (43771)
Hash b7915926fe42d76e9c802353ab01dae4
3a8192a4312f25f53de25b100d62829c0f14d67c
d7705700d24d5919255576642ad2c28bfc790390b7183a369038ff5c1e814d51
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Tue, 12 Jul 2022 18:59:23 GMT
etag: "15b64-5e3a04449d7ee"
accept-ranges: bytes
content-length: 88932
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.mCustomScrollbar.js?ver=1.0.0
172.104.80.12302 Found 286 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.mCustomScrollbar.js?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 68558ce23dd895ce43f26f3900dc4741
d717b927b3eec18e5eab8897d9919a60f52fd5d4
7bfbe0e5afb59f497299aa0c3be68b924ff97d6b5fd7ce0afe8b05421140d9bc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/js/jquery.mCustomScrollbar.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:14 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.mCustomScrollbar.js?ver=1.0.0
Content-Length: 286
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.accordion.js?ver=1.0.0
172.104.80.12302 Found 279 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.accordion.js?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash cd246423e51e7f3df196cb4ab65c8ec6
129bb69b53ca484e1b0ca82b4ad04a82d17b5c04
bf78b8ae1dabbafcfdeb63f745a9e37040a4fb28dc4e02a705e00616104be963
GET /wp-content/plugins/totalplus/public/js/jquery.accordion.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:14 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.accordion.js?ver=1.0.0
Content-Length: 279
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/css/lightgallery.css?ver=1.0.0
172.104.80.12200 OK 25 kB URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/css/lightgallery.css?ver=1.0.0
IP 172.104.80.12:0
Hash fad5f5d5ea5e0c857939d8fb4c01327a
aeef16b4038967ea7c0627a77f79e348afc9b936
1bb271dee68cad79241d284df32c5eea4f944819b302e92db616a54d05a9a834
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/css/lightgallery.css?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "62e1-5cc153ecb1d12"
accept-ranges: bytes
content-length: 25313
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/themes/total/js/superfish.js?ver=2.1.12
172.104.80.12200 OK 7.0 kB URL HTTP/2 www.0979616027.com/wp-content/themes/total/js/superfish.js?ver=2.1.12
IP 172.104.80.12:0
Hash e25125463e3a68f85b0683f3bc21433b
ed17fd0bf4f1d0790a2b8c0ed42bc5636781ce4f
de374484df39f525b35a5a5bc8f64a8c00b3c6d2c95e353bbe077710adc49620
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/js/superfish.js?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:14 GMT
server: Apache
last-modified: Fri, 06 May 2022 08:10:22 GMT
etag: "1b3f-5de5363db2f6f"
accept-ranges: bytes
content-length: 6975
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
172.104.80.12200 OK 5.6 kB URL HTTP/2 www.0979616027.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 172.104.80.12:0
File type ASCII text, with very long lines (5477)
Hash 3a56752b736635bf69cb069b8818cbfd
42e0951fe74bb3f56a30f51291823bcd4a84d76e
ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:14 GMT
server: Apache
last-modified: Wed, 12 Aug 2020 06:18:33 GMT
etag: "15fd-5aca8283b2040"
accept-ranges: bytes
content-length: 5629
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/css/essential-icon.css?ver=1.0.0
172.104.80.12200 OK 21 kB URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/css/essential-icon.css?ver=1.0.0
IP 172.104.80.12:0
Hash a145f4f75d61c0e835a288a42176936f
bc37efb626f6eb0060ba98adddcc0d97c79b6125
e5168b88a29580bb2e4c6bcaf94c24c2801eaef58751f8eafeeb7d050aec4838
GET /wp-content/plugins/totalplus/public/css/essential-icon.css?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "51fd-5cc153ecbb952"
accept-ranges: bytes
content-length: 20989
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/themes/total/js/nivo-lightbox.js?ver=2.1.12
172.104.80.12200 OK 14 kB URL HTTP/2 www.0979616027.com/wp-content/themes/total/js/nivo-lightbox.js?ver=2.1.12
IP 172.104.80.12:0
Hash 05d8c04c7cffa68231d7eb0b4ef8ab3b
7d9365530d35d557ab285888916e249424561e9e
48a0dfcb35728a50647837412515149200110486d731dade126cbfbd8e24540d
GET /wp-content/themes/total/js/nivo-lightbox.js?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:14 GMT
server: Apache
last-modified: Fri, 06 May 2022 08:10:22 GMT
etag: "35e0-5de5363db226a"
accept-ranges: bytes
content-length: 13792
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.photostream.min.js?ver=1.0.0
172.104.80.12302 Found 285 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.photostream.min.js?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash dd177aaab67d34aba9bd9839006277fc
2ebf32a5c46b8d1b711a0dad3b7e2de8f7ddd94c
75e4cba085ada6de902576eb93a831ad8fd6fa7cb557ea812ca84e6765a6fd26
GET /wp-content/plugins/totalplus/public/js/jquery.photostream.min.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:14 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.photostream.min.js?ver=1.0.0
Content-Length: 285
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.justifiedGallery.min.js?ver=1.0.0
172.104.80.12302 Found 290 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.justifiedGallery.min.js?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ebe5586910bd31cb52baa26804033644
9dffaedc809948d6f6f30e32f886b171c7d841e6
65d7a9e3e844e06dea40f210aa6f533827a95cb33e045f4486badfa5b31379f4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/js/jquery.justifiedGallery.min.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:14 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.justifiedGallery.min.js?ver=1.0.0
Content-Length: 290
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.countdown.js?ver=1.0.0
172.104.80.12302 Found 279 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.countdown.js?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 51f3053a8b86eef862ff4ed8de5e21e4
b876cd7283893af88498854ca6ab45f3fe080cad
9614a99b94fd4384f5583f94efdc3da540fca172f8f5725b31b0ce4b3c09a10e
GET /wp-content/plugins/totalplus/public/js/jquery.countdown.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:14 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.countdown.js?ver=1.0.0
Content-Length: 279
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/js/theia-sticky-sidebar.js?ver=1.0.0
172.104.80.12302 Found 283 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/js/theia-sticky-sidebar.js?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 27197f7b132688ee6d9368d1ccdabd4e
9b55a0e7aff79d0bf4eb5a32ec5b719833d852fe
7b77d8b9928eae6ae4f7fc7e8e00893dd561c81f7fd253c2f41d91d8928e32bc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/js/theia-sticky-sidebar.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:14 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/js/theia-sticky-sidebar.js?ver=1.0.0
Content-Length: 283
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/themes/total/js/owl.carousel.js?ver=2.1.12
172.104.80.12200 OK 90 kB URL HTTP/2 www.0979616027.com/wp-content/themes/total/js/owl.carousel.js?ver=2.1.12
IP 172.104.80.12:0
File type ASCII text, with very long lines (360)
Hash ccdf893e7d8b26933af0c336bcc3943e
ac575ba3377f95ef22bad865ec35b0b3dcb0dfe0
db9d6cf3c1c4b047c62f646e7d9991c06a212931c362bf53f9a2406b30f09466
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/js/owl.carousel.js?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Fri, 06 May 2022 08:10:22 GMT
etag: "15f88-5de5363db2f6f"
accept-ranges: bytes
content-length: 89992
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/themes/total/js/isotope.pkgd.js?ver=2.1.12
172.104.80.12200 OK 91 kB URL HTTP/2 www.0979616027.com/wp-content/themes/total/js/isotope.pkgd.js?ver=2.1.12
IP 172.104.80.12:0
Hash 3a2969062522c0e5462d3e1f65148dc5
754aaa291e1aabab694efc4f89cecac53c5f84fc
16d611357cf3db84130734a858f1322e0a17ec5b1761966266f691d2f4a21a4c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/js/isotope.pkgd.js?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Fri, 06 May 2022 08:10:22 GMT
etag: "16505-5de5363db2f6f"
accept-ranges: bytes
content-length: 91397
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
172.104.80.12200 OK 11 kB URL HTTP/2 www.0979616027.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 172.104.80.12:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:14 GMT
server: Apache
last-modified: Wed, 09 Dec 2020 10:14:12 GMT
etag: "2bd8-5b6055218c500"
accept-ranges: bytes
content-length: 11224
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/themes/total/css/font-awesome-4.7.0.css?ver=2.1.12
172.104.80.12200 OK 38 kB URL HTTP/2 www.0979616027.com/wp-content/themes/total/css/font-awesome-4.7.0.css?ver=2.1.12
IP 172.104.80.12:0
File type troff or preprocessor input, ASCII text, with very long lines (447)
Hash 60eb2c50e6f8f4ddf78c5bf8aca85be3
0180c4a93a5028102018036bbe841a70a0f7135b
c7f6ecd6669c61d2c6b2212f33e0c6f1b2de0a747a75c5c21422ab9c4cff35e1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/css/font-awesome-4.7.0.css?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Fri, 06 May 2022 08:10:22 GMT
etag: "92eb-5de5363daad3a"
accept-ranges: bytes
content-length: 37611
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/css/loaders.css?ver=1.0.0
172.104.80.12200 OK 57 kB URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/css/loaders.css?ver=1.0.0
IP 172.104.80.12:0
Hash a9322fef95c853e2ca7aeb1dd8990312
691df29d2dc54194ca59dfbf9cdd4e711240b073
1c46b0c77eebc7728fd608beb7d6707393a8aa3991b05cb28a39a536d05a89a1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/css/loaders.css?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "ddf0-5cc153ecbb952"
accept-ranges: bytes
content-length: 56816
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/js/theia-sticky-sidebar-js.js?ver=1.0.0
172.104.80.12302 Found 286 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/js/theia-sticky-sidebar-js.js?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 05e100a63f19e478431bc73c2330cbba
fcb078c612f961cc23f3166359aa9f0b722ad437
1c4ae7ec9bb719e82cf6a867ee79b2303085bf1629818724a597e75d6365f987
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/js/theia-sticky-sidebar-js.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:14 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/js/theia-sticky-sidebar-js.js?ver=1.0.0
Content-Length: 286
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/js/mega-menu.js?ver=1.0.0
172.104.80.12302 Found 272 B URL HTTP/1.1 www.0979616027.com/wp-content/plugins/totalplus/public/js/mega-menu.js?ver=1.0.0
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 33c20023b2ffd180f1d9f52a9056a061
fa8be5a73006bf1e7737b199757f97d9d3a5b536
d0ffba7665909ddc8791941de4e9b5a2aefe90aae5082e17fd205711103baf5e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/js/mega-menu.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:14 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/plugins/totalplus/public/js/mega-menu.js?ver=1.0.0
Content-Length: 272
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/themes/total/js/jquery.stellar.js?ver=2.1.12
172.104.80.12200 OK 31 kB URL HTTP/2 www.0979616027.com/wp-content/themes/total/js/jquery.stellar.js?ver=2.1.12
IP 172.104.80.12:0
File type ASCII text, with very long lines (322)
Hash a153353d0146266f58a9235f2cd966f1
4207789f7e46829ba3ffab6db84fb868645147e7
c1447dd2f59d9df2c4ec7172935de7d6b99ed0f102980c7f8dddd3aedcbc8867
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/js/jquery.stellar.js?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:14 GMT
server: Apache
last-modified: Fri, 06 May 2022 08:10:22 GMT
etag: "78af-5de5363db226a"
accept-ranges: bytes
content-length: 30895
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/themes/total/css/font-awesome-5.2.0.css?ver=2.1.12
172.104.80.12200 OK 61 kB URL HTTP/2 www.0979616027.com/wp-content/themes/total/css/font-awesome-5.2.0.css?ver=2.1.12
IP 172.104.80.12:0
Hash fde434ab5ec47a94732bd90765022841
c12bc45ed596c42ed75195eb4deb1f120a24b929
1dedc3ca85746cd90f846da9a043a857d83ab4d98238bbeab54cbfcf351b0a09
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/css/font-awesome-5.2.0.css?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Fri, 06 May 2022 08:10:22 GMT
etag: "ef2b-5de5363dad44a"
accept-ranges: bytes
content-length: 61227
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/css/jquery.mCustomScrollbar.css?ver=1.0.0
172.104.80.12200 OK 54 kB URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/css/jquery.mCustomScrollbar.css?ver=1.0.0
IP 172.104.80.12:0
Hash f9a83c4f996afb2503d7f36089f863a7
6299a886805bc3728f647bd1b4883ef09d30b86d
ba3c09886b40f25b7f7969e618e3b5baea139b4e257a4787972eae0325c7a4e9
GET /wp-content/plugins/totalplus/public/css/jquery.mCustomScrollbar.css?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "d0ff-5cc153ecbb952"
accept-ranges: bytes
content-length: 53503
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-includes/css/dist/block-editor/style.min.css?ver=6.0.2
172.104.80.12200 OK 122 kB URL HTTP/2 www.0979616027.com/wp-includes/css/dist/block-editor/style.min.css?ver=6.0.2
IP 172.104.80.12:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 122 kB (122045 bytes)
Hash 7701f6970c9a6f91b1e183a05eb2b82e
96d7a4812a855ecd60f9385f332d1e13e74d939b
4f572c3b6c2a05290943051120f64356f1dd8414438d487fae7114cebf63c164
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-editor/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Wed, 31 Aug 2022 06:58:08 GMT
etag: "1dcbd-5e78404f807b3"
accept-ranges: bytes
content-length: 122045
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/themes/total/css/animate.css?ver=2.1.12
172.104.80.12200 OK 71 kB URL HTTP/2 www.0979616027.com/wp-content/themes/total/css/animate.css?ver=2.1.12
IP 172.104.80.12:0
Hash 9b01508c4038b9fbeafa9676ab7d8b62
9cc2b3b9d0f376328cc32b80e486850a2964c27c
c065a79be7511e259631f7f99f4191ad98befcfcc2f739cb2c18e39f11c48272
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/css/animate.css?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Fri, 06 May 2022 08:10:22 GMT
etag: "11498-5de5363daad3a"
accept-ranges: bytes
content-length: 70808
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/themes/total/js/headroom.js?ver=2.1.12
172.104.80.12200 OK 14 kB URL HTTP/2 www.0979616027.com/wp-content/themes/total/js/headroom.js?ver=2.1.12
IP 172.104.80.12:0
Hash 9603f129c66e05a4c00a25d382bb1571
792074715aeafbd0ab982c27f96e309c6352af6a
c7b7efb88ef3d7823f9df9e74d6b3f52b2e0b134ca1ff568bda1a2052d8ae6a8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/js/headroom.js?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:14 GMT
server: Apache
last-modified: Fri, 06 May 2022 08:10:22 GMT
etag: "383e-5de5363db226a"
accept-ranges: bytes
content-length: 14398
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/themes/total/js/odometer.js?ver=2.1.12
172.104.80.12200 OK 21 kB URL HTTP/2 www.0979616027.com/wp-content/themes/total/js/odometer.js?ver=2.1.12
IP 172.104.80.12:0
File type ASCII text, with very long lines (447)
Hash 08ff1080b680b55a34a4488c403d039f
df3ca7008631adb78693343dc7b929f028034ce4
c211ac14f0c94929445fe8f1759520592dc5c40c78b5e891f007bc1936c71038
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/js/odometer.js?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:14 GMT
server: Apache
last-modified: Fri, 06 May 2022 08:10:22 GMT
etag: "52d7-5de5363db2f6f"
accept-ranges: bytes
content-length: 21207
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/themes/total/js/waypoint.js?ver=2.1.12
172.104.80.12200 OK 18 kB URL HTTP/2 www.0979616027.com/wp-content/themes/total/js/waypoint.js?ver=2.1.12
IP 172.104.80.12:0
Hash d7aaeff3603a785e4227ebc41a309714
bf281c762bb36faadfdb083bb9f0e640009a61fc
3b2709bfa17d9cacd051779b518056b6d3b3114fb0dfdd61cee3004f8ce9f959
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/js/waypoint.js?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:14 GMT
server: Apache
last-modified: Fri, 06 May 2022 08:10:22 GMT
etag: "448c-5de5363db226a"
accept-ranges: bytes
content-length: 17548
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/themes/total/style.css?ver=2.1.12
172.104.80.12200 OK 76 kB URL HTTP/2 www.0979616027.com/wp-content/themes/total/style.css?ver=2.1.12
IP 172.104.80.12:0
File type ASCII text, with very long lines (1071)
Hash 17a828b4da5c7bfbbe30048f9dc28ee0
dcdd0fa271f97fd201bf552049f59e2d5a35eb7c
87bc09e64f684a04b791924e0bf5c4f64d36531ee25b71e00db5148b6d7c7e0a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/total/style.css?ver=2.1.12 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Fri, 06 May 2022 08:10:22 GMT
etag: "129b2-5de5363dad44a"
accept-ranges: bytes
content-length: 76210
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.owl-filter.js?ver=1.0.0
172.104.80.12200 OK 1.7 kB URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.owl-filter.js?ver=1.0.0
IP 172.104.80.12:0
Hash b851259e91196979063c89b7fd28c4db
1e3a5a757a08d56ad94cb282201f57ea1d61d2b9
95210b1dcc369625ddd66cab705358c0c2c2a4e228387cbfd56db5abba6caa91
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/js/jquery.owl-filter.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:14 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "69e-5cc153ecbed67"
accept-ranges: bytes
content-length: 1694
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.cookie.js?ver=1.0.0
172.104.80.12200 OK 3.9 kB URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.cookie.js?ver=1.0.0
IP 172.104.80.12:0
Hash a978ac73947aafe8d788208c9ededec8
9a484703647a6fdafc297c7ecf63d73e53fc6f13
bb2efb91edfb6e05274fb68d4c8774d112f6ee22436c200f6e4faa8770c532a0
GET /wp-content/plugins/totalplus/public/js/jquery.cookie.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:14 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "f2d-5cc153ecbed67"
accept-ranges: bytes
content-length: 3885
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
172.104.80.12200 OK 90 kB URL HTTP/2 www.0979616027.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 172.104.80.12:0
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:14 GMT
server: Apache
last-modified: Wed, 06 Apr 2022 06:58:28 GMT
etag: "15db1-5dbf6e37b981f"
accept-ranges: bytes
content-length: 89521
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/css/icofont.css?ver=1.0.0
172.104.80.12200 OK 117 kB URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/css/icofont.css?ver=1.0.0
IP 172.104.80.12:0
Size 117 kB (116661 bytes)
Hash c1db6bd4e58ef45a134aadac839eb6bf
e1afc0e65db2aa743ac76f90ee1e16ecbe5d0476
d5fcda286601747f3081f058a7b9fae325c03fb9b3f810e069646308715f3615
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/css/icofont.css?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:14 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "1c7b5-5cc153ecbb952"
accept-ranges: bytes
content-length: 116661
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/js/lightgallery.js?ver=1.0.0
172.104.80.12200 OK 87 kB URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/js/lightgallery.js?ver=1.0.0
IP 172.104.80.12:0
Hash cb2e078bef26990bef50141f7dea7775
0bc57ca36cec514a535d845909c4d39851a22b97
617a1fbad322a52ec3d9fab8aa7a6a41bdde2055cca31786a42cccbc14fdf0a3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/js/lightgallery.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:14 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "153e2-5cc153ecbfa6c"
accept-ranges: bytes
content-length: 87010
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/js/hoverintent.js?ver=1.0.0
172.104.80.12200 OK 6.9 kB URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/js/hoverintent.js?ver=1.0.0
IP 172.104.80.12:0
Hash c3d397f60d9b837e51be41743380b445
95ee84369dbe75991d60831406623185d8cdc6fa
cce854f1489cac1f34657c86297a675161d6f9151dc94fea070f8692783c28d5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/js/hoverintent.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:14 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "1b06-5cc153ecbfa6c"
accept-ranges: bytes
content-length: 6918
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/js/motio.min.js?ver=1.0.0
172.104.80.12200 OK 14 kB URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/js/motio.min.js?ver=1.0.0
IP 172.104.80.12:0
Hash 92e0b5c6e76146de69dff113014caca9
dadb602040c21902898c64fb6165c5b0ba6b877a
cf4b75f6c656a1521d7d62a1872e4cc3f90c8f41935747fd8d51e549e2566897
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/js/motio.min.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:14 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "370d-5cc153ecbfa6c"
accept-ranges: bytes
content-length: 14093
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/css/totalplus-public.css?ver=1.0.0
172.104.80.12200 OK 235 kB URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/css/totalplus-public.css?ver=1.0.0
IP 172.104.80.12:0
Size 235 kB (234647 bytes)
Hash 9546693d57af6c7c38ef30ddb8ca3c67
775ae9516f328364a95e2699347bc61a67da7040
0ac234b717291253bb8a49bf5e3c2b30ae0a41834ab37464cf53b7a371ce603d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/css/totalplus-public.css?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:14 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "39497-5cc153ecbb952"
accept-ranges: bytes
content-length: 234647
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/css/materialdesignicons.css?ver=1.0.0
172.104.80.12200 OK 315 kB URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/css/materialdesignicons.css?ver=1.0.0
IP 172.104.80.12:0
File type ASCII text, with very long lines (396)
Size 315 kB (314998 bytes)
Hash 64cfa362ff8af97356da5213c2275a4b
0e03864830fecdd52a8f86c0916ee53b2ff80133
f9981edbbd0303bcf4b2eed22d2a94c38f3ed2b4593170598c6aa6ccfbc4f2f6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/css/materialdesignicons.css?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:14 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "4ce76-5cc153ecb1d12"
accept-ranges: bytes
content-length: 314998
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-1-1536x768.jpg
172.104.80.12302 Found 425 B URL HTTP/1.1 www.0979616027.com/wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-1-1536x768.jpg
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fae636a9578c3703d062ea1854198052
70b80258012c218a9be53e5036fc90d02d3cf414
b22549355f44cce6c618f4bb4d221810e5b3b06fb41b1588a90c2ad9b81f4299
GET /wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-1-1536x768.jpg HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:15 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/uploads/%e6%9d%be%e7%ab%b9%e9%a0%98%e8%88%aa%e7%ab%b9%e6%9c%88%e9%a4%a8_%e5%8f%b0%e4%b8%ad%e6%a9%9f%e6%8d%b7%e7%89%b9%e5%8d%80%e9%99%b3%e5%ae%89%e6%a3%ae_%e5%a5%bd%e5%b8%82%e5%a4%9a_COSTCO-1-1536x768.jpg
Content-Length: 425
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/uploads/%E5%8C%97%E5%B1%AF%E6%A9%9F%E6%8D%B7%E5%B0%81%E9%9D%A2-scaled.jpg
172.104.80.12302 Found 295 B URL HTTP/1.1 www.0979616027.com/wp-content/uploads/%E5%8C%97%E5%B1%AF%E6%A9%9F%E6%8D%B7%E5%B0%81%E9%9D%A2-scaled.jpg
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d1a655dc918f1a61ce0a387b9871e3fd
2be944249962dcf0c60b1c247b7f796032d492aa
2a182cf5ccb995acfb96185e314b83931f1ac184034279a5513efab4c907fcc6
GET /wp-content/uploads/%E5%8C%97%E5%B1%AF%E6%A9%9F%E6%8D%B7%E5%B0%81%E9%9D%A2-scaled.jpg HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:15 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/uploads/%e5%8c%97%e5%b1%af%e6%a9%9f%e6%8d%b7%e5%b0%81%e9%9d%a2-scaled.jpg
Content-Length: 295
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/uploads/%E5%A4%A7%E5%9F%8E%E8%BF%8E%E5%A5%BD%E4%BA%8B%EF%BC%BF%E9%99%B3%E5%AE%89%E6%A3%AE.jpg
172.104.80.12302 Found 315 B URL HTTP/1.1 www.0979616027.com/wp-content/uploads/%E5%A4%A7%E5%9F%8E%E8%BF%8E%E5%A5%BD%E4%BA%8B%EF%BC%BF%E9%99%B3%E5%AE%89%E6%A3%AE.jpg
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash dc6b410c7bdc5018f9fe7a24bf3df432
0cb2d4a52ee3e4c63a9c3be26fc96950bfa0efa0
393582e23e641e3c2db11a714ae8bdbbd3962a84182afd0bdb1ace56d1cef637
GET /wp-content/uploads/%E5%A4%A7%E5%9F%8E%E8%BF%8E%E5%A5%BD%E4%BA%8B%EF%BC%BF%E9%99%B3%E5%AE%89%E6%A3%AE.jpg HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:15 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/uploads/%e5%a4%a7%e5%9f%8e%e8%bf%8e%e5%a5%bd%e4%ba%8b%ef%bc%bf%e9%99%b3%e5%ae%89%e6%a3%ae.jpg
Content-Length: 315
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/uploads/cropped-cropped-%E5%AE%89%E6%A3%AE%E7%B6%B2%E7%AB%99logo.jpg
172.104.80.12302 Found 290 B URL HTTP/1.1 www.0979616027.com/wp-content/uploads/cropped-cropped-%E5%AE%89%E6%A3%AE%E7%B6%B2%E7%AB%99logo.jpg
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3860c90117359f5db5d43dd916b30f1a
f40224683d34dfeefa52140d988e667fb1450a81
1513d53d2da2dfd09b06cbcd8423e87ab483bc383dff500235a591546829becc
GET /wp-content/uploads/cropped-cropped-%E5%AE%89%E6%A3%AE%E7%B6%B2%E7%AB%99logo.jpg HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:15 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/uploads/cropped-cropped-%e5%ae%89%e6%a3%ae%e7%b6%b2%e7%ab%99logo.jpg
Content-Length: 290
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/uploads/%E6%83%A0%E5%AE%87%E6%9C%97%E5%BA%AD%E9%99%B3%E5%AE%89%E6%A3%AE%E5%B0%8F%E5%B0%8F.jpg
172.104.80.12302 Found 315 B URL HTTP/1.1 www.0979616027.com/wp-content/uploads/%E6%83%A0%E5%AE%87%E6%9C%97%E5%BA%AD%E9%99%B3%E5%AE%89%E6%A3%AE%E5%B0%8F%E5%B0%8F.jpg
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash dbd91b62580d232d7e90714185988326
b3994fc6509d571cc2206d7801128dea80f27f09
992d0920fdbac39326051775613bba9a2de1a3ee3486119fc717cf753f704990
GET /wp-content/uploads/%E6%83%A0%E5%AE%87%E6%9C%97%E5%BA%AD%E9%99%B3%E5%AE%89%E6%A3%AE%E5%B0%8F%E5%B0%8F.jpg HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:15 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/uploads/%e6%83%a0%e5%ae%87%e6%9c%97%e5%ba%ad%e9%99%b3%e5%ae%89%e6%a3%ae%e5%b0%8f%e5%b0%8f.jpg
Content-Length: 315
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-2.jpg
172.104.80.12302 Found 416 B URL HTTP/1.1 www.0979616027.com/wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-2.jpg
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 893025bf50dd29b0cce2fd210ae83876
c594bbd5c99e5eefca473cdac60c613a6b4d96a2
d3e47c2d7ae10a079f738bd3a4fe7cb89d052cb1e443426ce137b078413fc8f1
GET /wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-2.jpg HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:15 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/uploads/%e6%9d%be%e7%ab%b9%e9%a0%98%e8%88%aa%e7%ab%b9%e6%9c%88%e9%a4%a8_%e5%8f%b0%e4%b8%ad%e6%a9%9f%e6%8d%b7%e7%89%b9%e5%8d%80%e9%99%b3%e5%ae%89%e6%a3%ae_%e5%a5%bd%e5%b8%82%e5%a4%9a_COSTCO-2.jpg
Content-Length: 416
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.espy.min.js?ver=1.0.0
172.104.80.12200 OK 2.6 kB URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.espy.min.js?ver=1.0.0
IP 172.104.80.12:0
File type ASCII text, with very long lines (513)
Hash 3d30d6ed7ef1c8ac5b32b403b4506552
4ae6dc5582ba1ab25679a7d0b392fef5ac4e3c83
8b3b4f302e738a5e02bdb2e44933874c7f711b0ee5d25a3f61ab11bf04f84c85
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/js/jquery.espy.min.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:14 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "a3f-5cc153ecbed67"
accept-ranges: bytes
content-length: 2623
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.flipster.min.js?ver=1.0.0
172.104.80.12200 OK 18 kB URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.flipster.min.js?ver=1.0.0
IP 172.104.80.12:0
File type HTML document, ASCII text
Hash 22915cfc2f2446e61390c18ad1f30b01
b065b60474ee42bda04ecb37f61e4428e5b0f3df
902f2a3dde4ff5b49e607d32d791543d1f7e823604e26f2c5d4d4a83bbd5fd21
GET /wp-content/plugins/totalplus/public/js/jquery.flipster.min.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:14 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "481e-5cc153ecbfa6c"
accept-ranges: bytes
content-length: 18462
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/js/slick.js?ver=1.0.0
172.104.80.12200 OK 84 kB URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/js/slick.js?ver=1.0.0
IP 172.104.80.12:0
Hash 99cf8430b8d81c268269760118ec31a4
3fec23eeb6e45407f1fa1d38cf1cd3d463dd1f7a
430f384b0fc496d9650c747cca458a7eae062530c718aa7a896d99031fbbae8d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/js/slick.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:14 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "14929-5cc153ecbfa6c"
accept-ranges: bytes
content-length: 84265
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/360-image/dist/aframe-v1.0.4.min.js?ver=6.0.2
172.104.80.12200 OK 1.2 MB URL HTTP/2 www.0979616027.com/wp-content/plugins/360-image/dist/aframe-v1.0.4.min.js?ver=6.0.2
IP 172.104.80.12:0
File type ASCII text, with very long lines (22281)
Size 1.2 MB (1217609 bytes)
Hash 76a0b8d14fe354b1be6a69efcb48ec2a
3d2f553eda5dca3545520c80f974c7cbdd732342
beba40478b3ba38342e36b9f2713addf9c646224d19c88456f7b67e819297d9e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/360-image/dist/aframe-v1.0.4.min.js?ver=6.0.2 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:14 GMT
server: Apache
last-modified: Tue, 26 Oct 2021 19:00:02 GMT
etag: "129449-5cf4615b3a0c3"
accept-ranges: bytes
content-length: 1217609
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.accordion.js?ver=1.0.0
172.104.80.12200 OK 9.9 kB URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.accordion.js?ver=1.0.0
IP 172.104.80.12:0
Hash 052f63b949a23f8c313a2f51c7a6b93b
62affb00e4ba2d0dcbb4270808ae38f8cbb5ffa3
d1ecfc1b706009c8d8d762e85fbcde881f0828be52acc25ec6bbd818f1b9d38a
GET /wp-content/plugins/totalplus/public/js/jquery.accordion.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:15 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "2687-5cc153ecbfa6c"
accept-ranges: bytes
content-length: 9863
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.photostream.min.js?ver=1.0.0
172.104.80.12200 OK 987 B URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.photostream.min.js?ver=1.0.0
IP 172.104.80.12:0
File type ASCII text, with very long lines (857)
Hash 65740d67fe7e118f4bbb10485e5b85f5
4470c9ea96e41f9e3fdfdb8a813c679a94fc9954
4ae6e0978e051bdf5323d8524e95d6372700c828fa875290351e328d58f18dd5
GET /wp-content/plugins/totalplus/public/js/jquery.photostream.min.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:15 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "3db-5cc153ecbfa6c"
accept-ranges: bytes
content-length: 987
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.mCustomScrollbar.js?ver=1.0.0
172.104.80.12200 OK 46 kB URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/js/jquery.mCustomScrollbar.js?ver=1.0.0
IP 172.104.80.12:0
File type ASCII text, with very long lines (32001)
Hash 42a368e95b4a38989c8984c672d29ec0
70b2b29b138b9ddcdcbb58bd5d825f780eadcdfa
fd8027b53a97cbd5782e85c5908e563c39776703ff9279f50658e630927b4167
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/js/jquery.mCustomScrollbar.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:15 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "b1a7-5cc153ecbed67"
accept-ranges: bytes
content-length: 45479
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/js/theia-sticky-sidebar-js.js?ver=1.0.0
172.104.80.12200 OK 26 kB URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/js/theia-sticky-sidebar-js.js?ver=1.0.0
IP 172.104.80.12:0
Hash 154fd653645bbcfe88bd726a8c9c3e2e
3dac9dd60dc6dc3a663d05b217456a63633f2e08
38e5530e7609c438641e9eb7c075c332ff96964fb19ae68a63a724b5d4c44a6b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/js/theia-sticky-sidebar-js.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:15 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "63c4-5cc153ecbed67"
accept-ranges: bytes
content-length: 25540
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/js/mega-menu.js?ver=1.0.0
172.104.80.12200 OK 4.2 kB URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/js/mega-menu.js?ver=1.0.0
IP 172.104.80.12:0
Hash 2b8d4549c87772013cdbf68d5596306e
eb91e2b013c10c139ba648b741511b28255141d4
b351b9cd814133db0e4ca3bbc4e1d08810f9a6b80a64828e8dc73c2026a1eece
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/js/mega-menu.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:15 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "1052-5cc153ecbed67"
accept-ranges: bytes
content-length: 4178
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/js/totalplus-public.js?ver=1.0.0
172.104.80.12200 OK 40 kB URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/js/totalplus-public.js?ver=1.0.0
IP 172.104.80.12:0
Hash 1d83640b1e06393a467910ff7749bb53
cf3a8eaab64156474efc1a1a2c60f354b7b1666c
9184e6e50ed213769c354f109f7df9cd83a103f6eeb6fef8905619d9440d34c4
GET /wp-content/plugins/totalplus/public/js/totalplus-public.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:15 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "9bd7-5cc153ecbed67"
accept-ranges: bytes
content-length: 39895
content-type: application/javascript
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce25d3c5-b755-430d-b6d0-23fad3078dbd.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce25d3c5-b755-430d-b6d0-23fad3078dbd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ca76593aa217eb69a58ed89610d9d59d
d09f2d5acd5945620a2a51d72411c3c464a5166e
7b31c12dad70a30defa8924061b635410d8b2a59e90819c8707ee6d0b5acc98e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce25d3c5-b755-430d-b6d0-23fad3078dbd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7029
x-amzn-requestid: 188bfede-89d9-42f9-914b-13a330675370
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUIxLHkBIAMFrrQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e54d4-44c167dd64d1756c0280a759;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qbhdBjUA4GNK7U8VQYUPDynJ58slL5aG1bZMDdXc8IKeg0KwZeqn2Q==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 21:55:55 GMT
age: 43041
etag: "d09f2d5acd5945620a2a51d72411c3c464a5166e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/uploads/cropped-cropped-%e5%ae%89%e6%a3%ae%e7%b6%b2%e7%ab%99logo.jpg
172.104.80.12200 OK 43 kB URL HTTP/2 www.0979616027.com/wp-content/uploads/cropped-cropped-%e5%ae%89%e6%a3%ae%e7%b6%b2%e7%ab%99logo.jpg
IP 172.104.80.12:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 301x301, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=3507, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=4960], baseline, precision 8, 512x512, components 3\012- data
Hash 5d6723f79eb41d0cf2e25c8ad8e069c5
fa7e72cfe87cf25d7b700de33cf6d60525b36df9
f05a11bd5faeda31caee4ce5bdcf055124301446ef71be40722b7cd7abea7d1c
GET /wp-content/uploads/cropped-cropped-%e5%ae%89%e6%a3%ae%e7%b6%b2%e7%ab%99logo.jpg HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:15 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:35:35 GMT
etag: "a986-5cc1558938197"
accept-ranges: bytes
content-length: 43398
content-type: image/jpeg
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
142.250.74.163200 OK 7.9 kB URL HTTP/1.1 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.0979616027.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 7884
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 08 Sep 2022 00:26:16 GMT
Expires: Fri, 08 Sep 2023 00:26:16 GMT
Cache-Control: public, max-age=31536000
Age: 379620
Last-Modified: Wed, 27 Apr 2022 17:03:52 GMT
Content-Type: font/woff2
www.google.com/maps/embed?pb=!1m21!1m12!1m3!1d3969.104903825674!2d120.7044343845612!3d24.182769090880345!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!4m6!3e2!4m0!4m3!3m2!1d24.1836515!2d120.7057347!5e0!3m2!1szh-TW!2stw!4v1590134797841!5m2!1szh-TW!2stw
142.250.74.164403 Forbidden 126 B URL HTTP/1.1 www.google.com/maps/embed?pb=!1m21!1m12!1m3!1d3969.104903825674!2d120.7044343845612!3d24.182769090880345!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!4m6!3e2!4m0!4m3!3m2!1d24.1836515!2d120.7057347!5e0!3m2!1szh-TW!2stw!4v1590134797841!5m2!1szh-TW!2stw
IP 142.250.74.164:0
File type ASCII text, with no line terminators
Hash bd49981dcfdd86f7e5e334255ca5be0a
46999827850b871e6ee5193385fd4367d4cbddf0
155a5188f43a39738f2254a9071007de63f0567fa3fe5f4f837ba23e9a2ff747
GET /maps/embed?pb=!1m21!1m12!1m3!1d3969.104903825674!2d120.7044343845612!3d24.182769090880345!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!4m6!3e2!4m0!4m3!3m2!1d24.1836515!2d120.7057347!5e0!3m2!1szh-TW!2stw!4v1590134797841!5m2!1szh-TW!2stw HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 403 Forbidden
Content-Type: text/plain; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Mon, 12 Sep 2022 09:53:16 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Vary: Accept-Language
Content-Encoding: gzip
Server: mafe
Content-Length: 126
X-XSS-Protection: 0
Server-Timing: gfet4t7; dur=1
fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
142.250.74.163200 OK 25 kB URL HTTP/1.1 fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 25372, version 1.0\012- data
Hash fe424f96cb627d8b835cb001af17f56e
c5b4368fed99812a99036fba86d01367b5549505
35c92598a5f32c018dc630f57b183b0284c211ce9c222e5b36840a62115262f1
GET /s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.0979616027.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 25372
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Sep 2022 03:38:58 GMT
Expires: Wed, 06 Sep 2023 03:38:58 GMT
Cache-Control: public, max-age=31536000
Age: 540858
Last-Modified: Mon, 18 Jul 2022 19:24:05 GMT
Content-Type: font/woff2
pixel.wp.com/g.gif?v=ext&j=1%3A11.3.1&blog=174803360&post=3224&tz=8&srv=www.0979616027.com&host=www.0979616027.com&ref=&fcp=0&rand=0.1508569929395146
192.0.76.3200 OK 50 B URL HTTP/1.1 pixel.wp.com/g.gif?v=ext&j=1%3A11.3.1&blog=174803360&post=3224&tz=8&srv=www.0979616027.com&host=www.0979616027.com&ref=&fcp=0&rand=0.1508569929395146
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&j=1%3A11.3.1&blog=174803360&post=3224&tz=8&srv=www.0979616027.com&host=www.0979616027.com&ref=&fcp=0&rand=0.1508569929395146 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Sep 2022 09:53:16 GMT
Content-Type: image/gif
Content-Length: 50
Connection: keep-alive
Cache-Control: no-cache
Access-Control-Allow-Origin: *
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
142.250.74.163200 OK 7.8 kB URL HTTP/1.1 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.0979616027.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 7816
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 07 Sep 2022 23:15:01 GMT
Expires: Thu, 07 Sep 2023 23:15:01 GMT
Cache-Control: public, max-age=31536000
Age: 383895
Last-Modified: Wed, 27 Apr 2022 16:11:40 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/poppins/v20/pxiGyp8kv8JHgFVrJJLucHtA.woff2
142.250.74.163200 OK 8.7 kB URL HTTP/1.1 fonts.gstatic.com/s/poppins/v20/pxiGyp8kv8JHgFVrJJLucHtA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 8668, version 1.0\012- data
Hash a242ba0df3a128a2cab929a8c45d5056
d70e2c70b21cbb66cd883ae56e2dedacefd81c7c
50d0c1742d80ac71f4cde20e8c04d41a24806af342831f479938b527fbff0972
GET /s/poppins/v20/pxiGyp8kv8JHgFVrJJLucHtA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.0979616027.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 8668
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 08 Sep 2022 22:36:03 GMT
Expires: Fri, 08 Sep 2023 22:36:03 GMT
Cache-Control: public, max-age=31536000
Age: 299833
Last-Modified: Wed, 27 Apr 2022 16:07:02 GMT
Content-Type: font/woff2
www.0979616027.com/wp-content/uploads/%e6%9d%be%e7%ab%b9%e9%a0%98%e8%88%aa%e7%ab%b9%e6%9c%88%e9%a4%a8_%e5%8f%b0%e4%b8%ad%e6%a9%9f%e6%8d%b7%e7%89%b9%e5%8d%80%e9%99%b3%e5%ae%89%e6%a3%ae_%e5%a5%bd%e5%b8%82%e5%a4%9a_COSTCO-1-1536x768.jpg
172.104.80.12200 OK 324 kB URL HTTP/2 www.0979616027.com/wp-content/uploads/%e6%9d%be%e7%ab%b9%e9%a0%98%e8%88%aa%e7%ab%b9%e6%9c%88%e9%a4%a8_%e5%8f%b0%e4%b8%ad%e6%a9%9f%e6%8d%b7%e7%89%b9%e5%8d%80%e9%99%b3%e5%ae%89%e6%a3%ae_%e5%a5%bd%e5%b8%82%e5%a4%9a_COSTCO-1-1536x768.jpg
IP 172.104.80.12:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1536x768, components 3\012- data
Size 324 kB (323551 bytes)
Hash a08a4a4defc286dc2df3c387fdf5b5dd
ba68d7601222da6d658300c156372c60abfe57fb
1f69daed9a1a111c3b492718951880ec2b9e3c407d99c38701c20bf3d4915160
GET /wp-content/uploads/%e6%9d%be%e7%ab%b9%e9%a0%98%e8%88%aa%e7%ab%b9%e6%9c%88%e9%a4%a8_%e5%8f%b0%e4%b8%ad%e6%a9%9f%e6%8d%b7%e7%89%b9%e5%8d%80%e9%99%b3%e5%ae%89%e6%a3%ae_%e5%a5%bd%e5%b8%82%e5%a4%9a_COSTCO-1-1536x768.jpg HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:15 GMT
server: Apache
last-modified: Mon, 12 Apr 2021 03:28:46 GMT
etag: "4efdf-5bfbe1c79f780"
accept-ranges: bytes
content-length: 323551
content-type: image/jpeg
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-4-1536x1511.jpg
172.104.80.12302 Found 426 B URL HTTP/1.1 www.0979616027.com/wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-4-1536x1511.jpg
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6de01cf863bfafcd7ea4c7f4cd65f3f4
d4464a429afe54763e8ee56cf30f171af6bade46
bb01e09357d526b387cd95b5a2b454d3d901826de4c91c454005b66561c47389
GET /wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-4-1536x1511.jpg HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:16 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/uploads/%e6%9d%be%e7%ab%b9%e9%a0%98%e8%88%aa%e7%ab%b9%e6%9c%88%e9%a4%a8_%e5%8f%b0%e4%b8%ad%e6%a9%9f%e6%8d%b7%e7%89%b9%e5%8d%80%e9%99%b3%e5%ae%89%e6%a3%ae_%e5%a5%bd%e5%b8%82%e5%a4%9a_COSTCO-4-1536x1511.jpg
Content-Length: 426
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/uploads/%e6%83%a0%e5%ae%87%e6%9c%97%e5%ba%ad%e9%99%b3%e5%ae%89%e6%a3%ae%e5%b0%8f%e5%b0%8f.jpg
172.104.80.12200 OK 451 kB URL HTTP/2 www.0979616027.com/wp-content/uploads/%e6%83%a0%e5%ae%87%e6%9c%97%e5%ba%ad%e9%99%b3%e5%ae%89%e6%a3%ae%e5%b0%8f%e5%b0%8f.jpg
IP 172.104.80.12:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Macintosh), datetime=2021:09:12 00:01:45], baseline, precision 8, 1024x500, components 3\012- data
Size 451 kB (451236 bytes)
Hash 22555842906e8552c6a94442c2b8584e
d4f366181d155d30818782f0e937e0f38029e078
de13131ddacb8eae8e3c0be2091daaf01da5bc4cd087f93da24573fce2483d7f
GET /wp-content/uploads/%e6%83%a0%e5%ae%87%e6%9c%97%e5%ba%ad%e9%99%b3%e5%ae%89%e6%a3%ae%e5%b0%8f%e5%b0%8f.jpg HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:15 GMT
server: Apache
last-modified: Sat, 11 Sep 2021 15:58:03 GMT
etag: "6e2a4-5cbba4c0e249e"
accept-ranges: bytes
content-length: 451236
content-type: image/jpeg
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/uploads/%e5%a4%a7%e5%9f%8e%e8%bf%8e%e5%a5%bd%e4%ba%8b%ef%bc%bf%e9%99%b3%e5%ae%89%e6%a3%ae.jpg
172.104.80.12200 OK 368 kB URL HTTP/2 www.0979616027.com/wp-content/uploads/%e5%a4%a7%e5%9f%8e%e8%bf%8e%e5%a5%bd%e4%ba%8b%ef%bc%bf%e9%99%b3%e5%ae%89%e6%a3%ae.jpg
IP 172.104.80.12:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=673, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1200], progressive, precision 8, 1200x673, components 3\012- data
Size 368 kB (367746 bytes)
Hash bf6d46e0f620bc34539daf3048122274
47ded62ce748f8fec120d05e680f1b38ce7de0b5
3c21e4720fac608f25bea9a76d7ec674576c02a08c07c97df2f3c48eb5479226
GET /wp-content/uploads/%e5%a4%a7%e5%9f%8e%e8%bf%8e%e5%a5%bd%e4%ba%8b%ef%bc%bf%e9%99%b3%e5%ae%89%e6%a3%ae.jpg HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:15 GMT
server: Apache
last-modified: Sun, 12 Sep 2021 08:31:51 GMT
etag: "59c82-5cbc82e284d3d"
accept-ranges: bytes
content-length: 367746
content-type: image/jpeg
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/uploads/%e5%8c%97%e5%b1%af%e6%a9%9f%e6%8d%b7%e5%b0%81%e9%9d%a2-scaled.jpg
172.104.80.12200 OK 1.3 MB URL HTTP/2 www.0979616027.com/wp-content/uploads/%e5%8c%97%e5%b1%af%e6%a9%9f%e6%8d%b7%e5%b0%81%e9%9d%a2-scaled.jpg
IP 172.104.80.12:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 2560x1707, components 3\012- data
Size 1.3 MB (1265160 bytes)
Hash 0f86e0f2ee439fe5533aa4c9b25fcbf1
5781dc5fb893d14692dedea98b6ae6420a21285a
2a6f29e21dcde77b4ffe41a911eb9ca92de093c4f945ae87375fb6957ce61edb
GET /wp-content/uploads/%e5%8c%97%e5%b1%af%e6%a9%9f%e6%8d%b7%e5%b0%81%e9%9d%a2-scaled.jpg HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:15 GMT
server: Apache
last-modified: Mon, 12 Apr 2021 03:18:02 GMT
etag: "134e08-5bfbdf6174e80"
accept-ranges: bytes
content-length: 1265160
content-type: image/jpeg
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/uploads/%E7%A2%A7%E6%9F%B3%E6%AE%B5%E7%A9%BA%E6%8B%8D%E7%A4%BE%E5%8D%80_%E8%B2%B7%E6%A9%9F%E6%8D%B7%E6%89%BE%E5%AE%89%E6%A3%AE.jpg
172.104.80.12302 Found 352 B URL HTTP/1.1 www.0979616027.com/wp-content/uploads/%E7%A2%A7%E6%9F%B3%E6%AE%B5%E7%A9%BA%E6%8B%8D%E7%A4%BE%E5%8D%80_%E8%B2%B7%E6%A9%9F%E6%8D%B7%E6%89%BE%E5%AE%89%E6%A3%AE.jpg
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 398b9596aa9b38a256316dfe2105d4de
2482c5881e193732b152a2fc4ce44a88d76652d5
1d1fbe2499895a04d5af894793ce85ff528cb2b90a16793ec3d10e8f26a33c3d
GET /wp-content/uploads/%E7%A2%A7%E6%9F%B3%E6%AE%B5%E7%A9%BA%E6%8B%8D%E7%A4%BE%E5%8D%80_%E8%B2%B7%E6%A9%9F%E6%8D%B7%E6%89%BE%E5%AE%89%E6%A3%AE.jpg HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:16 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/uploads/%e7%a2%a7%e6%9f%b3%e6%ae%b5%e7%a9%ba%e6%8b%8d%e7%a4%be%e5%8d%80_%e8%b2%b7%e6%a9%9f%e6%8d%b7%e6%89%be%e5%ae%89%e6%a3%ae.jpg
Content-Length: 352
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/uploads/%E7%B7%9A%E6%A2%9D-2.jpg
172.104.80.12302 Found 254 B URL HTTP/1.1 www.0979616027.com/wp-content/uploads/%E7%B7%9A%E6%A2%9D-2.jpg
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 19501084dae9c01b6cec61ff8f4d8789
cbe5043e83f1f576422420d07573296ed56421ab
bb1ce36cf58b8828e91c3ef707c4cb799519a311fcc6618e23d09e448eed02f0
GET /wp-content/uploads/%E7%B7%9A%E6%A2%9D-2.jpg HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:16 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/uploads/%e7%b7%9a%e6%a2%9d-2.jpg
Content-Length: 254
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-16.jpg
172.104.80.12302 Found 417 B URL HTTP/1.1 www.0979616027.com/wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-16.jpg
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fdadc573836b232a5d297d108c8d83cf
3d4d74b4e401d3fabc1b483063d3c4a3bbc72339
9bd541aa74db9cee13283fb0f69900fb6346c8e47918ea02849c3f486ec6ac38
GET /wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-16.jpg HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:16 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/uploads/%e6%9d%be%e7%ab%b9%e9%a0%98%e8%88%aa%e7%ab%b9%e6%9c%88%e9%a4%a8_%e5%8f%b0%e4%b8%ad%e6%a9%9f%e6%8d%b7%e7%89%b9%e5%8d%80%e9%99%b3%e5%ae%89%e6%a3%ae_%e5%a5%bd%e5%b8%82%e5%a4%9a_COSTCO-16.jpg
Content-Length: 417
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-5.jpg
172.104.80.12302 Found 416 B URL HTTP/1.1 www.0979616027.com/wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-5.jpg
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ee9195aad9366cc9050fd88e8867ea52
c583acf17c4edf05e18085eed41c57beafdf9d32
f5cc260d573a7b71a53c9bff73c6bcd290f72ff843f0a7239c3145a177f01afe
GET /wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-5.jpg HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:16 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/uploads/%e6%9d%be%e7%ab%b9%e9%a0%98%e8%88%aa%e7%ab%b9%e6%9c%88%e9%a4%a8_%e5%8f%b0%e4%b8%ad%e6%a9%9f%e6%8d%b7%e7%89%b9%e5%8d%80%e9%99%b3%e5%ae%89%e6%a3%ae_%e5%a5%bd%e5%b8%82%e5%a4%9a_COSTCO-5.jpg
Content-Length: 416
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-6.jpg
172.104.80.12302 Found 416 B URL HTTP/1.1 www.0979616027.com/wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-6.jpg
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6aa48a5abfda821ddbd061f9a2e37c02
f2ee4327e86409ae43b71b3bb11671ea162ef5fb
9ba40a6defe584d309776d67d7004999f34b00a4b0e6d01550ca9d9710b5181b
GET /wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-6.jpg HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:16 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/uploads/%e6%9d%be%e7%ab%b9%e9%a0%98%e8%88%aa%e7%ab%b9%e6%9c%88%e9%a4%a8_%e5%8f%b0%e4%b8%ad%e6%a9%9f%e6%8d%b7%e7%89%b9%e5%8d%80%e9%99%b3%e5%ae%89%e6%a3%ae_%e5%a5%bd%e5%b8%82%e5%a4%9a_COSTCO-6.jpg
Content-Length: 416
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-3.jpg
172.104.80.12302 Found 416 B URL HTTP/1.1 www.0979616027.com/wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-3.jpg
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 804e85a3e2e90230b24b3dbbdee729df
e38f409110ceaf31e13bc137e837dbf6f2760a4c
9b83af5088a95e09d5cd0353dbef45d2b18838a0d51d3d94236971e72e4b2886
GET /wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-3.jpg HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:16 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/uploads/%e6%9d%be%e7%ab%b9%e9%a0%98%e8%88%aa%e7%ab%b9%e6%9c%88%e9%a4%a8_%e5%8f%b0%e4%b8%ad%e6%a9%9f%e6%8d%b7%e7%89%b9%e5%8d%80%e9%99%b3%e5%ae%89%e6%a3%ae_%e5%a5%bd%e5%b8%82%e5%a4%9a_COSTCO-3.jpg
Content-Length: 416
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-15.jpg
172.104.80.12302 Found 417 B URL HTTP/1.1 www.0979616027.com/wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-15.jpg
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5b4e28812311925812109f141034f9fc
36134681f796c4b14de98b191556ab50c83d59d9
d049f1a5a8d4dbe59599e0444305c1e290cc45f74cb161e2cf1637a03ad7c7ca
GET /wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-15.jpg HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:16 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/uploads/%e6%9d%be%e7%ab%b9%e9%a0%98%e8%88%aa%e7%ab%b9%e6%9c%88%e9%a4%a8_%e5%8f%b0%e4%b8%ad%e6%a9%9f%e6%8d%b7%e7%89%b9%e5%8d%80%e9%99%b3%e5%ae%89%e6%a3%ae_%e5%a5%bd%e5%b8%82%e5%a4%9a_COSTCO-15.jpg
Content-Length: 417
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-7.jpg
172.104.80.12302 Found 416 B URL HTTP/1.1 www.0979616027.com/wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-7.jpg
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ef87eecc5e8b7d239c2ffdeffacc8dab
7c8bc853c3ad4134c22d14341c2f15145f710bbf
606a58138da62671473e18ffdf6e4005a243c804c1eb220a6c2352b2cd5a708b
GET /wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-7.jpg HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:17 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/uploads/%e6%9d%be%e7%ab%b9%e9%a0%98%e8%88%aa%e7%ab%b9%e6%9c%88%e9%a4%a8_%e5%8f%b0%e4%b8%ad%e6%a9%9f%e6%8d%b7%e7%89%b9%e5%8d%80%e9%99%b3%e5%ae%89%e6%a3%ae_%e5%a5%bd%e5%b8%82%e5%a4%9a_COSTCO-7.jpg
Content-Length: 416
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-8.jpg
172.104.80.12302 Found 416 B URL HTTP/1.1 www.0979616027.com/wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-8.jpg
IP 172.104.80.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ca6f6ece08a01c8ad38e3e6833496fd4
803348fa16abc1c3390d159c74e4bf298b8321a6
f857d98bcdd11716f4e8365300b5dc82a091848617ca186d432c2c6c29888d25
GET /wp-content/uploads/%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA%E7%AB%B9%E6%9C%88%E9%A4%A8_%E5%8F%B0%E4%B8%AD%E6%A9%9F%E6%8D%B7%E7%89%B9%E5%8D%80%E9%99%B3%E5%AE%89%E6%A3%AE_%E5%A5%BD%E5%B8%82%E5%A4%9A_COSTCO-8.jpg HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.0979616027.com/2020/05/%E3%80%8C%E6%9D%BE%E7%AB%B9%E9%A0%98%E8%88%AA-%E7%AB%B9%E6%9C%88%E9%A4%A8%E3%80%8D%E5%A4%9A%E5%9C%96%E3%80%82%E7%A4%BE%E5%8D%80%E4%BB%8B%E7%B4%B9%E5%BF%83%E5%BE%97%E3%80%82%E6%88%BF%E4%BB%B2%E6%8E%A8/
HTTP/1.1 302 Found
Date: Mon, 12 Sep 2022 09:53:17 GMT
Server: Apache
Location: https://www.0979616027.com/wp-content/uploads/%e6%9d%be%e7%ab%b9%e9%a0%98%e8%88%aa%e7%ab%b9%e6%9c%88%e9%a4%a8_%e5%8f%b0%e4%b8%ad%e6%a9%9f%e6%8d%b7%e7%89%b9%e5%8d%80%e9%99%b3%e5%ae%89%e6%a3%ae_%e5%a5%bd%e5%b8%82%e5%a4%9a_COSTCO-8.jpg
Content-Length: 416
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.0979616027.com/wp-includes/css/dist/components/style.min.css?ver=6.0.2
172.104.80.12200 OK 0 B URL HTTP/2 www.0979616027.com/wp-includes/css/dist/components/style.min.css?ver=6.0.2
IP 172.104.80.12:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/components/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:13 GMT
server: Apache
last-modified: Wed, 25 May 2022 06:58:29 GMT
etag: "19b81-5dfd099c6b17d"
accept-ranges: bytes
content-length: 105345
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/jetpack/css/jetpack.css?ver=11.3.1
172.104.80.12200 OK 0 B URL HTTP/2 www.0979616027.com/wp-content/plugins/jetpack/css/jetpack.css?ver=11.3.1
IP 172.104.80.12:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jetpack/css/jetpack.css?ver=11.3.1 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:14 GMT
server: Apache
last-modified: Fri, 09 Sep 2022 19:00:59 GMT
etag: "14eba-5e8432a9e453e"
accept-ranges: bytes
content-length: 85690
content-type: text/css
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/plugins/totalplus/public/js/theia-sticky-sidebar.js?ver=1.0.0
172.104.80.12200 OK 0 B URL HTTP/2 www.0979616027.com/wp-content/plugins/totalplus/public/js/theia-sticky-sidebar.js?ver=1.0.0
IP 172.104.80.12:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/totalplus/public/js/theia-sticky-sidebar.js?ver=1.0.0 HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:15 GMT
server: Apache
last-modified: Thu, 16 Sep 2021 04:28:23 GMT
etag: "3fc5-5cc153ecbed67"
accept-ranges: bytes
content-length: 16325
content-type: application/javascript
X-Firefox-Spdy: h2
www.0979616027.com/wp-content/uploads/%e6%9d%be%e7%ab%b9%e9%a0%98%e8%88%aa%e7%ab%b9%e6%9c%88%e9%a4%a8_%e5%8f%b0%e4%b8%ad%e6%a9%9f%e6%8d%b7%e7%89%b9%e5%8d%80%e9%99%b3%e5%ae%89%e6%a3%ae_%e5%a5%bd%e5%b8%82%e5%a4%9a_COSTCO-2.jpg
172.104.80.12200 OK 0 B URL HTTP/2 www.0979616027.com/wp-content/uploads/%e6%9d%be%e7%ab%b9%e9%a0%98%e8%88%aa%e7%ab%b9%e6%9c%88%e9%a4%a8_%e5%8f%b0%e4%b8%ad%e6%a9%9f%e6%8d%b7%e7%89%b9%e5%8d%80%e9%99%b3%e5%ae%89%e6%a3%ae_%e5%a5%bd%e5%b8%82%e5%a4%9a_COSTCO-2.jpg
IP 172.104.80.12:0
GET /wp-content/uploads/%e6%9d%be%e7%ab%b9%e9%a0%98%e8%88%aa%e7%ab%b9%e6%9c%88%e9%a4%a8_%e5%8f%b0%e4%b8%ad%e6%a9%9f%e6%8d%b7%e7%89%b9%e5%8d%80%e9%99%b3%e5%ae%89%e6%a3%ae_%e5%a5%bd%e5%b8%82%e5%a4%9a_COSTCO-2.jpg HTTP/1.1
Host: www.0979616027.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.0979616027.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 09:53:15 GMT
server: Apache
last-modified: Mon, 12 Apr 2021 03:13:54 GMT
etag: "1536f5-5bfbde74f2080"
accept-ranges: bytes
content-length: 1390325
content-type: image/jpeg
X-Firefox-Spdy: h2