r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16256
Expires: Fri, 02 Dec 2022 13:51:58 GMT
Date: Fri, 02 Dec 2022 09:21:02 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5938
Cache-Control: max-age=96548
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 09:21:02 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 12:10:10 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13221
Expires: Fri, 02 Dec 2022 13:01:23 GMT
Date: Fri, 02 Dec 2022 09:21:02 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 09:19:54 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 68
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +vfdhDeiwrdz9OsSjtejUoWQZM4Or2bxUhT8iV/vpXUOeVPdUgdXH8wAQ7YZX1fgrOGRRZUVA8H2jMyYSwtDGA==
x-amz-request-id: G9TPNSYFXFVRH5J8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 08:46:38 GMT
age: 2064
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 09:21:02 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 09:08:57 GMT
cache-control: public,max-age=3600
age: 725
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
bataan.gov.ph/behold-bataan/pawikan-conservation-center/
162.240.12.240301 Moved Permanently 20 B URL HTTP/1.1 bataan.gov.ph/behold-bataan/pawikan-conservation-center/
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
Analyzer Verdict Alert fortinet Phishing
GET /behold-bataan/pawikan-conservation-center/ HTTP/1.1
Host: bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Dec 2022 09:21:02 GMT
Server: Apache
X-Redirect-By: WordPress
Content-Encoding: gzip
Vary: Accept-Encoding,User-Agent
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://bataan.gov.ph/behold-bataan/pawikan-conservation-center/
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5940
Cache-Control: max-age=91486
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 09:21:03 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 10:45:49 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.187.71.185101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.71.185:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 22WzyrUg0QEClkk6U9D+kg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TQU5KDhl4yb0TcSPN/GXWwFWyfg=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14720
Expires: Fri, 02 Dec 2022 13:26:24 GMT
Date: Fri, 02 Dec 2022 09:21:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14720
Expires: Fri, 02 Dec 2022 13:26:24 GMT
Date: Fri, 02 Dec 2022 09:21:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14720
Expires: Fri, 02 Dec 2022 13:26:24 GMT
Date: Fri, 02 Dec 2022 09:21:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14720
Expires: Fri, 02 Dec 2022 13:26:24 GMT
Date: Fri, 02 Dec 2022 09:21:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14720
Expires: Fri, 02 Dec 2022 13:26:24 GMT
Date: Fri, 02 Dec 2022 09:21:04 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 06:00:48 GMT
age: 12016
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:49:56 GMT
age: 41468
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F356e23df-cb76-452a-b299-da5410086837.png
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F356e23df-cb76-452a-b299-da5410086837.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 82ea44d6cb116fb1f5752ce9bb87e345
f799dfd89a4f5a452dc837b8616549f578fb4184
e9087e7fce332289d67d4d5646d0233c2f2d871cc88dc1c51d5ea1e9f2fb5abd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F356e23df-cb76-452a-b299-da5410086837.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15495
x-amzn-requestid: 977cdbce-3a9c-4006-a5a1-5c4c82bd4a94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfHDIFxzIAMFzEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891ee0-4b2cb3a16ca745537a8caf8c;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:38:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KnOx0PJ8BR9OoAzXfuWk_Je_yawqzY4isC0hYTZRvJ74YiVs8jqyIQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:25:42 GMT
age: 39322
etag: "f799dfd89a4f5a452dc837b8616549f578fb4184"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f0fc684e61682c4078a82ee3d901ae52
ea65ad98933ec58afa3fa5c7642491d77db7e6c2
5e953012dba2b85cfda5befe2448ab87fbc2432a071e11a33b44be4f5148a4a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6752
x-amzn-requestid: f398ce98-353e-4783-aa42-dbf1ad036ab7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGepE6roAMF4zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-0753d209291e197e7c6422a6;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yQ2Oc2viJ7EoRW4QSMG30tsGK73zxYQsXKKcWP3vleI0CTBVRfB1Fg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:31:16 GMT
age: 38988
etag: "ea65ad98933ec58afa3fa5c7642491d77db7e6c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 498ab4412ed5cf977bc23e4e870894b0
23753fe8af09ec8ffa10eed4d201a71833885c99
036042656f15e42b4d1537c45f5b8e7190c70305fa9a69c1287c6739ad0b7122
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7334
x-amzn-requestid: a6b8b420-8394-496b-8be8-26dee52e3887
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoHJOoAMF75g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-0b38d07f518c8b3134457df2;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: tuKmV_nb4HVbqkhtCnZY3b33VB-bB6UxaBl6HsY_JgWesbUB8SPt-g==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:09:38 GMT
age: 40286
etag: "23753fe8af09ec8ffa10eed4d201a71833885c99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d147ccb10bda82b153a596c3c967cd6a
ffd0763f997e71a8c1458523fc17cafe8849dfdf
1cfeb90a4ba027195f903d938d4a0aac418a1c2f0b52215ec023263f15905971
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7591
x-amzn-requestid: e179862e-f840-4e50-a9dc-09f325479b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGgMFRZIAMFl7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e01-676a1571459f2d83488f2765;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oB5K_ZCWWwCltMx8FQSjDdXRMzSTSyRLSYSLAooQXuCrUxadLUiWkA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:51 GMT
age: 41533
etag: "ffd0763f997e71a8c1458523fc17cafe8849dfdf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bataan.gov.ph/behold-bataan/pawikan-conservation-center/
162.240.12.240200 OK 27 kB URL HTTP/2 bataan.gov.ph/behold-bataan/pawikan-conservation-center/
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (24775)
Hash 311e3ef83def4ea1d95f03f2139201b5
3db2ea9eb9ba19083b9f74d798822525f4a7f8bd
48be6784e71fd870c3c006e442cfd3c42b30328115aefc3eb074cee8cdf4f9a3
Analyzer Verdict Alert fortinet Phishing
GET /behold-bataan/pawikan-conservation-center/ HTTP/1.1
Host: bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
link: <https://www.bataan.gov.ph/wp-json/>; rel="https://api.w.org/", <https://www.bataan.gov.ph/?p=917>; rel=shortlink
vary: Accept-Encoding,User-Agent
x-mod-pagespeed: 1.13.35.2-0
content-encoding: gzip
cache-control: max-age=0, no-cache
content-length: 26731
content-type: text/html; charset=UTF-8
date: Fri, 02 Dec 2022 09:21:03 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 09:21:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 09:21:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 09:21:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Roboto+Condensed%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CCabin%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.1
142.250.74.106200 OK 1.6 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto+Condensed%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CCabin%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.1
IP 142.250.74.106:0
Hash 52b4ae5ed8ea9fefd95b0df5059f1258
1dd1d596992fb684e71220d7ce8983f2843944a4
e511c1efec99d596b5c3e5cd523ab5f7ba0076601f600fee17a1447f284a61a8
GET /css?family=Roboto+Condensed%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CCabin%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 09:21:05 GMT
date: Fri, 02 Dec 2022 09:21:05 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Nunito+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CCabin%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900
142.250.74.106200 OK 1.4 kB URL HTTP/2 fonts.googleapis.com/css?family=Nunito+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CCabin%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900
IP 142.250.74.106:0
File type ASCII text, with very long lines (884)
Hash 25aa7cf0d81f1b88b2c5d699bb4a22d6
b7e592a9d22ff8b166bb5aa02e2477952e2f04f8
b1f4d494de615796463c8c628dbc6bfa58083bbe31bb8411879ee8d5cd57411c
GET /css?family=Nunito+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CCabin%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 09:21:05 GMT
date: Fri, 02 Dec 2022 09:21:05 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 09:21:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bataan.gov.ph/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.2
162.240.12.240200 OK 932 B URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.2
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash b1eb322499f2dbc18499a9a46edd88fd
47213d17cb0eb45bd12ede49ee77e6c384b3664a
e3ec4292fd6b24707fe8b93f5d423120dcbc25aa702e7d434749910f947e4060
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.2 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:08 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 932
content-type: text/css
date: Fri, 02 Dec 2022 09:21:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/document-embedder-addons-for-elementor/admin/assets/css/main.css?ver=6.0.1
162.240.12.240200 OK 320 B URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/document-embedder-addons-for-elementor/admin/assets/css/main.css?ver=6.0.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash f09e0f18bdc1c580e3925fcb2e01b4ed
12ff949b8e7572c9aaa383e182ba0e8b0a873498
08b1ab2d9967b97b965c767b1bd9125ef6b5d5da10f5a89914938c86eeecb4dc
GET /wp-content/plugins/document-embedder-addons-for-elementor/admin/assets/css/main.css?ver=6.0.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 Oct 2021 14:25:46 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 320
content-type: text/css
date: Fri, 02 Dec 2022 09:21:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/ova-dep/assets/css/frontend/ovadep-style.css?ver=6.0.1
162.240.12.240200 OK 2.9 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/ova-dep/assets/css/frontend/ovadep-style.css?ver=6.0.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (314)
Hash c52bd9364bd3d04de576e61e2c348fe3
94f93e48509b9719f74fb360bf4a05efd22e77a5
18eb0ca257284dc54beaf8c8e64c7afe64cd47e43ef271cce20a510546c0375c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ova-dep/assets/css/frontend/ovadep-style.css?ver=6.0.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2869
content-type: text/css
date: Fri, 02 Dec 2022 09:21:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/ova-portfolio/assets/css/frontend/ovapor-style.css?ver=6.0.1
162.240.12.240200 OK 3.4 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/ova-portfolio/assets/css/frontend/ovapor-style.css?ver=6.0.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash fdfa5f7384a293cc960cde611b1dabf4
414fb04d341b47ae7708aebc19682a002c1137bb
2074bcf1deee9792513ee5e08bcad64a8736db09098cd9e127d603e8f132073a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ova-portfolio/assets/css/frontend/ovapor-style.css?ver=6.0.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3416
content-type: text/css
date: Fri, 02 Dec 2022 09:21:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/ova-portfolio//assets/libs/fancybox-master/dist/jquery.fancybox.min.css
162.240.12.240200 OK 3.1 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/ova-portfolio//assets/libs/fancybox-master/dist/jquery.fancybox.min.css
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12795), with no line terminators
Hash 18b46dae08e98971b16123ea48913d23
e0a1aa82445a38538413b488924613c44861c59d
62c06f2ea24cfdf0003164fca05560cc8b5333f6ef312016458e05ecbb7c8f62
GET /wp-content/plugins/ova-portfolio//assets/libs/fancybox-master/dist/jquery.fancybox.min.css HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=10
content-length: 3096
content-type: text/css
date: Fri, 02 Dec 2022 09:21:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/ova_doc/assets/css/frontend/ovadoc-style.css?ver=6.0.1
162.240.12.240200 OK 1.6 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/ova_doc/assets/css/frontend/ovadoc-style.css?ver=6.0.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash ee6b71f0d26a26ff543d508b6f515f94
11921f73f02a6b90c27f0cb486d8ed03f22a0ae1
947651eb0b2323e044cde9fc575251841f497c20c83956e8a5805e53925f64c7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ova_doc/assets/css/frontend/ovadoc-style.css?ver=6.0.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1619
content-type: text/css
date: Fri, 02 Dec 2022 09:21:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/ova-team/assets/css/frontend/ovateam-style.css?ver=6.0.1
162.240.12.240200 OK 2.7 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/ova-team/assets/css/frontend/ovateam-style.css?ver=6.0.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (769)
Hash 0b92776c3fe71c6e8a8fdf48d2c79e7f
bb90ea41730195d60461baf0d5e746bd121e132c
305eb393dad4176f0a81be6915475c7c7de8a8f0c97b86f74c72c6ac2616a222
GET /wp-content/plugins/ova-team/assets/css/frontend/ovateam-style.css?ver=6.0.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2656
content-type: text/css
date: Fri, 02 Dec 2022 09:21:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/ova-sev/assets/css/frontend/ovasev-style.css?ver=6.0.1
162.240.12.240200 OK 2.2 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/ova-sev/assets/css/frontend/ovasev-style.css?ver=6.0.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d93aef423ec901f615a1c461b023a4aa
64660776f121840adf06a09000bbb9b67c2f0f72
586213bac86fd5a5fb59ba0c7bf2f7a9d7525e283ca3210260269b4ff062e49d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ova-sev/assets/css/frontend/ovasev-style.css?ver=6.0.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2156
content-type: text/css
date: Fri, 02 Dec 2022 09:21:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/ova-events/assets/css/frontend/event.css
162.240.12.240200 OK 10 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/ova-events/assets/css/frontend/event.css
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 037628e2d68f1bea00aae47cdae8c05d
7a3178b1a996d5224a3161f54d55c4a39d6b3790
904f1ddabb29ec4f50b03611a619ccac3e84ef5e2a6f175d71c9bf0986ac7e6f
GET /wp-content/plugins/ova-events/assets/css/frontend/event.css HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 10521
content-type: text/css
date: Fri, 02 Dec 2022 09:21:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/bootstrap/css/bootstrap.min.css
162.240.12.240200 OK 22 kB URL HTTP/2 www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/bootstrap/css/bootstrap.min.css
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65324)
Hash 23d2daca08004223f200f86058ac338e
c58936e8bdcadd9d8a07093a2b2313c5e8fd9a96
2a0ad94656ea29dbb48ffec7fc40c5f94f380d220276775584e5d55d5e289612
GET /wp-content/themes/egovt/assets/libs/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Jan 2019 03:58:44 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 22237
content-type: text/css
date: Fri, 02 Dec 2022 09:21:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/select2/select2.min.css
162.240.12.240200 OK 2.0 kB URL HTTP/2 www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/select2/select2.min.css
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15274)
Hash 3bad61ed7f9eae85246ae53b8dcde0cf
bd55db59343594fe88c4a0b9c795326e64512b77
9df75a65d3175b718a1b37a2bc67e39bf31ab297406a9ade0c1e8076725732b7
GET /wp-content/themes/egovt/assets/libs/select2/select2.min.css HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 21 Nov 2018 02:20:50 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2008
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/themes/egovt/style.css
162.240.12.240200 OK 502 B URL HTTP/2 www.bataan.gov.ph/wp-content/themes/egovt/style.css
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (359)
Hash cbcd64d74db254fa00ea45912ed27c9e
877c14aa1682699d39f46986748236cf8e31d252
8107ac22470eefeb8234e8113cf648d68a96de34e2b45aa5f1f558d66d7af7f3
GET /wp-content/themes/egovt/style.css HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 25 Jul 2021 10:09:08 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 502
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/linearicons/style.css
162.240.12.240200 OK 1.7 kB URL HTTP/2 www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/linearicons/style.css
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 7ab6a673d5e6fb9ea8e3ee4645c42493
38b4d86ba2ccd02ae25aaacbf3919a2e57c13c3b
a4ad682d8cad87cb4d62a15777d23087b90e11b156ba5466e52563f2f17767b4
GET /wp-content/themes/egovt/assets/libs/linearicons/style.css HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 17 Aug 2020 02:32:44 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1651
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/themes/egovt-child/style.css
162.240.12.240200 OK 301 B URL HTTP/2 www.bataan.gov.ph/wp-content/themes/egovt-child/style.css
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash f8ed178277b09ad62ae7f41561f0d7c3
444924364a0d4030eb67356e0e8f4a946b4eca9c
97a577180a2f1457a2975749414df5cb474c1df1b5adb8cc07207082253a906d
GET /wp-content/themes/egovt-child/style.css HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 06 Jul 2020 05:50:50 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 301
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/recent-posts-widget-with-thumbnails/public.css?ver=7.1.1
162.240.12.240200 OK 487 B URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/recent-posts-widget-with-thumbnails/public.css?ver=7.1.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (404)
Hash b566374773edb1976c00e88bd8bbe5a2
ccae1c15da77c0bc505538194bab99f533242ac2
b40127c7e30f9fe09743cf9493a89cd6752129f31fe468fa15cebdd83d9f0766
GET /wp-content/plugins/recent-posts-widget-with-thumbnails/public.css?ver=7.1.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:31:24 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 487
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/uploads/elementor/css/post-6.css?ver=1660871083
162.240.12.240200 OK 511 B URL HTTP/2 www.bataan.gov.ph/wp-content/uploads/elementor/css/post-6.css?ver=1660871083
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1259)
Hash 2d0208f495e9ec59187703b235da6951
9c2c11336670af0cf32838561fbac7ff2461f470
744c1895ec508ce571eccb9dcd89e8218b07b20040adee3b7dcce812c1186b5c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-6.css?ver=1660871083 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 19 Aug 2022 01:04:43 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 511
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/elegant_font/ele_style.css
162.240.12.240200 OK 4.5 kB URL HTTP/2 www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/elegant_font/ele_style.css
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6610)
Hash f0f7d96cf38de3c50695d85d0a093abb
e854ac124729b9a57035866031512003976c3158
2a7063dfe3505f652307daa9d02f1e2c225b5bbb15ded2e61941216086f0de7b
GET /wp-content/themes/egovt/assets/libs/elegant_font/ele_style.css HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 Feb 2019 07:06:14 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4517
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/ova-portfolio/assets/js/frontend/ovapor-script.js?ver=6.0.1
162.240.12.240200 OK 2.2 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/ova-portfolio/assets/js/frontend/ovapor-script.js?ver=6.0.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5c37f9850721100ee81f03ca65b6f634
aaebf40c6e7247294ed6e37a903940dd7f5506fa
26c8f29966d1532e2796378983b62f52b18404b6dce9219b5ff192622cbe15de
GET /wp-content/plugins/ova-portfolio/assets/js/frontend/ovapor-script.js?ver=6.0.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2230
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/fontawesome/css/v4-shims.min.css
162.240.12.240200 OK 4.2 kB URL HTTP/2 www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/fontawesome/css/v4-shims.min.css
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (26508)
Hash 75e1d3627a3b376273c8d9352a3a7cbe
0062247952c661e3ff477f2e67d2cc35a274eab6
3229c6e9fce29ef011abf1fcfa2609b94e78767a7bf89c8e8bef75bca4e17ebe
GET /wp-content/themes/egovt/assets/libs/fontawesome/css/v4-shims.min.css HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Aug 2018 09:26:38 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4212
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/tablepress/css/default.min.css?ver=1.14
162.240.12.240200 OK 2.2 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/tablepress/css/default.min.css?ver=1.14
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5092), with no line terminators
Hash fadb046ad02dc98892f8a102040a18ee
6fc3072fcbd94c7722145447bd3dc00f2458f8a6
926ee0e9d5a4ec3f859d7d49cf490a6a8f1694fef7df4bcc8de128123cf3eb9b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/tablepress/css/default.min.css?ver=1.14 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 05 May 2022 00:41:58 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2244
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/uploads/elementor/css/post-917.css?ver=1660876409
162.240.12.240200 OK 266 B URL HTTP/2 www.bataan.gov.ph/wp-content/uploads/elementor/css/post-917.css?ver=1660876409
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (825), with no line terminators
Hash e3a7bb5a2014b83453fb5de655b64776
5106b819af16b2cdc84211736af2cae703148eee
6d22bddcfcec8262a88d5079f6e2e639deecef6887ddcdc2c038b78604ebe1c0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-917.css?ver=1660876409 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 19 Aug 2022 02:33:29 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=10
content-length: 266
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.2
162.240.12.240200 OK 1.6 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.2
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11362)
Hash 6abb3ee508ebccd7bfc5b451941b7401
0a5776d4b2b0ec1741f6cdadc546ddffdd53277a
8ef94743ab87617e55d72fd2b7828232cc26183d6d3610d9dc01e675f7d8b6f8
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.2 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Jun 2022 21:39:12 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1646
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.2.3
162.240.12.240200 OK 829 B URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.2.3
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3432)
Hash ced8198d56ecbb539312dfad5e47d0ce
a9562a4832185c4919b9a5eb543515ee84528b60
ba645225151f3241f315c483981bf08908a258c9517bf4e7e0b2732fd155254e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.2.3 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 19 Aug 2022 01:14:05 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 829
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
162.240.12.240200 OK 4.2 kB URL HTTP/2 www.bataan.gov.ph/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4169
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/ova-framework/assets/libs/flaticon/font/flaticon.css
162.240.12.240200 OK 1.3 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/ova-framework/assets/libs/flaticon/font/flaticon.css
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 311c32cf37c819e52818ac576deb17b3
df7e132c0cc9eccc13ec6bbc171128aad81a6e41
9e2834ef051ef7affeabe42c04770588cd9b5ccf8d4a15f79c9eb4727a23a61a
GET /wp-content/plugins/ova-framework/assets/libs/flaticon/font/flaticon.css HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1261
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/jquery-ui/jquery-ui.min.css
162.240.12.240200 OK 7.6 kB URL HTTP/2 www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/jquery-ui/jquery-ui.min.css
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (29135)
Hash c837196ecb9539abdc3d1a1f8018e918
0cefa5b4948cb9cc85b53f1e23add647bda9ee20
c9ea7c0c8df4453debbcc78d9c4ab420f5f5a7bca6a930838feb8fdd8cc9257d
GET /wp-content/themes/egovt/assets/libs/jquery-ui/jquery-ui.min.css HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 05 Jan 2021 06:11:34 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7607
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/ova-dep/assets/js/script-elementor.js?ver=6.0.1
162.240.12.240200 OK 2.2 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/ova-dep/assets/js/script-elementor.js?ver=6.0.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 496784f529f4d1a51b35b5bf940bc20a
9587eb70e5d83d991ca2d8282f446ccdbfa271f6
8940a5612854ea09e00d4ecc4907564db7fbab45afa8b10c7ae23c046c1db00f
GET /wp-content/plugins/ova-dep/assets/js/script-elementor.js?ver=6.0.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2177
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
162.240.12.240200 OK 309 B URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (483)
Hash 0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Aug 2022 14:22:49 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 309
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/uploads/elementor/css/post-664.css?ver=1660871652
162.240.12.240200 OK 1.3 kB URL HTTP/2 www.bataan.gov.ph/wp-content/uploads/elementor/css/post-664.css?ver=1660871652
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10284), with no line terminators
Hash 79ed65cf44aa61ea3e1b93a37da6a2a2
eff14a51700abc4c01976db1a4446cf18b6440da
cc5f9782261a9e0821ee63177fef7444a666418f94875bb793cd061547a91ce7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-664.css?ver=1660871652 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 19 Aug 2022 01:14:12 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1253
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/ova-framework/assets/libs/owl-carousel/assets/owl.carousel.min.css
162.240.12.240200 OK 1.1 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/ova-framework/assets/libs/owl-carousel/assets/owl.carousel.min.css
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3184)
Hash 8864ff6a1198eecf45821c602593ff9a
c6097cea47ac44fcec94781f2af0110cb677ab0a
19eaae3fdfe574cd1b1cfd78d30633a4527bde9711dde88b467fe43ca854cda5
GET /wp-content/plugins/ova-framework/assets/libs/owl-carousel/assets/owl.carousel.min.css HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1068
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/uploads/elementor/css/post-230.css?ver=1666753966
162.240.12.240200 OK 2.1 kB URL HTTP/2 www.bataan.gov.ph/wp-content/uploads/elementor/css/post-230.css?ver=1666753966
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14658), with CRLF, LF line terminators
Hash 0e4506077c00bae2addc70301c2d982c
368bb0190b7a25c7626deb8d838fb5135d9b91cf
5b21b74fbd0abce05392178c4b1090d6e51eb79f4ad2b6a422710525b299a4e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-230.css?ver=1666753966 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 26 Oct 2022 03:12:46 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2087
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/ova-sev/assets/js/script-elementor.js?ver=6.0.1
162.240.12.240200 OK 1.7 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/ova-sev/assets/js/script-elementor.js?ver=6.0.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 6bcaf760a45047a2bcab680d97754ab9
66e86eccaa49581dd13476724cc419258fb235c4
fe079376c164dff235221975bf9680c0aaa4d5cec8eca6be50edddaf38840cf6
GET /wp-content/plugins/ova-sev/assets/js/script-elementor.js?ver=6.0.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1729
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/ova-portfolio/assets/js/script-elementor.js?ver=6.0.1
162.240.12.240200 OK 1.9 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/ova-portfolio/assets/js/script-elementor.js?ver=6.0.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash ff83c3167837f18f477eaae964472b79
10373294e147b6f26ae2d1b4bc054e126e49c5a5
348d15726f84350eb1c25dfed2d55862304cd5cc76b530914201058c0ab5544d
GET /wp-content/plugins/ova-portfolio/assets/js/script-elementor.js?ver=6.0.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1928
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
162.240.12.240200 OK 2.5 kB URL HTTP/2 www.bataan.gov.ph/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6475), with no line terminators
Hash 27cbbd0a9d7c5ad9402118c4afc36035
7659d08a005f5ecfa6c779e3cda45c30007fd059
ebc771d0af626966e38535357861fab0090e0bd7ff346cbe3c7ffdde1683809f
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2457
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/ova_doc/assets/js/script-elementor.js?ver=6.0.1
162.240.12.240200 OK 1.7 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/ova_doc/assets/js/script-elementor.js?ver=6.0.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 6bcaf760a45047a2bcab680d97754ab9
66e86eccaa49581dd13476724cc419258fb235c4
fe079376c164dff235221975bf9680c0aaa4d5cec8eca6be50edddaf38840cf6
GET /wp-content/plugins/ova_doc/assets/js/script-elementor.js?ver=6.0.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1729
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/ova-framework/assets/libs/prettyphoto/css/prettyPhoto.css
162.240.12.240200 OK 2.8 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/ova-framework/assets/libs/prettyphoto/css/prettyPhoto.css
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (402)
Hash 4f21ec76906e28e1c2194ea84546ed6b
85eacc0202364a6682bd58ee3f6680efc1420c7f
86534570cd150f56233dd6fb56369c299e76d93a751dc233c66d35d512a37179
GET /wp-content/plugins/ova-framework/assets/libs/prettyphoto/css/prettyPhoto.css HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2769
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.1
162.240.12.240200 OK 5.6 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14891)
Hash d9b412d62d7d9059ad76c35f082bc266
4b96ead63fb3cd58fd5d520682e36e91d942ec37
c289abedb1b82c051b3f4b740fbc8e50a54ea343c0b4e334ed505d623797b163
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Aug 2022 14:22:49 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5555
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/fontawesome/css/all.min.css
162.240.12.240200 OK 11 kB URL HTTP/2 www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/fontawesome/css/all.min.css
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (48464)
Hash 031e29f87b257c8850d4bcfecdda66c9
d719d5c4d61a316983089901e8c6018c3fed3896
2d36d53c6c747c6fd49af485131057e4d449c10131321514c2cc1b128adc4d3f
GET /wp-content/themes/egovt/assets/libs/fontawesome/css/all.min.css HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Aug 2018 09:26:38 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 10603
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.1
162.240.12.240200 OK 4.2 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (26516)
Hash d74abcef3df71d56667a44693f75c454
be993a7b5c88a550ef0dc19c4841f240e41967f8
8c8fb98c0a68a93f2bcf224fcc1bdaa1095fc1b3f5418f2e2c5fddcfa3dee410
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Aug 2022 14:22:49 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4229
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/happy-elementor-addons/assets/fonts/style.min.css?ver=3.6.1
162.240.12.240200 OK 5.3 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/happy-elementor-addons/assets/fonts/style.min.css?ver=3.6.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (25442)
Hash 7559da0121e98f7e21071faaf4d8749a
d3d3e42639b915f6c818ee4dd84477fddf87eea7
4bcfb4fb0ffeabb858ee34e88724eb0066efb1cd6c82b7b33965c15aa1d8e6b8
GET /wp-content/plugins/happy-elementor-addons/assets/fonts/style.min.css?ver=3.6.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 19 Aug 2022 00:36:37 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5315
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
162.240.12.240200 OK 7.1 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (30837)
Hash 2a2c987c48fb65bb0e78fa2a37120537
ede7a4d5da37f053251e8b8a33be2a23a660473f
3d3136cdfced0eee9b7766b7a17a591f6fb3ba480e71b8930acbea4db4ab71d1
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Aug 2022 14:22:49 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7052
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/ova-events/assets/js/frontend/event.js?ver=6.0.1
162.240.12.240200 OK 2.3 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/ova-events/assets/js/frontend/event.js?ver=6.0.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash e01e215c777cdf3f0867fcd5fddfeec7
54703b38531b4d70290b95f93811fa6f9333627a
594e888ac284fe8976cabd959d43ac9c263029a42e3b7a1f6a46a17f24051fb2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ova-events/assets/js/frontend/event.js?ver=6.0.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2256
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/uploads/elementor/css/global.css?ver=1660871669
162.240.12.240200 OK 9.6 kB URL HTTP/2 www.bataan.gov.ph/wp-content/uploads/elementor/css/global.css?ver=1660871669
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (50767)
Hash 469f18345819c6c632539d07a5cadeb7
caa70c0549637d271acd50adad4b89cdf73b22f0
5f97316c235ac772a4cb033cefa2fe063541f0a95810dfc1b8a3163381c7734e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/global.css?ver=1660871669 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 19 Aug 2022 01:14:29 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9567
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/ova-team/assets/js/script-elementor.js?ver=6.0.1
162.240.12.240200 OK 2.2 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/ova-team/assets/js/script-elementor.js?ver=6.0.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 96cba49a7856dc121900e912b5c0a524
24820ae6bcb7457a4fed8e1bd729f208f63e6cd4
88e80cd7bbd7eb9e6ac8da12c83e82bd22a957fb0b7307e667f13b535b631298
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ova-team/assets/js/script-elementor.js?ver=6.0.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2217
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.4.2
162.240.12.240200 OK 2.2 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.4.2
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1871)
Hash 3032fcc6ba11ca091b5a86719f829f47
11cd6415926ec6ba618a8bbcf85dfc3eb28ba10d
0720cd210b757dc72acac3517fed894b350800a02f638efa46e0da6b37dc959b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.4.2 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:08 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2164
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-includes/js/imagesloaded.min.js?ver=4.1.4
162.240.12.240200 OK 1.8 kB URL HTTP/2 www.bataan.gov.ph/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5477)
Hash 951ae46ca55ec7b0e401e2074bdf8b54
64bbbdc28a351b26cab9c230e134ca8eb4d4f83e
fd5d4c623e9d68551114b2a1303584b6792e592e864d4416145904fe8b9edd91
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 13 Jun 2020 18:53:26 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=10
content-length: 1834
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.1
162.240.12.240200 OK 13 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (59158)
Hash d7913fc87c4606f82b4ee77a8d47fc2f
62a54acf7535ae53425b44dadfe5fdabf3d8300a
bb05c88bb0b82e2f14f1efb94b4c3511292f74c3bb7cb0b104d300a42a49492f
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Aug 2022 14:22:49 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 12869
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
162.240.12.240200 OK 13 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (57726)
Hash 991d00cd7cb62d50a29295522d554f1f
e128a5238f141e9c4da1979716108d858340fe03
b8fcb61816168fc6a7ee01bb09fa4378398838dc6e4f49dc411872876355d113
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Aug 2022 14:22:49 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 12582
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.1
162.240.12.240200 OK 14 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65497)
Hash 2a31973db73ad2289ddce35a11553d8b
02bdde9c570d9d0c9c09c334a86a22bbb1148fb7
1031715d50efa25bc415296463206570a649b31c66d2acc1a693622cbb4a1b91
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Aug 2022 14:22:49 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 14104
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/ova-framework/assets/css/style-elementor.css
162.240.12.240200 OK 18 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/ova-framework/assets/css/style-elementor.css
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (367)
Hash 3c009ae25c73dd30d96e0097a6591ca9
4220cc5b1e56fe55faa4ba8d72167fcc23e54e80
923a46cb520f0c2470cb4fe8c78113bba23b6d949debe387fb39223aa3de14a6
GET /wp-content/plugins/ova-framework/assets/css/style-elementor.css HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 18064
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
162.240.12.240200 OK 1.7 kB URL HTTP/2 www.bataan.gov.ph/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4875)
Hash 320b86bb1a9ce650a5e3553b2bb1c430
c56e8668b398641ed5cdcfbd8a8eba7d631cdb9c
c9ebbb8d122c6be3880d18172abfe308bb07db900689484fa765a73b8b20b3ec
GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1661
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/themes/egovt/assets/css/theme.css
162.240.12.240200 OK 27 kB URL HTTP/2 www.bataan.gov.ph/wp-content/themes/egovt/assets/css/theme.css
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (398)
Hash 1dbcb68e2e54f745f412be7c340d3a38
48b26903e1ad7d48a6b756c6be193df416c22f40
12f73377a2e97729f6d42370891d5148d0c5e36d08a3cfb1459961c9269969f2
GET /wp-content/themes/egovt/assets/css/theme.css HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 03 Jun 2021 05:14:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 27075
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
162.240.12.240200 OK 31 kB URL HTTP/2 www.bataan.gov.ph/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 10 Mar 2021 15:07:24 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 30908
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/ova-events/assets/js/script-elementor.js?ver=6.0.1
162.240.12.240200 OK 3.3 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/ova-events/assets/js/script-elementor.js?ver=6.0.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d9d39ce9bb6e0e6010bdbcf8074364f1
af239377a0842e59fb52a05698ec0ab6478b5322
8a9d6af14000327031b81f0aab1ca13eb442fb4db8576b7635e523a24fb25a51
GET /wp-content/plugins/ova-events/assets/js/script-elementor.js?ver=6.0.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3311
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/themes/egovt/assets/js/script.js
162.240.12.240200 OK 3.5 kB URL HTTP/2 www.bataan.gov.ph/wp-content/themes/egovt/assets/js/script.js
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 575a000142547d5305299ed37e90feab
c5efaebf6f546e22e46c7e6e70e1692ba6895519
a9409f8a5d5ba56799a98f442ca76397a19609d8d50800bcd1edc52d2bdd201d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/egovt/assets/js/script.js HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 03 Jun 2021 03:41:00 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3502
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.2
162.240.12.240200 OK 3.7 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.2
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5163)
Hash 50fb653e21fa661e62822f2dba3b174c
bb6659addce34563639fde4ae902dd11e2fdef54
27fb244e8252b305797c40d4d488705fcd1aa8c8d7aee492671d3351fd8c399a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.2 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Jun 2022 21:39:12 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3688
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
162.240.12.240200 OK 3.9 kB URL HTTP/2 www.bataan.gov.ph/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash ca0cf10a1d933e4262c732da8f9008c1
d6fdc041e650cf096841671884db8854490dba72
fbd145cb64d3185e42b8a3f6fff22b3e4cc3550934b63a4f874c21c44f920702
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 15:12:46 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3865
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.1
162.240.12.240200 OK 3.5 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4940)
Hash 74344b610fe0fcb1c610df7dd1f1da85
a772d73fa466af79f7087dc5f3dbf74825775f96
e3cce40f13c81751c407e05f84107a7f671b907dbefc8ce77328c57bfc40b1aa
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Aug 2022 14:22:49 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3506
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1
162.240.12.240200 OK 3.9 kB URL HTTP/2 www.bataan.gov.ph/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11760)
Hash b3b756ae23b641be60b9eba0ddc7c3d8
99899b4cd589abe27cc9aeea1ecc0266b8775876
1da4297afc5955b4da0d89cc26246ffd4e2f04e5360467b4a12da5dc7edf9f27
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3914
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.2.3
162.240.12.240200 OK 4.2 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.2.3
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8038)
Hash dd1914883197fd6fc44848e429528fab
efe2c7caa3c38f2fd64a333f6e4f2b07bd2a9bcd
c0a7d4f39a4183e6a2ec18028964dfd5683d250de2bb9c8e2e9ebd6d4e8aa5b2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.2.3 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 19 Aug 2022 01:14:05 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4161
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/rocket-lazy-load/assets/js/16.1/lazyload.min.js
162.240.12.240200 OK 4.0 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/rocket-lazy-load/assets/js/16.1/lazyload.min.js
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7889)
Hash 60929e1111c27364ab283114fa8dd499
258caefce6172870e5bcaf30a58ca6e59188f3b8
9333a6cb933a26794e89ef76e578ca3696da23463b69dd398988fedb2e4dd70d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/rocket-lazy-load/assets/js/16.1/lazyload.min.js HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 18 Mar 2022 07:48:15 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4013
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/ova-framework/assets/js/script-elementor.js?ver=6.0.1
162.240.12.240200 OK 4.3 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/ova-framework/assets/js/script-elementor.js?ver=6.0.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash e733128df558e234d239d6fc573b82fa
45b953b159505f76a22b73fd96e898a6ab284c39
f53216a94ba1049b309abf6430211d540b893446dd91c6e6a21785f5424bd85b
GET /wp-content/plugins/ova-framework/assets/js/script-elementor.js?ver=6.0.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4335
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
162.240.12.240200 OK 4.3 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12220)
Hash 3a3a6aed99826d28c73606021d697ff3
464d576941c84235e9065d0468aa5bd840630a3a
2b9e609792bc5aa920ee08d4b175729819480928a46818192ddb6af5a24fabb7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Aug 2022 14:22:49 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4313
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.2
162.240.12.240200 OK 5.4 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.2
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (13009)
Hash 1bbb93306cd382da0185b37b569197e9
d5b09c90edac92aeba3fd20e144d69ae4d9177d7
9cd723a93b37088d916a0720fc864dd55c3ed57595f74ba6b0eda91276cc4311
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.2 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:08 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5397
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/ova-events/assets/libs/calendar/underscore-min.js?ver=6.0.1
162.240.12.240200 OK 7.2 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/ova-events/assets/libs/calendar/underscore-min.js?ver=6.0.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (16194)
Hash 7e0271e95b102409de1af4d16fbb41df
a2423df8e84c1851e65f5286609ba53e897c1e4a
abdfb898ba47840dff631d09f9659df3fc68a1ae0074ad925716152164f9ebf8
GET /wp-content/plugins/ova-events/assets/libs/calendar/underscore-min.js?ver=6.0.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7162
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
162.240.12.240200 OK 6.9 kB URL HTTP/2 www.bataan.gov.ph/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 7e2b78a6e8a9b90385330755ee1cf3e5
684c325f39d45e42ae44a9e42f5e9fe4fb0b909c
43f124dabb4bc663cc1cc8d3161c1e6365cf8445d873ed5d69bbfdb507cf24a9
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6914
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
162.240.12.240200 OK 7.1 kB URL HTTP/2 www.bataan.gov.ph/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 2f4fcc5a628b379672d76b7e91cbdf07
9d72f2c9cbc1e9b036360acfce8c8ccc8b832b8c
a360f715a418026d2e1acd81c02c83233d0c0b60fdf4ce0b4d33562925d6a0b5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7095
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.2
162.240.12.240200 OK 7.0 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.2
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (24361)
Hash a78c77feb8902624c045a419db8c5ac3
d4de0f75749a1af9fc1b2fc8f2ab6140646e7cd7
8a594ebd5ecac7ddc8d4b9de4248beeb91d5f9aeaf22918585c11f389115f031
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.2 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Jun 2022 21:39:12 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6965
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.2
162.240.12.240200 OK 7.0 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.2
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (21186)
Hash 3d62cddfebae56586d88a045c7b3040f
d60919266a32e29f41007186205c34057b275266
324cfbdfb4aa5d53a34e06cb4f191a5fcf4e6fa4b6b3d63322781937d1f2f7b3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.2 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Jun 2022 21:39:12 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6969
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/happy-elementor-addons/assets/js/happy-addons.min.js?ver=3.6.1
162.240.12.240200 OK 9.9 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/happy-elementor-addons/assets/js/happy-addons.min.js?ver=3.6.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 7053bade3ddb09469703e17d45398e86
335968be675a33478b238eae4706729f41e1d45a
14b3c8c3afb6aad1c3c0fffcaa83278422fa3a79719c63669e3fbd3af293102f
GET /wp-content/plugins/happy-elementor-addons/assets/js/happy-addons.min.js?ver=3.6.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 19 Aug 2022 00:36:37 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9854
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/ova-portfolio/assets/libs/isotope/isotope.pkgd.min.js?ver=6.0.1
162.240.12.240200 OK 11 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/ova-portfolio/assets/libs/isotope/isotope.pkgd.min.js?ver=6.0.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32019)
Hash 0dd1ef745a22def666a40112f52dccf8
fde9a3fd56bd22b8f3aa5a440c0bea54377a08f1
4f1fc854368601a5c6c998f4b1059db228d3184f8f0fb7281be692e5b45a18fb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ova-portfolio/assets/libs/isotope/isotope.pkgd.min.js?ver=6.0.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=10
content-length: 11196
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1
162.240.12.240200 OK 11 kB URL HTTP/2 www.bataan.gov.ph/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (36560)
Hash 01c8b2443d039a1bfcd1636ba1a4ed1e
aa8f6ae060067210f9172204c244e48d925fd7c0
3ead9dd682f597ca6ad784b9c990ee20c6524b267ef54d4bd232ad5eb733a7d5
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 10897
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.1
162.240.12.240200 OK 12 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (32911)
Hash 1139f667aac686ad65e64f044ae23683
9c90fa9fcb7fd66880f03e5b6b9a16be8a7937d9
b1f53a698deb78cdd82f7aae944458a14b6daa7e70be4ea1148a89cffa55c1c3
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Aug 2022 14:22:49 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 12071
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.1
162.240.12.240200 OK 13 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (40485)
Hash 70eb26eb94968dd41f7c219b14a9e237
386f73eac43188bfa6d3914ece7b72732ef6393c
2138442bce1efa4a0fc31ee57fc7ecf5d130f1af77ebe7a0097684ba348159d6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Aug 2022 14:22:49 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 13358
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-includes/js/dist/vendor/moment.min.js?ver=2.29.2
162.240.12.240200 OK 18 kB URL HTTP/2 www.bataan.gov.ph/wp-includes/js/dist/vendor/moment.min.js?ver=2.29.2
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (58023), with no line terminators
Hash 0f48c2ccae9163e0051f6a9c5246933b
80b59a11c28e3e9e3b966cb8a014f713df082c19
d1ddaa0039c2442bb4de110d30d6a86df7b8a0d22a3813ca2fe96b06175b6552
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/moment.min.js?ver=2.29.2 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 16:52:22 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 18523
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/select2/select2.min.js
162.240.12.240200 OK 21 kB URL HTTP/2 www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/select2/select2.min.js
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (64217), with no line terminators
Hash 114c653e345634927f8fea69edc1cfaa
de482cd4514ab02ede1bdb628ed64cf15cf5e28b
ff5d2ff703c00aa61ebc25fd982f3f9395376ff78958ceb23805ab6879347bf3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/egovt/assets/libs/select2/select2.min.js HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 21 Nov 2018 02:20:50 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 20731
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/happy-elementor-addons-pro/assets/js/happy-addons-pro.js?ver=2.4.0
162.240.12.240200 OK 21 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/happy-elementor-addons-pro/assets/js/happy-addons-pro.js?ver=2.4.0
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash e6a7c777d12e69f2ca51f48480d844f8
7283edc1c1684c209b7687d4883781904c452f0a
1b83f252289158e3b34d592d4f6c2b9e5c04c5f757616712f2c2ad96322554e8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/happy-elementor-addons-pro/assets/js/happy-addons-pro.js?ver=2.4.0 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 19 Aug 2022 00:36:47 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 20825
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/feather.min.js
162.240.12.240200 OK 22 kB URL HTTP/2 www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/feather.min.js
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (61490)
Hash 98daac5988a6acfd469151665803471d
eaa7a3c65f7ec876da7fa26ba2a7155498bbb26a
2801e38bc669197834f7f678a3e79d6af8b0194c7aeaee0d40a6567c762e610c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/egovt/assets/libs/feather.min.js HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 02:31:00 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 22004
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/bootstrap/js/bootstrap.bundle.min.js
162.240.12.240200 OK 22 kB URL HTTP/2 www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/bootstrap/js/bootstrap.bundle.min.js
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65297)
Hash 04b071b581f6f58476e880c7bb068a43
81aee23960795503fc697a00c8e1ae3e628bbe2e
a1ccdcfabd3353ea59d6e244cc5a183381d69d43cc66dffb723f23d219a0fb53
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/egovt/assets/libs/bootstrap/js/bootstrap.bundle.min.js HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 23 May 2018 07:24:46 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 22000
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/ova-portfolio//assets/libs/fancybox-master/dist/jquery.fancybox.min.js?ver=6.0.1
162.240.12.240200 OK 23 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/ova-portfolio//assets/libs/fancybox-master/dist/jquery.fancybox.min.js?ver=6.0.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (31972)
Hash a4c84583eb3ee75927a38e0578412fbc
bc8f478eba722530e2ad1a78b7d6b6e6fd8a15b4
b1467e3a1d9c52546e81634ae260a760a0f7a622d6371712f90bcb68e0073907
GET /wp-content/plugins/ova-portfolio//assets/libs/fancybox-master/dist/jquery.fancybox.min.js?ver=6.0.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Sep 2021 17:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=10
content-length: 23343
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 09:21:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 09:21:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 136033
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15660, version 1.0\012- data
Hash d7b0b953a50fddaa88089b5b787cf719
2f85bc568b27659a3d6452f58f9fd7678450326d
e79c1c1a140e6afb861074c70392db54cc65a06050de2a69162ab94eb95b0516
GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15660
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 22:14:50 GMT
expires: Wed, 29 Nov 2023 22:14:50 GMT
cache-control: public, max-age=31536000
age: 212777
last-modified: Tue, 19 Apr 2022 18:42:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 09:21:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 09:21:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8aBc5tU1E.woff2
142.250.74.35200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8aBc5tU1E.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 17324, version 1.0\012- data
Hash 51ca5ce70497b58a8cc96b2b26ce2e19
7eb7e4f38f8ebe09b504f6dcc3226a8de63a9042
6fce8ebc3557b63496f8fafe1c182f2aa8669550f9398b4d9beebddd43306ed3
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8aBc5tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 02:44:38 GMT
expires: Wed, 29 Nov 2023 02:44:38 GMT
cache-control: public, max-age=31536000
age: 282989
last-modified: Mon, 09 May 2022 18:31:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2
142.250.74.35200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 16980, version 1.0\012- data
Hash 8a97f720d330e75ccdbda9ae0e9f5e90
8e4fee916581ab48d385187705667cebc7500afe
97d5a594e7f76c7e50045b67667fd6b74b268515efe6425097be1b2647079787
GET /s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16980
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:43:01 GMT
expires: Wed, 29 Nov 2023 15:43:01 GMT
cache-control: public, max-age=31536000
age: 236286
last-modified: Mon, 09 May 2022 18:33:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 136012
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2
142.250.74.35200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 17156, version 1.0\012- data
Hash 7e344afc10a492d516789f072fa6edfd
f38bd0b4e9d0577528f533b8ecd80801a0c6340f
c84423c305779f2aab07847a2e3870ac1ea4072e470d5eb149c01e0e0497eae3
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17156
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 21:12:20 GMT
expires: Tue, 28 Nov 2023 21:12:20 GMT
cache-control: public, max-age=31536000
age: 302927
last-modified: Mon, 09 May 2022 18:33:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:42:34 GMT
expires: Thu, 30 Nov 2023 19:42:34 GMT
cache-control: public, max-age=31536000
age: 135513
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/cabin/v26/u-4i0qWljRw-PfU81xCKCpdpbgZJl6Xvqdns.woff2
142.250.74.35200 OK 26 kB URL HTTP/2 fonts.gstatic.com/s/cabin/v26/u-4i0qWljRw-PfU81xCKCpdpbgZJl6Xvqdns.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 26100, version 1.0\012- data
Hash 312bcfa92b0b0a09c3f404b2c662a0b6
5398ff9ee3c10bffc54e3a9f7e5e7506a822b38a
979caf94add5b00ec59d8abde43d200523745c2f4b105c2906f4d9dda4afaeec
GET /s/cabin/v26/u-4i0qWljRw-PfU81xCKCpdpbgZJl6Xvqdns.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26100
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 23:53:10 GMT
expires: Sat, 25 Nov 2023 23:53:10 GMT
cache-control: public, max-age=31536000
age: 552477
last-modified: Fri, 24 Jun 2022 18:41:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 136012
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:56 GMT
expires: Thu, 30 Nov 2023 19:33:56 GMT
cache-control: public, max-age=31536000
age: 136031
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 09:21:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bataan.gov.ph/wp-content/uploads/2021/09/capitol-header.jpg
162.240.12.240200 OK 291 kB URL HTTP/2 www.bataan.gov.ph/wp-content/uploads/2021/09/capitol-header.jpg
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:09:20 13:04:01], progressive, precision 8, 1920x300, components 3\012- data
Size 291 kB (290660 bytes)
Hash ba991d70e0d2d87dffa41671e361e70b
89ce0c39812d9ce6191b92a9688a8cf5347a9020
9fe4ea398b504fa1a6029b64eafef682e707f94593cf18fd4672f43d988d3563
GET /wp-content/uploads/2021/09/capitol-header.jpg HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bataan.gov.ph/wp-content/uploads/elementor/css/post-230.css?ver=1666753966
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 20 Sep 2021 05:04:25 GMT
accept-ranges: bytes
content-length: 290660
cache-control: s-maxage=10
content-type: image/jpeg
date: Fri, 02 Dec 2022 09:21:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/uploads/2021/09/pcc.jpg
162.240.12.240200 OK 482 kB URL HTTP/2 www.bataan.gov.ph/wp-content/uploads/2021/09/pcc.jpg
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=453, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=702], baseline, precision 8, 702x453, components 3\012- data
Size 482 kB (481776 bytes)
Hash 2440f7ba9e2ecfeac9c18ab5c2a1cdb5
8f5893a5897ee950347a0183c7ff574ba30bd0cc
e4ecad356d5922f32f616e1f196f7d902d1f4e8fce1efaad84bf622fb37336f6
GET /wp-content/uploads/2021/09/pcc.jpg HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Sep 2021 06:45:13 GMT
accept-ranges: bytes
content-length: 481776
cache-control: s-maxage=10
content-type: image/jpeg
date: Fri, 02 Dec 2022 09:21:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
162.240.12.240200 OK 13 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Hash f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://www.bataan.gov.ph/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Aug 2022 14:22:49 GMT
accept-ranges: bytes
content-length: 13276
vary: Accept-Encoding,User-Agent
cache-control: s-maxage=10
content-type: font/woff2
date: Fri, 02 Dec 2022 09:21:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/uploads/2021/09/116795850_884438982046542_2002328571715912895_n-1-1.jpg
162.240.12.240200 OK 742 kB URL HTTP/2 www.bataan.gov.ph/wp-content/uploads/2021/09/116795850_884438982046542_2002328571715912895_n-1-1.jpg
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2550x1014, components 3\012- data
Size 742 kB (742320 bytes)
Hash eb24b10dae91b4d331743c6268966bc7
286be367de53534f52dcabaaedc2c063a790ba79
f7820e78c17a737dbd7339b63bb1a5309f2a434656602df8d95b80126c5e843c
GET /wp-content/uploads/2021/09/116795850_884438982046542_2002328571715912895_n-1-1.jpg HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bataan.gov.ph/wp-content/uploads/elementor/css/post-664.css?ver=1660871652
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 18 Mar 2022 04:34:57 GMT
accept-ranges: bytes
content-length: 742320
cache-control: s-maxage=10
content-type: image/jpeg
date: Fri, 02 Dec 2022 09:21:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/uploads/2021/09/bataan-web-logo-white-1.png
162.240.12.240200 OK 147 kB URL HTTP/2 www.bataan.gov.ph/wp-content/uploads/2021/09/bataan-web-logo-white-1.png
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1328 x 268, 8-bit/color RGBA, non-interlaced\012- data
Size 147 kB (147347 bytes)
Hash ab67657fe815197ed2f0063d6413933b
675c40b2e36a7df4a414a7ee7b8e3823fc8af91a
ab1e1c09c0764537519ea6617743c4fe35ce3fc3c89f510078737f84c6b8675e
GET /wp-content/uploads/2021/09/bataan-web-logo-white-1.png HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 18 Mar 2022 06:04:55 GMT
accept-ranges: bytes
content-length: 147347
content-type: image/png
date: Fri, 02 Dec 2022 09:21:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
162.240.12.240200 OK 2.0 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1342)
Hash 6925f27219b59f3ff5b99bbe1aa8f54a
021593e44c4587cf449d9049d1819658c1e0469c
5dbb8104efa918d62776de47cc10712c25bc28b4a8d2ed7ba18e471bea8376c6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Aug 2022 14:22:49 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=10
content-length: 1977
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
162.240.12.240200 OK 4.8 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10544)
Hash 8f35edfcd76d7a743cdadb8cda9f30da
0fac3be6d29aebad949afab94df94ec6500c06f2
d108221947a3d27251592a26802031625703c5ac1ae0062e8ea7db5a80093407
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Aug 2022 14:22:49 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=10
content-length: 4767
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor/assets/js/lightbox.2d166d71ba2a6a9e66fd.bundle.min.js
162.240.12.240200 OK 11 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor/assets/js/lightbox.2d166d71ba2a6a9e66fd.bundle.min.js
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (28984)
Hash 4c930788322a1dfd20a524bc63369ac8
b30cf6c48d40ca268dc1d5d95d131174d4292e23
bc65f0b489de0c55b8f4765351c53187ddb0e9df8d8f72754961779576f29211
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/lightbox.2d166d71ba2a6a9e66fd.bundle.min.js HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Aug 2022 14:22:49 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=10
content-length: 10820
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.1
162.240.12.240200 OK 2.5 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.1
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2642)
Hash 0040df72316267715e8a819916d1bfb7
c8fe6e3502fbe300fdd3c5b632f2d09942c1fa2b
e44996759e8731364aa99cf078bb550a4599564fdd43d1dbb8abd63411788bb8
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.1 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Aug 2022 14:22:49 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=10
content-length: 2458
content-type: application/javascript
date: Fri, 02 Dec 2022 09:21:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
162.240.12.240200 OK 49 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash 1a5c63032a32461ef77bae10dc5f0e99
947b2aa3a60b870021a468944133474e10cfb29b
5b2d2b2ae8253960bd167c713e5ca7f97f92c0e58c7d7220236d739854ddabdf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://www.bataan.gov.ph/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Aug 2022 14:22:49 GMT
accept-ranges: bytes
content-length: 76764
vary: Accept-Encoding,User-Agent
cache-control: s-maxage=10
content-type: font/woff2
date: Fri, 02 Dec 2022 09:21:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
162.240.12.240200 OK 134 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Size 134 kB (134402 bytes)
Hash 0df388a8c2e8059b4efd04f944d1c819
013a7787b447103280d78fcd529b7ea7ea611269
d1da6b57d97d0a38f5eef5275b2e2b13485cd1a94708b0d1a3a6f3b1d2cc1974
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://www.bataan.gov.ph/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Aug 2022 14:22:49 GMT
accept-ranges: bytes
content-length: 78196
vary: Accept-Encoding,User-Agent
cache-control: s-maxage=10
content-type: font/woff2
date: Fri, 02 Dec 2022 09:21:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/elegant_font/fonts/ElegantIcons.ttf
162.240.12.240200 OK 28 kB URL HTTP/2 www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/elegant_font/fonts/ElegantIcons.ttf
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type TrueType Font data, 13 tables, 1st "FFTM", 12 names, Macintosh, type 1 string\012- data
Hash aab09b6a939751bc2c08f455769d330d
efac9f28dbadff9a63b802f7d7cbf8bdc3a0ad10
fb69f4f8af868b36fa4ca80a4559427ca4481f4dd470ddcb5638e8662faa90f1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/egovt/assets/libs/elegant_font/fonts/ElegantIcons.ttf HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://www.bataan.gov.ph/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 03 Oct 2013 17:50:02 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=10
content-length: 28331
content-type: font/ttf
date: Fri, 02 Dec 2022 09:21:07 GMT
server: Apache
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash e29f2f18ac678269c414c24280b4c3df
5364d184025bed0484963825c3ecf5c743a4d47a
fdabac37dc9817e1ad80634e4e5dbac45a3958acb18bdd56fc7fb2b3762e0b8b
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 09:21:08 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 23:43:26 GMT
Expires: Thu, 08 Dec 2022 23:43:25 GMT
Etag: "5364d184025bed0484963825c3ecf5c743a4d47a"
Cache-Control: max-age=569537,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7732fd98b9b9b506-OSL
www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/elegant_font/fonts/ElegantIcons.woff
162.240.12.240200 OK 49 kB URL HTTP/2 www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/elegant_font/fonts/ElegantIcons.woff
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, CFF, length 63664, version 1.0\012- data
Hash eb981f5312733f816a6fd30ba9be73f3
abc05913ee127fb08333a3726ec20063e223e66c
9619f942a99e98665aa8a055c7e22f0f7c4c0a178fb9603873f1d92f39d5b18b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/egovt/assets/libs/elegant_font/fonts/ElegantIcons.woff HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://www.bataan.gov.ph/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 03 Oct 2013 17:50:02 GMT
accept-ranges: bytes
content-length: 63664
vary: Accept-Encoding,User-Agent
cache-control: s-maxage=10
content-type: font/woff
date: Fri, 02 Dec 2022 09:21:07 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
162.240.12.240206 Partial Content 45 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 2e0b6b5ef6071e4d610137684ec992d6
af6d4de0cf0e241644a1da6e5b3e28b410e6c8e9
c4f19962c18d40a992110e8a96b9b388c39b61cc3bd07b3e59a6f9f1f7e8cecf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://www.bataan.gov.ph/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Range: bytes=32750-
If-Range: Sun, 14 Aug 2022 14:22:49 GMT
TE: trailers
HTTP/2 206 Partial Content
last-modified: Sun, 14 Aug 2022 14:22:49 GMT
accept-ranges: bytes
content-length: 45446
vary: Accept-Encoding,User-Agent
cache-control: s-maxage=10
content-range: bytes 32750-78195/78196
content-type: font/woff2
date: Fri, 02 Dec 2022 09:21:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/fontawesome/webfonts/fa-brands-400.woff2
162.240.12.240200 OK 65 kB URL HTTP/2 www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/fontawesome/webfonts/fa-brands-400.woff2
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 65316, version 1.0\012- data
Hash 48461ea4e797c9774dabb4a0440d2f56
024b7f9afa49a3658ebd7eee4e1c536502db51fa
974956f1b7b82cecd8ae88a0b685f0d5dfe5c8534c2784e59abeea719eadbbc4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/egovt/assets/libs/fontawesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://www.bataan.gov.ph/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Aug 2018 09:26:38 GMT
accept-ranges: bytes
content-length: 65316
vary: Accept-Encoding,User-Agent
cache-control: s-maxage=10
content-type: font/woff2
date: Fri, 02 Dec 2022 09:21:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/fontawesome/webfonts/fa-regular-400.woff2
162.240.12.240200 OK 15 kB URL HTTP/2 www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/fontawesome/webfonts/fa-regular-400.woff2
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 14868, version 1.0\012- data
Hash 949a2b066ec37f5a384712fc7beaf2f1
2554caf9e1af4c824a2f0e5e7a139ce555381b18
48810f2ca5c1a9cb285177a493b18a3ca22c177afeb9b242a592788eafc606f2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/egovt/assets/libs/fontawesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://www.bataan.gov.ph/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Aug 2018 09:26:38 GMT
accept-ranges: bytes
content-length: 14868
vary: Accept-Encoding,User-Agent
cache-control: s-maxage=10
content-type: font/woff2
date: Fri, 02 Dec 2022 09:21:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.ttf
162.240.12.240200 OK 126 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.ttf
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Size 126 kB (125767 bytes)
Hash d906f54c0aff4fd8e26765a2d811bf81
bdea50be302c75c9a7617168ae58511f64d9f312
8b8fb42b3f213f9d39edd3b0a227015494c59c65f20084b6a95fe3066dffea98
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.ttf HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://www.bataan.gov.ph/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Aug 2022 14:22:49 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=10
content-type: font/ttf
date: Fri, 02 Dec 2022 09:21:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/fontawesome/webfonts/fa-regular-400.woff
162.240.12.240200 OK 18 kB URL HTTP/2 www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/fontawesome/webfonts/fa-regular-400.woff
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 18168, version 1.0\012- data
Hash 381af09a1366b6c2ae65eac5dd6f0588
269984dfc3d210c4471b59b5c982790c9576324c
f47e95b5a8e9c9da8cd50f626888cc2042d6da99c2c340cf3dc137da2e54f5b2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/egovt/assets/libs/fontawesome/webfonts/fa-regular-400.woff HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://www.bataan.gov.ph/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Aug 2018 09:26:38 GMT
accept-ranges: bytes
content-length: 18168
vary: Accept-Encoding,User-Agent
cache-control: s-maxage=10
content-type: font/woff
date: Fri, 02 Dec 2022 09:21:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/fontawesome/webfonts/fa-brands-400.woff
162.240.12.240200 OK 68 kB URL HTTP/2 www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/fontawesome/webfonts/fa-brands-400.woff
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 76344, version 1.0\012- data
Hash 164079cca554ee23feb7deb6e607dbbb
6f3bbc638e4d66c81db9f7fbd7c832446db45368
f4391ee41b520ebdabf65a324f36ea081120ab3fcf99387005610d728c59c5a4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/egovt/assets/libs/fontawesome/webfonts/fa-brands-400.woff HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://www.bataan.gov.ph/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Aug 2018 09:26:38 GMT
accept-ranges: bytes
content-length: 76344
vary: Accept-Encoding,User-Agent
cache-control: s-maxage=10
content-type: font/woff
date: Fri, 02 Dec 2022 09:21:08 GMT
server: Apache
X-Firefox-Spdy: h2
gwhs.i.gov.ph/pst/gwtpst.js?1669972865305
202.90.154.133200 OK 13 kB URL HTTP/1.1 gwhs.i.gov.ph/pst/gwtpst.js?1669972865305
IP 202.90.154.133:0
ASN #9821 Department of Science and Technology
File type ASCII text, with very long lines (481)
Hash e441784725e660b4d87ec54583e32e2b
aff5e30edaf46a8265b0f5abe1ab6540f3cb82b9
b12ea76b72228b9369cf697f594192153c132db30aff0e6a3b2695d9e7009077
GET /pst/gwtpst.js?1669972865305 HTTP/1.1
Host: gwhs.i.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 09:21:06 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
X-Content-Type-Options: nosniff
Last-Modified: Thu, 13 Dec 2018 05:13:44 GMT
ETag: "32ba-57ce060eb5350"
Content-Length: 12986
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 09:21:06 GMT
Content-Type: application/javascript
X-Varnish: 641316326
Age: 0
Via: 1.1 varnish (Varnish/5.2)
Accept-Ranges: bytes
Connection: keep-alive
www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.ttf
162.240.12.240200 OK 198 kB URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.ttf
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Size 198 kB (198457 bytes)
Hash 168c56ae44c5892d6c7fc189795582bc
bdca88c5d86b2017f438b32606f589ab19ba8d38
52a01a8a06d7ca179a95e9d894d19eef43630eff2bf7e37bc0fed0d5dbff2d31
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.ttf HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://www.bataan.gov.ph/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Aug 2022 14:22:49 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=10
content-type: font/ttf
date: Fri, 02 Dec 2022 09:21:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/fontawesome/webfonts/fa-solid-900.woff
162.240.12.240200 OK 87 kB URL HTTP/2 www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/fontawesome/webfonts/fa-solid-900.woff
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 86876, version 1.0\012- data
Hash 815694de1120d6c1e9d1f0895ee81056
6d320e1a3820a7998051c4feec4dad22760e485e
a188f8b84731c59143770ef391c9ad0fa2534d316862d5cb384623285c95c2e0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/egovt/assets/libs/fontawesome/webfonts/fa-solid-900.woff HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://www.bataan.gov.ph/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Aug 2018 09:26:38 GMT
accept-ranges: bytes
content-length: 86876
vary: Accept-Encoding,User-Agent
cache-control: s-maxage=10
content-type: font/woff
date: Fri, 02 Dec 2022 09:21:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/fontawesome/webfonts/fa-brands-400.ttf
162.240.12.240200 OK 77 kB URL HTTP/2 www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/fontawesome/webfonts/fa-brands-400.ttf
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 1e160568c4086a2c59ca4bd7caf30b1d
7f59e14f5a4108306be8499714a66864c7efbc61
8b6305f834332e668e1a510e5abe9d1c3c06d4fd5a240a8c63b1720537d1c96e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/egovt/assets/libs/fontawesome/webfonts/fa-brands-400.ttf HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://www.bataan.gov.ph/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Aug 2018 09:26:38 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=10
content-type: font/ttf
date: Fri, 02 Dec 2022 09:21:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
142.250.74.99200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
IP 142.250.74.99:0
File type ASCII text, with very long lines (730)
Size 163 kB (162976 bytes)
Hash 79d18cf4265108d7cecca1bf4ada6109
e51d0285a545381d4c39e9e0292a650ffeeecbb9
59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 18:21:38 GMT
expires: Fri, 01 Dec 2023 18:21:38 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 53971
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/uploads/2021/09/cropped-bataan-seal-icon-192x192.png
162.240.12.240200 OK 43 kB URL HTTP/2 www.bataan.gov.ph/wp-content/uploads/2021/09/cropped-bataan-seal-icon-192x192.png
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash fbddfa46ca68e8c17d090a38d6c33a04
caacf59a1f69f013ae0e8b5fb6270c0cff37601a
ed1178c7bf2335732bc59fefd07afe15ffea911d7549d777fb1b6a2f34c6261a
GET /wp-content/uploads/2021/09/cropped-bataan-seal-icon-192x192.png HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 18 Mar 2022 01:02:00 GMT
accept-ranges: bytes
content-length: 42955
content-type: image/png
date: Fri, 02 Dec 2022 09:21:09 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/uploads/2021/09/cropped-bataan-seal-icon-32x32.png
162.240.12.240200 OK 2.6 kB URL HTTP/2 www.bataan.gov.ph/wp-content/uploads/2021/09/cropped-bataan-seal-icon-32x32.png
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash e27af7313b81318383c5eb230c558421
5ce3308031e48418eae4b0ab864f734f819fa9a3
0469d50ac98d5c7f8764265c7dce1298048256eb0409868e3de6788e476f430f
GET /wp-content/uploads/2021/09/cropped-bataan-seal-icon-32x32.png HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 18 Mar 2022 01:02:01 GMT
accept-ranges: bytes
content-length: 2579
content-type: image/png
date: Fri, 02 Dec 2022 09:21:09 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 21:48:03 GMT
expires: Fri, 01 Dec 2023 21:48:03 GMT
cache-control: public, max-age=31536000
age: 41586
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 16:40:43 GMT
expires: Fri, 01 Dec 2023 16:40:43 GMT
cache-control: public, max-age=31536000
age: 60026
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bataan.gov.ph/mod_pagespeed_beacon?url=https%3A%2F%2Fbataan.gov.ph%2Fbehold-bataan%2Fpawikan-conservation-center%2F
162.240.12.240204 No Content 0 B URL HTTP/2 bataan.gov.ph/mod_pagespeed_beacon?url=https%3A%2F%2Fbataan.gov.ph%2Fbehold-bataan%2Fpawikan-conservation-center%2F
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
POST /mod_pagespeed_beacon?url=https%3A%2F%2Fbataan.gov.ph%2Fbehold-bataan%2Fpawikan-conservation-center%2F HTTP/1.1
Host: bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 41
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://bataan.gov.ph/behold-bataan/pawikan-conservation-center/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
cache-control: max-age=0, no-cache
date: Fri, 02 Dec 2022 09:21:09 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c7113338bc3310b13d23ca415c177e2
2cb4edc6b161c6d2d5b47aa498ae54e677966466
3a83adce869dd7eb064c583bf7ff93c57fabd7ea2da872f7d1f7d868b8a492e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10270
x-amzn-requestid: ac2d2825-2ec4-435e-9921-3ea6524df1dc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfG1nEvYoAMFliA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e8a-4419423112b5723e3dba46ea;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:37:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2ihxuuXiECC4oX11t_vswhnLF0UpqDuboPLkrhpWwp-vfCR5pxGGxw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:53:50 GMT
age: 41241
etag: "2cb4edc6b161c6d2d5b47aa498ae54e677966466"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/fontawesome/webfonts/fa-solid-900.ttf
162.240.12.240200 OK 0 B URL HTTP/2 www.bataan.gov.ph/wp-content/themes/egovt/assets/libs/fontawesome/webfonts/fa-solid-900.ttf
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/egovt/assets/libs/fontawesome/webfonts/fa-solid-900.ttf HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://www.bataan.gov.ph/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Aug 2018 09:26:38 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=10
content-type: font/ttf
date: Fri, 02 Dec 2022 09:21:09 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
162.240.12.240200 OK 0 B URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Aug 2022 14:22:49 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3961
content-type: text/css
date: Fri, 02 Dec 2022 09:21:06 GMT
server: Apache
X-Firefox-Spdy: h2
www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff
162.240.12.240200 OK 0 B URL HTTP/2 www.bataan.gov.ph/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff
IP 162.240.12.240:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff HTTP/1.1
Host: www.bataan.gov.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bataan.gov.ph
Connection: keep-alive
Referer: https://www.bataan.gov.ph/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Aug 2022 14:22:49 GMT
accept-ranges: bytes
content-length: 90060
vary: Accept-Encoding,User-Agent
cache-control: s-maxage=10
content-type: font/woff
date: Fri, 02 Dec 2022 09:21:07 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.1
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.1
IP 142.250.74.106:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bataan.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 09:21:05 GMT
date: Fri, 02 Dec 2022 09:21:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2