schwartzalan.org/
63.250.38.32301 Moved Permanently 707 B IP 63.250.38.32:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sun, 27 Nov 2022 15:52:48 GMT
server: LiteSpeed
location: https://schwartzalan.org/
x-turbo-charged-by: LiteSpeed
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2896
Expires: Sun, 27 Nov 2022 16:41:04 GMT
Date: Sun, 27 Nov 2022 15:52:48 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 64b2a23eab6e5ae8c010ec7242be930c
0673e4385ba01a5a245711bab96cafc34f765793
64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6426
Cache-Control: max-age=159931
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 15:52:48 GMT
Etag: "63833c71-1d7"
Expires: Tue, 29 Nov 2022 12:18:19 GMT
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 15:19:23 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2005
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b56944f0e5716fd4fad2ec18994d4be
61cafa4de31ba960d1145ec37272f6f6b6944e0c
4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2750
Expires: Sun, 27 Nov 2022 16:38:38 GMT
Date: Sun, 27 Nov 2022 15:52:48 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Rmxwh1+uRo5w/tG//v/MYoMnahOGbOeAV6S0tABlmSRMbk5fq93miDFlJQIxjIYrj0Mtm3VhxcY=
x-amz-request-id: NE6147Z0KHW4515J
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 15:44:41 GMT
age: 487
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 15:52:48 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 45f2a1f05ecbca60b5340184083e7a6f
8a527e7bc461e3606db44207c32b031664877bb3
d40ec58201ae3dd43a3bf6cb5af2eb5ba17b6a75baf633d871cfa9bee716b883
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 15:52:49 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 04:51:46 GMT
Expires: Sat, 03 Dec 2022 04:51:45 GMT
Etag: "8a527e7bc461e3606db44207c32b031664877bb3"
Cache-Control: max-age=478136,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 770c087a1e03fabc-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 15:11:12 GMT
cache-control: public,max-age=3600
age: 2497
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a6fee11dfe1b88cd768a0ca3e2bd0c89
59cec9a44a4a92467678afe65f347f68641a2174
50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6190
Cache-Control: max-age=154633
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 15:52:49 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 10:50:02 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
schwartzalan.org/
63.250.38.32200 OK 20 kB IP 63.250.38.32:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash d129f6fcd04db2a00edc07c1ebadb0db
2e73f1e9fabfc665019e20a3257561ef45c50dfe
bf41b5613147f71e1cd2a2813ae5b77cefbda6f4172de815ce4e4372910a8d94
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
link: <https://schwartzalan.org/wp-json/>; rel="https://api.w.org/", <https://schwartzalan.org/wp-json/wp/v2/pages/2289>; rel="alternate"; type="application/json", <https://schwartzalan.org/>; rel=shortlink
etag: "40-1669293368;br"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
content-length: 20273
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 15:52:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
52.36.24.174101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.36.24.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gSuQA7Usyff1jZp78W+rrg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 6lZrAsJiblNk6MOZKE5i3KfvHvE=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 15:52:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 15:52:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Jost%3Aital%2Cwght%400%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B0%2C900%3B0%2C400%3B1%2C500%3B1%2C600%3B1%2C700%3B1%2C800%3B1%2C900%3B1&display=swap&ver=1.0.0
142.250.74.10200 OK 992 B URL HTTP/2 fonts.googleapis.com/css?family=Jost%3Aital%2Cwght%400%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B0%2C900%3B0%2C400%3B1%2C500%3B1%2C600%3B1%2C700%3B1%2C800%3B1%2C900%3B1&display=swap&ver=1.0.0
IP 142.250.74.10:0
Hash 62dbfc2e10fc559ff333395478a61d7d
594adc5db40054bcadc5bb47a36319c511ad4b41
b93b0f236997faec6168f63d787cc410e02f641c3cec657061fb5e3040503dcd
GET /css?family=Jost%3Aital%2Cwght%400%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B0%2C900%3B0%2C400%3B1%2C500%3B1%2C600%3B1%2C700%3B1%2C800%3B1%2C900%3B1&display=swap&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Nov 2022 15:52:49 GMT
date: Sun, 27 Nov 2022 15:52:49 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
schwartzalan.org/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
63.250.38.32200 OK 12 kB URL HTTP/2 schwartzalan.org/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 63.250.38.32:0
File type ASCII text, with very long lines (47826)
Hash c4d7cc056b49b00e05cc29cc59aa3d5a
48c426bec60099d2a8628df430ed682c72aab42a
8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 01:14:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11616
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5
63.250.38.32200 OK 23 kB URL HTTP/2 schwartzalan.org/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5
IP 63.250.38.32:0
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 0c6730c96c60030ddaf42fcf5daf3b17
feb4c0071f27718582e58d365022a1b559de5765
d996bec53b493bc579754f29f7d6d0b5332f3354c860a3787e2365a79c44f995
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Thu, 03 Nov 2022 20:38:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 22871
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-includes/css/classic-themes.min.css?ver=1
63.250.38.32200 OK 217 B URL HTTP/2 schwartzalan.org/wp-includes/css/classic-themes.min.css?ver=1
IP 63.250.38.32:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Wed, 02 Nov 2022 15:21:18 GMT
accept-ranges: bytes
content-length: 217
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
63.250.38.32200 OK 848 B URL HTTP/2 schwartzalan.org/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 63.250.38.32:0
Hash c962ba8e7d42ff9da18392b41dad5151
7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Mon, 11 Oct 2021 13:40:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 848
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5
63.250.38.32200 OK 1.8 kB URL HTTP/2 schwartzalan.org/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5
IP 63.250.38.32:0
File type ASCII text, with very long lines (10435), with no line terminators
Hash f7237084ac82ea6a4f5bf1448c3a2148
60457635a5e809ee1199c61090d8e33b91e8e1f2
18a1cb7f08c1ace52a79f46d73461ed03bf8cf5c9e8a3687eacc3e04f08e7a09
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Thu, 25 Aug 2022 00:12:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1754
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/plugins/cyarb-toolkit/assets/css/cyarb-toolkit.css?ver=6.1.1
63.250.38.32200 OK 25 B URL HTTP/2 schwartzalan.org/wp-content/plugins/cyarb-toolkit/assets/css/cyarb-toolkit.css?ver=6.1.1
IP 63.250.38.32:0
File type ASCII text, with CRLF line terminators
Hash 28f3c9c221a82941de5877323fb19781
69317e6d563958fb3ef953e64c60ed4e4b876606
a144f6a3a0e8a18e53d458eb51240954fadb964611de3c48cd444bb5f07ab8cc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/cyarb-toolkit/assets/css/cyarb-toolkit.css?ver=6.1.1 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Sun, 10 Apr 2022 06:35:21 GMT
accept-ranges: bytes
content-length: 25
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/style.css?ver=6.1.1
63.250.38.32200 OK 218 B URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/style.css?ver=6.1.1
IP 63.250.38.32:0
File type ASCII text, with CRLF line terminators
Hash 030abfabc23ae6cb0981578a3b9b3d60
5ad2555ccbab4e3d9392ebeb872465bbf7bf0af5
987a70f5f8c5942dfcb9d2587d885bc2c559d5b75c70a5fbf6b7b0ed20ffa31a
GET /wp-content/themes/cyarb/style.css?ver=6.1.1 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 218
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.1.0
63.250.38.32200 OK 8.4 kB URL HTTP/2 schwartzalan.org/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.1.0
IP 63.250.38.32:0
File type Unicode text, UTF-8 text, with very long lines (62781), with no line terminators
Hash 6688cf6da7f8e77fce4b23ecd4fa64d4
b787949222758071c1a6221f698cad9bf9b1db2e
1b0db771c94b550d2e2eb123523a8357529aa8ec8869be9e8aabb2595055f438
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.1.0 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Tue, 01 Nov 2022 23:29:26 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8434
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.1.0
63.250.38.32200 OK 2.3 kB URL HTTP/2 schwartzalan.org/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.1.0
IP 63.250.38.32:0
File type ASCII text, with very long lines (17809), with no line terminators
Hash 09d93f4de720fc11a2944fea38fcafcd
e46cf6a8d3373c7fa5feba0b30cd9b9983f719b2
cf900721be13309b96cf6c6f56b1c0a40194e8aea1b0a0361739219c9c0f9998
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.1.0 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Wed, 22 Dec 2021 00:24:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2329
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/css/bootstrap.min.css?ver=1669293365
63.250.38.32200 OK 20 kB URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/css/bootstrap.min.css?ver=1669293365
IP 63.250.38.32:0
File type Unicode text, UTF-8 text, with very long lines (65307)
Hash 157ee1fb064153737050ef36eb7a6bfd
a27a1f6713125c7dd782f85bf8daf5c6c0e4c11a
6d3b6daa1dedd9858e88e41b35225e3bbc2997cb2b50f74a99f8e6ea87a39dd1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cyarb/assets/css/bootstrap.min.css?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 20299
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
63.250.38.32200 OK 30 kB URL HTTP/2 schwartzalan.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 63.250.38.32:0
File type ASCII text, with very long lines (65447)
Hash 3a1740685bd5c0bbd5f2b812e1eb7fb4
488e07695da787fed18361c50292aef35abb5e81
4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 15:21:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30324
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
63.250.38.32200 OK 4.0 kB URL HTTP/2 schwartzalan.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 63.250.38.32:0
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 19:36:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
63.250.38.32200 OK 899 B URL HTTP/2 schwartzalan.org/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
IP 63.250.38.32:0
File type ASCII text, with very long lines (1668)
Hash 22d65ba38528349e705d912ce26bf8ac
c89ba006009043d93b88ff155b4fec8797330550
6253bcb85e4267ad3ba843145534e729ee2c1d7e85e5b4ab5b2e074ae636bca3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 04:55:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 899
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/js/magnific-popup.min.js?ver=1669293365
63.250.38.32200 OK 7.0 kB URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/js/magnific-popup.min.js?ver=1669293365
IP 63.250.38.32:0
File type ASCII text, with very long lines (20087)
Hash f5e275bd34668dca4972a4cceccd7907
cba188e35681cd77cfcbd026aac16315747fab12
7874f3927ffd30d189723404d3fb9699e728955b083abeccc9a988890b4b2ede
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cyarb/assets/js/magnific-popup.min.js?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7043
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18263
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 15:52:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18263
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 15:52:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18263
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 15:52:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18263
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 15:52:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18263
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 15:52:50 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1db6041a0bdb2319ae85afcc30caaeec
3b0ec6a7188dadf986f72fda8110296d9abd6f35
05f1f9b7834e7268dc34e3233434217f58cb68ee43a403cd08d0bb0ab4f37815
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13049
x-amzn-requestid: 2755f206-af23-4597-b4b9-7dae5001d6be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBsvpHDJoAMFhFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d5b30-600008f573bd7e0024585eb1;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 23:28:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MA_O50Lu6RRAFJpzXmVXhkxvYazdX5Lhk2Qa5k9fYUhBta-IWpVT1g==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 01:46:48 GMT
age: 50762
etag: "3b0ec6a7188dadf986f72fda8110296d9abd6f35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:37 GMT
age: 64873
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57bc6cf-beaa-443b-9756-cf26e4fe3767.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57bc6cf-beaa-443b-9756-cf26e4fe3767.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2212cf75f99dc67fd45db47f7101d754
4b4a8c8e8aeccfff25d2748720dcef8fed287126
7b2d2e302faba8f273b51031fa48b444cb7839733b90e8c9d077ca63637320d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57bc6cf-beaa-443b-9756-cf26e4fe3767.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6954
x-amzn-requestid: 94a02687-72f2-4796-a7ea-d3f28b412566
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1jHpGBVIAMFsSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63787efd-22666b18283ae59b1348bf47;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 07:00:13 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: feZayJeKq9jWHQ-rjutNr6buIjLVeIdY0A_ZeGo6NKgoQ6BBT3XQaw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 0906d4887f6625f4a4467d8d4fd268d2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 08:55:33 GMT
age: 25037
etag: "4b4a8c8e8aeccfff25d2748720dcef8fed287126"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2cd887044e91d7ed0f1a8d7119ff7dd0
ae8aa4ce6ddaccba771fe65446926b60fc5628da
bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CXOqm7bjsSV0aJBTkTI7LsMovjgPeISPt3sZotEc7CjZnUL_y4_OoQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:41 GMT
age: 64869
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15290721-a62e-49b8-80c6-967680cff24f.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15290721-a62e-49b8-80c6-967680cff24f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f7f16c0f8a8e710210ce77c0e4c1c2a2
590c34be54c9889eec4ff7993e070fda836f711f
4224287ba765da59c877ac4f1dec65accc5bec934b7598d9cbbee669ba4ab12e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15290721-a62e-49b8-80c6-967680cff24f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6883
x-amzn-requestid: 9e3878c9-1817-427e-b121-969a8cbc7ad8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cL1ySF0tIAMFY4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638169a8-5143ffea77b70cf67ef60ad7;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 01:19:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GT3Futv4Ztnl2Og2TQFk5311m92Mv_jfvkIZYJXpjJMdkxSB6MI06g==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 06:42:16 GMT
age: 33034
etag: "590c34be54c9889eec4ff7993e070fda836f711f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 76c00eceed956377d7469ef58b0815cb
97a135335f5b1b042adeb385718f8808cb78528b
81fb72ab752b2eb39ab6ee015055304490b3b6c3259968703fd07c2a2eed1e61
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7380
x-amzn-requestid: 18589644-299c-4a39-9376-db1bd1472009
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iEegIAMFeuQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-23990acc0fdc599a75a534e3;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RqsZxAtbOkWBGbXJ3sZHxcS-ZvWOw7Yg2Qd4zj0QLhrp3wAXC8w6jA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:50:08 GMT
age: 64962
etag: "97a135335f5b1b042adeb385718f8808cb78528b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/js/owl.carousel.min.js?ver=1669293365
63.250.38.32200 OK 14 kB URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/js/owl.carousel.min.js?ver=1669293365
IP 63.250.38.32:0
File type ASCII text, with very long lines (31998)
Hash 1c4a9f680a3e46fea8093a7a91d3556d
c094d66d1e1713f1e08760fd2fa0c9805bc5b81b
b3e9540bc368b0e0a42b0c961e91d51ae639983ec19c2294c741d49fad18905b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cyarb/assets/js/owl.carousel.min.js?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 13728
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/js/countrySelect.min.js?ver=1669293365
63.250.38.32200 OK 7.4 kB URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/js/countrySelect.min.js?ver=1669293365
IP 63.250.38.32:0
File type Unicode text, UTF-8 text, with very long lines (16987), with no line terminators
Hash 9946269d166ed8c6c2da50ccdfb8e95c
01bb92250d8f7f1fb4ec360a15acacd2423c5a6b
f8ed3a8e3eedc9114f8c258dfc86e77e962b013e7c932abbc2ff09021c24df56
GET /wp-content/themes/cyarb/assets/js/countrySelect.min.js?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 7393
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/js/odometer.min.js?ver=1669293365
63.250.38.32200 OK 3.5 kB URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/js/odometer.min.js?ver=1669293365
IP 63.250.38.32:0
File type ASCII text, with very long lines (10241)
Hash 594cb5cb96497c79ffd8ba2b3974960c
85dbe20136363ec533949416ee4f312f73e8c0dc
0a9e73cfe5b414e114eee460f27226c65b5381e29d0e1d4f5b8953445f5d1b86
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cyarb/assets/js/odometer.min.js?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3453
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/js/meanmenu.min.js?ver=1669293365
63.250.38.32200 OK 1.3 kB URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/js/meanmenu.min.js?ver=1669293365
IP 63.250.38.32:0
File type HTML document, ASCII text, with very long lines (4037), with no line terminators
Hash 558e0f9d4b81959772e55695c46ee506
19d0e91a6829960b01a7468f7b81d924a79ce948
f6a626388ca5ddfd525aeaf76799d25504d6c1157401f207abbc94bda068028a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cyarb/assets/js/meanmenu.min.js?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1312
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/js/slick.min.js?ver=1669293365
63.250.38.32200 OK 11 kB URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/js/slick.min.js?ver=1669293365
IP 63.250.38.32:0
File type ASCII text, with very long lines (2614)
Hash 4d40f641e7fd800f196f5dbab3b7c224
068c1642668b56108a791cab27dc152bce880e06
55fbc5c468edf1eae65ff88d0ef2767b65b96f06eaaf74f17dbe1acc5a0b8201
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cyarb/assets/js/slick.min.js?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10850
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/js/main.js?ver=1669293365
63.250.38.32200 OK 1.8 kB URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/js/main.js?ver=1669293365
IP 63.250.38.32:0
Hash 2464b168673582d7fb2a315f33702e06
bdd2aadb52bb4f548b8f94fe509af992a0c174ff
de53c4ceea7a9cd803193945ef5c859ee22f3c9ff1ef01974a70dd073f19cdec
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cyarb/assets/js/main.js?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1775
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/plugins/pixelyoursite/dist/scripts/jquery.bind-first-0.2.3.min.js?ver=6.1.1
63.250.38.32200 OK 625 B URL HTTP/2 schwartzalan.org/wp-content/plugins/pixelyoursite/dist/scripts/jquery.bind-first-0.2.3.min.js?ver=6.1.1
IP 63.250.38.32:0
File type ASCII text, with very long lines (1146)
Hash 79cefc4d3eed73de29fbf6d6e1167d23
e30a47623c3dd37dc1756dcaa3e439ee7369208f
72f679009b145c4d3ab957aaff6ea0a8c77377d40892ca1d870db15b196540c3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/pixelyoursite/dist/scripts/jquery.bind-first-0.2.3.min.js?ver=6.1.1 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Thu, 17 Dec 2020 18:33:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 625
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/css/fontawesome.min.css?ver=1669293365
63.250.38.32200 OK 12 kB URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/css/fontawesome.min.css?ver=1669293365
IP 63.250.38.32:0
File type ASCII text, with very long lines (54963), with CRLF line terminators
Hash c1f105c7c5ce2febf72200d3a79023b6
4e03fff1a7c6c73c985154e9365ef74cccee44a5
89502863fc0ff588a13502230ade5ad29a60266ed0958bfdc4089e821d3e9df9
GET /wp-content/themes/cyarb/assets/css/fontawesome.min.css?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11628
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/css/odometer.min.css?ver=1669293365
63.250.38.32200 OK 398 B URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/css/odometer.min.css?ver=1669293365
IP 63.250.38.32:0
File type ASCII text, with very long lines (3130)
Hash 503e58b4db9f22920572058988cd2f53
e08ab7c6900c97f85fe9ac507048615de8b4028e
dab0c472ee5f8830fd9f39d93af3f76adcc6273aec55fdce92b6bb57796dea59
GET /wp-content/themes/cyarb/assets/css/odometer.min.css?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 398
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/css/meanmenu.min.css?ver=1669293365
63.250.38.32200 OK 709 B URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/css/meanmenu.min.css?ver=1669293365
IP 63.250.38.32:0
File type ASCII text, with very long lines (2408)
Hash ffdca927c3c772d6438d46620a8cc59b
f163bd196f7ba118d8e0806a644b7c89d693e35e
ec88b034ac6628870160e84bdbcfd90cb0e78e4eb9e714cbe79c510abd4b8b13
GET /wp-content/themes/cyarb/assets/css/meanmenu.min.css?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 709
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/css/owl.carousel.min.css?ver=1669293365
63.250.38.32200 OK 911 B URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/css/owl.carousel.min.css?ver=1669293365
IP 63.250.38.32:0
File type ASCII text, with very long lines (3185)
Hash 31b14117c05e96c25d0d29286b6e52b7
4710ef08b31dffae1b7cb1de65d84ff3696e3917
80c5f322b1d9ef0198dde26e60ea1e0d29aab1a3a93fd73ddbe46cc163edc960
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cyarb/assets/css/owl.carousel.min.css?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 911
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/css/owl.theme.default.min.css?ver=1669293365
63.250.38.32200 OK 375 B URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/css/owl.theme.default.min.css?ver=1669293365
IP 63.250.38.32:0
File type ASCII text, with very long lines (847)
Hash 71fd8b336882d06c5051ae7d3bca7171
1673bc8bccf18a6f020f26ac7318584ce489d4e6
b6ac6a4a38446a6cbb20b6ba85b4d501d80922ea1b6fb835c9fcf23efa09805c
GET /wp-content/themes/cyarb/assets/css/owl.theme.default.min.css?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 375
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/css/animate.min.css?ver=1669293365
63.250.38.32200 OK 4.8 kB URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/css/animate.min.css?ver=1669293365
IP 63.250.38.32:0
File type ASCII text, with very long lines (65348)
Hash dd3214047c205bfb5eed3a2f9be5796d
9075509693a5d153f97760efd48a8c62d01b9e2d
75ba7133a891097341c28b037ccc19de36e399237e69c6cf83313661047ded60
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cyarb/assets/css/animate.min.css?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4828
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/css/slick.min.css?ver=1669293365
63.250.38.32200 OK 663 B URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/css/slick.min.css?ver=1669293365
IP 63.250.38.32:0
File type ASCII text, with very long lines (1332)
Hash 1d58a3d1f51d1d37a0210fd0ca3cca2a
70dadadc90991f86ebcd1702bbc62074551341c7
c35ff3ec1619a351c6dc2a67ce56b4976450716745c5c13e7a1c2fabd92587f5
GET /wp-content/themes/cyarb/assets/css/slick.min.css?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 663
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/css/woocommerce.css?ver=1669293365
63.250.38.32200 OK 14 kB URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/css/woocommerce.css?ver=1669293365
IP 63.250.38.32:0
File type ASCII text, with very long lines (614)
Hash 8cc5e70db29fe91987fec1e08874e901
3f624024ef5bb5ca55eaa44183620acdc0b13126
b4209f32bd791eb599d59d86d30d00d51a7bc167d17175a6f4c4fe90c26b7487
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cyarb/assets/css/woocommerce.css?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 14273
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/css/lineicons.css?ver=1669293365
63.250.38.32200 OK 4.2 kB URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/css/lineicons.css?ver=1669293365
IP 63.250.38.32:0
Hash 163b6274de9cf8ae4df22169a8f4acba
274186e4eb5a8cba81791d2ccce4dcf7b99e9f68
a78d12e9237113d592deade598dc6165f142f369790c43a6cd37c3c3cdb189ff
GET /wp-content/themes/cyarb/assets/css/lineicons.css?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4215
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/css/magnific-popup.min.css?ver=1669293365
63.250.38.32200 OK 1.4 kB URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/css/magnific-popup.min.css?ver=1669293365
IP 63.250.38.32:0
File type ASCII text, with very long lines (5259), with no line terminators
Hash 49395ae5f1b4ff43fb4b3bfe67961580
3d8340457b90668727b50ae28f02993579b44115
21a46ca1f8ae4d4d5d5a7a619af5a2b8f18854320eaa84d06030e80a65f0b5ae
GET /wp-content/themes/cyarb/assets/css/magnific-popup.min.css?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1410
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/css/responsive.css?ver=1669293365
63.250.38.32200 OK 7.4 kB URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/css/responsive.css?ver=1669293365
IP 63.250.38.32:0
File type ASCII text, with very long lines (686)
Hash 809f2a2bb023e52e1b955af8ac0f5ad5
7f30c86a0ac957927da419cc18966fdd60fd7cad
cd33c59cee15745d476582f2779253c6bc5eb48bda1e4089f530bf7856980965
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cyarb/assets/css/responsive.css?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7364
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/css/countrySelect.min.css?ver=1669293365
63.250.38.32200 OK 2.1 kB URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/css/countrySelect.min.css?ver=1669293365
IP 63.250.38.32:0
File type ASCII text, with very long lines (20344), with no line terminators
Hash 68c12fcfb4e762cf2a8d8bef13cb246b
274ba26fc37e56b03b99f075a7e24d7f9af5b03d
d64000d0a1a7ad18370b6a9847b0806f3adc1cfca7cdeaadbc70d17bbbe1bb04
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cyarb/assets/css/countrySelect.min.css?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2129
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
63.250.38.32200 OK 3.6 kB URL HTTP/2 schwartzalan.org/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 63.250.38.32:0
File type ASCII text, with very long lines (19233)
Hash af3bdf44d09914e8adb51fec560d8816
84bb225e096bab405868dd504e62133ba75cf1c1
4325dab21d3eb9efb8e285a0926be743f27e46446ccf5f9be65bb4b60c024152
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Mon, 01 Aug 2022 04:11:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3629
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/css/footer.css?ver=1669293365
63.250.38.32200 OK 1.1 kB URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/css/footer.css?ver=1669293365
IP 63.250.38.32:0
Hash 08da47b301da7adc940c0f373264c054
d06a6a2cd9f6eb177a1bc0be39423e2b81d64abb
62ee6a0b262b652dfe553c84772ce412f98efcbfefb97257eddf733f30146caa
GET /wp-content/themes/cyarb/assets/css/footer.css?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1139
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/css/header.css?ver=1669293365
63.250.38.32200 OK 4.2 kB URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/css/header.css?ver=1669293365
IP 63.250.38.32:0
File type ASCII text, with very long lines (336)
Hash 30a1f89f984138d1e16340d6274d9ea7
0d2c22d8fd9b5d38ea3f7eda2c31e8744dcf4996
d924ac8b8e2fe6f6d7e1db33d8cec1147682e4735b93d97c5fc3650d705dd333
GET /wp-content/themes/cyarb/assets/css/header.css?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4190
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1
63.250.38.32200 OK 18 kB URL HTTP/2 schwartzalan.org/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1
IP 63.250.38.32:0
File type ASCII text, with very long lines (65497)
Hash 658aaed4541f4ab9e1cf3b910e8ff957
39a27939e4b628ac536113eabf1de908ddb45a95
33d83c4806116d2a94ac1e178f4cbc9c0651a9342ff2fe88dcedfdf9e8dabf0e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18162
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/elementor/css/post-6.css?ver=1659016104
63.250.38.32200 OK 327 B URL HTTP/2 schwartzalan.org/wp-content/uploads/elementor/css/post-6.css?ver=1659016104
IP 63.250.38.32:0
File type ASCII text, with very long lines (1178), with no line terminators
Hash 4e3e9a7d2c6bc58a91c28a4869f25a87
9e16edfb360f98318ceb807136e4745ab3db0269
b4369ecbcb6627ecc28c236160b6bd5e5582e79befa9534969e183ecf4115e11
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-6.css?ver=1659016104 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Thu, 28 Jul 2022 13:48:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 327
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/elementor/css/post-2289.css?ver=1663074590
63.250.38.32200 OK 267 B URL HTTP/2 schwartzalan.org/wp-content/uploads/elementor/css/post-2289.css?ver=1663074590
IP 63.250.38.32:0
File type ASCII text, with no line terminators
Hash c487b058900684c44601c4311ac2f007
d50bf0e57571e1aaec867bb5192c6e37d0a3b25c
7c4737f90122e7062f0a5a3a4d4d1c4990129765bc857f2cbcac02cce07c3c1c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-2289.css?ver=1663074590 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Tue, 13 Sep 2022 13:09:50 GMT
accept-ranges: bytes
content-length: 267
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/js/ajaxchimp.min.js?ver=1669293365
63.250.38.32200 OK 844 B URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/js/ajaxchimp.min.js?ver=1669293365
IP 63.250.38.32:0
File type ASCII text, with very long lines (2381), with no line terminators
Hash d8011dc07c4b22173982487b3361e896
cf8c3bda6f237857de77651afe8dfb7bf2f08162
ea8045df69d611ac2bf6a2a4ecfb809516d8cebb12018a774872c29e901fa609
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cyarb/assets/js/ajaxchimp.min.js?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 844
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/js/appear.min.js?ver=1669293365
63.250.38.32200 OK 757 B URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/js/appear.min.js?ver=1669293365
IP 63.250.38.32:0
File type ASCII text, with very long lines (746)
Hash 578bb4a3fd4e6fc165e3e0d2676b0254
22d9be05fab09ff8f00589b64d55a3983b669149
b2fe1451c21d81cfa10f354747ce813b0a171d205ab1ee20fc5a8b0a7a486095
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cyarb/assets/js/appear.min.js?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 757
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/plugins/pixelyoursite/dist/scripts/public.js?ver=9.2.1
63.250.38.32200 OK 15 kB URL HTTP/2 schwartzalan.org/wp-content/plugins/pixelyoursite/dist/scripts/public.js?ver=9.2.1
IP 63.250.38.32:0
File type C source, Unicode text, UTF-8 text
Hash 7006fa432e047cb706d9f5048ecd7148
018d6e2472af61499a1ae28cefc7f0952dbbd917
9ab3ed41fdf3bc36cf68e1e1c3416c0d37028305dd9a10b0a88ecdc2ae63ec74
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/pixelyoursite/dist/scripts/public.js?ver=9.2.1 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Sun, 23 Oct 2022 19:21:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15016
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2021/11/shape3.png
63.250.38.32200 OK 1.5 kB URL HTTP/2 schwartzalan.org/wp-content/uploads/2021/11/shape3.png
IP 63.250.38.32:0
File type PNG image data, 100 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 5cfa1c577dbb5d591c5a8853c401eb4f
d2f9dfe07cb0a54046b8140e916eb1952ef2cb50
860b0d073090c7e9467cde7ad0c55fb49b4d77f4271685165ddfab4c44f57c7f
GET /wp-content/uploads/2021/11/shape3.png HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/png
last-modified: Sun, 10 Apr 2022 06:37:02 GMT
accept-ranges: bytes
content-length: 1488
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2021/11/shape4.png
63.250.38.32200 OK 3.0 kB URL HTTP/2 schwartzalan.org/wp-content/uploads/2021/11/shape4.png
IP 63.250.38.32:0
File type PNG image data, 87 x 76, 8-bit/color RGBA, non-interlaced\012- data
Hash 43f41e825118d878a063aa10cacad546
3014b9aa15b657e689ca987ba9ecbf06b516675b
40f8b5884458542ef5ad4f36bc1828b24495f6edbfe26866878eb3765412cc06
GET /wp-content/uploads/2021/11/shape4.png HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/png
last-modified: Sun, 10 Apr 2022 06:37:02 GMT
accept-ranges: bytes
content-length: 2983
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2021/11/shape1.png
63.250.38.32200 OK 4.7 kB URL HTTP/2 schwartzalan.org/wp-content/uploads/2021/11/shape1.png
IP 63.250.38.32:0
File type PNG image data, 85 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 996730cc992b9f74ab21d9d2f025d855
c25a95c4bf44f99cf52853a492d11a2146d16362
8a97dee95ebafc2a54ad317a3f3dd6456be8760a318aedc24325c785bcf07ce2
GET /wp-content/uploads/2021/11/shape1.png HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/png
last-modified: Sun, 10 Apr 2022 06:37:02 GMT
accept-ranges: bytes
content-length: 4724
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2022/04/sch-new-logo.png
63.250.38.32200 OK 8.2 kB URL HTTP/2 schwartzalan.org/wp-content/uploads/2022/04/sch-new-logo.png
IP 63.250.38.32:0
File type PNG image data, 396 x 173, 8-bit/color RGBA, non-interlaced\012- data
Hash 49ca6dece5ef48a1af97804cdbfcc00f
df2234b1439a879b50644f5d5c29f05809a193e2
922d49c376154f9654267d42ddd8614412a5c5543a4859fe008e39823af44069
GET /wp-content/uploads/2022/04/sch-new-logo.png HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/png
last-modified: Fri, 29 Apr 2022 10:12:22 GMT
accept-ranges: bytes
content-length: 8184
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2021/10/icon3.svg
63.250.38.32200 OK 683 B URL HTTP/2 schwartzalan.org/wp-content/uploads/2021/10/icon3.svg
IP 63.250.38.32:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1274), with CRLF line terminators
Hash e24a6a14a3fb3eff5e863b394aaccb7d
fec215ca2d41f6c24476450987ab07accbbc79e4
c510515fa1f4d1f8632a75d74ec1b308fc69b0d6c44d9765c93ad9e84da38a4a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2021/10/icon3.svg HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/svg+xml
last-modified: Sun, 10 Apr 2022 06:37:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 683
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2021/11/funfacts-icon2.png
63.250.38.32200 OK 8.6 kB URL HTTP/2 schwartzalan.org/wp-content/uploads/2021/11/funfacts-icon2.png
IP 63.250.38.32:0
File type PNG image data, 83 x 82, 8-bit/color RGBA, non-interlaced\012- data
Hash 65a12e5062f25494b73fbc0f3cf7e2f9
7e0a29547a86ad7042ec68e7cbf01bb6282ecae7
d0a16c5c03fa163691b8231be4637a1a7a2403fd289c94166026573c8bfd0242
GET /wp-content/uploads/2021/11/funfacts-icon2.png HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/png
last-modified: Sun, 10 Apr 2022 06:37:02 GMT
accept-ranges: bytes
content-length: 8564
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2021/11/funfacts-icon1.png
63.250.38.32200 OK 5.8 kB URL HTTP/2 schwartzalan.org/wp-content/uploads/2021/11/funfacts-icon1.png
IP 63.250.38.32:0
File type PNG image data, 83 x 82, 8-bit/color RGBA, non-interlaced\012- data
Hash fd13cb8620bff3e2d7263af2eb64a0a7
bc31060cd3b73fc60decd267c7c82865ba18ed42
b96563aba36f6727f492cb1f5b671a51e2a947c476d456f54ee0a772c51c1f61
GET /wp-content/uploads/2021/11/funfacts-icon1.png HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/png
last-modified: Sun, 10 Apr 2022 06:37:02 GMT
accept-ranges: bytes
content-length: 5794
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2021/11/shape5.png
63.250.38.32200 OK 4.5 kB URL HTTP/2 schwartzalan.org/wp-content/uploads/2021/11/shape5.png
IP 63.250.38.32:0
File type PNG image data, 112 x 140, 8-bit/color RGBA, non-interlaced\012- data
Hash 22501f8107452c96600ba15cd0575425
66c42277d14df341afc0f0307cd765067faf95b8
f1353395a8e82b91031c613ab8642524620205167ceb31c6b2acd8c32aace664
GET /wp-content/uploads/2021/11/shape5.png HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/png
last-modified: Sun, 10 Apr 2022 06:37:02 GMT
accept-ranges: bytes
content-length: 4547
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2021/11/funfacts-icon3.png
63.250.38.32200 OK 4.6 kB URL HTTP/2 schwartzalan.org/wp-content/uploads/2021/11/funfacts-icon3.png
IP 63.250.38.32:0
File type PNG image data, 83 x 82, 8-bit/color RGBA, non-interlaced\012- data
Hash e4cbeeb229c9e0f7c6dbf167d291faa2
3d5f0edbc364f05b63013565bf136d115a822dce
f70eafde7602ef0708ddfeb8016f0febed6bf19f5507e877238d856f7172cba4
GET /wp-content/uploads/2021/11/funfacts-icon3.png HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/png
last-modified: Sun, 10 Apr 2022 06:37:02 GMT
accept-ranges: bytes
content-length: 4606
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2021/11/funfacts-icon4.png
63.250.38.32200 OK 5.8 kB URL HTTP/2 schwartzalan.org/wp-content/uploads/2021/11/funfacts-icon4.png
IP 63.250.38.32:0
File type PNG image data, 83 x 82, 8-bit/color RGBA, non-interlaced\012- data
Hash 9237fa99367bf1bbfff5a317405d8635
eef27fecf915fd1a29a239562db504d9aaafe9ab
61840a571dab58da0e78d6d66f4b4ac10c3b0aa70e93aecda1a80d6dc6a23d77
GET /wp-content/uploads/2021/11/funfacts-icon4.png HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/png
last-modified: Sun, 10 Apr 2022 06:37:02 GMT
accept-ranges: bytes
content-length: 5799
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2021/11/shape11.png
63.250.38.32200 OK 4.2 kB URL HTTP/2 schwartzalan.org/wp-content/uploads/2021/11/shape11.png
IP 63.250.38.32:0
File type PNG image data, 204 x 81, 8-bit/color RGBA, non-interlaced\012- data
Hash c9224cf74de6ac42afb8a42ff9326e37
8033e4d8a6e1e096d5e545220f8e6129c0f5e2e9
79ba7268aba287df5014201d882ed9cdc02cb543f4e1dfd189c1a6570db631bd
GET /wp-content/uploads/2021/11/shape11.png HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/png
last-modified: Sun, 10 Apr 2022 06:37:02 GMT
accept-ranges: bytes
content-length: 4241
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2022/05/software.png
63.250.38.32200 OK 2.4 kB URL HTTP/2 schwartzalan.org/wp-content/uploads/2022/05/software.png
IP 63.250.38.32:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 411d16b6fa2f9fc189b0bc56791b3ca7
273ec672345479cb1bc1b6fd912ccf7a20332375
f1cbdef1f65d1ccac9d3c169e432071ecbbb72dabbbd89b6359174efb73ba6e8
GET /wp-content/uploads/2022/05/software.png HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/png
last-modified: Tue, 10 May 2022 18:08:33 GMT
accept-ranges: bytes
content-length: 2359
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2022/05/add-to-cart.png
63.250.38.32200 OK 3.6 kB URL HTTP/2 schwartzalan.org/wp-content/uploads/2022/05/add-to-cart.png
IP 63.250.38.32:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 7d0f6418c1a801ac80ef24cedf0d6fbd
0b2a2484aac9af3ea1408a688ff36dcc66e25850
4f16a0239e197abfac98e48877efbceb453acf5e9893278a0234d71ef3733718
GET /wp-content/uploads/2022/05/add-to-cart.png HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/png
last-modified: Tue, 10 May 2022 18:07:56 GMT
accept-ranges: bytes
content-length: 3605
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2021/11/shape2.png
63.250.38.32200 OK 5.3 kB URL HTTP/2 schwartzalan.org/wp-content/uploads/2021/11/shape2.png
IP 63.250.38.32:0
File type PNG image data, 121 x 67, 8-bit/color RGBA, non-interlaced\012- data
Hash bfd998bfc8e2f12af4cfb4f21e1a52be
8d0c492ccac4100462a287175cd95eea702c1c1a
a05972e9645d77d6f560c26c1d0567ecca97a36922021c5e8099c17041895606
GET /wp-content/uploads/2021/11/shape2.png HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/png
last-modified: Sun, 10 Apr 2022 06:37:02 GMT
accept-ranges: bytes
content-length: 5339
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2022/05/web-development.png
63.250.38.32200 OK 2.1 kB URL HTTP/2 schwartzalan.org/wp-content/uploads/2022/05/web-development.png
IP 63.250.38.32:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash fb1d932bebc84eff92a91384818cf473
51c4f22458f7ecd9aa54f26e30b43720dd8bc182
bfe19509d685a51feea72e6883c41eb7216e7b9d8c5be1bc1b8f0b6204fe20bf
GET /wp-content/uploads/2022/05/web-development.png HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/png
last-modified: Tue, 10 May 2022 18:07:04 GMT
accept-ranges: bytes
content-length: 2104
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2021/09/quote2.png
63.250.38.32200 OK 1.7 kB URL HTTP/2 schwartzalan.org/wp-content/uploads/2021/09/quote2.png
IP 63.250.38.32:0
File type PNG image data, 53 x 39, 8-bit/color RGBA, interlaced\012- data
Hash 077bc0a22ac32847b6e7e180b3961ec2
ad39af28cc13edabaf9b48dbe35299c30dc7e5ee
c4cb48aeffb854c260f022a35c80964ff4031fbf7e7b56fc05a8e84439fd0dd2
GET /wp-content/uploads/2021/09/quote2.png HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/png
last-modified: Sun, 10 Apr 2022 06:37:02 GMT
accept-ranges: bytes
content-length: 1717
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.16
63.250.38.32200 OK 2.3 kB URL HTTP/2 schwartzalan.org/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.16
IP 63.250.38.32:0
File type ASCII text, with very long lines (6296), with no line terminators
Hash fc951aa59c3fb4dd9c72b0b808958569
1e68c18c9af55848cba24c55f7bd8c44f665fae2
375003533c1ccda53304a7da25d2a9176ba5a8d7ff02d5427a7a55b3c2d1a4e5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.16 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 23:53:58 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2281
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
63.250.38.32200 OK 2.8 kB URL HTTP/2 schwartzalan.org/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 63.250.38.32:0
File type ASCII text, with very long lines (9937), with no line terminators
Hash 4317b1c024df372435f6482deadddeb3
5c8824a17e40a44ea8fc51568b98bdb1e2e7fab5
3798fb16289ba55459fb6d3b2efa915e3c019c5942759abb7bd19a0ef622b85d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 13:16:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2817
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/img/shape/shape4.png
63.250.38.32200 OK 3.0 kB URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/img/shape/shape4.png
IP 63.250.38.32:0
File type PNG image data, 87 x 76, 8-bit/color RGBA, non-interlaced\012- data
Hash 43f41e825118d878a063aa10cacad546
3014b9aa15b657e689ca987ba9ecbf06b516675b
40f8b5884458542ef5ad4f36bc1828b24495f6edbfe26866878eb3765412cc06
GET /wp-content/themes/cyarb/assets/img/shape/shape4.png HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/png
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-length: 2983
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/img/shape/shape6.png
63.250.38.32200 OK 4.5 kB URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/img/shape/shape6.png
IP 63.250.38.32:0
File type PNG image data, 112 x 140, 8-bit/color RGBA, non-interlaced\012- data
Hash 22501f8107452c96600ba15cd0575425
66c42277d14df341afc0f0307cd765067faf95b8
f1353395a8e82b91031c613ab8642524620205167ceb31c6b2acd8c32aace664
GET /wp-content/themes/cyarb/assets/img/shape/shape6.png HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/png
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-length: 4547
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2022/05/google-play-icon-svg-2-300x104-1.png
63.250.38.32200 OK 16 kB URL HTTP/2 schwartzalan.org/wp-content/uploads/2022/05/google-play-icon-svg-2-300x104-1.png
IP 63.250.38.32:0
File type PNG image data, 300 x 104, 8-bit/color RGBA, non-interlaced\012- data
Hash 29ab09563dd125bed54c9bd5578d61b2
47f7a1c82a7f9b4b9e95bf11f178036bf7d42d41
16165eb60cbff2589a568c618affda5e0c5a7b4492c6225d9d492bdd1117336d
GET /wp-content/uploads/2022/05/google-play-icon-svg-2-300x104-1.png HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/png
last-modified: Fri, 20 May 2022 05:20:46 GMT
accept-ranges: bytes
content-length: 16166
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/img/shape/shape2.png
63.250.38.32200 OK 5.3 kB URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/img/shape/shape2.png
IP 63.250.38.32:0
File type PNG image data, 121 x 67, 8-bit/color RGBA, non-interlaced\012- data
Hash bfd998bfc8e2f12af4cfb4f21e1a52be
8d0c492ccac4100462a287175cd95eea702c1c1a
a05972e9645d77d6f560c26c1d0567ecca97a36922021c5e8099c17041895606
GET /wp-content/themes/cyarb/assets/img/shape/shape2.png HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/png
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-length: 5339
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
63.250.38.32200 OK 972 B URL HTTP/2 schwartzalan.org/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
IP 63.250.38.32:0
File type HTML document, ASCII text, with very long lines (3029), with no line terminators
Hash 5ed77e0c59800f40061b5c322cff21fa
ced9d401d300dd1fc676a673bbf7e6360beb402d
3b284b8a096256e6cd0d9cbf2cb4b36505e71c0d7b2227fcd3132dddbeea18cc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 00:34:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 972
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
63.250.38.32200 OK 677 B URL HTTP/2 schwartzalan.org/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
IP 63.250.38.32:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash a43fc0dde8fdd69656ad0957e62849c7
4b07cf702ac8a770c8cbffc22b9a788b6e5389ba
1ce3d0493424870c81deec0ec41de0592d2af9f91cd8081cd40a1d7ea89b614f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Tue, 18 May 2021 21:00:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 677
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
63.250.38.32200 OK 934 B URL HTTP/2 schwartzalan.org/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
IP 63.250.38.32:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash cf25dd071a208312bdc07f34d2cee027
76119563119eaae392ecc8903c989d98d0b93002
8635ba2cad8f887e72779bd526f8738ff6343c74cba715caf2eddea383ba7ce6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Wed, 24 Nov 2021 03:30:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 934
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.6.4
63.250.38.32200 OK 2.2 kB URL HTTP/2 schwartzalan.org/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.6.4
IP 63.250.38.32:0
File type ASCII text, with very long lines (5082)
Hash 1c576e46d4a649e02cd6f4e5715eca80
b260796f402f11f523c9745ea0925b781cc8aeed
b6884c3c56b1c83e956ea62cf929c6643302bab77d53c0ac5c2e2833858c21f1
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.6.4 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Sun, 10 Apr 2022 06:41:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2174
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
63.250.38.32200 OK 2.0 kB URL HTTP/2 schwartzalan.org/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
IP 63.250.38.32:0
File type ASCII text, with very long lines (4918)
Hash 918938b0ee6977d6506f2e0fa248bd66
292ba27818bec580f76945b53fee4ff6cddcb2c2
a1da723cfdb1f8ea57aa7278637d07a83f39ff410dfbba24d8205882a110444e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2044
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
63.250.38.32200 OK 10 kB URL HTTP/2 schwartzalan.org/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
IP 63.250.38.32:0
File type Unicode text, UTF-8 text, with very long lines (32907)
Hash 72fd7d7a61961996172a081cb3eed6cb
7f6d4dc14ef08153606c57d374fd50b685ba383d
757fe1355fa4c3eed3c286520c6af9d344ab9d15a78d8d54a17e7573f866b9be
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10425
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
63.250.38.32200 OK 2.6 kB URL HTTP/2 schwartzalan.org/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 63.250.38.32:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash 3fd40c3aefe6bf040d19e808e8e7ff15
49a2147cb64d11344ebb1b0edecdf8bab5f9edd0
cc484a42d3606b00b02f8072b5853946731451a9f2952e5379b24f8fe3c5b4db
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Tue, 24 May 2022 23:42:56 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2641
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
63.250.38.32200 OK 7.3 kB URL HTTP/2 schwartzalan.org/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 63.250.38.32:0
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash 65db974a9889825ac07cc710ce0330f8
d73f75c282bc69aaa4d25af4d480c10ca0753c32
40830a6df9791c8c3e7c89f8f9094bdb4cb4c1878413e95849c4f210c87cb858
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 15:21:18 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 7343
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
63.250.38.32200 OK 3.2 kB URL HTTP/2 schwartzalan.org/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
IP 63.250.38.32:0
File type ASCII text, with very long lines (9111)
Hash 078e27719ab2b91e57a3d06d05bf24d8
ee2c8af72d9dbb148d4101a374f6026d0c9c3044
1c8b599f3f7bfa8d7950d95a171f2c873d051960a91c91e22304293596e5b890
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 00:34:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3247
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
63.250.38.32200 OK 3.7 kB URL HTTP/2 schwartzalan.org/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 63.250.38.32:0
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash dc6411bfa6891b75944f0074c945752d
03c1a8b686c287068c61ab90f58d905496d65085
96abeabc9cc7b4c2b7d46579f2827c67ccd02fbaef0343ae052f71accd381b0d
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 13:16:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3706
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.6.4
63.250.38.32200 OK 5.3 kB URL HTTP/2 schwartzalan.org/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.6.4
IP 63.250.38.32:0
File type ASCII text, with very long lines (20372)
Hash 190377d3782b84b17a5d932c3281a863
dba9b22cf2eb3701bac0acc5c3d32952a6adc3ea
5991f28b493b118e5869d804c1d6334ffa18848feee1f0b8a9432e1aeeda3ae4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.6.4 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Sun, 10 Apr 2022 06:41:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5257
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/js/bootstrap.bundle.min.js?ver=1669293365
63.250.38.32200 OK 22 kB URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/js/bootstrap.bundle.min.js?ver=1669293365
IP 63.250.38.32:0
File type ASCII text, with very long lines (65299)
Hash 7f102a50245d527bba484b69d8f21b15
3cf8a113c5d87e7a5e1d8e77691468e1d034874c
1fd9d3465f5e6d3eb5e761b74e02cffa72db85e27e791fc78131d9090efa7755
GET /wp-content/themes/cyarb/assets/js/bootstrap.bundle.min.js?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 21633
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/css/style.css?ver=1669293365
63.250.38.32200 OK 23 kB URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/css/style.css?ver=1669293365
IP 63.250.38.32:0
File type ASCII text, with CRLF, LF line terminators
Hash 6de966eb26ace1bb975577b71960aff2
5245764d4d4188ee7db5aff5e953236e9f66cddb
bf6800e8b4c09d70ecfdd6cca741ecaacfbb0b7c72bc1e2f30abc603f4567ff9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cyarb/assets/css/style.css?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 23257
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.6.4
63.250.38.32200 OK 0 B URL HTTP/2 schwartzalan.org/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.6.4
IP 63.250.38.32:0
GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.6.4 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: text/css
last-modified: Sun, 10 Apr 2022 06:41:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 38398
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2021/09/user6.jpg
63.250.38.32200 OK 0 B URL HTTP/2 schwartzalan.org/wp-content/uploads/2021/09/user6.jpg
IP 63.250.38.32:0
GET /wp-content/uploads/2021/09/user6.jpg HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/jpeg
last-modified: Sun, 10 Apr 2022 06:37:02 GMT
accept-ranges: bytes
content-length: 59134
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%7CJost&ver=1653024303
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%7CJost&ver=1653024303
IP 142.250.74.10:0
GET /css?family=Roboto%7CJost&ver=1653024303 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Nov 2022 15:52:49 GMT
date: Sun, 27 Nov 2022 15:52:49 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2022/05/shutterstock_1041718081-860x648.jpg
63.250.38.32200 OK 0 B URL HTTP/2 schwartzalan.org/wp-content/uploads/2022/05/shutterstock_1041718081-860x648.jpg
IP 63.250.38.32:0
GET /wp-content/uploads/2022/05/shutterstock_1041718081-860x648.jpg HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/jpeg
last-modified: Tue, 10 May 2022 17:57:08 GMT
accept-ranges: bytes
content-length: 86914
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2022/05/closeup-shot-waving-flag-nigeria-with-interesting-textures-860x648.jpg
63.250.38.32200 OK 0 B URL HTTP/2 schwartzalan.org/wp-content/uploads/2022/05/closeup-shot-waving-flag-nigeria-with-interesting-textures-860x648.jpg
IP 63.250.38.32:0
GET /wp-content/uploads/2022/05/closeup-shot-waving-flag-nigeria-with-interesting-textures-860x648.jpg HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/jpeg
last-modified: Mon, 16 May 2022 07:07:53 GMT
accept-ranges: bytes
content-length: 85821
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2021/09/user3.jpg
63.250.38.32200 OK 0 B URL HTTP/2 schwartzalan.org/wp-content/uploads/2021/09/user3.jpg
IP 63.250.38.32:0
GET /wp-content/uploads/2021/09/user3.jpg HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/jpeg
last-modified: Sun, 10 Apr 2022 06:37:02 GMT
accept-ranges: bytes
content-length: 52599
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2022/05/shutterstock_1041718081-scaled.jpg
63.250.38.32200 OK 0 B URL HTTP/2 schwartzalan.org/wp-content/uploads/2022/05/shutterstock_1041718081-scaled.jpg
IP 63.250.38.32:0
GET /wp-content/uploads/2022/05/shutterstock_1041718081-scaled.jpg HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/jpeg
last-modified: Tue, 10 May 2022 17:57:04 GMT
accept-ranges: bytes
content-length: 435906
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2021/09/user5.jpg
63.250.38.32200 OK 0 B URL HTTP/2 schwartzalan.org/wp-content/uploads/2021/09/user5.jpg
IP 63.250.38.32:0
GET /wp-content/uploads/2021/09/user5.jpg HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/jpeg
last-modified: Sun, 10 Apr 2022 06:37:02 GMT
accept-ranges: bytes
content-length: 66877
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/themes/cyarb/assets/js/TweenMax.min.js?ver=1669293365
63.250.38.32200 OK 0 B URL HTTP/2 schwartzalan.org/wp-content/themes/cyarb/assets/js/TweenMax.min.js?ver=1669293365
IP 63.250.38.32:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/cyarb/assets/js/TweenMax.min.js?ver=1669293365 HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: application/javascript
last-modified: Sun, 10 Apr 2022 06:34:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 38669
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
schwartzalan.org/wp-content/uploads/2022/05/web-design-concepts-with-blurred-background-scaled.jpg
63.250.38.32200 OK 0 B URL HTTP/2 schwartzalan.org/wp-content/uploads/2022/05/web-design-concepts-with-blurred-background-scaled.jpg
IP 63.250.38.32:0
GET /wp-content/uploads/2022/05/web-design-concepts-with-blurred-background-scaled.jpg HTTP/1.1
Host: schwartzalan.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 15:52:49 GMT
content-type: image/jpeg
last-modified: Tue, 10 May 2022 07:58:08 GMT
accept-ranges: bytes
content-length: 424790
date: Sun, 27 Nov 2022 15:52:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP 142.250.74.10:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://schwartzalan.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Nov 2022 15:52:49 GMT
date: Sun, 27 Nov 2022 15:52:49 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2