r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4325
Expires: Sun, 29 Jan 2023 04:23:28 GMT
Date: Sun, 29 Jan 2023 03:11:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3931
Expires: Sun, 29 Jan 2023 04:16:54 GMT
Date: Sun, 29 Jan 2023 03:11:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16290
Expires: Sun, 29 Jan 2023 07:42:53 GMT
Date: Sun, 29 Jan 2023 03:11:23 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 02:43:07 GMT
content-type: application/json
age: 1696
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: vFBYlIXbSr9Dtj/v04koaNUySMcrFM6JwjLuNUS89rtM58GOTx/b1qpFrrYjlFFF3MNgQItjH/M=
x-amz-request-id: ZXCNSY34369ZDPYC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 02:50:09 GMT
age: 1274
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 03:11:24 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.workingtogethercol.org/inbox/Bofa/verify.php
45.33.119.221301 Moved Permanently 0 B URL HTTP/1.1 www.workingtogethercol.org/inbox/Bofa/verify.php
IP 45.33.119.221:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /inbox/Bofa/verify.php HTTP/1.1
Host: www.workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 29 Jan 2023 03:11:23 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://workingtogethercol.org/inbox/Bofa/verify.php
Content-Length: 0
Keep-Alive: timeout=5, max=100
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 02:49:03 GMT
age: 1341
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2668
Expires: Sun, 29 Jan 2023 03:55:52 GMT
Date: Sun, 29 Jan 2023 03:11:24 GMT
Connection: keep-alive
push.services.mozilla.com/
35.164.121.101101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.164.121.101:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: OEcYx9VourvRsHuKd9L1FA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: i2NUXXGcm80vV7Iwshzzb6zbxjs=
fonts.googleapis.com/css?family=Open+Sans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%7COswald%3A300%2C400%2C700&subset=latin%2Clatin-ext&ver=6.1.1
142.250.74.74200 OK 1.2 kB URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%7COswald%3A300%2C400%2C700&subset=latin%2Clatin-ext&ver=6.1.1
IP 142.250.74.74:0
Hash 318d90a4ac0d8282a039e224d18c9b48
deb10484e709533c740eabdbd448b178ef5b8c5d
4e7ce9ac7f4ad13ee6f6f6e8b78e3657a2aacaabc3bc459a583314c02d7f3112
GET /css?family=Open+Sans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%7COswald%3A300%2C400%2C700&subset=latin%2Clatin-ext&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 29 Jan 2023 03:11:25 GMT
Date: Sun, 29 Jan 2023 03:11:25 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
workingtogethercol.org/inbox/Bofa/verify.php
45.33.119.221404 Not Found 64 kB URL HTTP/1.1 workingtogethercol.org/inbox/Bofa/verify.php
IP 45.33.119.221:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash df89d4c7a8e659454a736e9f273bda27
50b7b44935ffdae90bef570908bcf63df05ba0b1
3e68b6ca0ddb2d0f158cb421a9fa9c54d3a1ba60e07937df80089f47337d6698
Analyzer Verdict Alert fortinet Phishing
GET /inbox/Bofa/verify.php HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Date: Sun, 29 Jan 2023 03:11:24 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://workingtogethercol.org/wp-json/>; rel="https://api.w.org/"
X-TEC-API-VERSION: v1
X-TEC-API-ROOT: https://workingtogethercol.org/wp-json/tribe/events/v1/
X-TEC-API-ORIGIN: https://workingtogethercol.org
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
workingtogethercol.org/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=9.1.5
45.33.119.221200 OK 10 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=9.1.5
IP 45.33.119.221:0
File type ASCII text, with very long lines (10435), with no line terminators
Hash 27a91498e22d4778e559dd13a12c6ab6
9868807cc628fab1cc5ccb6f6c53934e6e9303b4
4a25eb6972f4a513da7ead5d8c0f74832ed42b1ae5e1f13ed3ea36f0865a59c9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=9.1.5 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 13 Jan 2023 21:04:46 GMT
Accept-Ranges: bytes
Content-Length: 10435
Keep-Alive: timeout=5, max=100
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
45.33.119.221200 OK 2.6 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
IP 45.33.119.221:0
File type ASCII text, with very long lines (2630), with no line terminators
Hash eade318fbed91c096467dffa56406638
69d306a2097e792f99c80a5e0bb8863260399cad
d589803f3ab380582ab137b22493c2bacaa92424fa88cee212e80288cac11fbb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 13 Jan 2023 21:05:24 GMT
Accept-Ranges: bytes
Content-Length: 2630
Keep-Alive: timeout=5, max=100
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6
45.33.119.221200 OK 9.3 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6
IP 45.33.119.221:0
File type ASCII text, with very long lines (9281), with no line terminators
Hash 57a347480fbe0b3d235993f4f1ec3b2c
ec01673e887c236765156496c7d00111238554d8
9097a2c579616889e829be95554ebf90ec5900045f4d2282cce31d5a999acc03
GET /wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:04:47 GMT
Accept-Ranges: bytes
Content-Length: 9281
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0
45.33.119.221200 OK 31 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0
IP 45.33.119.221:0
File type ASCII text, with very long lines (30441)
Hash d3ec229e04c8634c88cc4cb3f2934c11
785cb4beecaad98329fff0a54f9a5536cda200ab
73835f9dd494931cd0562ab2d4db8aaf3d54dca375abade1794ad1a12ae0d97c
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 13 Jan 2023 21:05:24 GMT
Accept-Ranges: bytes
Content-Length: 30603
Keep-Alive: timeout=5, max=100
Content-Type: text/css
workingtogethercol.org/wp-includes/css/classic-themes.min.css?ver=1
45.33.119.221200 OK 217 B URL HTTP/1.1 workingtogethercol.org/wp-includes/css/classic-themes.min.css?ver=1
IP 45.33.119.221:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:34:06 GMT
Accept-Ranges: bytes
Content-Length: 217
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
45.33.119.221200 OK 19 kB URL HTTP/1.1 workingtogethercol.org/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 45.33.119.221:0
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:34:06 GMT
Accept-Ranges: bytes
Content-Length: 18617
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
45.33.119.221200 OK 95 kB URL HTTP/1.1 workingtogethercol.org/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 45.33.119.221:0
File type ASCII text, with very long lines (47826)
Hash 71d925864153f0edf91037f3d31048e8
cc16a0524ac63b5ce29f703a66412224f0dd771a
c324ef26b20264369e4568dc9ef1c5cb1f325f6bc4e8b7c01f7fe93fa353276a
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 13 Jan 2023 21:34:06 GMT
Accept-Ranges: bytes
Content-Length: 94889
Keep-Alive: timeout=5, max=100
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.17.0
45.33.119.221200 OK 29 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.17.0
IP 45.33.119.221:0
File type ASCII text, with very long lines (29337), with no line terminators
Hash 4de6dfc6ff180e33262861a679d40546
8de11c7f99e413282baa349d11657ccd2c468d4f
3e61990964ebd31443be4e6598163ebd71b73b139c42d52547b8a290f7d059ca
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.17.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:05:24 GMT
Accept-Ranges: bytes
Content-Length: 29337
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2
45.33.119.221200 OK 2.8 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2
IP 45.33.119.221:0
Hash 443a0083792b1ca61e8116184cb5901e
03c1b038741f1e9e75d3d7b006d6e3b2744e0b85
9a38595d63dfae35b88183515b69f8b742128b564b9ea4dbd79908c3aa73921a
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:13:14 GMT
Accept-Ranges: bytes
Content-Length: 2803
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.14
45.33.119.221200 OK 13 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.14
IP 45.33.119.221:0
Hash 4045fbc98e0caae7e213f52330c52c21
253b81dc846081e189174789220a296d96849681
168642741cf6acd34501d09c8cc1c7e6be332ca9222f3223419bd1664b381839
GET /wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.14 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:26 GMT
Accept-Ranges: bytes
Content-Length: 12663
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/trx_addons/js/swiper/swiper.css
45.33.119.221200 OK 20 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/trx_addons/js/swiper/swiper.css
IP 45.33.119.221:0
File type ASCII text, with very long lines (1468), with CRLF line terminators
Hash 743fe7521d0b6e061e08b8a0b9b68d03
4a734584e843d64b9af3c6e208172275fbed152a
03dd1f03727f2ab5db6796a4dbdbb0f30ca200a1ea626295ef346920e840c674
GET /wp-content/plugins/trx_addons/js/swiper/swiper.css HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:25 GMT
Accept-Ranges: bytes
Content-Length: 20516
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/uploads/2017/01/logo.png
45.33.119.221200 OK 8.8 kB URL HTTP/2 workingtogethercol.org/wp-content/uploads/2017/01/logo.png
IP 45.33.119.221:0
File type PNG image data, 182 x 85, 8-bit/color RGBA, non-interlaced\012- data
Hash e33aca5009a91149633dec607a50e3a2
1cbb109ee14eff341df094f4ee26cd1d8aa2393a
d3cdd2cc46e5040cf1cf95a3a00bb75a7fcb7e620f1b59d5fc31a45f506aa260
GET /wp-content/uploads/2017/01/logo.png HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://workingtogethercol.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 31 Mar 2022 19:05:49 GMT
accept-ranges: bytes
content-length: 8796
content-type: image/png
date: Sun, 29 Jan 2023 03:11:25 GMT
server: Apache
X-Firefox-Spdy: h2
workingtogethercol.org/wp-content/plugins/trx_addons/js/magnific/magnific-popup.css
45.33.119.221200 OK 7.3 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/trx_addons/js/magnific/magnific-popup.css
IP 45.33.119.221:0
File type ASCII text, with CRLF line terminators
Hash c03fe8704d90e35eba342d2ca2c5a530
74a41372d833195b77dd9e167f82ca395cc4702d
1155981e8193622f58553eed0bba2fa43512af362a3d54dedef64c46970bb371
GET /wp-content/plugins/trx_addons/js/magnific/magnific-popup.css HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:25 GMT
Accept-Ranges: bytes
Content-Length: 7302
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/trx_addons/css/font-icons/css/trx_addons_icons-embedded.css?ver=6.1.1
45.33.119.221200 OK 160 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/trx_addons/css/font-icons/css/trx_addons_icons-embedded.css?ver=6.1.1
IP 45.33.119.221:0
File type ASCII text, with very long lines (57855), with CRLF line terminators
Size 160 kB (160406 bytes)
Hash e95d9e5356295f2f8be929e170635b18
adc69e32ac6988dcfb64026b39b5113b047642eb
c728923992680a35c6b82ac7140312a5a9a42d8f67ab23480fa2d5d87a2d0282
GET /wp-content/plugins/trx_addons/css/font-icons/css/trx_addons_icons-embedded.css?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:25 GMT
Accept-Ranges: bytes
Content-Length: 160406
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=9.1.5
45.33.119.221200 OK 244 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=9.1.5
IP 45.33.119.221:0
File type Unicode text, UTF-8 text, with very long lines (65528), with no line terminators
Size 244 kB (244272 bytes)
Hash 9beaa3b32b7ef001fd53b4dcb51bba51
23ddb50481a8f7201c0c2ef202365e459f0b1e34
f0272ed6fec23d7c96c4c63796d95bb3e47357443dc3d886491e7a0ebcf79938
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=9.1.5 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 13 Jan 2023 21:04:46 GMT
Accept-Ranges: bytes
Content-Length: 244272
Keep-Alive: timeout=5, max=100
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=3.0.14
45.33.119.221200 OK 52 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=3.0.14
IP 45.33.119.221:0
Hash 0980d41921dd19f587a756dfd37f7241
33e2dfde06f0d59907363cfd44e92530ec57d7da
55be0279a70e3fba10c1bac51f946a69e2d3dcf03c9e1ede467b7fd20e2e0f5d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=3.0.14 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:26 GMT
Accept-Ranges: bytes
Content-Length: 51945
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.3.0
45.33.119.221200 OK 18 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.3.0
IP 45.33.119.221:0
File type ASCII text, with very long lines (17809), with no line terminators
Hash 1ddf23fcfd1b2941c456ce01da8180a6
156ef5cc77061010e3f4123a47fa415c6391e5ff
dd18a408a35aa5d393458657eb24fb56ab754ece3f88bd78a038e5793d3f6991
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.3.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:04:47 GMT
Accept-Ranges: bytes
Content-Length: 17809
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/trx_addons/css/trx_addons.css
45.33.119.221200 OK 188 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/trx_addons/css/trx_addons.css
IP 45.33.119.221:0
File type ASCII text, with very long lines (65389)
Size 188 kB (187567 bytes)
Hash 4853fcc2572ae1fc20306eeb0f15ac59
5412cda5d96a895cf8c6e577794009f977aa0d3e
949d46afe08a3c56e8021dac0edd866a912bad6c548d284ddb99fddcc2e31241
GET /wp-content/plugins/trx_addons/css/trx_addons.css HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:25 GMT
Accept-Ranges: bytes
Content-Length: 187567
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.3.0
45.33.119.221200 OK 63 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.3.0
IP 45.33.119.221:0
File type Unicode text, UTF-8 text, with very long lines (62781), with no line terminators
Hash 4911ee48036e51ae4980b7be957d899f
e577252607817c3fdc773123f41220c8a910d95a
a831fbad3ff846921596056c21beb9c77328927cc84403156ec0fcfa330d338a
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.3.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:04:47 GMT
Accept-Ranges: bytes
Content-Length: 62783
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/trx_addons/css/trx_addons.animation.css?ver=6.1.1
45.33.119.221200 OK 86 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/trx_addons/css/trx_addons.animation.css?ver=6.1.1
IP 45.33.119.221:0
File type ASCII text, with CRLF line terminators
Hash d15378bff4238d25a916814f09dfedc2
659fce1e18a5a97762a0e7c4ca7f217c46581488
b321ff6d68390b2e2414b729d7e1836300ec0420cc34b7c0b4eef10ff1d3f3f1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/trx_addons/css/trx_addons.animation.css?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:25 GMT
Accept-Ranges: bytes
Content-Length: 85785
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21
45.33.119.221200 OK 3.8 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21
IP 45.33.119.221:0
Hash 9c6b63558e5de592c160563dbe08dd0d
e4969ab55cc566759623f6b4e1c7d6b3bcdc21cd
14a77bc82e039ce4be0d9ba9b0237495b0a9578d34eb92d444093d440f6190ba
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:05:06 GMT
Accept-Ranges: bytes
Content-Length: 3812
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/themes/save-life/css/font-face/GoodDog/stylesheet.css?ver=6.1.1
45.33.119.221200 OK 284 B URL HTTP/1.1 workingtogethercol.org/wp-content/themes/save-life/css/font-face/GoodDog/stylesheet.css?ver=6.1.1
IP 45.33.119.221:0
Hash 8e40f1e57ed67b7f3dc20d23ee0d1985
b97cf2b12ab4550ec6bd644ffaaf8dc53a7a5a13
c0a1bcf4b149ea89eb106cb7fd293f5cf07b380cb65513df57c76ca8bd713830
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/save-life/css/font-face/GoodDog/stylesheet.css?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:00:50 GMT
Accept-Ranges: bytes
Content-Length: 284
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/themes/save-life/style.css
45.33.119.221200 OK 132 kB URL HTTP/1.1 workingtogethercol.org/wp-content/themes/save-life/style.css
IP 45.33.119.221:0
Size 132 kB (131776 bytes)
Hash 70f4517c51fdf3f1ac174694c3c55525
bf0a48c0e57daa7446e286eec2ada54bf6be3b34
a70f8529e0d5674a3598c6fd07051f947df0d5c8da5c6d64125341a5a7317b47
GET /wp-content/themes/save-life/style.css HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:00:50 GMT
Accept-Ranges: bytes
Content-Length: 131776
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/themes/save-life/css/__styles.css?ver=6.1.1
45.33.119.221200 OK 221 kB URL HTTP/1.1 workingtogethercol.org/wp-content/themes/save-life/css/__styles.css?ver=6.1.1
IP 45.33.119.221:0
File type ASCII text, with very long lines (65384)
Size 221 kB (221232 bytes)
Hash 25c0e81931b9e802d3089002b7a22e89
588a7cebc2f4872330bdbdd52d37865ff77fbb15
ca825b0a58a96e930c5843e0fe305faf239f290af4821cd20218d6d3b114c63d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/save-life/css/__styles.css?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 20:42:24 GMT
Accept-Ranges: bytes
Content-Length: 221232
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/uploads/2022/03/Recurso-1.png
45.33.119.221200 OK 401 kB URL HTTP/2 workingtogethercol.org/wp-content/uploads/2022/03/Recurso-1.png
IP 45.33.119.221:0
File type PNG image data, 8258 x 2386, 8-bit/color RGBA, non-interlaced\012- data
Size 401 kB (401058 bytes)
Hash f110a19c91e51601399dc02bfcfecc6c
d3901bc993d875600d8dcaa29ad93f5028b5f850
e4257ab58fa510c157ae299ed44a0471c9fc1f107a2b94dc020d0e2bdefefca4
GET /wp-content/uploads/2022/03/Recurso-1.png HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://workingtogethercol.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 31 Mar 2022 20:05:00 GMT
accept-ranges: bytes
content-length: 401058
content-type: image/png
date: Sun, 29 Jan 2023 03:11:25 GMT
server: Apache
X-Firefox-Spdy: h2
workingtogethercol.org/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
45.33.119.221200 OK 11 kB URL HTTP/1.1 workingtogethercol.org/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP 45.33.119.221:0
File type ASCII text, with very long lines (11256), with no line terminators
Hash 2b0dd7eecea03b4bdedb94ba622fdb03
703becba85161118dd6fc66af465428ef43f561c
b7908a015a567ec2363011df2475368dbff34360e9da3fdff50604d6395fb646
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:34:06 GMT
Accept-Ranges: bytes
Content-Length: 11256
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
45.33.119.221200 OK 4.2 kB URL HTTP/1.1 workingtogethercol.org/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
IP 45.33.119.221:0
File type ASCII text, with very long lines (4186), with no line terminators
Hash ea958276b7de454bd3c2873f0dc47e5f
b143f6e8e8f79d8f104c26b0057ef5514d763219
2e10d353ff038c2cad3492fc17801af3e6ef2669c9e9713bdb78b1dcb104c4fe
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:34:06 GMT
Accept-Ranges: bytes
Content-Length: 4186
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/themes/save-life/css/responsive.css?ver=6.1.1
45.33.119.221200 OK 177 kB URL HTTP/1.1 workingtogethercol.org/wp-content/themes/save-life/css/responsive.css?ver=6.1.1
IP 45.33.119.221:0
File type assembler source, ASCII text, with very long lines (652)
Size 177 kB (177430 bytes)
Hash cb0b7321e6b92c01f8ab7676e3bf91b8
493da5bca82ebdeea57476050ac0a74a677d1736
1ade4319a9e4c5d8d3cc3e059c3a8d0587f773fb3def1872d01499847724126f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/save-life/css/responsive.css?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:00:50 GMT
Accept-Ranges: bytes
Content-Length: 177430
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
45.33.119.221200 OK 90 kB URL HTTP/1.1 workingtogethercol.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 45.33.119.221:0
File type ASCII text, with very long lines (65447)
Hash 17738318d61d394f1de8890d589afaec
f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:34:06 GMT
Accept-Ranges: bytes
Content-Length: 89684
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
45.33.119.221200 OK 11 kB URL HTTP/1.1 workingtogethercol.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 45.33.119.221:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:34:06 GMT
Accept-Ranges: bytes
Content-Length: 11224
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.3.0
45.33.119.221200 OK 9.5 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.3.0
IP 45.33.119.221:0
File type ASCII text, with very long lines (9111)
Hash 4ffc462852340d9e6b5b7b29276fcb71
5e04050e09e3f7d8107ef3b9aa9313be618c460e
18336635cd5e9edf2aff3ae18b67250684311c2a459457091b063dafba57d526
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.3.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:04:47 GMT
Accept-Ranges: bytes
Content-Length: 9505
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14448
Expires: Sun, 29 Jan 2023 07:12:14 GMT
Date: Sun, 29 Jan 2023 03:11:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14448
Expires: Sun, 29 Jan 2023 07:12:14 GMT
Date: Sun, 29 Jan 2023 03:11:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14448
Expires: Sun, 29 Jan 2023 07:12:14 GMT
Date: Sun, 29 Jan 2023 03:11:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14448
Expires: Sun, 29 Jan 2023 07:12:14 GMT
Date: Sun, 29 Jan 2023 03:11:26 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: e6e0789c-a4a9-4ffa-a0ae-691770d1035b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPF9YEBmIAMF0kQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8388-01d2093432d3959903671a69;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:06:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: awfNeaKbFw2bjiTGwUrwUTxU-qbVS2eTjn948H8kn1hy7pi_DwLMlQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 17:35:56 GMT
age: 34530
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6af6f32397882f56d14d22348e44a9f1
5a626376807e7507fa3a204c4e4e9e44aa074a37
478f32e98c0a1f0d62fa337795ca88b7927e14b684b681f7629b648bc2d709a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7417
x-amzn-requestid: 53032353-8613-49b0-944d-3742236cf50c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fYcMmFeQIAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d340b6-7fe2226327d90db014527c08;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 03:10:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zd8cTO2N1JO-OK3hCDwVO8naClCsg0raJLboRFle-DPSKhR_7k8-Yg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 03:34:31 GMT
age: 85015
etag: "5a626376807e7507fa3a204c4e4e9e44aa074a37"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7f65e9-ca75-4ecb-ba7c-ae70877eaf01.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7f65e9-ca75-4ecb-ba7c-ae70877eaf01.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f73f114f8dc452fc0b16825570ad50c
6bb1b3db6c36e2c9d23b6cb7d1c8616eeec19575
23fd69e6ccdd2ce2b5d3d8b3f075a07cdb36efd663a4119b5dca22165e7b2090
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7f65e9-ca75-4ecb-ba7c-ae70877eaf01.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10030
x-amzn-requestid: 0c6c82b5-f91b-4468-bb25-d87d4d7dedd5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVAbgERRIAMFdcw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1e116-7f17c79047447dff2de3ab67;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 02:10:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4C0fCJB3N9nw0xKQnlsRLx_VGA3shg394U3Tq4pxNMWgggZe93TLUA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 20:30:44 GMT
age: 24042
etag: "6bb1b3db6c36e2c9d23b6cb7d1c8616eeec19575"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43c4a8e963936a8064dbd2bd3c67b905
8508727c97127c98b886833af28b3470306216c2
070c29fe7c0a227029483d675eac863904ab6b291467acdf62167f4845699c21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8652
x-amzn-requestid: 5a5a883e-d7d4-4fc5-925a-3a95830c504e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVguyG7BIAMFm8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d214c4-390b59a32060e41203533c58;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 05:51:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ewSsCY4u9DwRtaj00U9JCim9tYeCgHRuIQFpdHm4ttI6L02-e44iDQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 23:11:24 GMT
age: 14402
etag: "8508727c97127c98b886833af28b3470306216c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8f2806c-ec5e-41a0-85d8-007f6d34d108.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8f2806c-ec5e-41a0-85d8-007f6d34d108.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6021d6a06bff2826eb341747e82484f7
a817ff1ba206234627706551820d0d9856b398de
f0ba6de8709fdb73e94dbdace635232c76b9d70dad73badaca0542d9ad49604d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8f2806c-ec5e-41a0-85d8-007f6d34d108.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11624
x-amzn-requestid: dff12902-8b83-4df1-a2c9-a2ee9565830f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIhnjEmpIAMFdlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce2fc-0216188a3154167648f7d976;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:17:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: kxzVU1bNn09g_-73AY-mNvzhHo-dTyQinPkfPEqhDcKFfrTnbDpaZQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 23:15:07 GMT
age: 14179
etag: "a817ff1ba206234627706551820d0d9856b398de"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9dd6ccbb-893e-4aca-b08e-b16283e4ee58.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9dd6ccbb-893e-4aca-b08e-b16283e4ee58.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e6d617843cc1f7df21950fe7d4add160
4b7b2e07f0c4667f9c83d99c1481f81ac6e531f9
facb5e8beed1bf0b0ae02cba77278767f211717097803b3966312dfe0822646b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9dd6ccbb-893e-4aca-b08e-b16283e4ee58.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7790
x-amzn-requestid: 19b7ae0c-7ce9-4d01-96c3-9259e6f2b1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fH88xFpKIAMF_gg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cca851-0d4a98a74200cb962d434f82;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 03:06:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ORGO0m0bJJzpWpxLCewm0J1vp8khEZlPzL58syBdlhyQniN8em5Qzg==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:46:19 GMT
age: 19507
etag: "4b7b2e07f0c4667f9c83d99c1481f81ac6e531f9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
workingtogethercol.org/wp-content/themes/save-life/css/__colors.css?ver=6.1.1
45.33.119.221200 OK 577 kB URL HTTP/1.1 workingtogethercol.org/wp-content/themes/save-life/css/__colors.css?ver=6.1.1
IP 45.33.119.221:0
File type ASCII text, with very long lines (65384)
Size 577 kB (577263 bytes)
Hash f5c90f92293e6e5424f91814c8819c57
645051d31da27e54b12db920331c0deeb1c3e125
d3817022ee87c317f94025865cbb17cc8f2bc5890ef4635fdaf76afbc6285649
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/save-life/css/__colors.css?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 20:42:24 GMT
Accept-Ranges: bytes
Content-Length: 577263
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.3.0
45.33.119.221200 OK 3.0 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.3.0
IP 45.33.119.221:0
File type HTML document, ASCII text, with very long lines (3029), with no line terminators
Hash f449e3e4a7c058f7c48f57e05c788fb0
e7b0c58a1a14c14a92e452cc544b312ed91fa52e
bfd861dc2936299f52adca1da826c273dced7c77ad4c33d31916ad55ab354e89
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.3.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:04:47 GMT
Accept-Ranges: bytes
Content-Length: 3029
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.8.0
45.33.119.221200 OK 992 B URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.8.0
IP 45.33.119.221:0
Hash 787fe4f547a6cb7f4ce4934641085910
c2dee88d5bdfef214ce9c56f71a1df51cda0f328
654aaebdea944313257827be97eb196a8218a2cdfc9ba399db23e2cd4c02bd79
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.8.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:34 GMT
Accept-Ranges: bytes
Content-Length: 992
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/themes/save-life/css/fontello/css/fontello-embedded.css?ver=6.1.1
45.33.119.221200 OK 283 kB URL HTTP/1.1 workingtogethercol.org/wp-content/themes/save-life/css/fontello/css/fontello-embedded.css?ver=6.1.1
IP 45.33.119.221:0
File type ASCII text, with very long lines (65220)
Size 283 kB (282916 bytes)
Hash 86fe3f69592039d33afa256430222162
656462df60ec5fb6e3b56c7d82af8116db9da55d
da7e187e5018b898e381a0aca78bc4229e3086186809d713aeb1e7ef94901ebc
GET /wp-content/themes/save-life/css/fontello/css/fontello-embedded.css?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:25 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:00:50 GMT
Accept-Ranges: bytes
Content-Length: 282916
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.19
45.33.119.221200 OK 6.5 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.19
IP 45.33.119.221:0
File type ASCII text, with very long lines (6525), with no line terminators
Hash 9ba7153038a33b219e97df4f7347546e
93235e3baae2224ad5a086845d41db471d02359f
f752c3c539d0a59c1dd7438e0524b0a2f9f63718f99501afd4a47c129cfa74b8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.19 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:04:27 GMT
Accept-Ranges: bytes
Content-Length: 6525
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
45.33.119.221200 OK 21 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
IP 45.33.119.221:0
File type HTML document, ASCII text, with very long lines (21310), with no line terminators
Hash f3d7b1578081c9cf982cfbc29f514836
fdb6b04b917b9a1c72e3cf2da686c2584d3fd50f
c0f874276d38c6d9e43767d76a15de39506461b268a3cbf19fc8218f3ec8631a
GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:04:47 GMT
Accept-Ranges: bytes
Content-Length: 21310
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
45.33.119.221200 OK 15 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
IP 45.33.119.221:0
File type Unicode text, UTF-8 text, with very long lines (14924), with no line terminators
Hash 157f18464a93eab7fb62a7f3e618ac2c
f47727e80d529d6e4941fea32f2e8a8ee5008b8a
9ed8f2a0e573467348e64fb1945eeac1698f32af9e9c723153eb7142d6a43306
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:05:24 GMT
Accept-Ranges: bytes
Content-Length: 14927
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0
45.33.119.221200 OK 486 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0
IP 45.33.119.221:0
File type ASCII text, with very long lines (65358)
Size 486 kB (485521 bytes)
Hash 78622094275696078e4f06007407e11d
d7f583d841c46bd24bd9134e20c645b14e6ec713
521457922129a04fbc4524021ac47021659a1e1931c5dfe1a0e13be5dcaaefba
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:34 GMT
Accept-Ranges: bytes
Content-Length: 485521
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.14
45.33.119.221200 OK 58 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.14
IP 45.33.119.221:0
File type Unicode text, UTF-8 text, with very long lines (12602)
Hash 11188e3c0006d83216e161ae1d59c86e
158c7818f4d65b85bd613b35f81a5ff62972522b
6540abd4143b1bce02006ebb345dd9a4c6bb18e5580c529361b6e3e1b7b8522c
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.14 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:28 GMT
Accept-Ranges: bytes
Content-Length: 57704
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.17.0
45.33.119.221200 OK 25 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.17.0
IP 45.33.119.221:0
File type HTML document, ASCII text, with very long lines (24951), with no line terminators
Hash 540be7a8259fbeaf4a732a344b267a7d
ac51cc9bb5df51bd9568de8707b9b176f7d60254
a692f16cca3d27ae6772b85e05c46d117ca45678783d5ee010df7d67e8f12485
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.17.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:05:24 GMT
Accept-Ranges: bytes
Content-Length: 24951
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.35200 OK 45 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://workingtogethercol.org
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 24 Jan 2023 18:35:14 GMT
Expires: Wed, 24 Jan 2024 18:35:14 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2
Age: 376572
workingtogethercol.org/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2
45.33.119.221200 OK 11 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2
IP 45.33.119.221:0
File type ASCII text, with very long lines (10565), with no line terminators
Hash 7f0734e228d3f1a255a8b817a5005b8e
3dfca70a7a3e298fc392f2393ca60d350eebb5fd
23bb39b607b39a93d953762d2a618a3cbc69c52ceaf70d96890137ca1d2b0228
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:13:14 GMT
Accept-Ranges: bytes
Content-Length: 10565
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2
45.33.119.221200 OK 13 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2
IP 45.33.119.221:0
File type HTML document, ASCII text, with very long lines (12652), with no line terminators
Hash f57435a927d422043befe66bd74f4d68
4a2f90016ca54d0938263c50b8995bf889f6278b
f84293668b02b8c83c20c5c2cf51f8a5a64ac5a15d34be26c85382496b107700
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:13:14 GMT
Accept-Ranges: bytes
Content-Length: 12652
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/trx_addons/js/magnific/jquery.magnific-popup.min.js
45.33.119.221200 OK 20 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/trx_addons/js/magnific/jquery.magnific-popup.min.js
IP 45.33.119.221:0
File type ASCII text, with very long lines (20087), with CRLF line terminators
Hash b37d7edf99565d3858eaa1ad80df3cff
786a4343711e9af5e5dfcc493e7d2331b48875bb
b0a45cd5aed66e27bd8ee861d0e3b782c8e79849bde32f90f078b9f2451a36f2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/trx_addons/js/magnific/jquery.magnific-popup.min.js HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:25 GMT
Accept-Ranges: bytes
Content-Length: 20219
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/trx_addons/js/swiper/swiper.jquery.min.js
45.33.119.221200 OK 69 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/trx_addons/js/swiper/swiper.jquery.min.js
IP 45.33.119.221:0
File type ASCII text, with very long lines (32072), with CRLF line terminators
Hash f2f89081adcc0eabba52280466f3bb36
4380050e6b3ff059b19dec13d65ca02a916e7df5
edd1d42602d9c5cfae9967751ee3945607c80c24f946b063376458cfa169cb03
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/trx_addons/js/swiper/swiper.jquery.min.js HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:25 GMT
Accept-Ranges: bytes
Content-Length: 68628
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/trx_addons/js/trx_addons.js
45.33.119.221200 OK 116 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/trx_addons/js/trx_addons.js
IP 45.33.119.221:0
File type ASCII text, with very long lines (65389)
Size 116 kB (115603 bytes)
Hash 30ff015fb6084e01e0d5afbc2ed4e7cf
7e22a4429d9f5b01ecd014a6c5a1b6c4906d347b
29e1ea749f9ff7cb19aeca9519c2c2494e2bff2b4edc4d3a7474bad5eb52bb42
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/trx_addons/js/trx_addons.js HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:25 GMT
Accept-Ranges: bytes
Content-Length: 115603
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.3.0
45.33.119.221200 OK 1.8 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.3.0
IP 45.33.119.221:0
File type ASCII text, with very long lines (1668)
Hash d0a6d8547c66b0d7b0172466558d1208
ff93916519c7b9483251f609e4d29f38c30a66e3
3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.3.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:04:47 GMT
Accept-Ranges: bytes
Content-Length: 1834
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.3.0
45.33.119.221200 OK 2.1 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.3.0
IP 45.33.119.221:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash b72c1cbb1530a011a27bd9800f26765a
27b825c5d8255f33b8427a059d4545ebd65e1746
a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.3.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:04:47 GMT
Accept-Ranges: bytes
Content-Length: 2139
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.14
45.33.119.221200 OK 385 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.14
IP 45.33.119.221:0
File type ASCII text, with very long lines (64288)
Size 385 kB (385173 bytes)
Hash e1127efba608518ff2ac4976e3706232
88214af265c867a3955d6b96619c6f614cb311fa
b893d1b1e1836ef5731a8e15b1a4e1536d147dfd9c9815414347a0c7db199119
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.14 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:28 GMT
Accept-Ranges: bytes
Content-Length: 385173
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.3.0
45.33.119.221200 OK 2.9 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.3.0
IP 45.33.119.221:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash 0fd625c3991a4015814cffdc88e2fc82
d7c2f53e058210ff3ea773297641008bab71a5f3
2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.3.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:04:47 GMT
Accept-Ranges: bytes
Content-Length: 2938
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.22.0
45.33.119.221200 OK 4.6 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.22.0
IP 45.33.119.221:0
File type ASCII text, with very long lines (4602), with no line terminators
Hash 25d887c9c8997522cf1184e1171d605c
8f9fc958307ce831e7313d22d996908f578956e2
ccdea9568a2dafdc3b5dfafd7cc65ed784a235fe1a3c2da2e4183a9bb834c136
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.22.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:05:06 GMT
Accept-Ranges: bytes
Content-Length: 4602
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21
45.33.119.221200 OK 12 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21
IP 45.33.119.221:0
File type ASCII text, with very long lines (11827)
Hash 06a3b48689b0314af6c5da5b6ff27bfd
a98a815d90cba195409d39bd74d31b1e6f9dbf95
4cd7a0d2c9eb03966a0dc60658526c20fa4e8ee4a0660da469f55edaf9a18c9f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:05:06 GMT
Accept-Ranges: bytes
Content-Length: 11900
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/themes/save-life/js/superfish.js
45.33.119.221200 OK 7.0 kB URL HTTP/1.1 workingtogethercol.org/wp-content/themes/save-life/js/superfish.js
IP 45.33.119.221:0
Hash f9d05e09e25decde14b866e111961d9c
8e158e5e21983ae63784fccbe5b80809a8df68a0
2dfe5caba27a4d6bb517de3a082ec7889b732919945586f4a7aae68116fed632
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/save-life/js/superfish.js HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:00:50 GMT
Accept-Ranges: bytes
Content-Length: 6993
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/themes/save-life/js/__scripts.js
45.33.119.221200 OK 80 kB URL HTTP/1.1 workingtogethercol.org/wp-content/themes/save-life/js/__scripts.js
IP 45.33.119.221:0
File type ASCII text, with very long lines (65384)
Hash 30f917f476a49936213b4a6f58eb345a
79b2714adf8f8331f5c15bc5aef699c930b75325
448f3515e293dd74bc413a269efab6137bbb37d4de4e2dd3ae52955de5017b24
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/save-life/js/__scripts.js HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 20:42:24 GMT
Accept-Ranges: bytes
Content-Length: 79689
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
45.33.119.221200 OK 158 kB URL HTTP/1.1 workingtogethercol.org/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
IP 45.33.119.221:0
File type ASCII text, with very long lines (65266)
Size 158 kB (158005 bytes)
Hash e53ec3d6e21be78115810135f5e956fe
523892839b88351523e0498ba881c4431197b54e
b15c3ea03d50c2430490e7416733a254feea4237bb60b54181bd3473ebe4149f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:34:06 GMT
Accept-Ranges: bytes
Content-Length: 158005
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
45.33.119.221200 OK 1.2 kB URL HTTP/1.1 workingtogethercol.org/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
IP 45.33.119.221:0
File type ASCII text, with very long lines (1191), with no line terminators
Hash 51300497928562f8c86c7aaba99237cd
e5826832b85c6afc6502b74cbb8ac5394b04c363
6d161e98e47ae150b51211443eef37040fb6269dcf85ad2048548066dca99e6f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:34:06 GMT
Accept-Ranges: bytes
Content-Length: 1191
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
45.33.119.221200 OK 906 B URL HTTP/1.1 workingtogethercol.org/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
IP 45.33.119.221:0
File type HTML document, ASCII text, with very long lines (906), with no line terminators
Hash 2c6d3b562a48e0df5474999dd47e58fb
945220e990eb176c14e53cc663fb01e04e31b59f
3e6131330963c472b950b8aaf544ba3829735b8ccb103d614ba7793e3a786550
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:34:06 GMT
Accept-Ranges: bytes
Content-Length: 906
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.3.0
45.33.119.221200 OK 7.0 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.3.0
IP 45.33.119.221:0
File type ASCII text, with very long lines (7043), with no line terminators
Hash 456663a286a204386735fd775542a59e
0a61620b88f4ae0fa7d71e2c7a014ea2c3ab5749
a7a83e60e7e3b8cadeed69327ba498b4cd68605db6e408729fa1b946758e7501
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.3.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:04:47 GMT
Accept-Ranges: bytes
Content-Length: 7043
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0
45.33.119.221200 OK 20 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0
IP 45.33.119.221:0
File type ASCII text, with very long lines (19905)
Hash 596d6e5d8400fd1e913f9adc21071f93
fee2d7a4ac08d5a522c2298a5ad3ed30ac9e62ec
159faf7827be43b4c85a35fc941924a9de59a169d42d600b49161f60debf9dff
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:34 GMT
Accept-Ranges: bytes
Content-Length: 20124
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/themes/save-life/images/404.png
45.33.119.221200 OK 27 kB URL HTTP/1.1 workingtogethercol.org/wp-content/themes/save-life/images/404.png
IP 45.33.119.221:0
File type PNG image data, 374 x 430, 8-bit/color RGBA, non-interlaced\012- data
Hash 655a779e82adb10407e3460839d0b2c0
e30efef8bb47e6bc49c3b6ef7491510d2bc2e093
164c25e67af1b8a998af4a64e387ae540ccb0d93958b05e4beb3da42910bbcc3
GET /wp-content/themes/save-life/images/404.png HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:00:50 GMT
Accept-Ranges: bytes
Content-Length: 27204
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png
workingtogethercol.org/wp-content/uploads/2022/03/cropped-Recurso-7-32x32.png
45.33.119.221200 OK 1.5 kB URL HTTP/2 workingtogethercol.org/wp-content/uploads/2022/03/cropped-Recurso-7-32x32.png
IP 45.33.119.221:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 27d9dc8a5e318cf63e654bb6b1d8e91e
abe680c9f3720e7166957fd45a42f5075ca936f3
a7f0d80d8d07b8023189b01b6681ec5d1667fe2e44b616bf73a4b0d89eb75d85
GET /wp-content/uploads/2022/03/cropped-Recurso-7-32x32.png HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://workingtogethercol.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 31 Mar 2022 20:03:37 GMT
accept-ranges: bytes
content-length: 1544
content-type: image/png
date: Sun, 29 Jan 2023 03:11:26 GMT
server: Apache
X-Firefox-Spdy: h2
workingtogethercol.org/wp-content/uploads/2022/03/cropped-Recurso-7-192x192.png
45.33.119.221200 OK 13 kB URL HTTP/2 workingtogethercol.org/wp-content/uploads/2022/03/cropped-Recurso-7-192x192.png
IP 45.33.119.221:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 7d067e24c99b3d6f1cd7391bec19e9eb
27a0e6cda3fe938640addeb68359f84d202a4555
edce40b6d8b2b1eb7006f2355d7a9d008c6c3ed3aa8f2799b261e69db305028c
GET /wp-content/uploads/2022/03/cropped-Recurso-7-192x192.png HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://workingtogethercol.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 31 Mar 2022 20:03:37 GMT
accept-ranges: bytes
content-length: 12763
content-type: image/png
date: Sun, 29 Jan 2023 03:11:26 GMT
server: Apache
X-Firefox-Spdy: h2
workingtogethercol.org/?wc-ajax=get_refreshed_fragments
45.33.119.221200 OK 495 B URL HTTP/1.1 workingtogethercol.org/?wc-ajax=get_refreshed_fragments
IP 45.33.119.221:0
File type JSON data\012- , ASCII text, with very long lines (495), with no line terminators
Hash ed5c1cf49466781e90ab03b154c8b6a3
81d6f73c123fba32918bf78cca45f488e6b55715
34f1c67e3ea3efd2492db58afaf72098591324ba56f12078ae851212dbc2d44b
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: http://workingtogethercol.org
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:27 GMT
Server: Apache
Access-Control-Allow-Origin: http://workingtogethercol.org
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Robots-Tag: noindex
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json; charset=UTF-8
workingtogethercol.org/wp-content/plugins/essential-grid/public/assets/js/rbtools.min.js?ver=6.5.14
45.33.119.221200 OK 0 B URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/essential-grid/public/assets/js/rbtools.min.js?ver=6.5.14
IP 45.33.119.221:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-grid/public/assets/js/rbtools.min.js?ver=6.5.14 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:11:26 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:26 GMT
Accept-Ranges: bytes
Content-Length: 128668
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript