Report - www.saltusllc.com/

Report Overview

Submitted URL
www.saltusllc.com/
IP
151.101.66.159
ASN
#54113 FASTLY
Submitted
2022-09-14 20:06:41
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
110

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
www.saltusllc.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	337 B	709 B	151.101.66.159
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	736 B	93.184.220.29
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	2.8 kB	142.250.74.3
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	734 B	746 B	142.250.74.10
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	371 B	43 kB	142.250.74.72
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	358 B	21 kB	142.250.74.174
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.25
p.typekit.net	620	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	438 B	357 B	23.36.76.186
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	78 kB	34.120.237.76
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	1.1 kB	216.239.34.36
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.35
saltusllc.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	40 kB	3.5 MB	151.101.66.159
use.typekit.net	494	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	37 kB	23.36.76.186
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.162.110.205

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-14	medium	www.saltusllc.com/	Phishing
2022-09-14	medium	saltusllc.com/	Phishing
2022-09-14	medium	saltusllc.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.4	Phishing
2022-09-14	medium	saltusllc.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.4.2	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/jet-menu/assets/public/css/public.css?ver=2.1.4	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.5	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/jet-menu/assets/public/lib/font-awesome/css/all.min.css?ver=5.12.0	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/jet-engine/assets/css/frontend.css?ver=2.10.3	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/jet-elements/assets/css/jet-elements.css?ver=2.6.1	Phishing
2022-09-14	medium	saltusllc.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/jet-elements/assets/js/lib/oridomi/oridomi.js?ver=1.10.0	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.4	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.5	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-css/premium-addons.min.css?ver=4.9.32	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/jet-elements/assets/css/jet-elements-skin.css?ver=2.6.1	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/jet-elements/assets/js/lib/slick/slick.min.js?ver=1.8.1	Phishing
2022-09-14	medium	saltusllc.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.1	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.5	Phishing
2022-09-14	medium	saltusllc.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94	Phishing
2022-09-14	medium	saltusllc.com/wp-content/themes/hello-elementor/style.min.css?ver=2.4.2	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/jet-elements/assets/css/lib/peel/peel.min.css?ver=1.0.0	Phishing
2022-09-14	medium	saltusllc.com/wp-content/uploads/elementor/css/post-1374.css?ver=1662044913	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/fluentform/public/css/fluent-forms-elementor-widget.css?ver=4.3.12	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3	Phishing
2022-09-14	medium	saltusllc.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/jet-menu/assets/public/lib/font-awesome/css/v4-shims.min.css?ver=5.12.0	Phishing
2022-09-14	medium	saltusllc.com/wp-content/uploads/elementor/css/post-8.css?ver=1662044911	Phishing
2022-09-14	medium	saltusllc.com/wp-content/themes/hello-theme-child-master/style.css?ver=1.0.0	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/jet-menu/integration/themes/hello-elementor/assets/css/style.css?ver=2.1.4	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-css/slick.min.css?ver=4.9.32	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/premium-addons.min.js?ver=4.9.32	Phishing
2022-09-14	medium	saltusllc.com/wp-includes/js/jquery/jquery.ui.touch-punch.js?ver=0.2.2	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/jet-elements/assets/js/lib/peeljs/peeljs.js?ver=1.0.0	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/slick.min.js?ver=4.9.32	Phishing
2022-09-14	medium	saltusllc.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	Phishing
2022-09-14	medium	saltusllc.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/jet-menu/includes/elementor/assets/public/js/legacy/widgets-scripts.js?ver=2.1.4	Phishing
2022-09-14	medium	saltusllc.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.4	Phishing
2022-09-14	medium	saltusllc.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=4.9.32	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/jet-elements/assets/js/lib/html2canvas/html2canvas.min.js?ver=1.0.0-rc.5	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.6.1	Phishing
2022-09-14	medium	saltusllc.com/wp-content/themes/hello-theme-child-master/custom-fonts/webFonts/AmpleSoftRegular/font.woff2	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js	Phishing
2022-09-14	medium	saltusllc.com/wp-content/uploads/2021/11/saltus-footer-background.svg	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js	Phishing
2022-09-14	medium	saltusllc.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (48)

	URL	Size	First Seen	Last Seen
	saltusllc.com/wp-content/plugins/jet-elements/assets/js/lib/slick/slick.min.js?ver=1.8.1	43 kB	2023-03-07	2024-04-25
Pretty URL saltusllc.com/wp-content/plugins/jet-elements/assets/js/lib/slick/slick.min.js?ver=1.8.1 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:34 Last Seen2024-04-25 13:55:48 Times Seen34397 Hash d5a61c749e44e47159af8a6579dda121 3b41b3bc956685015a347a2238e71db29dfa0dbb 0c7178cc6ca34fb18e30f070a5e7a1c287b2d7ccfcba2cfdf06e0f46eda55740 Loading...

	saltusllc.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1	25 kB	2023-03-07	2024-04-25
Pretty URL saltusllc.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 06:13:11 Times Seen16605 Hash 046405de007ff73e52d17dab2af75258 887cfb8a9de27005875f6e1c1d1ead43bd0865c8 533e264cc615ee4601da8d2c1dee4a8987319e53d4d7162272f067fbbf250020 Loading...

	saltusllc.com/wp-content/plugins/jet-elements/assets/js/lib/peeljs/peeljs.js?ver=1.0.0	49 kB	2023-03-07	2023-12-20
Pretty URL saltusllc.com/wp-content/plugins/jet-elements/assets/js/lib/peeljs/peeljs.js?ver=1.0.0 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:32:14 Last Seen2023-12-20 08:44:25 Times Seen22 Hash 963b8e3cc6226dd47c3fe066288a8d3e b9b86210f41b8f6b57843e05059a613a88921e37 efa4b75aa5504ec36e7ecf0efff36323bf84362982c54b02977b69ae6a0e0ca3 Loading...

	saltusllc.com/	155 B	2023-03-07	2023-03-07
Pretty URL saltusllc.com/ IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:32:14 Last Seen2023-03-07 16:32:14 Times Seen1 Hash 0dda68594f8908d1212a828edbcd9745 ddbd114be087b1e631b79aaa80fbbcd6b9916a3f fe368846c8df004a3444d92d20e1826fdc6161bfabdb25d5ff28ada70ad8a1db Loading...

	www.googletagmanager.com/gtag/js?id=UA-216559828-1	108 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtag/js?id=UA-216559828-1 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:32:14 Last Seen2023-03-07 16:32:14 Times Seen1 Hash 25d63ffa2d06409de0ee9774289f048e dd87dfa7eac8f6dfa6d8d77b9a42461e7c313a9b 91c76c7c1ffb62d4a4b8dfb049b2e9d9c3473a7d622f15a4f38c7122c5d6ee9f Loading...

	saltusllc.com/	2.0 kB	2023-03-07	2023-03-07
Pretty URL saltusllc.com/ IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:32:14 Last Seen2023-03-07 16:32:14 Times Seen1 Hash 2c5005c34566d693fae3e96b641a0712 935a37649febcf66d532dda3c33881e9d64f7436 dd6069d051ad61605e4b801f552659d004701855ba87893e6527459e657fe048 Loading...

	saltusllc.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.5	21 kB	2023-03-07	2024-04-09
Pretty URL saltusllc.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.5 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:19 Last Seen2024-04-09 20:03:35 Times Seen423 Hash 1560fad11a59c0f63d4d1c1cd3861a96 55f1f96ccdb2b2eb1a37afd3468ef03ef63694e6 cd83d2d2afa6632217631b872b80372bf7498dbcab53968ca88ca9000d81b5ab Loading...

	saltusllc.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.4	40 kB	2023-03-07	2024-03-31
Pretty URL saltusllc.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.4 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:55 Last Seen2024-03-31 15:07:38 Times Seen353 Hash 7036d87210ae766b2d8655fe7b11095d 1817102e57db7be2b61e900076f9d2e39e44e050 5bc95c7fb8d4a568a7966755e750aa5392a39abe08521d3b4895442de86a1678 Loading...

	saltusllc.com/wp-content/plugins/jet-menu/includes/elementor/assets/public/js/legacy/widgets-scripts.js?ver=2.1.4	11 kB	2023-03-07	2024-04-10
Pretty URL saltusllc.com/wp-content/plugins/jet-menu/includes/elementor/assets/public/js/legacy/widgets-scripts.js?ver=2.1.4 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:25 Last Seen2024-04-10 22:53:21 Times Seen451 Hash 4866930a3fcfb07a1fe4561bf16f77e8 62401d87c75bf914b9fe7067e9125bb576a1953e 68c89c8c7008ea2b7df893f3fadd535ba3862fcf067204f92d516e1126b39444 Loading...

	saltusllc.com/wp-content/plugins/jet-elements/assets/js/lib/html2canvas/html2canvas.min.js?ver=1.0.0-rc.5	165 kB	2023-03-07	2024-01-30
Pretty URL saltusllc.com/wp-content/plugins/jet-elements/assets/js/lib/html2canvas/html2canvas.min.js?ver=1.0.0-rc.5 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:32:14 Last Seen2024-01-30 20:16:29 Times Seen6 Hash 1c0a0d33851d2573b9a4e430091ba334 3582db6842cad6474b0b90040fb461e1d5f9bd9c c4071f0b0657dc10331ca13ac462326e26b6a1b767f44a5b9d69a900616bfdec Loading...

	saltusllc.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.5	24 kB	2023-03-07	2024-04-09
Pretty URL saltusllc.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.5 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:36 Last Seen2024-04-09 20:03:35 Times Seen323 Hash 268a76388dd03314365240d212d8c5fb 8ad154df58efccf34a21c9a05ad72f4b5f7db10b 1bb9671464a12ee6b7473d81d140d372c8cc86b19d68ea5f8e59f5c8ea9630bc Loading...

	saltusllc.com/wp-content/plugins/jet-menu/assets/public/lib/vue/vue.min.js?ver=2.6.11	94 kB	2023-03-07	2024-04-25
Pretty URL saltusllc.com/wp-content/plugins/jet-menu/assets/public/lib/vue/vue.min.js?ver=2.6.11 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:55 Last Seen2024-04-25 13:12:29 Times Seen2533 Hash 6c81f02ad0bf8e12a66c18cab188d029 abd239f02966b2d324b0512c203bdbaf82a4ed7a 9e0156dd49c03744e79bbea60eebbbb94b5811c1b71b91f5fb38a8270dedfbaf Loading...

	saltusllc.com/wp-content/plugins/jet-menu/assets/public/js/legacy/jet-menu-public-scripts.js?ver=2.1.4	52 kB	2023-03-07	2024-04-10
Pretty URL saltusllc.com/wp-content/plugins/jet-menu/assets/public/js/legacy/jet-menu-public-scripts.js?ver=2.1.4 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:25 Last Seen2024-04-10 22:53:21 Times Seen179 Hash ea398945b7e0dc24e2b5c60a44ff00f0 855aac787fa837cbe5f62cc918f8b2d41c54a563 7f1f72e01d7a1df7cf883ac74cc51e91696e0b48114596530f5d488d51f8af82 Loading...

	saltusllc.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.1	18 kB	2023-03-07	2024-02-04
Pretty URL saltusllc.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.1 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:43 Last Seen2024-02-04 00:11:20 Times Seen210 Hash e5928fe54e2689822e39407a9ce71391 8c205903aedfae7f51df37d2387e14542544e4aa 8b934f3213c33c849410d6edf4fa6f85f970839503d462d94413bd8c15a2e106 Loading...

	www.googletagmanager.com/gtag/js?id=G-5DVSVCXPTC&l=dataLayer&cx=c	218 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtag/js?id=G-5DVSVCXPTC&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:32:14 Last Seen2023-03-07 16:32:14 Times Seen1 Hash 512ca3ee456de858bfd42923ada3be49 d5312f5fe6e23a05d57d8342d4321afbddc6e668 fc962db2571b5a7efee28b049a0b69fa7d84fa42c771ffe495e5f914bfa1c185 Loading...

	saltusllc.com/	2.2 kB	2023-03-07	2023-03-07
Pretty URL saltusllc.com/ IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:32:14 Last Seen2023-03-07 16:32:14 Times Seen1 Hash e71b642127a554852145a176227b3850 df4fb61ca5c846039a2416e22775133802a6c506 d1ffaf47db309432a3ceb1f492c9e29beb17cbf94c141242d56e7c4c7c2eec50 Loading...

	saltusllc.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.5	5.2 kB	2023-03-07	2024-04-09
Pretty URL saltusllc.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.5 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:19 Last Seen2024-04-09 20:03:35 Times Seen312 Hash 175f3ac04fff0d37a22aee49d9823269 b6f01c3bad17618c327e28953e31a34da3504a79 2914e6d0a9b43b2e881e1e99c7698ed620eaec6b1547152719af423c2b6defd5 Loading...

	saltusllc.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-25
Pretty URL saltusllc.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 15:09:13 Times Seen68624 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	saltusllc.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	6.5 kB	2023-03-07	2024-04-25
Pretty URL saltusllc.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 15:09:13 Times Seen15497 Hash 61449413a42d2daaa79dbe7298b40e21 d86c474164c603084397bdc50fb0e469d28b5772 f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a Loading...

	saltusllc.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1	3.4 kB	2023-03-07	2024-04-24
Pretty URL saltusllc.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-04-24 18:24:18 Times Seen626 Hash 5c38aa6d5b98586ca2ba973ab8b4b6b1 8215983363ea0d74f99368336404b0d27217778f 7c4dcab706e6bf67c64df89d3f5e137cb19efa293771613f511aff1ad563a6df Loading...

	saltusllc.com/	1.2 kB	2023-03-07	2023-03-07
Pretty URL saltusllc.com/ IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:32:14 Last Seen2023-03-07 16:32:14 Times Seen1 Hash de8d906d0a14c6244f32dbf28d25ed46 7ff490f568e8428be7cbca247ac79c8548bb8520 4222fbe0fd23063319dc268bb69cdac8624a9eaa9ee235beb2ab903bc62202ff Loading...

	saltusllc.com/	300 B	2023-03-07	2023-03-07
Pretty URL saltusllc.com/ IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:32:14 Last Seen2023-03-07 16:32:14 Times Seen1 Hash 630634d824f95981919deae2e86780d4 0a85a9107da1bac7ada20f289b36907e58eccd01 d7528171d3bf5d52f6b507ef8b09830aa1e2ec8a96fd6ec35c721b7f6724d41a Loading...

	www.googletagmanager.com/gtag/js?id=G-HQZF3ZLM2N&l=dataLayer&cx=c	170 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtag/js?id=G-HQZF3ZLM2N&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:32:14 Last Seen2023-03-07 16:32:14 Times Seen1 Hash f019e99f233c67c976ddf4d10575c300 ae8ab0826b6673be54800472b2701a44f8a05612 38e5d174efc3769da34d97b6f582254acb11f49073be6273ff1759c9a048858d Loading...

	saltusllc.com/wp-content/plugins/jet-elements/assets/js/lib/oridomi/oridomi.js?ver=1.10.0	44 kB	2023-03-07	2023-12-20
Pretty URL saltusllc.com/wp-content/plugins/jet-elements/assets/js/lib/oridomi/oridomi.js?ver=1.10.0 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:32:14 Last Seen2023-12-20 08:44:25 Times Seen20 Hash c538dfd097069e52139412c594a4aa47 9bb152ef7953b0f785f5c012c2666bcc555d2fe5 a6944dcc091f68f11e4620d268e7b6260958d1c76452c9c6f25232049d523c9d Loading...

	saltusllc.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94	10 kB	2023-03-07	2024-04-24
Pretty URL saltusllc.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 18:24:18 Times Seen2080 Hash f270dd1f483179fdcfb29ce5f91aea13 166661187a97f0b6b685ec4dbdff871e9824168f 1dc4b29dd0acbed77ec2fd81036c33efd4ab5989e8182705a30615a00a0117f7 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-04-18
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-18 21:14:10 Times Seen840 Hash d40531c5e99a6f84e42535859476fe35 a901817d77b2fe5259c298c91bc65c54d7f8a1a9 a1925038db769477ab74b4df34350c35688a795bb718727b0f4292a4a78a6210 Loading...

	saltusllc.com/	341 B	2023-03-07	2023-03-07
Pretty URL saltusllc.com/ IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:32:14 Last Seen2023-03-07 16:32:14 Times Seen1 Hash 733da79f5b476d4e09ecbe8179be401d 2d8dd7d47c93bdeccf97f84f6ab04c536914938b 18cec0c3fbe6fd2c1c5d09efc2c1edc8fa2b9c2fbf6dd76019972c187ca82d77 Loading...

	saltusllc.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js	1.4 kB	2023-03-07	2024-03-31
Pretty URL saltusllc.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:55 Last Seen2024-03-31 15:07:38 Times Seen162 Hash 699a1138b9010c81a29e3fcf3ce0e517 96e85ea2d14ca3a1b8a647c5c9640d3af898e412 52cb2ef4dc6e4dd45c47230e9b865ad3da0d250c5646b84a7f3dd6dad9815d87 Loading...

	saltusllc.com/	247 B	2023-03-07	2024-04-25
Pretty URL saltusllc.com/ IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:25 Last Seen2024-04-25 13:12:27 Times Seen756 Hash 721db0c902b41926ff7853591c2722a7 c2e7aa6e24d126125130016d0dcc0f104465e907 ca865894eae44e75b652b5d4c8cfb4dd9c1a7987302057f6b10d1e98e012e6bf Loading...

	saltusllc.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.4	5.0 kB	2023-03-07	2024-03-31
Pretty URL saltusllc.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.4 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:55 Last Seen2024-03-31 15:07:38 Times Seen270 Hash cbaa3f69dc7ed2f5913aff39b391617d 049c6d358a1f44ba299313509a8fcfa17f278fdf 272321688609293a373d0efbd424ff4425ed05237135aa2320a0ae4b662402be Loading...

	saltusllc.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js	3.3 kB	2023-03-07	2024-04-09
Pretty URL saltusllc.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:36 Last Seen2024-04-09 20:03:35 Times Seen139 Hash 8159d8fc169c6dc8994029aecff7714f 427a8fe94c270e88626232e21d9a1b85844e6bd1 bb4c3baa28c227fc0409a95f914a0c8dee90f37782733d1fb4b220916341fe54 Loading...

	saltusllc.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	90 kB	2023-03-07	2024-04-25
Pretty URL saltusllc.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 09:54:53 Times Seen31826 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	saltusllc.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2	19 kB	2023-03-07	2024-04-25
Pretty URL saltusllc.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 15:09:14 Times Seen38045 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	saltusllc.com/wp-includes/js/jquery/jquery.ui.touch-punch.js?ver=0.2.2	1.2 kB	2023-03-07	2024-04-25
Pretty URL saltusllc.com/wp-includes/js/jquery/jquery.ui.touch-punch.js?ver=0.2.2 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24:22 Last Seen2024-04-25 06:13:10 Times Seen1523 Hash 4cc86d1003c45134d6838f13e3885db1 7e24d802fa52db547e437a5d92f21932bb858993 196bed4faf0fe38b89a496b1f41319b2a8077263f85819f8ad42933e0a2e2e52 Loading...

	saltusllc.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3	4.9 kB	2023-03-07	2024-04-25
Pretty URL saltusllc.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 15:09:13 Times Seen24390 Hash b33ab4d5dcf02436276a717e9d1b7c18 f47b9a9c41b3b11c9dffabca22945727c3ec6566 9bd82960d99b3a76f4af77a88a346bd61f87bac5ff2f385ee28cd669d8f22134 Loading...

	saltusllc.com/	135 B	2023-03-07	2024-04-20
Pretty URL saltusllc.com/ IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:54 Last Seen2024-04-20 21:53:40 Times Seen306 Hash cd8caccfcc63f47673e4fa9788849dbc 0482a3764f72a32ae8061ddd9165acc158e80ef4 e48336aae0370e1f3639d021559fe54475e7ee08ad673c60218be41ce19dd1dd Loading...

	saltusllc.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4	5.6 kB	2023-03-07	2024-04-25
Pretty URL saltusllc.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-04-25 09:08:19 Times Seen30969 Hash 3a56752b736635bf69cb069b8818cbfd 42e0951fe74bb3f56a30f51291823bcd4a84d76e ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869 Loading...

	saltusllc.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1	21 kB	2023-03-07	2024-04-24
Pretty URL saltusllc.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 18:24:18 Times Seen3653 Hash 6aaf0a4e8eac131defea126f5b1b5fbf 24da0326af36303e5a1e9799a3c26f7a1077928c 240b702419d6c39ecc4896f0132ccfc9bc517e9aef0c782d99580e0c678b47d5 Loading...

	saltusllc.com/wp-content/plugins/jet-engine/assets/js/frontend.js?ver=2.10.3	46 kB	2023-03-07	2023-06-07
Pretty URL saltusllc.com/wp-content/plugins/jet-engine/assets/js/frontend.js?ver=2.10.3 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:32:14 Last Seen2023-06-07 08:43:32 Times Seen5 Hash e672275078413089b25d7dacfc7017f2 bce686eacf899032679812b8f7cc55944bbe650e 01faca1fb9985e72c3df2873e6649ccee5e8f4cb914dd8fe77f608bc8237b28b Loading...

	saltusllc.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/slick.min.js?ver=4.9.32	42 kB	2023-03-07	2023-11-08
Pretty URL saltusllc.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/slick.min.js?ver=4.9.32 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:45 Last Seen2023-11-08 13:31:47 Times Seen34 Hash 11a76a1fc39c3fc31c5e41d861692603 266b656b58b197ce3c8be4918f27bc3d08650193 975a5cd0cf6f5656f9f5a1a48bf272e3a4722195cf4c9cdc7b50d5abb292a667 Loading...

	saltusllc.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-04-25
Pretty URL saltusllc.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 15:09:14 Times Seen52745 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	saltusllc.com/wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.6.1	70 kB	2023-03-07	2024-04-10
Pretty URL saltusllc.com/wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.6.1 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:32:14 Last Seen2024-04-10 22:53:21 Times Seen64 Hash 7339c2285f2c3a91b76556b4a8435862 a2ce7768279d67fcdc5b26c599c070f5c4125b32 5819455d480d36033070885d11e7661fee74a1dd29ec0f4483d61dd4607a3952 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-K5N68Q7	130 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-K5N68Q7 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:32:14 Last Seen2023-03-07 16:32:14 Times Seen1 Hash f185f5996dcc30a3afd65c9037183e57 73884b0d83af36e49f3a75c9069dc9440595812b 821880f38b68c0593a68f37f25cba1322d241142671ba2fff7a25395715a488c Loading...

	saltusllc.com/	592 B	2023-03-07	2023-03-07
Pretty URL saltusllc.com/ IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:32:14 Last Seen2023-03-07 16:32:14 Times Seen1 Hash 7bdc3e085fab1e2279ae48ffd93f893b 546c00daa52b3152bd59cbcd09326e977bfb3df4 32080cfd7a3968bbc9c2a8a423295697237030dd843d1917b2dbd213f6d7b53d Loading...

	saltusllc.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.4	33 kB	2023-03-07	2024-03-31
Pretty URL saltusllc.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.4 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:55 Last Seen2024-03-31 15:07:38 Times Seen285 Hash 2c14a310ba03d9514354cd88cd85e9d4 ad5b3ec8dc78535ef8d1c726281d451516a96105 2d8fc0e5133c54c9c9d83aa54e7f6dd38cff44322a98a83c3a688f3bd96cc6b9 Loading...

	saltusllc.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/premium-addons.min.js?ver=4.9.32	46 kB	2023-03-07	2023-06-28
Pretty URL saltusllc.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/premium-addons.min.js?ver=4.9.32 IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10:29 Last Seen2023-06-28 11:47:01 Times Seen3 Hash cdb1ea2e5ae4a2ba2367f3d508b4dd4f 4f29decb246ada372f597a69939549f3b17159dd c990f39494537cd5d385c1d7ae2bdbeb13c37d59042d2d2383d9819613a21bd8 Loading...

	saltusllc.com/	135 B	2023-03-07	2023-03-07
Pretty URL saltusllc.com/ IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:32:14 Last Seen2023-03-07 16:32:14 Times Seen1 Hash 17f78828d18b5047588ff3791f3c1822 da25c59635fd5be5972a846bb242c9b9c20fef58 dc9b0ef04a9a0cdac7d85d10660a014201a925c87c8a7c639a35e36cf95146bc Loading...

	saltusllc.com/	163 B	2023-03-07	2023-03-07
Pretty URL saltusllc.com/ IP 151.101.66.159 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:32:14 Last Seen2023-03-07 16:32:14 Times Seen1 Hash 877332c1fc00b3306bbe881bdcf7282a b757d16a52e5f190c47f666107adb3cb60321e47 00c8a5c7e4fce603453b7b16ff094f32320fb7445262e91e34f24b5a32c66887 Loading...

HTTP Transactions (123)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.35

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 14 Sep 2022 19:09:41 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9VLlCLWx62LquV6swQTTvLhLTCTnG5xN-sPsEG8n8NFVYN89JcvP6A==
Age: 3409

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
be88d3e043e3b95b52e41812e50fb634
0318ba1ce487817ea7cba61dd9413bed29213800
b5f178d23e633283f226cca7a9ae79b01e6cab2299ff7065c980d3a9953212fd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15270
Expires: Thu, 15 Sep 2022 00:21:00 GMT
Date: Wed, 14 Sep 2022 20:06:30 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.25

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.25:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 14 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: sCArnVzHmjHFj6oZ6T3xEUOK71e0ruU8adOx9IV7PU0rUN0gBtE_Pw==
age: 55875
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 20:06:30 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.saltusllc.com/

151.101.66.159

301 Moved Permanently

162 B

URL HTTP/1.1
www.saltusllc.com/
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Content-Type: text/html
Location: https://saltusllc.com/
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer-when-downgrade
X-FW-Server: Flywheel/5.1.0
X-FW-Hash: zq61cbd072
X-FW-Version: 5.0.0
Server: Flywheel/5.1.0
Content-Length: 162
Accept-Ranges: bytes
Date: Wed, 14 Sep 2022 20:06:30 GMT
Connection: keep-alive
X-Served-By: cache-bma1633-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1663185990.106463,VS0,VE505
X-FW-Serve: TRUE
X-FW-Static: NO
X-FW-Type: VISIT

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.35

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 14 Sep 2022 20:03:22 GMT
Expires: Wed, 14 Sep 2022 20:10:45 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Y8TrxiSDP41Fa2iqyMvJpoSDpVIML1D01EncxXr-xcQkZPwYX-vivQ==
Age: 188

saltusllc.com/

151.101.66.159

200 OK

32 kB

URL HTTP/2
saltusllc.com/
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Size
32 kB (31558 bytes)
Hash
f149b34db8028c581bd70902982be293
9104977b27b66e67237662ce2d2e3f4a3f4f99d7
322c59d86cb4efbe735635921d9bea9a00350d5ec65f1d1e187b756934795b2a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://saltusllc.com/wp-json/>; rel="https://api.w.org/", <https://saltusllc.com/wp-json/wp/v2/pages/124>; rel="alternate"; type="application/json", <https://saltusllc.com/>; rel=shortlink
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-dynamic: TRUE
x-fw-hash: zq61cbd072
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:30 GMT
x-served-by: cache-bma1666-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663185991.819439,VS0,VE2
vary: Accept-Encoding
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 31558
X-Firefox-Spdy: h2

saltusllc.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1

151.101.66.159

200 OK

1.2 kB

URL HTTP/2
saltusllc.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (3233)
Size
1.2 kB (1165 bytes)
Hash
09c801d5e9a4ff5dfee70859bde6566b
a247b26728a9a0bd19cf4a56990e8e9bcf37cb9c
60a8914e3399647fa7fc32ab0644c9e8a5696604349fb3a7cd474db3ff5c99dd

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 30 Aug 2022 20:17:43 GMT
etag: W/"630e7067-d53"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: zq61cbd072
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663185991.010288,VS0,VE3
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1165
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.5

151.101.66.159

200 OK

2.4 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.5
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (5141)
Size
2.4 kB (2417 bytes)
Hash
8d72050cede98e77eac374202179054a
ed466b1d4b9209e9707ca51b3511aef4fcd10bf1
f4b46eebf160cb97ce7223b7fa864709989edc75ac106df4c7f9b02964a03840

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.5 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 15:05:03 GMT
etag: W/"6310ca1f-1440"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663185991.014182,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 2417
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.4

151.101.66.159

200 OK

2.3 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.4
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (4918)
Size
2.3 kB (2252 bytes)
Hash
c7b714d01664cae396d92220712121da
669e2e9e67f64f273a7d5d8ff3ccba24579c5957
c9de07cd1873200edfcd48dd4e4fa499314ff42628340513a971a9a16ef37736

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.4 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 15:04:34 GMT
etag: W/"6310ca02-135d"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663185991.015558,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 2252
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d3ac56507d17ffff5e8b486406985d68
17d26336cd8ea65af3f23db166945f1b3fbbfbab
e7e321340eed681c1269f715b0214e1511d5762fffbe930e7c157b800afa9a39

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 573
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 20:06:31 GMT
Last-Modified: Wed, 14 Sep 2022 19:56:58 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
abea4dc307fd4da34aac369f4316657c
ef7be7963fa8154c83b78d6ca8518b8448f079ff
1c50a6b2765a5108f31d7a31c98c62d293440c84e8bf63f9dac685be9e3d77d5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 20:06:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ed1a966e9770807ef8b4f57a5113d29a
d843a3d371ee0424004f68ccc32ce06e6bc6e6c7
4932c01d3db39a9ac2f0f7e2693af95e5a334697edfd8d078fd52e421ba43721

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 20:06:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

saltusllc.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.4.2

151.101.66.159

200 OK

2.9 kB

URL HTTP/2
saltusllc.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.4.2
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (15164), with no line terminators
Size
2.9 kB (2891 bytes)
Hash
bc3b173d58dc3cc699002bd9bbaf55c0
fb1aa38dd767fe956be6e46a03f7f4e4fc938dd4
d1eeec7068571f3f88831c511520f26759d9624aa5976ec4111f886a35ff2fe6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.4.2 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 27 Dec 2021 14:17:35 GMT
etag: W/"61c9caff-3b3c"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.966731,VS0,VE126
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 2891
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-216559828-1

142.250.74.72

200 OK

42 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-216559828-1
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1615)
Size
42 kB (42153 bytes)
Hash
7156150e70d75f12ddd8d8075ed264ff
399e204299b3cacd07b2156515cd5ee64573f89c
5fc0afe8e808599072a342affae2800c95095fcf5cd2d745bfd1a81852ce00b7

HTTP Headers

GET /gtag/js?id=UA-216559828-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saltusllc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 14 Sep 2022 20:06:31 GMT
expires: Wed, 14 Sep 2022 20:06:31 GMT
cache-control: private, max-age=900
last-modified: Wed, 14 Sep 2022 19:27:54 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42153
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/jet-menu/assets/public/css/public.css?ver=2.1.4

151.101.66.159

200 OK

7.7 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/jet-menu/assets/public/css/public.css?ver=2.1.4
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65536), with no line terminators
Size
7.7 kB (7661 bytes)
Hash
8568588662b46aeabcbefdb708e610e5
0954f6c5c69adfbc0fab8bdfb4ee2be93e207b5d
9d75544b1dca9f4a645e5cb23ed27d12f3c9119ef9ae499490f7c203fbc064ed

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-menu/assets/public/css/public.css?ver=2.1.4 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Fri, 19 Nov 2021 15:39:42 GMT
etag: W/"6197c53e-13801"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.975404,VS0,VE133
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 7661
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.5

151.101.66.159

200 OK

1.9 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.5
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (11487)
Size
1.9 kB (1902 bytes)
Hash
c20231fd4f5081da10a325a9d916a0e4
b8fa530fd42235dd3c2a901e79989729e4a71ae7
a0112570183d9733bd3de792e007b284d924be5afa2cb3a631d5eeafaf9d5f45

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.5 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Sep 2022 15:05:02 GMT
etag: W/"6310ca1e-2d0a"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.980132,VS0,VE127
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1902
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/jet-menu/assets/public/lib/font-awesome/css/all.min.css?ver=5.12.0

151.101.66.159

200 OK

14 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/jet-menu/assets/public/lib/font-awesome/css/all.min.css?ver=5.12.0
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (56994)
Size
14 kB (13754 bytes)
Hash
7d9b9f5c1a467ed4f0c3d758db5ebfdc
6d8f14d31242c3f370921120c97a2c82bab21772
66d93473509027bf3bfb6e7ba68a82b7935217e77b0975743b2e9748591e146d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-menu/assets/public/lib/font-awesome/css/all.min.css?ver=5.12.0 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Fri, 19 Nov 2021 15:39:42 GMT
etag: W/"6197c53e-df5c"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.974648,VS0,VE130
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 13754
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/jet-engine/assets/css/frontend.css?ver=2.10.3

151.101.66.159

200 OK

6.5 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/jet-engine/assets/css/frontend.css?ver=2.10.3
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (34607), with no line terminators
Size
6.5 kB (6536 bytes)
Hash
92e9719559d995bf24f46b26914a77f1
6c63c2cd6da57f57aa3694523c3e431ae66e84a7
ba2b0873b4dd03943867a36aedb273d4d48fe6c972c4fdb3f899950868e6ef4d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-engine/assets/css/frontend.css?ver=2.10.3 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 27 Dec 2021 14:17:25 GMT
etag: W/"61c9caf5-8733"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.968077,VS0,VE129
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 6536
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/jet-elements/assets/css/jet-elements.css?ver=2.6.1

151.101.66.159

200 OK

27 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/jet-elements/assets/css/jet-elements.css?ver=2.6.1
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65536), with no line terminators
Size
27 kB (26909 bytes)
Hash
fecbbaaabd6366327ec0ac6da87e5cf9
8cda544b2f35665d45c3aa2fd8360a0f43b1b7ec
fc8a8c753ffd210943136d08fdced20032725a5990c8aea0adc3d5c74c87e6ca

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-elements/assets/css/jet-elements.css?ver=2.6.1 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Fri, 19 Nov 2021 15:40:10 GMT
etag: W/"6197c55a-38c45"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.977532,VS0,VE137
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 26909
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/elementor/css/post-149.css?ver=1662044912

151.101.66.159

200 OK

2.4 kB

URL HTTP/2
saltusllc.com/wp-content/uploads/elementor/css/post-149.css?ver=1662044912
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (17282)
Size
2.4 kB (2351 bytes)
Hash
a6ae46ec46ebafc0a5c6085db79ea0f2
93670270495a2b093f8dc9ddf5fe29a0de0b6c5c
a4a8a4c654a9234f90087025c41a4cc1e1b01bc4db6aff933d20b622eadaa570

HTTP Headers

GET /wp-content/uploads/elementor/css/post-149.css?ver=1662044912 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Sep 2022 15:08:32 GMT
etag: W/"6310caf0-4a72"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.983469,VS0,VE138
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 2351
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/elementor/css/post-323.css?ver=1662044913

151.101.66.159

200 OK

978 B

URL HTTP/2
saltusllc.com/wp-content/uploads/elementor/css/post-323.css?ver=1662044913
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (4914)
Size
978 B (978 bytes)
Hash
35f8d7d94000f5691fa27c23bb83b007
f5382a0d00b31508878daa6c3c63e78a46fd32f8
2109b4ea22f76e8a4159e61297b0daf32e9eb9d3e89cb871f6333ba6b8314c0d

HTTP Headers

GET /wp-content/uploads/elementor/css/post-323.css?ver=1662044913 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Sep 2022 15:08:33 GMT
etag: W/"6310caf1-1421"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.991882,VS0,VE130
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 978
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/elementor/css/post-330.css?ver=1662044913

151.101.66.159

200 OK

980 B

URL HTTP/2
saltusllc.com/wp-content/uploads/elementor/css/post-330.css?ver=1662044913
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (5015)
Size
980 B (980 bytes)
Hash
ecbf2d56d854b56fa432b57afe6003f8
dc67e96d5acc847927dcb25a689113e63fbe2312
a5c98094a7122aef2f6c488ae9c19dc702e360838fbeadccd5bda861a863a276

HTTP Headers

GET /wp-content/uploads/elementor/css/post-330.css?ver=1662044913 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Sep 2022 15:08:33 GMT
etag: W/"6310caf1-1486"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.991281,VS0,VE134
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 980
X-Firefox-Spdy: h2

saltusllc.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4

151.101.66.159

200 OK

1.9 kB

URL HTTP/2
saltusllc.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (5477)
Size
1.9 kB (1946 bytes)
Hash
fcf12c7d3f5778470877aff26bdb3040
b8cc6b30eb49ef014651e6f22e4a33b74a3fde1e
2b6a1c6d97acd8b8f1460d8e4acbac8f911aa950c482ab794888f40c63fb2d6f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 30 Aug 2022 20:17:43 GMT
etag: W/"630e7067-15fd"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: zq61cbd072
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.001083,VS0,VE124
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1946
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3

151.101.66.159

200 OK

311 B

URL HTTP/2
saltusllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (489)
Size
311 B (311 bytes)
Hash
c58b23e189e3c7cf45cb7014e704d05b
e6850968edf763aafe862a226a0a3380f4827488
6ba81ab0941a10e6bb1a48b83f30ddaedba974c6609bec7210d9a27e4b3ef38d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Sep 2022 15:04:34 GMT
etag: W/"6310ca02-2a3"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.986281,VS0,VE137
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 311
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/jet-elements/assets/js/lib/oridomi/oridomi.js?ver=1.10.0

151.101.66.159

200 OK

11 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/jet-elements/assets/js/lib/oridomi/oridomi.js?ver=1.10.0
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (350)
Size
11 kB (10575 bytes)
Hash
31bbef1c88322f6528ec42513187c903
11cc830b4b2f58a4ae5b8ec3f615a2a390fdff62
16c1387272fb056f4a348f09c760dc59af01b2e209b31e242b2bd29bfa1562c2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-elements/assets/js/lib/oridomi/oridomi.js?ver=1.10.0 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 19 Nov 2021 15:40:10 GMT
etag: W/"6197c55a-abaa"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.009734,VS0,VE128
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 10575
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/jet-menu/assets/public/js/legacy/jet-menu-public-scripts.js?ver=2.1.4

151.101.66.159

200 OK

12 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/jet-menu/assets/public/js/legacy/jet-menu-public-scripts.js?ver=2.1.4
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
HTML document, Unicode text, UTF-8 text, with very long lines (2070)
Size
12 kB (11822 bytes)
Hash
48f2729d734301ee74fa7f8fa4e16535
b7fc691b69d1fc4a92d692988574db1cd3895814
42721cffbd0d77a226345e40fc21ac70b5b90008be730862230e8bee7054ef49

HTTP Headers

GET /wp-content/plugins/jet-menu/assets/public/js/legacy/jet-menu-public-scripts.js?ver=2.1.4 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 19 Nov 2021 15:39:42 GMT
etag: W/"6197c53e-c9d4"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.000271,VS0,VE131
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 11822
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.4

151.101.66.159

200 OK

12 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.4
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (32889)
Size
12 kB (11583 bytes)
Hash
302d53d160a99f3d434aa12073b01b97
326625ebb6b01ca4c8ecddd288d2db07e83a6619
b84a55076c5c437a91df6cda468bd7f360cf25bcf1de1f235a75d22618c8a7e5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.4 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 15:04:34 GMT
etag: W/"6310ca02-80a1"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.015707,VS0,VE128
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 11583
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c86fc6649c7c512abb52fcd62d51ee26
bf241d6c1779668447df444a239d715b6ed46f6d
822cb499ea058f2c40ce4942048528575fadc172d3669007f5f34fae41c7ea49

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 20:06:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c79a6d9219e52788c0288a4288601f0b
a55c74c35279d08872bb4b0805d3f8ff684bc322
345482ec25a567e189a52a824fa13f6bbcfa8ce636c40f3619232b9cff65fa6a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 20:06:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

saltusllc.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.5

151.101.66.159

200 OK

6.2 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.5
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (21374)
Size
6.2 kB (6235 bytes)
Hash
b1dad0f69ca16a481efa588c5f8646a0
59cf1db5535dea58c31fd9b48531e6aa809d66ea
97fda8db8661524bca9852386bf5470cccf7805aacfe8b35c5119b2258129a8b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.5 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 15:05:02 GMT
etag: W/"6310ca1e-53a9"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.020794,VS0,VE123
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 6235
X-Firefox-Spdy: h2

use.typekit.net/jhe8zgo.css

23.36.76.186

200 OK

698 B

URL HTTP/2
use.typekit.net/jhe8zgo.css
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text, with very long lines (516)
Size
698 B (698 bytes)
Hash
e8a953fcec63e9a340657213fbed27c3
3806eea269712810410c13aae5aace1afe10c6fd
9101c8ee4cd2f8ee650053b141ff2e7cfd84246e8cb0b1942dd5e0b044d24067

HTTP Headers

GET /jhe8zgo.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saltusllc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 698
date: Wed, 14 Sep 2022 20:06:31 GMT
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3

151.101.66.159

200 OK

14 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (57726)
Size
14 kB (13975 bytes)
Hash
2f0b07689b34366c1b04e9c84cc2b54c
0a49469573f7add891658c75253a4b68953925e5
6bddc997475f4020265128478b59384b44792a0f986d6a04cd79722b99f2f55f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Sep 2022 15:04:34 GMT
etag: W/"6310ca02-e238"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.984945,VS0,VE251
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 13975
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-css/premium-addons.min.css?ver=4.9.32

151.101.66.159

200 OK

34 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-css/premium-addons.min.css?ver=4.9.32
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65536), with no line terminators
Size
34 kB (34407 bytes)
Hash
7ea38e2e5349216f5f11658b7d7c206d
de976e3f584d69f74ebabcd1eca89c4ece3d4d3d
d48161e0e1ebc5e2035fa03fa1b81787caa2812247e2396448bcba4d06415cd0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-css/premium-addons.min.css?ver=4.9.32 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 08 Sep 2022 14:27:36 GMT
etag: W/"6319fbd8-3c2b0"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.997617,VS0,VE253
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 34407
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.4

151.101.66.159

200 OK

13 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.4
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (40474)
Size
13 kB (13240 bytes)
Hash
c6d47cb1940e98d70b21968e8a2f3c57
64ec97ab0cf0edaf492e45bd53a490f1b9005698
8f091c1dee668850a889f5c75bf516ae771cfc6f22c79e7d90cd8f34f72a5f95

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.4 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 15:04:34 GMT
etag: W/"6310ca02-9e41"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.021006,VS0,VE242
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 13240
X-Firefox-Spdy: h2

p.typekit.net/p.css?s=1&k=jhe8zgo&ht=tk&f=24351.24352.24354&a=82892180&app=typekit&e=css

23.36.76.186

200 OK

5 B

URL HTTP/2
p.typekit.net/p.css?s=1&k=jhe8zgo&ht=tk&f=24351.24352.24354&a=82892180&app=typekit&e=css
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
5 B (5 bytes)
Hash
83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb

HTTP Headers

GET /p.css?s=1&k=jhe8zgo&ht=tk&f=24351.24352.24354&a=82892180&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=604800
content-type: text/css
cross-origin-resource-policy: cross-origin
etag: "613bee4d-5"
last-modified: Fri, 10 Sep 2021 23:46:21 GMT
server: nginx
content-length: 5
unused62: 8096267
date: Wed, 14 Sep 2022 20:06:31 GMT
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/jet-elements/assets/css/jet-elements-skin.css?ver=2.6.1

151.101.66.159

200 OK

3.4 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/jet-elements/assets/css/jet-elements-skin.css?ver=2.6.1
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (17678)
Size
3.4 kB (3415 bytes)
Hash
e4ec329f096cbf1f478b5840d5ea05aa
693f2056f64f99838db91b364ac495758686c956
13cfd900f4a2a8dbac2318b0681c84241e25815d3621a92b266fffe088bf6a95

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-elements/assets/css/jet-elements-skin.css?ver=2.6.1 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Fri, 19 Nov 2021 15:40:10 GMT
etag: W/"6197c55a-450f"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.978865,VS0,VE361
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 3415
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0

151.101.66.159

200 OK

4.3 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (19233)
Size
4.3 kB (4343 bytes)
Hash
604fd8fa6bb661c05803395e60da945e
5026347d7d843b0cf1d969674dcce39fa798f1f6
1cde42ac7a1ff03a443a2ab4d73fefc03c962aea0f9f3745256d9f3eef2d1d8b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Sep 2022 15:04:34 GMT
etag: W/"6310ca02-4b4f"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.979024,VS0,VE365
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 4343
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css

151.101.66.159

200 OK

4.1 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (29357)
Size
4.1 kB (4134 bytes)
Hash
72a24467275f3d373c9cacf1ec83f51f
947a7cfb37a3f6f49764fe5c601a535a7bd06bf1
f39b5c2aa5dec648613016b8ae876d21777a620ae958de72046f59c174a52fe5

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Sep 2022 15:05:02 GMT
etag: W/"6310ca1e-72d9"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.989478,VS0,VE358
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 4134
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css

151.101.66.159

200 OK

1.1 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (11736)
Size
1.1 kB (1127 bytes)
Hash
b03ae1c7cb9e90fbc04b59c7baa10700
e2b9a0d140ef3a917de5a754e4fec773e2abd5d6
da259ee612a35b90a48505bd77b940cc0258f74b2da1b849f9ef9ffcf9ddec2f

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Sep 2022 15:04:34 GMT
etag: W/"6310ca02-2dff"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.989877,VS0,VE364
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1127
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/jet-elements/assets/js/lib/slick/slick.min.js?ver=1.8.1

151.101.66.159

200 OK

12 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/jet-elements/assets/js/lib/slick/slick.min.js?ver=1.8.1
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (42862)
Size
12 kB (11829 bytes)
Hash
fe3e9928c68fd0f29512970d6280e41f
2c9886f67d287647f3814a2ade1dd4e36db76092
26996f36f2699a343d01eee3b17b17b01ef5d9c6d9b81d16b90f0d5054f266ee

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-elements/assets/js/lib/slick/slick.min.js?ver=1.8.1 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 19 Nov 2021 15:40:10 GMT
etag: W/"6197c55a-a76f"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.012377,VS0,VE359
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 11829
X-Firefox-Spdy: h2

saltusllc.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.1

151.101.66.159

200 OK

5.4 kB

URL HTTP/2
saltusllc.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.1
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (18145)
Size
5.4 kB (5398 bytes)
Hash
00876403acbb3988b1a0600b22a4f0a6
88ad56c6674f706e190faba8c71f228b6cdff927
8703d04f199b8694ef6db6f65bd684812fea6e9a62b8b6f9304f9cdc98b0593e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.1 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 30 Aug 2022 20:17:43 GMT
etag: W/"630e7067-4797"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: zq61cbd072
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.011041,VS0,VE365
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 5398
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.5

151.101.66.159

200 OK

6.1 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.5
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (24339)
Size
6.1 kB (6119 bytes)
Hash
3d6505157e3cbcecfc97b89ceadba346
55653b97b027c3a7c573f1c9eaf5c1a716ddfaee
515cd94eb94d8965144c57ddf8156d6f0508154ce3898f8e0f694ec52682b793

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.5 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 15:05:02 GMT
etag: W/"6310ca1e-5f3e"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.021101,VS0,VE359
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 6119
X-Firefox-Spdy: h2

push.services.mozilla.com/

35.162.110.205

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.162.110.205:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: aGa1obkBoD2gr4sXX1+e4w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hCgG/HyBMm7YM3EZmOZGEoQqGVI=

saltusllc.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94

151.101.66.159

200 OK

4.1 kB

URL HTTP/2
saltusllc.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
data
Size
4.1 kB (4059 bytes)
Hash
feb20fa17603ebf83bd29bb99298c82f
1944c6bf9ad5f4283fcb221ada39438b8528f5a2
eeffaf3cad83f30cadd4a89d66fcc4ea8e929330625ab40c6ac8a651e41eb595

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 30 Aug 2022 20:17:43 GMT
etag: W/"630e7067-27ee"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: zq61cbd072
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.020688,VS0,VE360
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 4059
X-Firefox-Spdy: h2

saltusllc.com/wp-content/themes/hello-elementor/style.min.css?ver=2.4.2

151.101.66.159

200 OK

2.0 kB

URL HTTP/2
saltusllc.com/wp-content/themes/hello-elementor/style.min.css?ver=2.4.2
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (5854), with no line terminators
Size
2.0 kB (1981 bytes)
Hash
4a58f4e13d77eccf28309807ef9e16cd
37da78d4fc83b8da557fe04b5643bb2cf6a69388
e52d9f305859c2ac8695de99e1d2d141e25ecdb3cdcae138bf8a5db87e351393

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hello-elementor/style.min.css?ver=2.4.2 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 27 Dec 2021 14:17:35 GMT
etag: W/"61c9caff-16de"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.968691,VS0,VE483
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1981
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/jet-elements/assets/css/lib/peel/peel.min.css?ver=1.0.0

151.101.66.159

200 OK

255 B

URL HTTP/2
saltusllc.com/wp-content/plugins/jet-elements/assets/css/lib/peel/peel.min.css?ver=1.0.0
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (512), with no line terminators
Size
255 B (255 bytes)
Hash
c43febbeda9e232dea3d2202a4a28a7a
bca001bae9d79c4c14043843a973d575f5ffc75a
afae979e6668a3c2f7bdfb1b4e2eb6266e5d2606f56c19285fc944a6cb96f23f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-elements/assets/css/lib/peel/peel.min.css?ver=1.0.0 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Fri, 19 Nov 2021 15:40:10 GMT
etag: W/"6197c55a-200"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.990902,VS0,VE485
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 255
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/elementor/css/post-1374.css?ver=1662044913

151.101.66.159

200 OK

983 B

URL HTTP/2
saltusllc.com/wp-content/uploads/elementor/css/post-1374.css?ver=1662044913
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (5052)
Size
983 B (983 bytes)
Hash
07deed36fdb31bd4ffa6311eea78a16b
d6b0ab4ee9c37670b243889d14a46e1087982daf
2ccada41565081ac701b5f4a7781cdc633b5877269de42703d22f82faf986f77

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-1374.css?ver=1662044913 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Sep 2022 15:08:33 GMT
etag: W/"6310caf1-14ac"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.990405,VS0,VE484
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 983
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/elementor/css/post-316.css?ver=1662044913

151.101.66.159

200 OK

970 B

URL HTTP/2
saltusllc.com/wp-content/uploads/elementor/css/post-316.css?ver=1662044913
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (4876)
Size
970 B (970 bytes)
Hash
971883ed5b6240de98df5470e9fd0a14
1817157af2c8b140d3854afdd0987351e6eb2f2c
02163e3c08dac41e763f77b72da82171113502e15ca24c960d6e304d24c61001

HTTP Headers

GET /wp-content/uploads/elementor/css/post-316.css?ver=1662044913 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Sep 2022 15:08:33 GMT
etag: W/"6310caf1-13f9"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.992314,VS0,VE480
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 970
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/fluentform/public/css/fluent-forms-elementor-widget.css?ver=4.3.12

151.101.66.159

200 OK

944 B

URL HTTP/2
saltusllc.com/wp-content/plugins/fluentform/public/css/fluent-forms-elementor-widget.css?ver=4.3.12
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (3921)
Size
944 B (944 bytes)
Hash
c1bf0f96fe72ff80ce7e809584fd29af
ea585538f763dad53f0a92cbfffb95cd30e5eced
929513da01cd786633f45999db7635e168d94859b416fa48616e8b4011560976

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/fluentform/public/css/fluent-forms-elementor-widget.css?ver=4.3.12 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Sep 2022 15:05:31 GMT
etag: W/"6310ca3b-f52"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.981740,VS0,VE489
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 944
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3

151.101.66.159

200 OK

312 B

URL HTTP/2
saltusllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (483)
Size
312 B (312 bytes)
Hash
1a5f57a3c279130e5385dc23c63480ca
495d0b9326b42d552932276b815779bbc09d7083
6f5b533f1629e50e5fe7e2e9ede37072b0f9d65e439d0d56d43daa4373d1d745

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Sep 2022 15:04:34 GMT
etag: W/"6310ca02-29d"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.985549,VS0,VE485
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 312
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/elementor/css/post-124.css?ver=1662044911

151.101.66.159

200 OK

2.9 kB

URL HTTP/2
saltusllc.com/wp-content/uploads/elementor/css/post-124.css?ver=1662044911
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (22899)
Size
2.9 kB (2925 bytes)
Hash
2342273742ded8fe7af4edd69e53dd5a
aaebb0d08cada2ee5d38463189541874865ea25c
65eca2bc5d40e21a3a40cf795203faddf7c4ac0ada8410836feaef44890a5faf

HTTP Headers

GET /wp-content/uploads/elementor/css/post-124.css?ver=1662044911 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Sep 2022 15:08:31 GMT
etag: W/"6310caef-5a4e"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.980973,VS0,VE488
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 2925
X-Firefox-Spdy: h2

saltusllc.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

151.101.66.159

200 OK

4.4 kB

URL HTTP/2
saltusllc.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (11126)
Size
4.4 kB (4405 bytes)
Hash
24957bc8161f979c6e661f46fdc3974f
fa1237ffe8b3745baa78ac481239038e133fcc17
46acf87c90961d413ac24eace25b77a8d5236daf38799fec2daf0bc350cc6ebe

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 30 Aug 2022 20:17:43 GMT
etag: W/"630e7067-2bd8"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: zq61cbd072
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.987159,VS0,VE481
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 4405
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/jet-menu/assets/public/lib/font-awesome/css/v4-shims.min.css?ver=5.12.0

151.101.66.159

200 OK

4.6 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/jet-menu/assets/public/lib/font-awesome/css/v4-shims.min.css?ver=5.12.0
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (26516)
Size
4.6 kB (4632 bytes)
Hash
0a5db1971fb28d6574555fa419b98b29
ea2a03dc8645cf6f05965c5c44ebde3511bdbe3a
4aea8d79474adc94bdcf2ae91cbc201f04b9c457019b74a9cc46a97bfdf24444

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-menu/assets/public/lib/font-awesome/css/v4-shims.min.css?ver=5.12.0 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Fri, 19 Nov 2021 15:39:42 GMT
etag: W/"6197c53e-684e"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.974930,VS0,VE492
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 4632
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.7.4

151.101.66.159

200 OK

967 B

URL HTTP/2
saltusllc.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.7.4
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (13766)
Size
967 B (967 bytes)
Hash
79edb59e593db8239249a7c8539c070b
32d3d9d5af744516ac411cd90b93a64a574485f7
44e0a6a2cf1419b00b9f87626214e6d2adebc1602bf008d25c42cb3748057b99

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.7.4 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Sep 2022 15:04:33 GMT
etag: W/"6310ca01-35ed"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.976535,VS0,VE488
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 967
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/elementor/css/post-8.css?ver=1662044911

151.101.66.159

200 OK

900 B

URL HTTP/2
saltusllc.com/wp-content/uploads/elementor/css/post-8.css?ver=1662044911
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (2415)
Size
900 B (900 bytes)
Hash
13eb4187a91f5cf3e024303364cae57e
983c63b51a0d451a2bcab2b3726657f3227c89a5
fb02ced030558eb6523e6697cd0176c09526137fce1cd6cdfcd29e6b0c48b6f2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-8.css?ver=1662044911 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Sep 2022 15:08:31 GMT
etag: W/"6310caef-b4a"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.979258,VS0,VE485
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 900
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/elementor/css/post-129.css?ver=1662044912

151.101.66.159

200 OK

1.4 kB

URL HTTP/2
saltusllc.com/wp-content/uploads/elementor/css/post-129.css?ver=1662044912
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (6352)
Size
1.4 kB (1424 bytes)
Hash
9ae68d2080d173877c78bcc5e4f5109e
366d35fcdec49181cd9c7ad963d262ba4072adc9
31d4aa9b5251f57403cfe03b4b2b5c3c936987751724e156eca6ca05522f6027

HTTP Headers

GET /wp-content/uploads/elementor/css/post-129.css?ver=1662044912 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Sep 2022 15:08:32 GMT
etag: W/"6310caf0-28f9"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.982415,VS0,VE482
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1424
X-Firefox-Spdy: h2

saltusllc.com/wp-content/themes/hello-theme-child-master/style.css?ver=1.0.0

151.101.66.159

200 OK

446 B

URL HTTP/2
saltusllc.com/wp-content/themes/hello-theme-child-master/style.css?ver=1.0.0
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text
Size
446 B (446 bytes)
Hash
d57352e41e90ce59ad2c054a18213cef
c8d8d70cf824bf72a616a36ab01e290c3ec37eab
fb758451b8bd03d33814c41c68ec1a9975341d6dd9c023b955182b76cd5cab92

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hello-theme-child-master/style.css?ver=1.0.0 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 24 Nov 2021 21:27:53 GMT
etag: W/"619eae59-354"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.974134,VS0,VE489
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 446
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/elementor/css/post-686.css?ver=1662044911

151.101.66.159

200 OK

821 B

URL HTTP/2
saltusllc.com/wp-content/uploads/elementor/css/post-686.css?ver=1662044911
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (3747)
Size
821 B (821 bytes)
Hash
e8910ba4d952f01801010639f40e2cc3
e83d30e47e1b7f67b98846c841d8281bb9a41a74
28a59058f4e48140085587e4ee58c06425b7f2eae3d350f22310c8b126d2473a

HTTP Headers

GET /wp-content/uploads/elementor/css/post-686.css?ver=1662044911 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Sep 2022 15:08:31 GMT
etag: W/"6310caef-ff4"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.977140,VS0,VE482
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 821
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/jet-menu/integration/themes/hello-elementor/assets/css/style.css?ver=2.1.4

151.101.66.159

200 OK

116 B

URL HTTP/2
saltusllc.com/wp-content/plugins/jet-menu/integration/themes/hello-elementor/assets/css/style.css?ver=2.1.4
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text
Size
116 B (116 bytes)
Hash
e6eaae649aa2b178e75fa93f11841198
f84f96f358a89b649f7c53236424947ef34460d4
c4f0498de920436d562d12c56f73e790287960e5b9a7af62bb3ac56c6a6479a8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-menu/integration/themes/hello-elementor/assets/css/style.css?ver=2.1.4 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Fri, 19 Nov 2021 15:39:42 GMT
etag: W/"6197c53e-75"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.967410,VS0,VE491
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 116
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/elementor/css/post-305.css?ver=1662044914

151.101.66.159

200 OK

964 B

URL HTTP/2
saltusllc.com/wp-content/uploads/elementor/css/post-305.css?ver=1662044914
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (4895)
Size
964 B (964 bytes)
Hash
9da3fa0809ae9fde53b8eef17d49c5c1
c3d8aad7331b355181f97ef007781c02b4fe7f45
31b6b195355dadbc7aa00af431d71f7308ebb1bbd2e70cf4551cc3916e554ab1

HTTP Headers

GET /wp-content/uploads/elementor/css/post-305.css?ver=1662044914 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Sep 2022 15:08:34 GMT
etag: W/"6310caf2-140e"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.996726,VS0,VE482
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 964
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/elementor/css/post-272.css?ver=1662044914

151.101.66.159

200 OK

970 B

URL HTTP/2
saltusllc.com/wp-content/uploads/elementor/css/post-272.css?ver=1662044914
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (4871)
Size
970 B (970 bytes)
Hash
0df47cf501cc727e0131e5f73005864b
d1dd8787bc1432c5b8c8febdf5356516dec87de7
a2d915dca25ae23f47799b8a75e61ecd54421ab6bfc5dd3e2158fb83c1593562

HTTP Headers

GET /wp-content/uploads/elementor/css/post-272.css?ver=1662044914 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Sep 2022 15:08:34 GMT
etag: W/"6310caf2-13f4"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.996925,VS0,VE482
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 970
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/jet-menu/assets/public/lib/vue/vue.min.js?ver=2.6.11

151.101.66.159

200 OK

37 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/jet-menu/assets/public/lib/vue/vue.min.js?ver=2.6.11
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65449)
Size
37 kB (37115 bytes)
Hash
c637a3e7b864170d49d4904938e2a8ba
d1b04957d0d3c2ffc7398b134eba7fa5a7641138
f9122d5d153d77c2bc3504da2e30a8f038ec7e6176f0424323a3ecd7400fa929

HTTP Headers

GET /wp-content/plugins/jet-menu/assets/public/lib/vue/vue.min.js?ver=2.6.11 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 19 Nov 2021 15:39:42 GMT
etag: W/"6197c53e-16de6"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.997990,VS0,VE481
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 37115
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-css/slick.min.css?ver=4.9.32

151.101.66.159

200 OK

1.1 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-css/slick.min.css?ver=4.9.32
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (3827), with no line terminators
Size
1.1 kB (1090 bytes)
Hash
640e79225642883059c790dfcfbc5c1e
af95786dc3b89794f88868a7008f930e2babc65e
e04ef2fb8405347392de2db6c8056c91ae2fee430ba3e2516b38fbc9514fc707

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-css/slick.min.css?ver=4.9.32 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 08 Sep 2022 14:27:36 GMT
etag: W/"6319fbd8-ef3"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.997417,VS0,VE486
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1090
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1

151.101.66.159

200 OK

7.9 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (25115)
Size
7.9 kB (7921 bytes)
Hash
980e80ed6ddbdc9807aea533c70bb286
5740cc3f4f32e6c07083b160e5e729ddca90b634
4a8490c04d4be66e5bb053e8f9483484cb5c798f93ef06f9f94aade11aa47533

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 15:05:03 GMT
etag: W/"6310ca1f-6272"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.000422,VS0,VE485
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 7921
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/premium-addons.min.js?ver=4.9.32

151.101.66.159

200 OK

14 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/premium-addons.min.js?ver=4.9.32
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (46260), with no line terminators
Size
14 kB (13966 bytes)
Hash
07b7734a26becd6425a08f6cc0fb600f
0732b9005f16e824261deb724647659f1e7cc637
3eadff8e9971bcbd6f3d93dcce2941a79a857b911c3152ed05e7b6195bd249ac

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/premium-addons.min.js?ver=4.9.32 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 08 Sep 2022 14:27:37 GMT
etag: W/"6319fbd9-b4b4"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.012027,VS0,VE477
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 13966
X-Firefox-Spdy: h2

saltusllc.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1

151.101.66.159

200 OK

7.4 kB

URL HTTP/2
saltusllc.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (8189)
Size
7.4 kB (7442 bytes)
Hash
7070cf6c839a09af2a84f926dd2f95e1
2ac5f6312b4cc85f39804d4a61eeb00c2cced58e
ed584ebba9826c2d9fb5078ca275ce47d05b2a9a1f075e7493526fe7fe458c4c

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 30 Aug 2022 20:17:43 GMT
etag: W/"630e7067-50eb"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: zq61cbd072
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.010030,VS0,VE479
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 7442
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/jet-engine/assets/js/frontend.js?ver=2.10.3

151.101.66.159

200 OK

11 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/jet-engine/assets/js/frontend.js?ver=2.10.3
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text
Size
11 kB (10649 bytes)
Hash
2d35aa9145884a382db4ed3cda634bca
57e9afcdba735b2054e9729b291b6680e1463d13
757eaf4051310991a13c3b7074965aae822502883f898baacaf66b95634dab64

HTTP Headers

GET /wp-content/plugins/jet-engine/assets/js/frontend.js?ver=2.10.3 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 27 Dec 2021 14:17:25 GMT
etag: W/"61c9caf5-b5a3"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.012207,VS0,VE480
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 10649
X-Firefox-Spdy: h2

saltusllc.com/wp-includes/js/jquery/jquery.ui.touch-punch.js?ver=0.2.2

151.101.66.159

200 OK

594 B

URL HTTP/2
saltusllc.com/wp-includes/js/jquery/jquery.ui.touch-punch.js?ver=0.2.2
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (985)
Size
594 B (594 bytes)
Hash
49d90bbe691b345a049fb9fa300b1bcf
9a7c6cbaf87c01b44f7de77a95d982a0efdf2af4
b74e9602a1700c66893b8051182ecb4a8f07954b78001a1b1cabf6d9a3f334e3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.ui.touch-punch.js?ver=0.2.2 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 30 Aug 2022 20:17:43 GMT
etag: W/"630e7067-49b"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: zq61cbd072
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.011245,VS0,VE481
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 594
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/jet-elements/assets/js/lib/peeljs/peeljs.js?ver=1.0.0

151.101.66.159

200 OK

14 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/jet-elements/assets/js/lib/peeljs/peeljs.js?ver=1.0.0
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text
Size
14 kB (14064 bytes)
Hash
861e673af5a69de9e9b790de7a914a8e
2fd481e7844e3f13217d2a3b87a6e87e49d86331
158efee1707a487cf17b06afab13342761ac27a3ac72c639b01546dcf3b84ac3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-elements/assets/js/lib/peeljs/peeljs.js?ver=1.0.0 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 19 Nov 2021 15:40:10 GMT
etag: W/"6197c55a-bf70"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.009902,VS0,VE484
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 14064
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/slick.min.js?ver=4.9.32

151.101.66.159

200 OK

12 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/slick.min.js?ver=4.9.32
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (42239), with no line terminators
Size
12 kB (11593 bytes)
Hash
7e902682575ac8dd951a0d588f3a6337
3d8e0960f0dcb408361ab3cf3a8d062e6cab723a
ae2dd139970e386545bd5579fd0b76c6de06a9cfbf10883e0b73185a08df4305

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/slick.min.js?ver=4.9.32 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 08 Sep 2022 14:27:37 GMT
etag: W/"6319fbd9-a4ff"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.011719,VS0,VE484
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 11593
X-Firefox-Spdy: h2

saltusllc.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

151.101.66.159

200 OK

2.6 kB

URL HTTP/2
saltusllc.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (6475), with no line terminators
Size
2.6 kB (2581 bytes)
Hash
cba765ca076cb13c7678f0293fb8a3da
98430a0a3db9c19a16f6940750a6738c4d00f962
f68a3fba394baf3508e7987049a6037d9f3e212dc9698976df9fbeb5703379ab

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 30 Aug 2022 20:17:43 GMT
etag: W/"630e7067-194b"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: zq61cbd072
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.019118,VS0,VE477
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 2581
X-Firefox-Spdy: h2

saltusllc.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

151.101.66.159

200 OK

7.6 kB

URL HTTP/2
saltusllc.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Size
7.6 kB (7559 bytes)
Hash
2059fe073bfc62ce84fe8fc1f42d35a9
68038ff5383ffde15542f57782d7a53c8de8bb48
543dbc6a5dd60032fb9d74beef1f7ac5f6cee543b6422b1f0928b9001d050eb8

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 30 Aug 2022 20:17:43 GMT
etag: W/"630e7067-4ac6"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: zq61cbd072
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.019830,VS0,VE481
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 7559
X-Firefox-Spdy: h2

saltusllc.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3

151.101.66.159

200 OK

1.7 kB

URL HTTP/2
saltusllc.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (4875)
Size
1.7 kB (1736 bytes)
Hash
13d536181f99675ef7d13d91c86c24dd
c30ec279027b1dc05df149f3953b384f50a72a05
1192c8ec0e73df274d3ffb2302091f67d2a4fc15200a6fd138661dfd7cc2f222

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 30 Aug 2022 20:17:43 GMT
etag: W/"630e7067-132e"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: zq61cbd072
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.020583,VS0,VE483
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1736
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

151.101.66.159

200 OK

3.3 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (12198), with no line terminators
Size
3.3 kB (3281 bytes)
Hash
e7e06a56acbe48a5e94540829d446734
a62e3d7ea0dbd0a3e771f419377882aee5512e67
42ba07f11715edb58a365296c32ae85230bb28f164a34f561f295cbceb1f5981

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 15:04:35 GMT
etag: W/"6310ca03-2fa6"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.020871,VS0,VE485
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 3281
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/jet-menu/includes/elementor/assets/public/js/legacy/widgets-scripts.js?ver=2.1.4

151.101.66.159

200 OK

3.7 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/jet-menu/includes/elementor/assets/public/js/legacy/widgets-scripts.js?ver=2.1.4
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (2070)
Size
3.7 kB (3684 bytes)
Hash
40892fb103fe0b77adab6c9dc192923f
775d023777da2ae16c0763e4f5d78b0c8126aeeb
7f85ca1fc613cabd2cc5364b5ad739af6f744b27a2b3bd2b7fa3be9e90eba7a9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-menu/includes/elementor/assets/public/js/legacy/widgets-scripts.js?ver=2.1.4 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 19 Nov 2021 15:39:42 GMT
etag: W/"6197c53e-2c5b"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.021265,VS0,VE489
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 3684
X-Firefox-Spdy: h2

saltusllc.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2

151.101.66.159

200 OK

5.5 kB

URL HTTP/2
saltusllc.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (15660)
Size
5.5 kB (5515 bytes)
Hash
17db16eba9de064a60b18a592b36634a
82fc955209623803111e48d5be3cf345315be6f5
1144901adf4e1d54838e6e04a2b75314f3b95518ee654d8c1742af50e355b433

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 30 Aug 2022 20:17:43 GMT
etag: W/"630e7067-48b9"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: zq61cbd072
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.038228,VS0,VE482
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 5515
X-Firefox-Spdy: h2

saltusllc.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2

151.101.66.159

200 OK

14 kB

URL HTTP/2
saltusllc.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (43771)
Size
14 kB (13906 bytes)
Hash
1047dd6779111ec73736abd71a40fef9
e08643922ce9a1a488f2a72c0341807f59f7528e
d85287eacda4e97356cf1b53ec765e34c8913558d6fb485b334debf78c89a3bf

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 30 Aug 2022 20:17:43 GMT
etag: W/"630e7067-15b64"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: zq61cbd072
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.967731,VS0,VE597
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 13906
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.4

151.101.66.159

200 OK

17 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.4
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65497)
Size
17 kB (16661 bytes)
Hash
0d6d7a1b633040a4a9f7736644bbf873
eedc125971465c647fe0669b0e3347a51e450e6d
374e9fd24e1f87370de627a7da3462b93f778c75be64030a1e0c1bdc0303750c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.4 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Sep 2022 15:04:33 GMT
etag: W/"6310ca01-1a788"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.976864,VS0,VE601
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 16661
X-Firefox-Spdy: h2

saltusllc.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

151.101.66.159

200 OK

34 kB

URL HTTP/2
saltusllc.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65447)
Size
34 kB (34060 bytes)
Hash
22b0253c0ecce70e41e296d176b0d972
a161c363d2092739db21bfeb2cf23c980ec71580
181967b7928e133789c8edbb8bdcb73d44a0328d884b613f8ebfb182b4c3c52e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 30 Aug 2022 20:17:43 GMT
etag: W/"630e7067-15db1"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: zq61cbd072
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.986812,VS0,VE610
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 34060
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=4.9.32

151.101.66.159

200 OK

14 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=4.9.32
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (59158)
Size
14 kB (14284 bytes)
Hash
25b37bc500e807c9f09d41f36d06a3ad
008541e3bc221a9e0cfa873248ee4dc05b563d8e
1033a30450338e77b9c322f9ae9ad68b50f801272bef293933d6135f9126aa13

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=4.9.32 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Sep 2022 15:04:34 GMT
etag: W/"6310ca02-e7d0"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.997176,VS0,VE602
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 14284
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/jet-elements/assets/js/lib/html2canvas/html2canvas.min.js?ver=1.0.0-rc.5

151.101.66.159

200 OK

46 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/jet-elements/assets/js/lib/html2canvas/html2canvas.min.js?ver=1.0.0-rc.5
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (64406)
Size
46 kB (46145 bytes)
Hash
f4da40d617017e82d28068d3fc911606
1164b66f18f8cb760dc47f88bf6023b11508f91c
023a755073f2e3e6bb0ae13e7150a9352db152ab2db1adc31d692e579517fd47

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-elements/assets/js/lib/html2canvas/html2canvas.min.js?ver=1.0.0-rc.5 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 19 Nov 2021 15:40:10 GMT
etag: W/"6197c55a-285e5"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.006803,VS0,VE599
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 46145
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.6.1

151.101.66.159

200 OK

25 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.6.1
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65536), with no line terminators
Size
25 kB (24981 bytes)
Hash
40d58a859525753889d4d4e2b9104b55
d40db09ba0d80994bef8cb766a30e6b70624c0e6
fb438eb062c9056cbb9c0d5bc08ed933e13498365c043d22a8cb296f8c549cf6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.6.1 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 19 Nov 2021 15:40:10 GMT
etag: W/"6197c55a-110ab"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:31 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185991.021171,VS0,VE611
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 24981
X-Firefox-Spdy: h2

use.typekit.net/af/987a60/00000000000000007735a543/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3

23.36.76.186

200 OK

18 kB

URL HTTP/2
use.typekit.net/af/987a60/00000000000000007735a543/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 18064, version 1.0\012- data
Size
18 kB (18064 bytes)
Hash
645b7f7d03036ef871159c8fbf096258
09b5e1c1b5cd52c9813b4230738965ad74cbe58e
fcf9ad39a58bd521789931e384b831a9ce7bbe3b5f9a05bf02c352e1e60c7ebb

HTTP Headers

GET /af/987a60/00000000000000007735a543/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://saltusllc.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 18064
etag: "5e75b786eedb2c68e3ea4f8e9407f415881535c8"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 14 Sep 2022 20:06:31 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/da581f/00000000000000007735a540/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n2&v=3

23.36.76.186

200 OK

17 kB

URL HTTP/2
use.typekit.net/af/da581f/00000000000000007735a540/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n2&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 17028, version 1.0\012- data
Size
17 kB (17028 bytes)
Hash
e3a65c7007aaad1e50359311f4a977a8
231974a98760122eaa87ad3d6a1e67c24a4bb71d
b6715e33848287dd8600843b5a427554eab899a9de842eaa5dfd2d1fa0823e0f

HTTP Headers

GET /af/da581f/00000000000000007735a540/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n2&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://saltusllc.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 17028
etag: "ff6115176ef40b2007d17b316eaeef44a30d492d"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 14 Sep 2022 20:06:31 GMT
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/2021/11/saltus-services-card-background.jpg

151.101.66.159

200 OK

25 kB

URL HTTP/2
saltusllc.com/wp-content/uploads/2021/11/saltus-services-card-background.jpg
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, copyright=Copyright (c) 2018 Yurii Andreichyn/Shutterstock. No use without permission.], progressive, precision 8, 344x423, components 3\012- data
Size
25 kB (24745 bytes)
Hash
7f3a6842e428f0232866079f8f759b86
b961666d0ad99b0189126e7a9737462472f90e95
6ad4cf228e7aa63fbaf82f0c21b0548d4630adbc84cd6068b6b19f33bd3f914b

HTTP Headers

GET /wp-content/uploads/2021/11/saltus-services-card-background.jpg HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/wp-content/uploads/elementor/css/post-1374.css?ver=1662044913
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Fri, 19 Nov 2021 17:26:54 GMT
etag: W/"6197de5e-616d"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:32 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185992.909672,VS0,VE242
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 24745
X-Firefox-Spdy: h2

saltusllc.com/wp-content/themes/hello-theme-child-master/custom-fonts/webFonts/AmpleSoftRegular/font.woff2

151.101.66.159

200 OK

19 kB

URL HTTP/2
saltusllc.com/wp-content/themes/hello-theme-child-master/custom-fonts/webFonts/AmpleSoftRegular/font.woff2
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), CFF, length 19000, version 0.0\012- data
Size
19 kB (19000 bytes)
Hash
21bc83fd5c4bdbb2e65bfb826a34d60c
54e08b89a775176e007ece38d65cf87ff2f71702
c1c197b74cd2b8a1be02c46763f40b61c023ebd3898976ec2036edf49341f5dc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hello-theme-child-master/custom-fonts/webFonts/AmpleSoftRegular/font.woff2 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://saltusllc.com/wp-content/themes/hello-theme-child-master/style.css?ver=1.0.0
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Wed, 17 Nov 2021 17:41:31 GMT
etag: "61953ecb-4a38"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
access-control-allow-origin: *
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:32 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185992.924723,VS0,VE246
vary: Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 19000
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/2021/11/construction-crew-with-masks.jpg

151.101.66.159

200 OK

190 kB

URL HTTP/2
saltusllc.com/wp-content/uploads/2021/11/construction-crew-with-masks.jpg
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x1280, components 3\012- data
Size
190 kB (190205 bytes)
Hash
e902b53e40dfa83806acaed9a938aa52
b498c8c06a55972a33d5aa5d78f207bfc96d66e0
2a0d74cb13ea1672d22cfe7459a15522f68b96967c64f197ae88d7d700349ab8

HTTP Headers

GET /wp-content/uploads/2021/11/construction-crew-with-masks.jpg HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/wp-content/uploads/elementor/css/post-316.css?ver=1662044913
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 22 Nov 2021 16:38:54 GMT
etag: W/"619bc79e-2f57b"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:32 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185992.914857,VS0,VE258
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 190205
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2

151.101.66.159

200 OK

78 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Size
78 kB (78196 bytes)
Hash
e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://saltusllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=4.9.32
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Thu, 01 Sep 2022 15:04:34 GMT
etag: "6310ca02-13174"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
access-control-allow-origin: *
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:32 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185992.925499,VS0,VE397
vary: Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 78196
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/2021/11/saltus-136-140-West-42nd-street-background.jpg

151.101.66.159

200 OK

29 kB

URL HTTP/2
saltusllc.com/wp-content/uploads/2021/11/saltus-136-140-West-42nd-street-background.jpg
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
JPEG image data, progressive, precision 8, 440x400, components 3\012- data
Size
29 kB (29067 bytes)
Hash
0f7082b668adc131dad95d0b85213113
14e3a568fc5c19be4e78985c1f9e3f8ae4d06482
579666e4251ecb67312f3b5cdf959b46f104da20fa9610b20efa25a540f7fc6b

HTTP Headers

GET /wp-content/uploads/2021/11/saltus-136-140-West-42nd-street-background.jpg HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 22 Nov 2021 17:59:22 GMT
etag: W/"619bda7a-71cc"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:32 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185992.921801,VS0,VE412
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 29067
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2

151.101.66.159

200 OK

77 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Size
77 kB (76764 bytes)
Hash
f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://saltusllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=4.9.32
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Thu, 01 Sep 2022 15:04:34 GMT
etag: "6310ca02-12bdc"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
access-control-allow-origin: *
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:32 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185992.941988,VS0,VE395
vary: Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 76764
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js

151.101.66.159

200 OK

676 B

URL HTTP/2
saltusllc.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (1320)
Size
676 B (676 bytes)
Hash
1d45e9afbaa397dc8555ee2417e3db6b
25a8826c0b271ac5cb306d7e778b6b47295b51ad
05a70c1a691f2b6af00a878dcc2fa3fee2f4b6bfe41ac990a8d559d6233d3049

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 15:04:34 GMT
etag: W/"6310ca02-54f"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:32 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185992.273843,VS0,VE125
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 676
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/2021/11/51-jay-street-property-2.jpg

151.101.66.159

200 OK

279 kB

URL HTTP/2
saltusllc.com/wp-content/uploads/2021/11/51-jay-street-property-2.jpg
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 2560x1548, components 3\012- data
Size
279 kB (279071 bytes)
Hash
15086a388351d16d5b915d14542534b7
82faca2e6acaefd1145dea42d01bb0536a22555c
45af66880782c66102a0adb207dfbbc14c53e5291caf7a523ce198a05401ffa6

HTTP Headers

GET /wp-content/uploads/2021/11/51-jay-street-property-2.jpg HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 18 Apr 2022 17:06:04 GMT
etag: W/"625d9a7c-44c27"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:32 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185992.917960,VS0,VE488
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 279071
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/2021/11/saltus-footer-background.svg

151.101.66.159

200 OK

3.0 kB

URL HTTP/2
saltusllc.com/wp-content/uploads/2021/11/saltus-footer-background.svg
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5711), with no line terminators
Size
3.0 kB (3038 bytes)
Hash
b3db72bb709c04b02d5e8d85256595f5
5470a7f3c281eaf3c1866fffc0ed805e87d5ddbb
0c0556d7996b395f989bbe596e49f045c077b93ab5721da32aa193c6217ced01

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2021/11/saltus-footer-background.svg HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/wp-content/uploads/elementor/css/post-149.css?ver=1662044912
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 18 Nov 2021 17:13:36 GMT
etag: W/"619689c0-164f"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:32 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185992.922449,VS0,VE489
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
access-control-allow-origin: *
x-fw-type: VISIT
content-length: 3038
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/2021/11/saltus-logo-yellow.png

151.101.66.159

200 OK

18 kB

URL HTTP/2
saltusllc.com/wp-content/uploads/2021/11/saltus-logo-yellow.png
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
PNG image data, 600 x 129, 8-bit/color RGBA, non-interlaced\012- data
Size
18 kB (17980 bytes)
Hash
609379373e1774cbaf8b13386ebc37ad
9ef767cafcfedf749b47bbae9879fc52e6a65c1b
574d54994cbbf6117f59eb3b72ff35773ebd3199a1e002ba1f233210c7972638

HTTP Headers

GET /wp-content/uploads/2021/11/saltus-logo-yellow.png HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 17 Nov 2021 19:22:16 GMT
etag: W/"61955668-4768"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:32 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185992.974242,VS0,VE479
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 17980
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/2021/11/construction-crew.jpg

151.101.66.159

200 OK

201 kB

URL HTTP/2
saltusllc.com/wp-content/uploads/2021/11/construction-crew.jpg
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x1280, components 3\012- data
Size
201 kB (200848 bytes)
Hash
6c8539bc5af89382111cd169647ffddc
e5496e3da2309472e27d7c3bfb279f1aa194256b
ab6a34c6c9c9768aa543bf78328bee651d082a7ae8c7ffbb3bafa19b02e5779a

HTTP Headers

GET /wp-content/uploads/2021/11/construction-crew.jpg HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/wp-content/uploads/elementor/css/post-330.css?ver=1662044913
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 22 Nov 2021 16:40:30 GMT
etag: W/"619bc7fe-316f5"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:32 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185992.913848,VS0,VE564
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 200848
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/2021/11/saltus-nyc-aerial-skyline.jpg

151.101.66.159

200 OK

428 kB

URL HTTP/2
saltusllc.com/wp-content/uploads/2021/11/saltus-nyc-aerial-skyline.jpg
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x1280, components 3\012- data
Size
428 kB (428311 bytes)
Hash
ec064ab3fa23e1fef88a7df25d9ffbd2
e903017adf2215f6fd8f5670870841e1cc03f20d
d6763bde8cda5d872b3a282e683c8cf1446aaafd9dc100f70d2d2d7366a373b5

HTTP Headers

GET /wp-content/uploads/2021/11/saltus-nyc-aerial-skyline.jpg HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/wp-content/uploads/elementor/css/post-124.css?ver=1662044911
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 22 Nov 2021 16:41:39 GMT
etag: W/"619bc843-69164"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:32 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185992.903839,VS0,VE598
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 428311
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/2021/11/saltus-brooklyn-bridge-manhattan.jpg

151.101.66.159

200 OK

323 kB

URL HTTP/2
saltusllc.com/wp-content/uploads/2021/11/saltus-brooklyn-bridge-manhattan.jpg
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x1280, components 3\012- data
Size
323 kB (322599 bytes)
Hash
22de531663a20cb3ed3fa4b525298541
ac8bd9c83b2334ea6a657dce946a0734913b0a41
a4abab231b9b41f9368c469ec1de26758d95e28080b0c3ea7c8e58edda4ca15d

HTTP Headers

GET /wp-content/uploads/2021/11/saltus-brooklyn-bridge-manhattan.jpg HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/wp-content/uploads/elementor/css/post-124.css?ver=1662044911
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 22 Nov 2021 19:12:13 GMT
etag: W/"619beb8d-4fc30"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:32 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185992.921754,VS0,VE619
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 322599
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/2021/11/construction-workers-looking-at-work-site.jpg

151.101.66.159

200 OK

146 kB

URL HTTP/2
saltusllc.com/wp-content/uploads/2021/11/construction-workers-looking-at-work-site.jpg
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x1280, components 3\012- data
Size
146 kB (146475 bytes)
Hash
b25a5495ca6a7a917799ebf8eb78a610
d790dca6514d411321db42f596b73f4ced40b135
d65db24307498710de11781b5f393516e7d686d025cd618cea10ab18df78f8f3

HTTP Headers

GET /wp-content/uploads/2021/11/construction-workers-looking-at-work-site.jpg HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/wp-content/uploads/elementor/css/post-323.css?ver=1662044913
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 22 Nov 2021 16:39:53 GMT
etag: W/"619bc7d9-24abb"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:32 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185992.914397,VS0,VE648
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 146475
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/2021/11/construction-surveyors.jpg

151.101.66.159

200 OK

183 kB

URL HTTP/2
saltusllc.com/wp-content/uploads/2021/11/construction-surveyors.jpg
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x1280, components 3\012- data
Size
183 kB (183358 bytes)
Hash
79bb044ed02ca095cc1be4b9527aa166
9be0ed693ead48e05ccbe028f1098b0c504e2f1f
3747155ca64a0ffb9ba31dbfef4f6bbe72ea77615250db6465d1448c811506ac

HTTP Headers

GET /wp-content/uploads/2021/11/construction-surveyors.jpg HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/wp-content/uploads/elementor/css/post-1374.css?ver=1662044913
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 22 Nov 2021 16:37:59 GMT
etag: W/"619bc767-2d1a0"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:32 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185992.904750,VS0,VE721
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 183358
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/2021/11/saltus-bg-image.jpg

151.101.66.159

200 OK

68 kB

URL HTTP/2
saltusllc.com/wp-content/uploads/2021/11/saltus-bg-image.jpg
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size
68 kB (68343 bytes)
Hash
3142ed628d0a38f9ff7f1c9ae659ecc6
691defb08b68bfab5339fe216cea8a1af1e7cf37
6a57b465afdad4e658758a7315ed79ca4cbf4b9dd56a673a0108024da22bf3c8

HTTP Headers

GET /wp-content/uploads/2021/11/saltus-bg-image.jpg HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/wp-content/uploads/elementor/css/post-124.css?ver=1662044911
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Tue, 23 Nov 2021 15:05:38 GMT
etag: W/"619d0342-125c6"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:32 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185992.916355,VS0,VE719
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 68343
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4306
Expires: Wed, 14 Sep 2022 21:18:18 GMT
Date: Wed, 14 Sep 2022 20:06:32 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4306
Expires: Wed, 14 Sep 2022 21:18:18 GMT
Date: Wed, 14 Sep 2022 20:06:32 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4306
Expires: Wed, 14 Sep 2022 21:18:18 GMT
Date: Wed, 14 Sep 2022 20:06:32 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4306
Expires: Wed, 14 Sep 2022 21:18:18 GMT
Date: Wed, 14 Sep 2022 20:06:32 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4306
Expires: Wed, 14 Sep 2022 21:18:18 GMT
Date: Wed, 14 Sep 2022 20:06:32 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77296a12-991a-4ab6-9ce0-05b3a82d6664.jpeg

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77296a12-991a-4ab6-9ce0-05b3a82d6664.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10366 bytes)
Hash
8c1314c7778ea0d32e8c69dae0c38b6d
c4772b9b182f9f905fead84f3761fe296073ca65
5fc8dc23f9b4d150b834aa69b358edd9f9f5f449607df07d579df66098d8aac6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77296a12-991a-4ab6-9ce0-05b3a82d6664.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10366
x-amzn-requestid: e4d41ba8-41c5-4350-bacb-850136434eaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YEw28GD7IAMFjCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63182e92-4098031d1475d45f4899654b;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 05:39:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BcQa5iNJlJ_rm50BT4O-rIEayxXyD0Jb5dUq_sUccIWfv12HfBec0g==
via: 1.1 7d01bcfcfe27ce0b8979cf621dd081de.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 22:22:39 GMT
age: 78233
etag: "c4772b9b182f9f905fead84f3761fe296073ca65"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.1 kB (6078 bytes)
Hash
f2157f7cfbdeb607f28ae51eb090f2c3
33d0dcadaa42179b2eae914c8ad16c9c088afbc9
135cd89c2c82f0f5e53d2612d5eac868c175b28a567a07e63a2073942e36a066

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6078
x-amzn-requestid: e09c099f-5a2d-49d7-b6ab-e16f09c28bd0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YavJEEM5IAMFreQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f8a0-0fbb7b3d0cd6fbfa04f5a5d2;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:39:44 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ur-HTN2DS8b3ojSQldJOZi6YW2wtCwRfbGqxg49ZUJ_00hC_rFxYEw==
via: 1.1 9b21fd56256eda6d1379e32829c4c446.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 22:05:07 GMT
age: 79285
etag: "33d0dcadaa42179b2eae914c8ad16c9c088afbc9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

16 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
16 kB (15547 bytes)
Hash
56811a1a20a467464e1f3da171ef8b14
366b2090d409d694b72b4b4131df46dd65d69c5a
4c208fb88884166adf4ecc5882f75948b4a87d85c76ad6e7137e8edbd125c996

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 15547
x-amzn-requestid: a78f7d90-84c3-4198-88bf-1d722c37f09f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yauv4EUDoAMF13A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f7ff-49535e5525606250306488ba;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CWzE6n2U7hSFcSIHX5z76DPIid9pvbOqM6ikOlegBxzbuRThMeLKZA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:46:14 GMT
etag: "366b2090d409d694b72b4b4131df46dd65d69c5a"
content-type: image/jpeg
age: 80418
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34a3d36b-806f-4fea-a370-b26c1e8473d0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (5988 bytes)
Hash
f5befd5bb8e6d5dad2465be69d5a33e4
e5b46c3ca439a09950290cada1af5e27cede10f2
4dc0a3373fb4c1830c4e2420dddbcbe8dceecf10e969cbe8d02368e41207832c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34a3d36b-806f-4fea-a370-b26c1e8473d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5988
x-amzn-requestid: a0d81c7a-14e3-443d-8fb7-19241f06d3c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yaux0H77IAMF2_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f80b-0fe6fbbe75e891b925f88dc2;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3PbHWkNMa0XkuY_FcTO22i9YwMdqlJPCho7FlBwdbuUnbWrOv0w5Hg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:59:03 GMT
age: 79649
etag: "e5b46c3ca439a09950290cada1af5e27cede10f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10138 bytes)
Hash
0789404fdbe3613d465d8fa89a63d7b8
0617d2e513097ca415a1d07cd39b1cb64d832ecf
80e55e383f354113c3694bbcc00fd1c544a97079bd3c462f1b90e952c0634bac

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10138
x-amzn-requestid: bdf798d9-6729-4363-a900-f32c4041d0c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YU5qsGZ-oAMFQ1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ea311-7b146c0620a83d5c00446f87;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 03:10:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OM9K72ukk0cuyR1ZcV5xWXnEd8U9OgeQi7bkCe0Pzn3BfdLMvSdSXg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 03:09:32 GMT
age: 61020
etag: "0617d2e513097ca415a1d07cd39b1cb64d832ecf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (14151 bytes)
Hash
fef8234ab83f6f8f8b29665f592cbc9f
a3e706d6309e4a9d7b293f2b9255f1550ba5e9b7
569c8c9736026fc310e148d4d74081e96a86245baaa1f784280d44a1cbd25ed0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 14151
x-amzn-requestid: d5bc9be4-af3a-40fd-bfc9-1ac4769d2d3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yauv4GhboAMF2dA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f7ff-375df72d2d67582635b9e4ae;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CZRpgjU_AxNYoyeSTOwhJhONl2DS4pvCLJ62RgAFp0flw-kPz3GkpQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 22:06:54 GMT
etag: "a3e706d6309e4a9d7b293f2b9255f1550ba5e9b7"
content-type: image/jpeg
age: 79178
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js

151.101.66.159

200 OK

1.3 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (3262)
Size
1.3 kB (1335 bytes)
Hash
ca5ad40c19e2800afe2411e53a38f546
819d80c7df323743255e88f6b7cea4756106f51c
f3826c2c4e275aae537ce985ac4683ba06082bff89ba9487617e2296af3fe8a4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 15:05:02 GMT
etag: W/"6310ca1e-ce9"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:32 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185992.260371,VS0,VE484
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1335
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/2021/12/1717-broadway-street-property.jpg

151.101.66.159

200 OK

111 kB

URL HTTP/2
saltusllc.com/wp-content/uploads/2021/12/1717-broadway-street-property.jpg
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1248x1200, components 3\012- data
Size
111 kB (110577 bytes)
Hash
8dd2ebe476e4f2a7b87902641d9f60a0
1cb2fad019bf65d51c237f5a13f7c36cf51ab361
c482d5624c2388b3d0a5a79312c8660cb3eb9ba179e079ddf9b8a7be8d020e9b

HTTP Headers

GET /wp-content/uploads/2021/12/1717-broadway-street-property.jpg HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 18 Apr 2022 17:07:11 GMT
etag: W/"625d9abf-1b824"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:32 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185992.917077,VS0,VE843
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 110577
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/2021/11/concrete-worker-laying-rebar.jpg

151.101.66.159

200 OK

382 kB

URL HTTP/2
saltusllc.com/wp-content/uploads/2021/11/concrete-worker-laying-rebar.jpg
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x1280, components 3\012- data
Size
382 kB (382007 bytes)
Hash
5f793cba851ca5e2303d5d21c2446ac9
f17a9f47e942486fd60a874766c324339084f060
88fb546fafd75cb3bd94004356b32e07134ffc5ce0f8907cb84ba643b528e89e

HTTP Headers

GET /wp-content/uploads/2021/11/concrete-worker-laying-rebar.jpg HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/wp-content/uploads/elementor/css/post-272.css?ver=1662044914
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 22 Nov 2021 16:37:16 GMT
etag: W/"619bc73c-5db37"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:32 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185992.915700,VS0,VE849
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 382007
X-Firefox-Spdy: h2

saltusllc.com/wp-content/uploads/2021/11/saltus-skyline-illustration.jpg

151.101.66.159

200 OK

185 kB

URL HTTP/2
saltusllc.com/wp-content/uploads/2021/11/saltus-skyline-illustration.jpg
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x1280, components 3\012- data
Size
185 kB (185129 bytes)
Hash
adb67b0da47038f637cc556b06fdea25
aca8df4eed1eea899881c8ec8722be704638fd83
13693057d42a8050d1190e03c76010c64d08386d36b540de4b1e371d5d45180c

HTTP Headers

GET /wp-content/uploads/2021/11/saltus-skyline-illustration.jpg HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/wp-content/uploads/elementor/css/post-124.css?ver=1662044911
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 22 Nov 2021 20:03:32 GMT
etag: W/"619bf794-2e396"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:32 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185992.921732,VS0,VE862
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 185129
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20006 bytes)
Hash
56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saltusllc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Wed, 14 Sep 2022 18:41:12 GMT
expires: Wed, 14 Sep 2022 20:41:12 GMT
cache-control: public, max-age=7200
age: 5120
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

saltusllc.com/favicon.ico

151.101.66.159

404 Not Found

106 B

URL HTTP/2
saltusllc.com/favicon.ico
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
106 B (106 bytes)
Hash
41e26d195447e282a13a3219d61c130c
4eb09944c10ac39f6adeebb6be44c8a1d732bc79
f9ed0f2922c4344a8b293d792c2d81fa68e568256170dbed363adb679d1e7783

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saltusllc.com/
Connection: keep-alive
Cookie: _ga_HQZF3ZLM2N=GS1.1.1663185978.1.0.1663185978.0.0.0; _ga=GA1.1.1949954963.1663185978; _ga_5DVSVCXPTC=GS1.1.1663185978.1.0.1663185978.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
content-type: text/html
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:33 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185993.898951,VS0,VE123
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 106
X-Firefox-Spdy: h2

saltusllc.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0

151.101.66.159

200 OK

93 kB

URL HTTP/2
saltusllc.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
IP
151.101.66.159:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 93372, version 1.0\012- data
Size
93 kB (93372 bytes)
Hash
aab0bb3379e0eb7ebc26071db61fbd57
711c8d350c4192c2f1aa7f73551445b89fb4b161
691fa7d17effc7d303eda0ad7e4a1d91b2f375506cfc8a774480cc2b55f156ea

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0 HTTP/1.1
Host: saltusllc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://saltusllc.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
Connection: keep-alive
Cookie: _ga_HQZF3ZLM2N=GS1.1.1663185978.1.0.1663185978.0.0.0; _ga=GA1.1.1949954963.1663185978; _ga_5DVSVCXPTC=GS1.1.1663185978.1.0.1663185978.0.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Thu, 01 Sep 2022 15:04:34 GMT
etag: "6310ca02-16cbc"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: zq61cbd072
access-control-allow-origin: *
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 14 Sep 2022 20:06:33 GMT
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663185993.784508,VS0,VE373
vary: Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 93372
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-HQZF3ZLM2N&gtm=2oe9c0&_p=786812174&cid=1949954963.1663185978&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663185978&sct=1&seg=0&dl=https%3A%2F%2Fsaltusllc.com%2F&dt=Vibration%20Monitoring%20%7C%20Construction%20Surveying%20Services%20%7C%20Saltus&en=page_view&_fv=1&_nsi=1&_ss=1&ep.gtm_id=GTM-K5N68Q77&ep.page_path=%2F

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-HQZF3ZLM2N&gtm=2oe9c0&_p=786812174&cid=1949954963.1663185978&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663185978&sct=1&seg=0&dl=https%3A%2F%2Fsaltusllc.com%2F&dt=Vibration%20Monitoring%20%7C%20Construction%20Surveying%20Services%20%7C%20Saltus&en=page_view&_fv=1&_nsi=1&_ss=1&ep.gtm_id=GTM-K5N68Q77&ep.page_path=%2F
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-HQZF3ZLM2N&gtm=2oe9c0&_p=786812174&cid=1949954963.1663185978&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663185978&sct=1&seg=0&dl=https%3A%2F%2Fsaltusllc.com%2F&dt=Vibration%20Monitoring%20%7C%20Construction%20Surveying%20Services%20%7C%20Saltus&en=page_view&_fv=1&_nsi=1&_ss=1&ep.gtm_id=GTM-K5N68Q77&ep.page_path=%2F HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://saltusllc.com
Connection: keep-alive
Referer: https://saltusllc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://saltusllc.com
date: Wed, 14 Sep 2022 20:06:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-5DVSVCXPTC&gtm=2oe9c0&_p=786812174&cid=1949954963.1663185978&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663185978&sct=1&seg=0&dl=https%3A%2F%2Fsaltusllc.com%2F&dt=Vibration%20Monitoring%20%7C%20Construction%20Surveying%20Services%20%7C%20Saltus&en=page_view&_fv=1&_ss=1

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-5DVSVCXPTC&gtm=2oe9c0&_p=786812174&cid=1949954963.1663185978&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663185978&sct=1&seg=0&dl=https%3A%2F%2Fsaltusllc.com%2F&dt=Vibration%20Monitoring%20%7C%20Construction%20Surveying%20Services%20%7C%20Saltus&en=page_view&_fv=1&_ss=1
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-5DVSVCXPTC&gtm=2oe9c0&_p=786812174&cid=1949954963.1663185978&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663185978&sct=1&seg=0&dl=https%3A%2F%2Fsaltusllc.com%2F&dt=Vibration%20Monitoring%20%7C%20Construction%20Surveying%20Services%20%7C%20Saltus&en=page_view&_fv=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://saltusllc.com
Connection: keep-alive
Referer: https://saltusllc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 204 No Content
access-control-allow-origin: https://saltusllc.com
date: Wed, 14 Sep 2022 20:06:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F660a99ba-8fb8-48d5-9b57-24bf119b1397.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.2 kB (8164 bytes)
Hash
d4d699a7d242c123b1f4912f4c534b87
42a6d9d5b99f94166f6ffbcfe510d19da97f3105
5b631de5a0c94dcd5a943a5be7f990ba7e9174449a9f732ef2448fb590e1b3d9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F660a99ba-8fb8-48d5-9b57-24bf119b1397.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 8164
x-amzn-requestid: 1c9b16e9-7ba7-45a9-842d-151e70aaf48f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YauxUG3XIAMFbCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f808-0c82bf512f8464187a9994fa;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: m2Wi-Ma_XppIdxDZcottTKm0wb7Y9kpvE3dMnQaesiQ-024MTIClKw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:37:12 GMT
age: 80967
etag: "42a6d9d5b99f94166f6ffbcfe510d19da97f3105"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saltusllc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 20:06:31 GMT
date: Wed, 14 Sep 2022 20:06:31 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (48)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations