r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7786cd9bd97e024b3a1d16215defaad2
786ddbb74b0b6bd9270622dbe0258d6caee407c1
9c297ccfd178eec7e472fb64a6b2e34d4c7a6dec32870f49982353e590196ba0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C297CCFD178EEC7E472FB64A6B2E34D4C7A6DEC32870F49982353E590196BA0"
Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19792
Expires: Mon, 14 Nov 2022 12:33:13 GMT
Date: Mon, 14 Nov 2022 07:03:21 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b1e969be0f3201087da138cbc8b89f10
d0a27f525f2b242b5dafa157f126c2ba880c8809
f7e5f39372b5adcc30c27e727eee1b19e6d13ed1b54fa1ad67235dc8ee08ac51
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1100
Cache-Control: max-age=99980
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 07:03:21 GMT
Etag: "6370c779-1d7"
Expires: Tue, 15 Nov 2022 10:49:41 GMT
Last-Modified: Sun, 13 Nov 2022 10:31:21 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c88bc06741ab9fb81c2544acfcc34aa2
362cab19cff5aba27f472cc00071d5dfa38192e4
314ba27975f458e13917b2be91c9d5989a3e57c9e94b5a84dd52d0e21d27ae7f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "314BA27975F458E13917B2BE91C9D5989A3E57C9E94B5A84DD52D0E21D27AE7F"
Last-Modified: Mon, 14 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7826
Expires: Mon, 14 Nov 2022 09:13:47 GMT
Date: Mon, 14 Nov 2022 07:03:21 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 14 Nov 2022 06:44:32 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1129
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: RdaV0exFVHJv6GL7+NvVDZDZ2DnCyF1GRFO/jwjjB3q5cbjFU3oJVhTN7pkZ9ni2bZUkbjDiBbg=
x-amz-request-id: NF4XFCNQSC4KMF4F
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 14 Nov 2022 06:13:45 GMT
age: 2976
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 14 Nov 2022 07:03:21 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Last-Modified, ETag, Alert, Backoff, Content-Type, Retry-After, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 14 Nov 2022 06:25:01 GMT
cache-control: public,max-age=3600
age: 2301
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0a9a357f652868f9317812b8103ba15d
95a90c7a07b591dce7f39c6f9ab27974d1a1ed2a
16fd52c7ee6806455e724f30af8d58630a141a8a3823c48c20b5da3a71f066da
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2979
Cache-Control: max-age=96789
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 07:03:22 GMT
Etag: "6370b3ac-1d7"
Expires: Tue, 15 Nov 2022 09:56:31 GMT
Last-Modified: Sun, 13 Nov 2022 09:06:52 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
scottallenwilson.com/
50.87.169.152301 Moved Permanently 0 B IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 14 Nov 2022 07:03:21 GMT
Server: Apache
X-Redirect-By: WordPress
Set-Cookie: mailchimp_landing_site=https%3A%2F%2Fwww.scottallenwilson.com%2F; expires=Mon, 12-Dec-2022 07:03:22 GMT; Max-Age=2419200; path=/; secure; SameSite=Strict
Vary: Accept-Encoding
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://www.scottallenwilson.com/
Cache-Control: max-age=0
Expires: Mon, 14 Nov 2022 07:03:21 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
35.162.125.72101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.125.72:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3mN9GostUzcIM6NFtvK67g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: RNoOsiZVI0d3r1UPtOqhHmWrhrU=
firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221668394636152%22
34.102.187.140200 OK 22 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221668394636152%22
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (21675), with no line terminators
Hash eb6766b561102530ad7e10b76aefbfd6
cbd29247b57147360c352062943fc810931354d1
c14532d43949039e919afb216a45ad4c8a8bdc6be0787e62cb39bad56b7e5645
GET /v1/buckets/monitor/collections/changes/changeset?_expected=%221668394636152%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 21675
via: 1.1 google
date: Mon, 14 Nov 2022 07:01:57 GMT
cache-control: public,max-age=3600
age: 86
last-modified: Mon, 14 Nov 2022 02:57:16 GMT
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0c9ee6d5dd413be718be25225eb595eb
51a7a5dec364a6600263e65e520b9f97e193a9bb
de1c3eeb8841b3592a4d68e1a421c742f8850a527610bd4c9b9277294f632918
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE1C3EEB8841B3592A4D68E1A421C742F8850A527610BD4C9B9277294F632918"
Last-Modified: Sun, 13 Nov 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21593
Expires: Mon, 14 Nov 2022 13:03:16 GMT
Date: Mon, 14 Nov 2022 07:03:23 GMT
Connection: keep-alive
www.scottallenwilson.com/
50.87.169.152200 OK 34 kB URL HTTP/2 www.scottallenwilson.com/
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9211), with CRLF, LF line terminators
Hash 55e78895f466231d3446adb750077017
3522da14177bce5127c2056671f80adad164301c
464ad28d59148f8483aad7e59415a9d4388824196f40bc6f3fc7dd3c803b4424
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Mon, 14 Nov 2022 04:44:59 GMT
accept-ranges: bytes
content-length: 33835
cache-control: max-age=0
expires: Mon, 14 Nov 2022 07:03:23 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Mon, 14 Nov 2022 07:03:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-includes/css/classic-themes.min.css?ver=1
50.87.169.152200 OK 189 B URL HTTP/2 www.scottallenwilson.com/wp-includes/css/classic-themes.min.css?ver=1
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 02 Nov 2022 03:13:35 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 14 Dec 2022 07:03:23 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 189
content-type: text/css; charset=utf-8
date: Mon, 14 Nov 2022 07:03:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/cache/min/1/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=1668360327
50.87.169.152200 OK 803 B URL HTTP/2 www.scottallenwilson.com/wp-content/cache/min/1/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=1668360327
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2593), with no line terminators
Hash 5c77e1acf02a3bf986f8d237ade3cf11
20145320418d9f2552ef7b3cc2446cececfce6a9
c3f52441928546b4258355e80eaf7b4209fa6a354a1bbf56a23021c309147c1d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/min/1/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=1668360327 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 13 Nov 2022 17:25:27 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 14 Dec 2022 07:03:23 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 803
content-type: text/css; charset=utf-8
date: Mon, 14 Nov 2022 07:03:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/cache/min/1/wp-content/themes/flatsome/inc/integrations/wc-yith-wishlist/wishlist.css?ver=1668360327
50.87.169.152200 OK 1.2 kB URL HTTP/2 www.scottallenwilson.com/wp-content/cache/min/1/wp-content/themes/flatsome/inc/integrations/wc-yith-wishlist/wishlist.css?ver=1668360327
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (3284), with no line terminators
Hash 2a826cad8a694788bbace77ba49f60da
e7e6b8292d12f6313646df23c5027dfb6d0b82f9
9b3f6a628dc0d0fc99adaada126793bad3b06680450a5ad6337a501672b08265
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/min/1/wp-content/themes/flatsome/inc/integrations/wc-yith-wishlist/wishlist.css?ver=1668360327 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 13 Nov 2022 17:25:27 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 14 Dec 2022 07:03:23 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 1173
content-type: text/css; charset=utf-8
date: Mon, 14 Nov 2022 07:03:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/cache/min/1/wp-content/plugins/woocommerce-ajax-filters/berocket/assets/css/font-awesome.min.css?ver=1668360327
50.87.169.152200 OK 7.1 kB URL HTTP/2 www.scottallenwilson.com/wp-content/cache/min/1/wp-content/plugins/woocommerce-ajax-filters/berocket/assets/css/font-awesome.min.css?ver=1668360327
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (30840)
Hash 6e8f8871eb87faf99fd84c28d77dee41
f88638fa90ec07cf29f42204031e7ed03588c07f
ba45834b1ca8935149fa13bba2e7dc57d29805984ed2e961d56920c478c6fe28
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/min/1/wp-content/plugins/woocommerce-ajax-filters/berocket/assets/css/font-awesome.min.css?ver=1668360327 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 13 Nov 2022 17:25:27 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 14 Dec 2022 07:03:23 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 7110
content-type: text/css; charset=utf-8
date: Mon, 14 Nov 2022 07:03:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/cache/min/1/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=1668360327
50.87.169.152200 OK 7.4 kB URL HTTP/2 www.scottallenwilson.com/wp-content/cache/min/1/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=1668360327
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (22966), with no line terminators
Hash 0fd155e3efebf3a156d7789dd62061b6
08d25a383613ba4279ae9e7eb4a30c03a511e9fe
1d733865f59779cdd956e7249afdb0dd1450f729b2c49b2967d3b602bfcfe549
GET /wp-content/cache/min/1/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=1668360327 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 13 Nov 2022 17:25:27 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 14 Dec 2022 07:03:23 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 7361
content-type: text/css; charset=utf-8
date: Mon, 14 Nov 2022 07:03:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/plugins/wpb-popup-for-contact-form-7/assets/css/sweetalert2.min.css?ver=1.4.5
50.87.169.152409 Conflict 83 B URL HTTP/2 www.scottallenwilson.com/wp-content/plugins/wpb-popup-for-contact-form-7/assets/css/sweetalert2.min.css?ver=1.4.5
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wpb-popup-for-contact-form-7/assets/css/sweetalert2.min.css?ver=1.4.5 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Mon, 14 Nov 2022 07:03:23 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/cache/min/1/wp-content/plugins/wpb-popup-for-contact-form-7/assets/css/frontend.css?ver=1668360327
50.87.169.152409 Conflict 83 B URL HTTP/2 www.scottallenwilson.com/wp-content/cache/min/1/wp-content/plugins/wpb-popup-for-contact-form-7/assets/css/frontend.css?ver=1668360327
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/cache/min/1/wp-content/plugins/wpb-popup-for-contact-form-7/assets/css/frontend.css?ver=1668360327 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Mon, 14 Nov 2022 07:03:23 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/cache/min/1/wp-content/themes/flatsome/assets/css/extensions/flatsome-swatches-frontend.css?ver=1668360327
50.87.169.152200 OK 1.2 kB URL HTTP/2 www.scottallenwilson.com/wp-content/cache/min/1/wp-content/themes/flatsome/assets/css/extensions/flatsome-swatches-frontend.css?ver=1668360327
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (3747), with no line terminators
Hash 7f95cdc9bd0b0770c08a004ad0ad2c40
dd5686e5e6687fe4b42c7f933dfece9bc257dcb8
dc2883e995f2ddfe38ddfdfc446ccbdf393dcde0ac8f510254c7dd806a8a361d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/min/1/wp-content/themes/flatsome/assets/css/extensions/flatsome-swatches-frontend.css?ver=1668360327 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 13 Nov 2022 17:25:27 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 14 Dec 2022 07:03:23 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 1234
content-type: text/css; charset=utf-8
date: Mon, 14 Nov 2022 07:03:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/cache/min/1/wp-content/themes/flatsome/assets/css/flatsome-shop.css?ver=1668360327
50.87.169.152200 OK 8.1 kB URL HTTP/2 www.scottallenwilson.com/wp-content/cache/min/1/wp-content/themes/flatsome/assets/css/flatsome-shop.css?ver=1668360327
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (24175), with no line terminators
Hash 7d25a52347fffbc60dae2f7f2cafa40e
09a7d93aabf802710e5269833124a9a198cc0fee
8208be57cebdbff09c36074a7fa9a9d7da18a6eb2566c2fff97e1eb3b24cb434
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/min/1/wp-content/themes/flatsome/assets/css/flatsome-shop.css?ver=1668360327 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 13 Nov 2022 17:25:27 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 14 Dec 2022 07:03:23 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 8067
content-type: text/css; charset=utf-8
date: Mon, 14 Nov 2022 07:03:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/themes/flatsome-child/style.css?ver=3.0
50.87.169.152200 OK 211 B URL HTTP/2 www.scottallenwilson.com/wp-content/themes/flatsome-child/style.css?ver=3.0
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash cf04568241f593ca0756d8cc3eca79a1
d4a11a9168b686e936267bbb2a13a20d78768832
5d00bfafd7eaf2282efb87bf13ec66f5840cfd9bf968a331d3bb3d31e73673b7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome-child/style.css?ver=3.0 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Mon, 27 Dec 2021 14:01:42 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 14 Dec 2022 07:03:23 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 211
content-type: text/css; charset=utf-8
date: Mon, 14 Nov 2022 07:03:23 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5878
Expires: Mon, 14 Nov 2022 08:41:21 GMT
Date: Mon, 14 Nov 2022 07:03:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5878
Expires: Mon, 14 Nov 2022 08:41:21 GMT
Date: Mon, 14 Nov 2022 07:03:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5878
Expires: Mon, 14 Nov 2022 08:41:21 GMT
Date: Mon, 14 Nov 2022 07:03:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5878
Expires: Mon, 14 Nov 2022 08:41:21 GMT
Date: Mon, 14 Nov 2022 07:03:23 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03b751df-18d0-4e56-8d74-5d8e8d02f241.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03b751df-18d0-4e56-8d74-5d8e8d02f241.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dfc7286992b2cebdf1ebb58f85576e61
a49a1bf9716e32979810931d04d1f84216d096c1
7c5288d4ae39202e00c7fd482faa10b5610d31edf0bba9fc69fa4fc1f422b837
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03b751df-18d0-4e56-8d74-5d8e8d02f241.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7494
x-amzn-requestid: b07e424a-c11e-442f-8636-e0670cb6f864
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bd8heGBtoAMFYQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636f0e09-7dcda14e5077563d726752ae;Sampled=0
x-amzn-remapped-date: Sat, 12 Nov 2022 03:07:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: VXu3wEUmBJjK6YiXRFYVAuZ3h-ApKkvK1miRBXpo6faKsx8OOXu0JQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 03:14:47 GMT
age: 13716
etag: "a49a1bf9716e32979810931d04d1f84216d096c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 032386e5c9dffff1ba1ee5e8a322d438
dd4fd6c803a9b333bace9a541c6bd183d0c56bb9
0e9f559a0aa7e114c5810a27ba243c0da7b44dc0bf7aec2b7ab32b8f0e2b536c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11667
x-amzn-requestid: 4778d1bd-28c3-4665-89da-046e356087f0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjyD1HE-oAMF0QQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637163b1-53c7330c5fd36d3c4d9e6aed;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:37:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: zAh7IawFpIJIJCMTeWKn99lx_R-88IOn5u8zRTMtzlDYEEqXSOyhGg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 21:57:55 GMT
age: 32728
etag: "dd4fd6c803a9b333bace9a541c6bd183d0c56bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68733d52-6c87-4ac4-ba56-bc5f74ff782b.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68733d52-6c87-4ac4-ba56-bc5f74ff782b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ac5583760066002adcbba078f6dd1be4
39ca30395586cf1a0a0fa739f7279af807f548a3
cb5986e3330858716cd290297a81d77e371b838637fc57eece94810211715a7c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68733d52-6c87-4ac4-ba56-bc5f74ff782b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9921
x-amzn-requestid: 933f6aa6-3bec-4f71-aba8-ef9e77942ae9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjycgGB-oAMFsDQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371644f-47d26359464b62b7276316e6;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:40:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9DG6rCPdRRiHKrAVXztWJwZlUYYCb893lXH8YDzEMGSEUbeaVkABWw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 22:04:26 GMT
age: 32337
etag: "39ca30395586cf1a0a0fa739f7279af807f548a3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff08b5706-5917-455d-96fa-e56fe4670cf6.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff08b5706-5917-455d-96fa-e56fe4670cf6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b5a6c04c4c8c28100a69ac8e3969fe0c
1ad175acb910577e70c46149005ee5a70599518b
188e715bb141598dc890a3b55807b1f7e04f4a1e8b1870147411c32de2225926
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff08b5706-5917-455d-96fa-e56fe4670cf6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11323
x-amzn-requestid: 1455b668-15d1-4a9c-a3b6-8e1b15ea9009
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjyDvFzaoAMFxQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637163b1-2783642c5cfcd69e672131a1;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:37:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MCmix3JMuBtn98wae7Ek9dfEi4v4914Mlg4ZE3aEyfoD1cFt9aAfyw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 22:20:04 GMT
age: 31399
etag: "1ad175acb910577e70c46149005ee5a70599518b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5797e726-229b-4f42-9376-00ae67e14407.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5797e726-229b-4f42-9376-00ae67e14407.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a0db3498954921b58948ad8a4e7fd49f
6b618c3ff6e589f9e01650bd0a619acb70d8004e
fa3baa9e32e455ab2eeefab0c76714bf0ff5f67a5ccd7c10b3f5c21d8138c5cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5797e726-229b-4f42-9376-00ae67e14407.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6535
x-amzn-requestid: 3333aa65-c0c7-4704-9af1-fb0a49f830fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjyDtHbhoAMFSsg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637163b1-51c3e4513240b7e5662b8e6e;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:37:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 6dTOcWIKFuo-Thf3zUH_1WY70yFyQkj3w2xPrb6Ntjf8TUFPVG-_lA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 22:01:14 GMT
age: 32529
etag: "6b618c3ff6e589f9e01650bd0a619acb70d8004e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e07f52c-038a-455c-999e-d73d0eb46026.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e07f52c-038a-455c-999e-d73d0eb46026.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 558f53737293f89e6ac57744a92fa0af
f943dc15ce5f4b1810d81cb35d03e8961b990abb
33a031ace07e6918493684847ba4b4596ce8cfcd3740d62cc8cc85021f3788e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e07f52c-038a-455c-999e-d73d0eb46026.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7362
x-amzn-requestid: eee8797a-33b0-43a5-9ea6-d5678b166289
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bZ3beEiPoAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636d6c49-48ad19f870be15bd639da9f6;Sampled=0
x-amzn-remapped-date: Thu, 10 Nov 2022 21:25:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: tTVFFElm6FsUpU3hgfjA3-PjOf_mcEQ9nsRcT2UhtW4aqwmGOneMiw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 18:09:15 GMT
age: 46448
etag: "f943dc15ce5f4b1810d81cb35d03e8961b990abb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/plugins/ewww-image-optimizer/includes/lazysizes.min.js?ver=692
50.87.169.152200 OK 6.3 kB URL HTTP/2 www.scottallenwilson.com/wp-content/plugins/ewww-image-optimizer/includes/lazysizes.min.js?ver=692
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14432), with no line terminators
Hash 11753d3fc13b580b96c709747ef663cf
91b3643a17783ae353f641d309a550a6ee462845
ac9aa218863ffe73bbcdc1888d7f816a86bc65440586fb08bc4ae4a17a0342b7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ewww-image-optimizer/includes/lazysizes.min.js?ver=692 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 26 Oct 2022 03:12:18 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 14 Dec 2022 07:03:23 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 6341
content-type: application/javascript; charset=utf-8
date: Mon, 14 Nov 2022 07:03:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/cache/min/1/wp-content/plugins/wordfence/modules/login-security/css/login.1664898183.css?ver=1668360327
50.87.169.152200 OK 957 B URL HTTP/2 www.scottallenwilson.com/wp-content/cache/min/1/wp-content/plugins/wordfence/modules/login-security/css/login.1664898183.css?ver=1668360327
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2611), with no line terminators
Hash 818c577d4b9f9dc5f0fd82110a849f2f
0892fdedbeed7ccab3b3bd35f2efd55ee93de76d
aea3d8b5772da028e57c416caf8f2fb7756ae9ab5a5636a1a21fe3ecb1af4fc9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/min/1/wp-content/plugins/wordfence/modules/login-security/css/login.1664898183.css?ver=1668360327 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 13 Nov 2022 17:25:27 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 14 Dec 2022 07:03:23 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 957
content-type: text/css; charset=utf-8
date: Mon, 14 Nov 2022 07:03:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js
50.87.169.152200 OK 3.3 kB URL HTTP/2 www.scottallenwilson.com/wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8290)
Hash 2449a77badee23a0201f15cf944a9c19
ef49f2c5417427fadfcf2576b2abb36d95219cf6
16e6ae5c7a55506aef550837228b621a5f5a791a3af0ac6ded4a2e41a3fee0f3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 05 May 2022 17:14:48 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 14 Dec 2022 07:03:23 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 3270
content-type: application/javascript; charset=utf-8
date: Mon, 14 Nov 2022 07:03:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2
50.87.169.152200 OK 707 B URL HTTP/2 www.scottallenwilson.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1464)
Hash 75340c1451d0b45e2c487b4aeeb6394e
67e9a70a845789c6f6a1e3f2b8061b2eb7c7548a
1622c52fe9cada9d88bae5f3efb043b42a7d0ef43373695f3533941dc7dedd2c
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 25 May 2022 03:16:34 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 14 Dec 2022 07:03:23 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 707
content-type: application/javascript; charset=utf-8
date: Mon, 14 Nov 2022 07:03:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
50.87.169.152200 OK 3.9 kB URL HTTP/2 www.scottallenwilson.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9111)
Hash a9d79ad492f5d209828cf75ff095edb0
b969ee59c642ce462a2cea6b487f2b1d57a8a18a
c362ad1758080d8a6214b29639dd88f082394a603d4afa9f12d8a037f55f94e5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 09 Nov 2022 03:12:15 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 14 Dec 2022 07:03:23 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 3949
content-type: application/javascript; charset=utf-8
date: Mon, 14 Nov 2022 07:03:23 GMT
server: Apache
X-Firefox-Spdy: h2
pixel.wp.com/g.gif?v=ext&blog=183281409&post=1695&tz=2&srv=www.scottallenwilson.com&j=1%3A11.5.1&host=www.scottallenwilson.com&ref=&fcp=2519&rand=0.2625927574737502
192.0.76.3200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=ext&blog=183281409&post=1695&tz=2&srv=www.scottallenwilson.com&j=1%3A11.5.1&host=www.scottallenwilson.com&ref=&fcp=2519&rand=0.2625927574737502
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&blog=183281409&post=1695&tz=2&srv=www.scottallenwilson.com&j=1%3A11.5.1&host=www.scottallenwilson.com&ref=&fcp=2519&rand=0.2625927574737502 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 14 Nov 2022 07:03:24 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/themes/flatsome/assets/css/icons/fl-icons.woff2?v=3.16.2
50.87.169.152200 OK 7.1 kB URL HTTP/2 www.scottallenwilson.com/wp-content/themes/flatsome/assets/css/icons/fl-icons.woff2?v=3.16.2
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 7068, version 1.0\012- data
Hash 48c36cf085b90e204ed78cf3b5925098
8708b0fff49904b989ea4d62291957dd827dd254
8bdd2549e2df32257d86d141069f086600680d6132d18143617f0289d8926414
GET /wp-content/themes/flatsome/assets/css/icons/fl-icons.woff2?v=3.16.2 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 04 Nov 2022 15:11:49 GMT
accept-ranges: bytes
content-length: 7068
cache-control: max-age=31536000
expires: Tue, 14 Nov 2023 07:03:24 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: font/woff2
date: Mon, 14 Nov 2022 07:03:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/fonts/lato/S6uyw4BMUTPHjx4wWCWtFCc.woff
50.87.169.152200 OK 17 kB URL HTTP/2 www.scottallenwilson.com/wp-content/fonts/lato/S6uyw4BMUTPHjx4wWCWtFCc.woff
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 17448, version 1.1\012- data
Hash 9c39d31ff5dedb4c6f87dec79e6706d2
ced0e8877b5abfa0b82ee96a1b85c96af0095f28
fe81ff1d1f54d169840e0b9d0341af70c599f21d475be78320bb1f415555a00b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/fonts/lato/S6uyw4BMUTPHjx4wWCWtFCc.woff HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Sep 2022 15:13:51 GMT
accept-ranges: bytes
content-length: 17448
cache-control: max-age=31536000
expires: Tue, 14 Nov 2023 07:03:24 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: font/woff
date: Mon, 14 Nov 2022 07:03:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/fonts/lato/S6u9w4BMUTPHh6UVSwiPHw3q5d0.woff
50.87.169.152200 OK 18 kB URL HTTP/2 www.scottallenwilson.com/wp-content/fonts/lato/S6u9w4BMUTPHh6UVSwiPHw3q5d0.woff
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 17628, version 1.1\012- data
Hash f699e6734a9356ffa2163b01162200a7
0db98c5bb65cda6170272f40074dd2174f07373e
38bcc2ae6b389940149d7f4d3c1599217606926b6a9fc788896f805c5136430f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/fonts/lato/S6u9w4BMUTPHh6UVSwiPHw3q5d0.woff HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Sep 2022 15:13:51 GMT
accept-ranges: bytes
content-length: 17628
cache-control: max-age=31536000
expires: Tue, 14 Nov 2023 07:03:24 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: font/woff
date: Mon, 14 Nov 2022 07:03:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/fonts/dancing-script/If2cXTr6YS-zF4S-kcSWSVi_sxjsohD9F50Ruu7BMSo3Sup6hNX6pmRM.woff
50.87.169.152200 OK 28 kB URL HTTP/2 www.scottallenwilson.com/wp-content/fonts/dancing-script/If2cXTr6YS-zF4S-kcSWSVi_sxjsohD9F50Ruu7BMSo3Sup6hNX6pmRM.woff
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 28488, version 1.1\012- data
Hash 813f344b44cdcbcca96346e8c8cfaafb
15a61bbb1c4bf782b20e2ff67cdbe72956b95a83
cdac589376ffa7614a5635ee660c8a1b0bf02307895250f110175fa7f00b9d72
Analyzer Verdict Alert fortinet Malware
GET /wp-content/fonts/dancing-script/If2cXTr6YS-zF4S-kcSWSVi_sxjsohD9F50Ruu7BMSo3Sup6hNX6pmRM.woff HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Sep 2022 15:13:52 GMT
accept-ranges: bytes
content-length: 28488
cache-control: max-age=31536000
expires: Tue, 14 Nov 2023 07:03:24 GMT
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: font/woff
date: Mon, 14 Nov 2022 07:03:24 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0030e54d9a99789cde1c0c20eec2aef1
79c1fcd0196a5ce6e3a4228613005c028082e643
aa4498b8762d9bb595056e438a6b8ad2233f410b4bcf73abd0a495f848bf8096
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA4498B8762D9BB595056E438A6B8AD2233F410B4BCF73ABD0A495F848BF8096"
Last-Modified: Sun, 13 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10930
Expires: Mon, 14 Nov 2022 10:05:34 GMT
Date: Mon, 14 Nov 2022 07:03:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0030e54d9a99789cde1c0c20eec2aef1
79c1fcd0196a5ce6e3a4228613005c028082e643
aa4498b8762d9bb595056e438a6b8ad2233f410b4bcf73abd0a495f848bf8096
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA4498B8762D9BB595056E438A6B8AD2233F410B4BCF73ABD0A495F848BF8096"
Last-Modified: Sun, 13 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10930
Expires: Mon, 14 Nov 2022 10:05:34 GMT
Date: Mon, 14 Nov 2022 07:03:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0030e54d9a99789cde1c0c20eec2aef1
79c1fcd0196a5ce6e3a4228613005c028082e643
aa4498b8762d9bb595056e438a6b8ad2233f410b4bcf73abd0a495f848bf8096
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA4498B8762D9BB595056E438A6B8AD2233F410B4BCF73ABD0A495F848BF8096"
Last-Modified: Sun, 13 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10930
Expires: Mon, 14 Nov 2022 10:05:34 GMT
Date: Mon, 14 Nov 2022 07:03:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0030e54d9a99789cde1c0c20eec2aef1
79c1fcd0196a5ce6e3a4228613005c028082e643
aa4498b8762d9bb595056e438a6b8ad2233f410b4bcf73abd0a495f848bf8096
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA4498B8762D9BB595056E438A6B8AD2233F410B4BCF73ABD0A495F848BF8096"
Last-Modified: Sun, 13 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10930
Expires: Mon, 14 Nov 2022 10:05:34 GMT
Date: Mon, 14 Nov 2022 07:03:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0030e54d9a99789cde1c0c20eec2aef1
79c1fcd0196a5ce6e3a4228613005c028082e643
aa4498b8762d9bb595056e438a6b8ad2233f410b4bcf73abd0a495f848bf8096
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA4498B8762D9BB595056E438A6B8AD2233F410B4BCF73ABD0A495F848BF8096"
Last-Modified: Sun, 13 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10930
Expires: Mon, 14 Nov 2022 10:05:34 GMT
Date: Mon, 14 Nov 2022 07:03:24 GMT
Connection: keep-alive
eqyhx79bt4g.exactdn.com/wp-content/uploads/2022/04/scott-allen-wilson-side-portrait-2022-blog-510x408.jpg?strip=all&lossy=1&ssl=1
194.242.11.186200 OK 24 kB URL HTTP/2 eqyhx79bt4g.exactdn.com/wp-content/uploads/2022/04/scott-allen-wilson-side-portrait-2022-blog-510x408.jpg?strip=all&lossy=1&ssl=1
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type RIFF (little-endian) data, Web/P image\012- data
Hash 010014b52877980d4f8f49e7dc853025
26dd073c50bb1767d3e4d4c0d883ce38bf24c5cc
5b663d1a66d873441485a208b2a6ce2b0936f0cbedb8459500043397591b4f09
GET /wp-content/uploads/2022/04/scott-allen-wilson-side-portrait-2022-blog-510x408.jpg?strip=all&lossy=1&ssl=1 HTTP/1.1
Host: eqyhx79bt4g.exactdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 07:03:24 GMT
content-type: image/webp
content-length: 24030
server: BunnyCDN-NO-830
cdn-pullzone: 780810
cdn-uid: 282460b1-e21e-44b6-a162-b4892cda4727
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000
expires: Tue, 14 Nov 2023 07:02:37 GMT
last-modified: Mon, 03 Oct 2022 13:47:37 GMT
cdn-cachedat: 11/14/2022 07:02:37
link: <https://scottallenwilson.com/wp-content/uploads/2022/04/scott-allen-wilson-side-portrait-2022-blog-510x408.jpg>; rel="canonical"
x-content-type-options: nosniff
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: c79a2619a8ad2e682f1f6f3095713cd3
cdn-cache: HIT
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/themes/flatsome/assets/js/chunk.sticky-sidebar.js?ver=3.16.2
50.87.169.152200 OK 4.0 kB URL HTTP/2 www.scottallenwilson.com/wp-content/themes/flatsome/assets/js/chunk.sticky-sidebar.js?ver=3.16.2
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10850), with no line terminators
Hash 0d352cfc16d1ffdb4c8f83d9578bb346
f6298645b35da7e6bfe406792cdf408da7c87a7e
fb2e6a9cbb311d2f8f251f13479ad117c7e90c977e0f36fe83972ce02506dfb1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/assets/js/chunk.sticky-sidebar.js?ver=3.16.2 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 04 Nov 2022 15:11:49 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 14 Dec 2022 07:03:24 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 4024
content-type: application/javascript; charset=utf-8
date: Mon, 14 Nov 2022 07:03:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/themes/flatsome/assets/js/chunk.countup.js?ver=3.16.2
50.87.169.152200 OK 2.1 kB URL HTTP/2 www.scottallenwilson.com/wp-content/themes/flatsome/assets/js/chunk.countup.js?ver=3.16.2
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5448), with no line terminators
Hash 9c8f8030349ee1268edd8d23840553f2
96726cc2a384d7e2e1150ce336cc3549e3be75b7
d20662a3fa7f03e65a51bf610ab8b23a0f2ae9bd6e89af49b3a4ab834c6f38f8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/assets/js/chunk.countup.js?ver=3.16.2 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 04 Nov 2022 15:11:49 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 14 Dec 2022 07:03:24 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 2054
content-type: application/javascript; charset=utf-8
date: Mon, 14 Nov 2022 07:03:24 GMT
server: Apache
X-Firefox-Spdy: h2
eqyhx79bt4g.exactdn.com/wp-content/uploads/2022/01/SAW_Logo.png?strip=all&fit=145,155&lossy=1&ssl=1
194.242.11.186200 OK 16 kB URL HTTP/2 eqyhx79bt4g.exactdn.com/wp-content/uploads/2022/01/SAW_Logo.png?strip=all&fit=145,155&lossy=1&ssl=1
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type PNG image data, 512 x 447, 8-bit colormap, non-interlaced\012- data
Hash 52c47ed07c04973dc80e2469c86b9d90
b1641c8cba7d66fe8da5ab7d6549271bba6bc2c5
99546ad75e097908d03dc9c5f875cf87d08e0997b689ef042a59973519f880b8
GET /wp-content/uploads/2022/01/SAW_Logo.png?strip=all&fit=145,155&lossy=1&ssl=1 HTTP/1.1
Host: eqyhx79bt4g.exactdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 07:03:24 GMT
content-type: image/png
content-length: 16099
server: BunnyCDN-NO-830
cdn-pullzone: 780810
cdn-uid: 282460b1-e21e-44b6-a162-b4892cda4727
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000
expires: Tue, 14 Nov 2023 07:02:37 GMT
last-modified: Sat, 01 Oct 2022 08:32:51 GMT
cdn-cachedat: 11/14/2022 07:02:37
link: <https://scottallenwilson.com/wp-content/uploads/2022/01/SAW_Logo.png>; rel="canonical"
x-content-type-options: nosniff
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: c197c7c23be12cf9b08f3d1f4514c67c
cdn-cache: HIT
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/themes/flatsome/assets/js/chunk.tooltips.js?ver=3.16.2
50.87.169.152200 OK 5.8 kB URL HTTP/2 www.scottallenwilson.com/wp-content/themes/flatsome/assets/js/chunk.tooltips.js?ver=3.16.2
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (16876), with no line terminators
Hash 00132aa5470b0de62627fd6c9af4d4e7
aa460183c94247ecafe500c6ce4096a737f9b360
89e29f20b9c02d3dc87b363c8ab754cbe376b825d3636f03fee090d1da8a9e9a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/assets/js/chunk.tooltips.js?ver=3.16.2 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 04 Nov 2022 15:11:49 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 14 Dec 2022 07:03:24 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 5814
content-type: application/javascript; charset=utf-8
date: Mon, 14 Nov 2022 07:03:24 GMT
server: Apache
X-Firefox-Spdy: h2
eqyhx79bt4g.exactdn.com/wp-content/uploads/2021/12/black_and_white_sm.jpg?strip=all&lossy=1&ssl=1
194.242.11.186200 OK 28 kB URL HTTP/2 eqyhx79bt4g.exactdn.com/wp-content/uploads/2021/12/black_and_white_sm.jpg?strip=all&lossy=1&ssl=1
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type RIFF (little-endian) data, Web/P image\012- data
Hash a557455d3a6c2a2c7cdd312da269b252
c8de04c912d2a7d16364c560579feeb805fd83e7
a802ab86e0e42f5215522e7e72a610904bbcd6a41502e6dec900dcc045efd989
GET /wp-content/uploads/2021/12/black_and_white_sm.jpg?strip=all&lossy=1&ssl=1 HTTP/1.1
Host: eqyhx79bt4g.exactdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 07:03:24 GMT
content-type: image/webp
content-length: 27724
server: BunnyCDN-NO-830
cdn-pullzone: 780810
cdn-uid: 282460b1-e21e-44b6-a162-b4892cda4727
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000
expires: Mon, 13 Nov 2023 03:14:49 GMT
last-modified: Fri, 30 Sep 2022 01:37:10 GMT
cdn-cachedat: 11/14/2022 07:02:37
link: <https://scottallenwilson.com/wp-content/uploads/2021/12/black_and_white_sm.jpg>; rel="canonical"
x-content-type-options: nosniff
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 95f7849b58d73b1e5898ad4b48855ed3
cdn-cache: HIT
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/themes/flatsome/assets/js/chunk.vendors-popups.js?ver=3.16.2
50.87.169.152200 OK 9.0 kB URL HTTP/2 www.scottallenwilson.com/wp-content/themes/flatsome/assets/js/chunk.vendors-popups.js?ver=3.16.2
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (20237), with no line terminators
Hash 819ef7f92c0061d83a03af287a3fcb63
dd0596cf550fb023fe72d9178d5045ab1e8f3054
a73d5e7831b1390e24e74d76f9b3315da8bc56dbbadec7f11c5c8f972d007c5a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/assets/js/chunk.vendors-popups.js?ver=3.16.2 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 04 Nov 2022 15:11:49 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 14 Dec 2022 07:03:24 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 9029
content-type: application/javascript; charset=utf-8
date: Mon, 14 Nov 2022 07:03:24 GMT
server: Apache
X-Firefox-Spdy: h2
eqyhx79bt4g.exactdn.com/wp-content/uploads/2021/12/color_prints_sm.jpg?strip=all&lossy=1&ssl=1
194.242.11.186200 OK 26 kB URL HTTP/2 eqyhx79bt4g.exactdn.com/wp-content/uploads/2021/12/color_prints_sm.jpg?strip=all&lossy=1&ssl=1
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type RIFF (little-endian) data, Web/P image\012- data
Hash 720c0dad5e4324ade56656873ad6a41e
8fb57893dd7c222eb943ed5ec910462ccd9229ac
4f046556f9aa4a5616430ccdbdbeb84e5695779948b2f54db29af3e7bcdc929a
GET /wp-content/uploads/2021/12/color_prints_sm.jpg?strip=all&lossy=1&ssl=1 HTTP/1.1
Host: eqyhx79bt4g.exactdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 07:03:24 GMT
content-type: image/webp
content-length: 25896
server: BunnyCDN-NO-830
cdn-pullzone: 780810
cdn-uid: 282460b1-e21e-44b6-a162-b4892cda4727
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000
expires: Tue, 14 Nov 2023 07:02:37 GMT
last-modified: Sat, 01 Oct 2022 08:32:51 GMT
cdn-cachedat: 11/14/2022 07:02:37
link: <https://scottallenwilson.com/wp-content/uploads/2021/12/color_prints_sm.jpg>; rel="canonical"
x-content-type-options: nosniff
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 60d6ad1a1baa1d528b80bc0bfd2179e8
cdn-cache: HIT
X-Firefox-Spdy: h2
eqyhx79bt4g.exactdn.com/wp-content/uploads/2021/12/saw_logo_header_banner.png?strip=all&lossy=1&resize=106%2C94&ssl=1
194.242.11.186200 OK 10 kB URL HTTP/2 eqyhx79bt4g.exactdn.com/wp-content/uploads/2021/12/saw_logo_header_banner.png?strip=all&lossy=1&resize=106%2C94&ssl=1
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type RIFF (little-endian) data, Web/P image\012- data
Hash cc9925c50b8a06e847f0cd61ce481756
d5b935b7683d1327f7bb6a6f200111d409fb9438
bde433f0261851b1174abea843c4896937a6d92961a595d84318c47f5703e0b6
GET /wp-content/uploads/2021/12/saw_logo_header_banner.png?strip=all&lossy=1&resize=106%2C94&ssl=1 HTTP/1.1
Host: eqyhx79bt4g.exactdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 07:03:24 GMT
content-type: image/webp
content-length: 10160
server: BunnyCDN-NO-830
cdn-pullzone: 780810
cdn-uid: 282460b1-e21e-44b6-a162-b4892cda4727
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000
expires: Tue, 14 Nov 2023 07:02:37 GMT
last-modified: Sun, 25 Sep 2022 02:47:35 GMT
cdn-cachedat: 11/14/2022 07:02:37
link: <https://scottallenwilson.com/wp-content/uploads/2021/12/saw_logo_header_banner.png>; rel="canonical"
x-content-type-options: nosniff
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 279287e425d9d7e9c28e2d5a06da7177
cdn-cache: HIT
X-Firefox-Spdy: h2
eqyhx79bt4g.exactdn.com/wp-content/uploads/2021/06/saw_site_icon.png?strip=all&lossy=1&resize=32%2C32&ssl=1
194.242.11.186200 OK 16 kB URL HTTP/2 eqyhx79bt4g.exactdn.com/wp-content/uploads/2021/06/saw_site_icon.png?strip=all&lossy=1&resize=32%2C32&ssl=1
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type PNG image data, 511 x 511, 8-bit colormap, non-interlaced\012- data
Hash 62190698d3c1b147057feb3da4e95eeb
cfa1c9f2257f82d9534fa6b666144ec03195e99f
348ef5a8053bbef3b37bdc0ce452f7ab8efcbf997aeb59fcfa2123456e0c09b2
GET /wp-content/uploads/2021/06/saw_site_icon.png?strip=all&lossy=1&resize=32%2C32&ssl=1 HTTP/1.1
Host: eqyhx79bt4g.exactdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 07:03:24 GMT
content-type: image/png
content-length: 16111
server: BunnyCDN-NO-830
cdn-pullzone: 780810
cdn-uid: 282460b1-e21e-44b6-a162-b4892cda4727
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000
expires: Tue, 14 Nov 2023 07:03:04 GMT
last-modified: Mon, 03 Oct 2022 13:47:38 GMT
cdn-cachedat: 11/14/2022 07:03:04
link: <https://scottallenwilson.com/wp-content/uploads/2021/06/saw_site_icon.png>; rel="canonical"
x-content-type-options: nosniff
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 726ab98c5bc893707acb8989f4a6b58a
cdn-cache: HIT
X-Firefox-Spdy: h2
eqyhx79bt4g.exactdn.com/wp-content/uploads/2021/06/saw_site_icon.png?strip=all&lossy=1&resize=192%2C192&ssl=1
194.242.11.186200 OK 16 kB URL HTTP/2 eqyhx79bt4g.exactdn.com/wp-content/uploads/2021/06/saw_site_icon.png?strip=all&lossy=1&resize=192%2C192&ssl=1
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type PNG image data, 511 x 511, 8-bit colormap, non-interlaced\012- data
Hash 62190698d3c1b147057feb3da4e95eeb
cfa1c9f2257f82d9534fa6b666144ec03195e99f
348ef5a8053bbef3b37bdc0ce452f7ab8efcbf997aeb59fcfa2123456e0c09b2
GET /wp-content/uploads/2021/06/saw_site_icon.png?strip=all&lossy=1&resize=192%2C192&ssl=1 HTTP/1.1
Host: eqyhx79bt4g.exactdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 07:03:24 GMT
content-type: image/png
content-length: 16111
server: BunnyCDN-NO-830
cdn-pullzone: 780810
cdn-uid: 282460b1-e21e-44b6-a162-b4892cda4727
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000
expires: Tue, 14 Nov 2023 07:03:04 GMT
last-modified: Tue, 11 Oct 2022 14:16:15 GMT
cdn-cachedat: 11/14/2022 07:03:04
link: <https://scottallenwilson.com/wp-content/uploads/2021/06/saw_site_icon.png>; rel="canonical"
x-content-type-options: nosniff
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: b8102c44c53e23791c62159052f574d8
cdn-cache: HIT
X-Firefox-Spdy: h2
eqyhx79bt4g.exactdn.com/wp-content/uploads/2021/12/scott_banksy_sm.jpg?strip=all&lossy=1&ssl=1
194.242.11.186200 OK 18 kB URL HTTP/2 eqyhx79bt4g.exactdn.com/wp-content/uploads/2021/12/scott_banksy_sm.jpg?strip=all&lossy=1&ssl=1
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type RIFF (little-endian) data, Web/P image\012- data
Hash cca8be12fad89fd1dd22a7d0166c4f1e
fe1ef5514cd33b05fecd8f36035409d7a231d0ce
049fe4fb6e2cb72c11323e33240db347d32ab69bf47da1e97d70a2441b58172a
GET /wp-content/uploads/2021/12/scott_banksy_sm.jpg?strip=all&lossy=1&ssl=1 HTTP/1.1
Host: eqyhx79bt4g.exactdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 07:03:24 GMT
content-type: image/webp
content-length: 17960
server: BunnyCDN-NO-830
cdn-pullzone: 780810
cdn-uid: 282460b1-e21e-44b6-a162-b4892cda4727
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000
expires: Tue, 14 Nov 2023 07:02:37 GMT
last-modified: Fri, 30 Sep 2022 01:37:09 GMT
cdn-cachedat: 11/14/2022 07:02:37
link: <https://scottallenwilson.com/wp-content/uploads/2021/12/scott_banksy_sm.jpg>; rel="canonical"
x-content-type-options: nosniff
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 80604d1d17f7b99ac29e5dcea3cfd1e0
cdn-cache: HIT
X-Firefox-Spdy: h2
eqyhx79bt4g.exactdn.com/wp-content/uploads/2022/11/verona_blog_feature-300x200.jpg?strip=all&lossy=1&ssl=1
194.242.11.186200 OK 12 kB URL HTTP/2 eqyhx79bt4g.exactdn.com/wp-content/uploads/2022/11/verona_blog_feature-300x200.jpg?strip=all&lossy=1&ssl=1
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type RIFF (little-endian) data, Web/P image\012- data
Hash 80626a35c65301e9b779d4367db323eb
715edf7c5c4cc624169fc8e6268095abdbf0083c
25e242e0c8e9968a51bded4b25eee302237818d6560568c7c13f97fde9304dab
GET /wp-content/uploads/2022/11/verona_blog_feature-300x200.jpg?strip=all&lossy=1&ssl=1 HTTP/1.1
Host: eqyhx79bt4g.exactdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 07:03:25 GMT
content-type: image/webp
content-length: 12534
server: BunnyCDN-NO-830
cdn-pullzone: 780810
cdn-uid: 282460b1-e21e-44b6-a162-b4892cda4727
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000
expires: Tue, 14 Nov 2023 07:03:04 GMT
last-modified: Sat, 12 Nov 2022 14:22:08 GMT
cdn-cachedat: 11/14/2022 07:03:04
link: <https://scottallenwilson.com/wp-content/uploads/2022/11/verona_blog_feature-300x200.jpg>; rel="canonical"
x-content-type-options: nosniff
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 7124951bedaf5910473c75bc2b2e28bb
cdn-cache: HIT
X-Firefox-Spdy: h2
eqyhx79bt4g.exactdn.com/wp-content/uploads/2022/10/immemorial-site-300x200.jpg?strip=all&lossy=1&ssl=1
194.242.11.186200 OK 8.7 kB URL HTTP/2 eqyhx79bt4g.exactdn.com/wp-content/uploads/2022/10/immemorial-site-300x200.jpg?strip=all&lossy=1&ssl=1
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x200, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f91a1eab8173443807e3fb2e281557a5
9aa1ac90b4534cfe3aa0a91e1c9fbb5ca31dc44f
a5a383264a87000562aae772a93e71036aa8665fa5f1e2e220934f67324ca567
GET /wp-content/uploads/2022/10/immemorial-site-300x200.jpg?strip=all&lossy=1&ssl=1 HTTP/1.1
Host: eqyhx79bt4g.exactdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 07:03:25 GMT
content-type: image/webp
content-length: 8662
server: BunnyCDN-NO-830
cdn-pullzone: 780810
cdn-uid: 282460b1-e21e-44b6-a162-b4892cda4727
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000
expires: Tue, 14 Nov 2023 07:03:04 GMT
last-modified: Wed, 12 Oct 2022 16:17:26 GMT
cdn-cachedat: 11/14/2022 07:03:04
link: <https://scottallenwilson.com/wp-content/uploads/2022/10/immemorial-site-300x200.jpg>; rel="canonical"
x-content-type-options: nosniff
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 5c2e5cd91aa5c253f1aa9ff3407354fe
cdn-cache: HIT
X-Firefox-Spdy: h2
eqyhx79bt4g.exactdn.com/wp-content/uploads/2022/09/Basilica-of-Saint-Francis-Site-300x200.jpg?strip=all&lossy=1&ssl=1
194.242.11.186200 OK 9.3 kB URL HTTP/2 eqyhx79bt4g.exactdn.com/wp-content/uploads/2022/09/Basilica-of-Saint-Francis-Site-300x200.jpg?strip=all&lossy=1&ssl=1
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x200, components 1\012- data
Hash f5bca0cded34b225f52b3163644dffc0
4a81d791a1c459c53fee2f10a60295f1950e09fb
0f53bea1aad60918159c65f1db6db4aae062f4696f90003529f874c97ff860a2
GET /wp-content/uploads/2022/09/Basilica-of-Saint-Francis-Site-300x200.jpg?strip=all&lossy=1&ssl=1 HTTP/1.1
Host: eqyhx79bt4g.exactdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 07:03:25 GMT
content-type: image/jpeg
content-length: 9307
server: BunnyCDN-NO-830
cdn-pullzone: 780810
cdn-uid: 282460b1-e21e-44b6-a162-b4892cda4727
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000
expires: Tue, 14 Nov 2023 07:03:04 GMT
last-modified: Sat, 01 Oct 2022 11:54:36 GMT
cdn-cachedat: 11/14/2022 07:03:04
link: <https://scottallenwilson.com/wp-content/uploads/2022/09/Basilica-of-Saint-Francis-Site-300x200.jpg>; rel="canonical"
x-content-type-options: nosniff
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 34e394691b5d4229b48c987523a22f21
cdn-cache: HIT
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/cache/min/1/wp-content/themes/flatsome/assets/js/flatsome.js?ver=1668360327
50.87.169.152200 OK 0 B URL HTTP/2 www.scottallenwilson.com/wp-content/cache/min/1/wp-content/themes/flatsome/assets/js/flatsome.js?ver=1668360327
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/min/1/wp-content/themes/flatsome/assets/js/flatsome.js?ver=1668360327 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 13 Nov 2022 17:25:27 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 14 Dec 2022 07:03:23 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: application/javascript; charset=utf-8
date: Mon, 14 Nov 2022 07:03:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
50.87.169.152200 OK 0 B URL HTTP/2 www.scottallenwilson.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 02 Nov 2022 03:13:35 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 14 Dec 2022 07:03:23 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: application/javascript; charset=utf-8
date: Mon, 14 Nov 2022 07:03:23 GMT
server: Apache
X-Firefox-Spdy: h2
stats.wp.com/s-202246.js
192.0.76.3200 OK 0 B IP 192.0.76.3:0
GET /s-202246.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 14 Nov 2022 07:03:23 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-2494"
content-encoding: br
expires: Mon, 13 Nov 2023 23:50:14 GMT
cache-control: max-age=31536000
x-nc: HIT arn
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/plugins/woocommerce-ajax-filters/assets/frontend/css/fullmain.min.css?ver=1.6.3.2
50.87.169.152200 OK 0 B URL HTTP/2 www.scottallenwilson.com/wp-content/plugins/woocommerce-ajax-filters/assets/frontend/css/fullmain.min.css?ver=1.6.3.2
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce-ajax-filters/assets/frontend/css/fullmain.min.css?ver=1.6.3.2 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 13 Oct 2022 15:11:55 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 14 Dec 2022 07:03:23 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: text/css; charset=utf-8
date: Mon, 14 Nov 2022 07:03:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/cache/min/1/wp-content/themes/flatsome/assets/css/flatsome.css?ver=1668360327
50.87.169.152200 OK 0 B URL HTTP/2 www.scottallenwilson.com/wp-content/cache/min/1/wp-content/themes/flatsome/assets/css/flatsome.css?ver=1668360327
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/cache/min/1/wp-content/themes/flatsome/assets/css/flatsome.css?ver=1668360327 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 13 Nov 2022 17:25:27 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 14 Dec 2022 07:03:23 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: text/css; charset=utf-8
date: Mon, 14 Nov 2022 07:03:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/cache/min/1/wp-includes/css/dashicons.min.css?ver=1668360327
50.87.169.152200 OK 0 B URL HTTP/2 www.scottallenwilson.com/wp-content/cache/min/1/wp-includes/css/dashicons.min.css?ver=1668360327
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/min/1/wp-includes/css/dashicons.min.css?ver=1668360327 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 13 Nov 2022 17:25:27 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 14 Dec 2022 07:03:23 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: text/css; charset=utf-8
date: Mon, 14 Nov 2022 07:03:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.scottallenwilson.com/wp-content/themes/flatsome/assets/js/chunk.vendors-slider.js?ver=3.16.2
50.87.169.152200 OK 0 B URL HTTP/2 www.scottallenwilson.com/wp-content/themes/flatsome/assets/js/chunk.vendors-slider.js?ver=3.16.2
IP 50.87.169.152:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/assets/js/chunk.vendors-slider.js?ver=3.16.2 HTTP/1.1
Host: www.scottallenwilson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 04 Nov 2022 15:11:49 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 14 Dec 2022 07:03:24 GMT
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: application/javascript; charset=utf-8
date: Mon, 14 Nov 2022 07:03:24 GMT
server: Apache
X-Firefox-Spdy: h2
stats.wp.com/e-202246.js
192.0.76.3200 OK 0 B IP 192.0.76.3:0
GET /e-202246.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.scottallenwilson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 14 Nov 2022 07:03:23 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-3508"
content-encoding: br
expires: Sun, 05 Nov 2023 21:02:58 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2