Report - polarbearsac.com/

Report Overview

Submitted URL
polarbearsac.com/
IP
192.185.198.152
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2022-11-15 04:41:03
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
100

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	1.7 kB	3.3 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	34.215.56.181
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-10T12:25:49Z	2.0 kB	19 kB	142.250.74.10
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-10T14:37:36Z	2.4 kB	123 kB	216.58.207.195
cdn.plyr.io	14223	2015-03-05T07:48:14Z	2023-03-10T15:31:38Z	392 B	3.6 kB	104.27.195.88
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	2.4 kB	6.2 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-10T05:10:00Z	782 B	2.4 kB	34.102.187.140
polarbearsac.com	unknown			37 kB	2.0 MB	192.185.198.152
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	2.4 kB	4.9 kB	142.250.74.3
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.8 kB	70 kB	34.120.237.76
plumbersx.bolvosites.com	unknown			881 B	315 kB	172.67.168.121

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-15	medium	polarbearsac.com/	Malware
2022-11-15	medium	polarbearsac.com/wp-includes/css/classic-themes.min.css?ver=1	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/foogallery/extensions/default-templates/shared/css/foogallery.min.css?ver=2.2.26	Malware
2022-11-15	medium	polarbearsac.com/wp-content/uploads/elementor/css/post-7.css?ver=1668359101	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/plumbersx-features/inc/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.9	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0	Malware
2022-11-15	medium	polarbearsac.com/wp-content/uploads/essential-addons-elementor/eael-314.css?ver=1664048591	Malware
2022-11-15	medium	polarbearsac.com/wp-content/uploads/essential-addons-elementor/eael-2660.css?ver=1664048591	Malware
2022-11-15	medium	polarbearsac.com/wp-content/uploads/elementor/css/post-2658.css?ver=1668359101	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/plumbersx-features/inc/advanced/assets/css/pro.min.css?ver=1.2.0	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/creame-whatsapp-me/public/css/joinchat.min.css?ver=4.5.11	Malware
2022-11-15	medium	polarbearsac.com/wp-content/uploads/elementor/css/post-2660.css?ver=1668359102	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3	Malware
2022-11-15	medium	polarbearsac.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Malware
2022-11-15	medium	polarbearsac.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1	Malware
2022-11-15	medium	polarbearsac.com/wp-content/uploads/elementor/css/post-2898.css?ver=1668359102	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=5.4.2	Malware
2022-11-15	medium	polarbearsac.com/wp-content/uploads/elementor/css/post-2894.css?ver=1668359102	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.2	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=5.4.2	Malware
2022-11-15	medium	polarbearsac.com/wp-content/themes/plumbersx/assets/js/main.min.js?ver=10.1	Malware
2022-11-15	medium	polarbearsac.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=5.4.2	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/plumbersx-features/inc/advanced/assets/js/pro.min.js?ver=1.2.0	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1	Malware
2022-11-15	medium	polarbearsac.com/wp-includes/js/wp-util.min.js?ver=6.1	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8	Malware
2022-11-15	medium	polarbearsac.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/plumbersx-features/inc/plugins/bolvo-builder/pro-features/assets/js/frontend.js?ver=1.2.83	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/foogallery/extensions/default-templates/shared/img/icons.svg	Malware
2022-11-15	medium	polarbearsac.com/wp-includes/js/masonry.min.js?ver=4.2.2	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/plumbersx-features/inc/plugins/bolvo-builder/pro-features/assets/css/frontend.css?ver=1.2.83	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/elementor/assets/js/lightbox.2d166d71ba2a6a9e66fd.bundle.min.js	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/elementor/assets/js/tabs.2327c8f9bd0a558456b9.bundle.min.js	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/plumbersx-features/inc/plugins/bolvo-builder/assets/frontend/js/frontend.min.js?ver=1.2.83	Malware
2022-11-15	medium	polarbearsac.com/	Malware
2022-11-15	medium	polarbearsac.com/wp-content/uploads/2021/09/video-polares.mp4	Malware
2022-11-15	medium	polarbearsac.com/wp-content/plugins/foobox-image-lightbox/free/js/foobox.free.min.js?ver=2.7.17	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (44)

	URL	Size	First Seen	Last Seen
	polarbearsac.com/	2.1 kB	2023-03-11	2023-03-11
Pretty URL polarbearsac.com/ IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:17:21 Last Seen2023-03-11 12:17:21 Times Seen1 Hash d320f0326c4a029223208a5cad0cbbfe 53442cd2b9e8a5bfcb7e383b2dbb19ddf12fda40 6549d9e3cfc57d121a56e64b83b60e5faf9bae62c76294cbb4477f655d97be6c Loading...

	polarbearsac.com/wp-includes/js/wp-util.min.js?ver=6.1	1.4 kB	2023-03-08	2024-04-26
Pretty URL polarbearsac.com/wp-includes/js/wp-util.min.js?ver=6.1 IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:29 Last Seen2024-04-26 16:04:32 Times Seen24454 Hash 19d386c9004e54941c1cc61d357efa5d 0a77594006c8d86fdcc0adbc2b9aecaef3869586 3bc6467a95cec8fa516c6f5f69e1301e37e16f9bb1046fe7756729249f901b95 Loading...

	polarbearsac.com/	2.1 kB	2023-03-11	2023-03-11
Pretty URL polarbearsac.com/ IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:17:21 Last Seen2023-03-11 12:17:21 Times Seen1 Hash 9f2648e4568caf6b645ebd306273dc17 d950287562aaeede3cd7e93b9bbd8d949e299e20 79317329d8beac1d448c607f19cac612e7880aab5234020223dd5f6026475fd3 Loading...

	polarbearsac.com/	563 B	2023-03-11	2023-05-31
Pretty URL polarbearsac.com/ IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:17:21 Last Seen2023-05-31 16:41:31 Times Seen2 Hash 166f95819619cb6132f5b659fb17e9ac 4cba5edf3ad8ab60e66c9186fff587a2bde7042b ff2f8b4e4d7df99a811b33c879cc0d2706d1a309a645f65342f7860e3eaac931 Loading...

	polarbearsac.com/wp-content/plugins/plumbersx-features/inc/plugins/bolvo-builder/assets/frontend/js/frontend.min.js?ver=1.2.83	92 kB	2023-03-11	2023-05-31
Pretty URL polarbearsac.com/wp-content/plugins/plumbersx-features/inc/plugins/bolvo-builder/assets/frontend/js/frontend.min.js?ver=1.2.83 IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:17:21 Last Seen2023-05-31 16:41:32 Times Seen3 Hash 9f64f131271aaa28df6e00c61c8ae64b 855dcf236240a054823d0925263863b7797e1771 2538d43de2bdf26062b638fbf34f225790a743679eb91397b8e57650aefec288 Loading...

	polarbearsac.com/	130 B	2023-03-11	2023-03-11
Pretty URL polarbearsac.com/ IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:17:21 Last Seen2023-03-11 12:17:21 Times Seen1 Hash 5e41177a94372c8f618af6794f94f895 c283ef74f9d48067b90b74f8d3c61f6d1df92c93 bb2caf3e149f0f52b9fc3c56113e2ec2bdde40260b5c89a19eb52fbdf5a979e5 Loading...

	polarbearsac.com/	292 B	2023-03-11	2023-03-11
Pretty URL polarbearsac.com/ IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:17:21 Last Seen2023-03-11 12:17:21 Times Seen1 Hash 151ae28ea9c7b19a8ce90bbd427bff58 b423750e256e41ddbec2fb4e62e759a19f6e54b7 088a8561cb4e0706e8f875dfab1d23561fd6037cd460cdcac54c7e209f408205 Loading...

	polarbearsac.com/wp-content/plugins/elementor/assets/js/lightbox.2d166d71ba2a6a9e66fd.bundle.min.js	29 kB	2023-03-08	2024-01-14
Pretty URL polarbearsac.com/wp-content/plugins/elementor/assets/js/lightbox.2d166d71ba2a6a9e66fd.bundle.min.js IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-01-14 18:10:50 Times Seen44 Hash 5aab0e3d86a8bea808e73cfd56ce1947 56a4b35696779bde46173e311654009aaa1c9615 f70c83c257a9a21c7ece9bcd588d1c20022cba6b2d2f70f865784a60903c9805 Loading...

	polarbearsac.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6	139 kB	2023-03-07	2024-04-26
Pretty URL polarbearsac.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-26 04:19:34 Times Seen23167 Hash 15bb2b8491fc7e84137d65f610e1685a cd76b70a5426893e9c022b9a75c50a7c1348e2d0 b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804 Loading...

	polarbearsac.com/wp-content/plugins/foobox-image-lightbox/free/js/foobox.free.min.js?ver=2.7.17	100 kB	2023-03-07	2024-02-27
Pretty URL polarbearsac.com/wp-content/plugins/foobox-image-lightbox/free/js/foobox.free.min.js?ver=2.7.17 IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:33 Last Seen2024-02-27 06:26:53 Times Seen208 Hash f83d9c8635a1885c87aa4480d722021b f4c736e20f6feefc7c279c12e729bfb193da849d 8ca8a4feeb61ae9e7c5b6dc7a7918cf9c214c601be52f73231bb20cec8861c00 Loading...

	polarbearsac.com/wp-content/plugins/plumbersx-features/inc/advanced/assets/js/vendors/pace.min.js	13 kB	2023-03-07	2024-04-20
Pretty URL polarbearsac.com/wp-content/plugins/plumbersx-features/inc/advanced/assets/js/vendors/pace.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:57:00 Last Seen2024-04-20 18:59:21 Times Seen231 Hash 248f37358dd94120dc84da2938445449 d32ab818e0f97d3b0c80f5631fc23d8a0cb52795 c0d8568fe6f9d837f664000f1973f22009d776aabb49bd6daf692912825f6e28 Loading...

	polarbearsac.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.11	8.1 kB	2023-03-08	2024-02-25
Pretty URL polarbearsac.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.11 IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:01 Last Seen2024-02-25 03:12:16 Times Seen155 Hash d722044cc0ba8301aa6e215203f3299f 87ebd8f71d38dccb9c2dcebbb7203dd836257b8b 59fc5a88fa6aad3642d9914c53490174cef0abce3ab397589364018c4acd74e0 Loading...

	polarbearsac.com/wp-content/plugins/plumbersx-features/inc/plugins/bolvo-builder/pro-features/assets/js/webpack-pro.runtime.js?ver=1.2.83	12 kB	2023-03-11	2023-05-31
Pretty URL polarbearsac.com/wp-content/plugins/plumbersx-features/inc/plugins/bolvo-builder/pro-features/assets/js/webpack-pro.runtime.js?ver=1.2.83 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:17:21 Last Seen2023-05-31 16:41:32 Times Seen3 Hash 80dcaa60d29bb28b1fb86046e828926e f5cb5dd05ef8d3f7f4eda998edb86a3849f25132 43f139ac5d18197327527106fd879ff137940fa553308f199cee66995b07a3b3 Loading...

	polarbearsac.com/	930 B	2023-03-11	2023-03-11
Pretty URL polarbearsac.com/ IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:17:21 Last Seen2023-03-11 12:17:21 Times Seen1 Hash fb719fe815d378f1e45a65010391c7e7 ca5b4e42c3d276d3047ed85a0289312a43a6ff8b f33b56c86be95ecc12d711299e9dbdbe36d22815aff4253288a674f1c4f9f93a Loading...

	polarbearsac.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	90 kB	2023-03-08	2024-04-26
Pretty URL polarbearsac.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-26 16:08:31 Times Seen31833 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	polarbearsac.com/wp-content/uploads/essential-addons-elementor/eael-2660.js?ver=1664048591	125 kB	2023-03-11	2023-03-11
Pretty URL polarbearsac.com/wp-content/uploads/essential-addons-elementor/eael-2660.js?ver=1664048591 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:17:21 Last Seen2023-03-11 12:17:21 Times Seen1 Hash 15aad16688ea4cf80b831974c4f11cef 57c2fe398a4bd5da797734cbe9ca5b37e9ba726b 5504a764d6aad4d3432e1f71e3009ec1ea9163c2834dce42f5ec6badf93e85f6 Loading...

	polarbearsac.com/	110 B	2023-03-07	2024-04-26
Pretty URL polarbearsac.com/ IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:16 Last Seen2024-04-26 15:31:29 Times Seen2278 Hash f17a1ca0e09b355fe605ac1ad37c4105 ce25a6e7d65c97829444381397e5ca58954bfeaf ac0bae1f39bff1aee40d5c283b0c0ca756959d7a442d9ad4b2a6d2634369698e Loading...

	polarbearsac.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0	11 kB	2023-03-07	2024-04-25
Pretty URL polarbearsac.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 06:13:12 Times Seen5360 Hash 4eee50ac6f4f364ba3a284d0753ddae3 a8e7e824e6824ae0b370ff36e2c07ca07276fae0 b936db5880aa9b6b2f26a8d32fc2b689fb75f69d971b94194f16dba801221ffe Loading...

	polarbearsac.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-26
Pretty URL polarbearsac.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-26 16:08:31 Times Seen68676 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	polarbearsac.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	21 kB	2023-03-08	2024-04-26
Pretty URL polarbearsac.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-26 15:31:29 Times Seen9815 Hash 034bd11ecaf6fb9240d905245e42e202 ff136c394ed95badfc0107fb98a890dcff642828 ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651 Loading...

	polarbearsac.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1	5.0 kB	2023-03-08	2024-04-15
Pretty URL polarbearsac.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-15 22:34:30 Times Seen647 Hash 562ad59077018eb139d1f46afd69a050 d33c188f7d0f306b8a0ede1e3b67a0edb7be8966 f6eb858ead7f15dcd18541c5433714e0c0966d81b8d009a2d49e5a181e548fbb Loading...

	polarbearsac.com/	239 B	2023-03-11	2023-03-11
Pretty URL polarbearsac.com/ IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:17:21 Last Seen2023-03-11 12:17:21 Times Seen1 Hash 6f9f912e7f8ec276a76ada4c467f2658 c2abb5d0728f35cea7d97173832af87c627f29f1 9540584ecc76f807f762d761b846978c5b53b3f8fedd2f948ce21e5f803a487f Loading...

	polarbearsac.com/	224 B	2023-03-11	2023-03-11
Pretty URL polarbearsac.com/ IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:17:21 Last Seen2023-03-11 12:17:21 Times Seen1 Hash e409d694d2682f9a4d4f346a43b3f2ad d36b0e0b5df8b2bbc9819e7d1a3ca5b89d69f931 3b92f214d94988b83295856014b1fcd098418fa4ce19af09520ff7361200660d Loading...

	polarbearsac.com/	96 B	2023-03-07	2024-04-26
Pretty URL polarbearsac.com/ IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:51 Last Seen2024-04-26 15:31:29 Times Seen10633 Hash eb3a538fd2a39c22198e72c3b9f498a7 c966ebdbd2701a0980a85671126664f3892d4f1e ac233233e7bcaf806041b243578fab081dced8a045d9a82756410da9ea2382a1 Loading...

	polarbearsac.com/wp-content/plugins/elementor/assets/js/tabs.2327c8f9bd0a558456b9.bundle.min.js	3.7 kB	2023-03-08	2023-06-20
Pretty URL polarbearsac.com/wp-content/plugins/elementor/assets/js/tabs.2327c8f9bd0a558456b9.bundle.min.js IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:33:54 Last Seen2023-06-20 23:44:10 Times Seen13 Hash cf0ba70faeb5067e5db86c54d4f23e3f b1c983c71e0e9cad452e7c2f7677ca762c591232 eff557c834753df74cbda78371fdc37cee7e82dbc5ca5b3869b1ce4fa1fabfa8 Loading...

	polarbearsac.com/	733 B	2023-03-07	2024-02-27
Pretty URL polarbearsac.com/ IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22:21 Last Seen2024-02-27 06:26:51 Times Seen38 Hash de1de7e054678fcad7c709e576266940 64b3cdce639daad95db314b8e001aa27c6d472de 0931921c62a2882b3ad6f8e147c55d5dcd9d6c6806a7c3c110265bf5dfdf1cb6 Loading...

	polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=5.4.2	15 kB	2023-03-07	2024-04-26
Pretty URL polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=5.4.2 IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:07 Last Seen2024-04-26 13:53:03 Times Seen16393 Hash 7a5dea0a705cc2f4cd87dbaaa6666bc6 678bc6f750f13adb29bbc158eb0d9cd813b736fa 97cf1307c16a437b77b5f7f5c9bc0b985d0745a14be5a279019aca5a3432e264 Loading...

	polarbearsac.com/wp-includes/js/masonry.min.js?ver=4.2.2	24 kB	2023-03-07	2024-04-26
Pretty URL polarbearsac.com/wp-includes/js/masonry.min.js?ver=4.2.2 IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2024-04-26 11:39:41 Times Seen15289 Hash 3b3fc826e58fc554108e4a651c9c7848 76778fd446e2ff2377588a7b4ac4d79f258427c9 e00add38134eac2fb8e8e9c09cbfff7bbe57952b210322eb2eecb0a21fc055eb Loading...

	polarbearsac.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1	40 kB	2023-03-08	2024-04-15
Pretty URL polarbearsac.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1 IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-15 22:34:30 Times Seen724 Hash 2331d602370faa61829c8aa628996c7d e097dda010d924637e9c9f906be7653ae2d29343 5ceb0c2088d29cecbe3ee571dc3cf6fec764bbb7c73f0e22c73007149a2ce68d Loading...

	polarbearsac.com/wp-includes/js/underscore.min.js?ver=1.13.4	19 kB	2023-03-08	2024-04-26
Pretty URL polarbearsac.com/wp-includes/js/underscore.min.js?ver=1.13.4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:29 Last Seen2024-04-26 17:07:06 Times Seen41501 Hash f88d5720bb454ed5d204cbdb56901f6b f1952292fde4b15936e9aac16b2b9896684db95b 726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a Loading...

	polarbearsac.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1	19 kB	2023-03-07	2024-04-26
Pretty URL polarbearsac.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1 IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-26 16:08:31 Times Seen38067 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 17:30:16 Times Seen37097485 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	polarbearsac.com/	109 B	2023-03-11	2023-12-03
Pretty URL polarbearsac.com/ IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:17:21 Last Seen2023-12-03 18:09:20 Times Seen3 Hash ed08530f40e3f58c044b9086eacfa279 73f4ebc2b3929837eccbce8f411c8f49cfa8b5d4 de25b2c38a1b2c9e1f82cbe2cbd875e5ef819cd5b876a20284ca1f7024e03e42 Loading...

	polarbearsac.com/wp-content/themes/plumbersx/assets/js/main.min.js?ver=10.1	12 kB	2023-03-11	2023-12-03
Pretty URL polarbearsac.com/wp-content/themes/plumbersx/assets/js/main.min.js?ver=10.1 IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:17:21 Last Seen2023-12-03 18:09:20 Times Seen5 Hash 857b62826f53198d8838d42398a08a92 57be0fd74e15354013472c1a9cdd06336ef03c6a 67b1b747ba3ce23f99cdf46351d318f43484090f844afe3d951f5f04789467aa Loading...

	polarbearsac.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-04-26
Pretty URL polarbearsac.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-26 16:49:48 Times Seen52806 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	polarbearsac.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8	754 B	2023-03-07	2024-04-25
Pretty URL polarbearsac.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8 IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-04-25 13:07:05 Times Seen2671 Hash afb55c29bdbcfc262d9fa56743572cad d4b6cb9df2b1b5477cd968fb05cf5faa1d13d6bf c30dab20b677f2b13f42a4a04385a3c6d380fa023a4a1c32f45f2996e152bfba Loading...

	polarbearsac.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js	1.4 kB	2023-03-08	2024-04-15
Pretty URL polarbearsac.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-15 22:34:30 Times Seen332 Hash bd7fa9b462b379ac441355772351f14e 5cc11b3af3e31e790cfa0ecf28598f9509cf9e68 4a518bd1723da2b6011895ad68059361ebb4cb80de3eec9145eacee89ddd9745 Loading...

	polarbearsac.com/wp-content/uploads/essential-addons-elementor/eael-314.js?ver=1664048591	3.8 kB	2023-03-08	2024-03-29
Pretty URL polarbearsac.com/wp-content/uploads/essential-addons-elementor/eael-314.js?ver=1664048591 IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:30:51 Last Seen2024-03-29 08:18:47 Times Seen3 Hash 96695ed86f3b5bc2c48894cf2f3ed206 62c7a14bba57901d5520b2a90e25ba6553fccfda a2b921081dafdb534c82719e1fe274f94c925ade16d4bc9cafebd74e1cab9932 Loading...

	polarbearsac.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1	2.6 kB	2023-03-07	2024-04-26
Pretty URL polarbearsac.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1 IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:07 Last Seen2024-04-26 00:33:29 Times Seen11301 Hash 020e87460ce58802842e34a3aac97d83 d2eed5f7573c0bd640fb9f125b6bfedf43ebf9b9 138154c0deed3326477b9b4909175101070a5a3a95342291b53d8cc9879a5f47 Loading...

	polarbearsac.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.2	8.0 kB	2023-03-08	2023-12-11
Pretty URL polarbearsac.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.2 IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:20 Last Seen2023-12-11 08:09:31 Times Seen56 Hash ef711018665b24a570d3605255874523 bdcb5e1cc811c120fd2983444b296254b7618a8b d7b10b7ce6eceb9ee2483874f0f972e419ab10692ed738c1ae3422e48c489775 Loading...

	polarbearsac.com/wp-content/plugins/plumbersx-features/inc/advanced/assets/js/pro.min.js?ver=1.2.0	5.8 kB	2023-03-11	2023-05-31
Pretty URL polarbearsac.com/wp-content/plugins/plumbersx-features/inc/advanced/assets/js/pro.min.js?ver=1.2.0 IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:17:21 Last Seen2023-05-31 16:41:32 Times Seen3 Hash f22a844b34d4f2dc039469bb52e9371a dd832c909ea1d55a00dbf4a5e003a46ec53659a9 31924d3d986e986d540f0578d201c99cca78887a083d14541634c68d4fe4e248 Loading...

	polarbearsac.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1	33 kB	2023-03-08	2024-04-15
Pretty URL polarbearsac.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-15 22:34:30 Times Seen658 Hash 48b7a16ab38005edf9c9964313ce1cd7 8b8569d937aac61fd792b6c68fca974e3cdd94ab 5d80f13fd7524318f81eb1301170d4d0fbee242c12403c01f3a06c9f681192c7 Loading...

	polarbearsac.com/wp-content/plugins/plumbersx-features/inc/plugins/bolvo-builder/pro-features/assets/js/frontend.js?ver=1.2.83	42 kB	2023-03-11	2023-05-31
Pretty URL polarbearsac.com/wp-content/plugins/plumbersx-features/inc/plugins/bolvo-builder/pro-features/assets/js/frontend.js?ver=1.2.83 IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:17:21 Last Seen2023-05-31 16:41:32 Times Seen3 Hash 07b9ec916714c95386d0601c8cfe988c 05a33ff0f0fa689525f6735aea36580e195103ff b25a04bfcafcd2c02fe150b2c17f63ec4281f11db4fc78b8e0b5454d5714afee Loading...

	polarbearsac.com/	70 B	2023-03-11	2023-03-11
Pretty URL polarbearsac.com/ IP 192.185.198.152 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:17:21 Last Seen2023-03-11 12:17:21 Times Seen1 Hash 6e6a963aec54107f571ef8e294900f68 61e8cd9191391f498b631b4bb38871b00797d8b5 1e9e2bcac17aa7f37ed8f6b0f1481724780c627822d3be96e7928abfd588a141 Loading...

HTTP Transactions (123)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7786cd9bd97e024b3a1d16215defaad2
786ddbb74b0b6bd9270622dbe0258d6caee407c1
9c297ccfd178eec7e472fb64a6b2e34d4c7a6dec32870f49982353e590196ba0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C297CCFD178EEC7E472FB64A6B2E34D4C7A6DEC32870F49982353E590196BA0"
Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7019
Expires: Tue, 15 Nov 2022 06:37:50 GMT
Date: Tue, 15 Nov 2022 04:40:51 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
832aecaba9f06ee2d39d4d4bea65f13c
7195d6ffadfdbc6fc8e92c63ae28d4a3038a72dc
a437509314a97065de6c7b9e5e2b4b61f0234b45f5f5bf2649cbdf499577bfd3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6564
Cache-Control: max-age=113990
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 04:40:51 GMT
Etag: "637218f5-1d7"
Expires: Wed, 16 Nov 2022 12:20:41 GMT
Last-Modified: Mon, 14 Nov 2022 10:31:17 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c88bc06741ab9fb81c2544acfcc34aa2
362cab19cff5aba27f472cc00071d5dfa38192e4
314ba27975f458e13917b2be91c9d5989a3e57c9e94b5a84dd52d0e21d27ae7f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "314BA27975F458E13917B2BE91C9D5989A3E57C9E94B5A84DD52D0E21D27AE7F"
Last-Modified: Mon, 14 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5569
Expires: Tue, 15 Nov 2022 06:13:40 GMT
Date: Tue, 15 Nov 2022 04:40:51 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 15 Nov 2022 03:44:22 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3389
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: TB/p7jA8WgeXtGxC7XltFINXOUUk86iNh4ZbpWccO6ILhx3z1oet2E4nPCqg0eC8LNoNnox8f0I=
x-amz-request-id: 6T7FG5Y0E7EYSEB9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 15 Nov 2022 04:14:07 GMT
age: 1604
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

polarbearsac.com/

192.185.198.152

301 Moved Permanently

0 B

URL HTTP/1.1
polarbearsac.com/
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Tue, 15 Nov 2022 04:40:51 GMT
Server: Apache
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://polarbearsac.com/
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 15 Nov 2022 04:40:51 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Last-Modified, ETag, Alert, Backoff, Content-Type, Retry-After, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 15 Nov 2022 03:44:48 GMT
cache-control: public,max-age=3600
age: 3364
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c279008313d0c22cad75bd924198b6a5
71078cfb6ef2e20778a52628dcdfeda05f5525a7
d1c797cffb8ff46c61a24c720d82b50024404dfd4ac2c61018648cd5c6b52a95

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D1C797CFFB8FF46C61A24C720D82B50024404DFD4AC2C61018648CD5C6B52A95"
Last-Modified: Mon, 14 Nov 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21515
Expires: Tue, 15 Nov 2022 10:39:27 GMT
Date: Tue, 15 Nov 2022 04:40:52 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
3200044057cb585f1a435c0efece61c8
8305d5b5891288aa9996b4b4ca6fce2265413194
df45704534a24928e7659a6d8cd1b5ac9ffa9b224b02b34a2d6aed5ef69fd586

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3679
Cache-Control: max-age=106048
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 04:40:52 GMT
Etag: "63720535-1d7"
Expires: Wed, 16 Nov 2022 10:08:20 GMT
Last-Modified: Mon, 14 Nov 2022 09:07:01 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

34.215.56.181

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.215.56.181:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: h1+rP4T2nmXafohwA0nWgA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: M7lGdytw44hc4dek7M6NTGne2pQ=

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b2d6aeeb303eaefc4cc6900e30da3b1b
4c3c027013211aa1b987006d0eb6c72f18c6a657
f542eab7c032d6c5f59710ee8993a01537e0fa2bf3882a6a699de85bba020999

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 04:40:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b2d6aeeb303eaefc4cc6900e30da3b1b
4c3c027013211aa1b987006d0eb6c72f18c6a657
f542eab7c032d6c5f59710ee8993a01537e0fa2bf3882a6a699de85bba020999

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 04:40:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b2d6aeeb303eaefc4cc6900e30da3b1b
4c3c027013211aa1b987006d0eb6c72f18c6a657
f542eab7c032d6c5f59710ee8993a01537e0fa2bf3882a6a699de85bba020999

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 04:40:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b2d6aeeb303eaefc4cc6900e30da3b1b
4c3c027013211aa1b987006d0eb6c72f18c6a657
f542eab7c032d6c5f59710ee8993a01537e0fa2bf3882a6a699de85bba020999

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 04:40:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

polarbearsac.com/wp-includes/css/classic-themes.min.css?ver=1

192.185.198.152

200 OK

189 B

URL HTTP/2
polarbearsac.com/wp-includes/css/classic-themes.min.css?ver=1
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
189 B (189 bytes)
Hash
5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 04:43:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 189
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1

192.185.198.152

200 OK

4.5 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (21597)
Size
4.5 kB (4487 bytes)
Hash
7f01d3c2dd8fdc231241f6a3b10def8c
76646b14e9ce97d384b9adb20c622f09c7ecd140
999c4a983cd4b5a1a7652aa436630a18c1a6dbf91de090c903ab507b07df536a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 26 Oct 2022 17:59:33 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4487
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/foobox-image-lightbox/free/css/foobox.free.min.css?ver=2.7.17

192.185.198.152

200 OK

5.4 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/foobox-image-lightbox/free/css/foobox.free.min.css?ver=2.7.17
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (29458), with no line terminators
Size
5.4 kB (5433 bytes)
Hash
610ae8ebe6d66ed9b96e3000e12fe22e
d05b2668e49eca8ac5fe664a0c48e0846fc412fb
6f256ffae93f49ae56181f2efbb682b7481d7d433ed626306e237ca25055067d

HTTP Headers

GET /wp-content/plugins/foobox-image-lightbox/free/css/foobox.free.min.css?ver=2.7.17 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 24 Sep 2022 18:16:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5433
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/foogallery/extensions/default-templates/shared/css/foogallery.min.css?ver=2.2.26

192.185.198.152

200 OK

18 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/foogallery/extensions/default-templates/shared/css/foogallery.min.css?ver=2.2.26
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65536), with no line terminators
Size
18 kB (17496 bytes)
Hash
8d350cdfc56f72aa8702ef37ae668c12
eedb0d8819788b912977a1529ff9a3c53d22763f
b41d2e1a85ac0a6f039ae730ac302cdd6b6bd1517f10580e7f4b3b12d1225bda

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/foogallery/extensions/default-templates/shared/css/foogallery.min.css?ver=2.2.26 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 17496
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/uploads/elementor/css/post-7.css?ver=1668359101

192.185.198.152

200 OK

385 B

URL HTTP/2
polarbearsac.com/wp-content/uploads/elementor/css/post-7.css?ver=1668359101
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1165), with no line terminators
Size
385 B (385 bytes)
Hash
026af06823aa6b07eb97596736c1dfab
943046160c386ef313e539605afbcd29a0e364a1
3fb7684bc514386852d336eac038f80e60f1763edefa21f8b65f3feef3b6007d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/elementor/css/post-7.css?ver=1668359101 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 17:05:01 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 385
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/plumbersx-features/inc/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.9

192.185.198.152

200 OK

323 B

URL HTTP/2
polarbearsac.com/wp-content/plugins/plumbersx-features/inc/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.9
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
323 B (323 bytes)
Hash
b24c24b7da3ffeed6ae8ade102a4d317
c4445b3977ce704b927508108e100213eea67a3c
5421ad49b70f379553eaceec744d753e74d4b065966c08aa7c7dd949553ca9a8

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/plumbersx-features/inc/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.9 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 12 May 2022 22:21:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 323
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0

192.185.198.152

200 OK

4.0 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (19233)
Size
4.0 kB (4008 bytes)
Hash
2701214b028ad24fa347df8335b36d12
156bc8a7ad2657f00881890637f07c6052636499
9a6e62615ceeec7a9763e4f9614e4715d04fd87873b23db2b3ead06c996cad27

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4008
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/plumbersx-features/inc/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.9

192.185.198.152

200 OK

12 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/plumbersx-features/inc/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.9
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (1646)
Size
12 kB (11654 bytes)
Hash
e56098a703c5beb99abc9c3a870be594
76e54634e0628ab91310c760d619360151e26be1
0eb4438e57550f2c2a321d45a5cb1c92fb22d58f6dbcc9c189fc3bd1e4f78b8f

HTTP Headers

GET /wp-content/plugins/plumbersx-features/inc/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.9 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 12 May 2022 22:21:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 11654
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.2

192.185.198.152

200 OK

900 B

URL HTTP/2
polarbearsac.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.2
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (3432)
Size
900 B (900 bytes)
Hash
1e0ef5b4ebd931aecd01564980628978
e618b92e03a6c4bd4abffed22abb1e835c05a601
1deef467f6db854d82e8c6288086664c7cf60a41b18bb7216d63bb83061ba878

HTTP Headers

GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.2 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 16:50:19 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 900
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/uploads/elementor/css/post-314.css?ver=1668359101

192.185.198.152

200 OK

9.9 kB

URL HTTP/2
polarbearsac.com/wp-content/uploads/elementor/css/post-314.css?ver=1668359101
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (30891)
Size
9.9 kB (9852 bytes)
Hash
d6ad39a9593ae5347bd424980cfb5dfa
ebdbf52e0970b4679f36def00077ceb752b3aced
5a89a8d77fa269a9353fb001e8a5262858b890e1818eb7294f42f61949586566

HTTP Headers

GET /wp-content/uploads/elementor/css/post-314.css?ver=1668359101 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 17:05:01 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9852
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/uploads/essential-addons-elementor/eael-314.css?ver=1664048591

192.185.198.152

200 OK

1.9 kB

URL HTTP/2
polarbearsac.com/wp-content/uploads/essential-addons-elementor/eael-314.css?ver=1664048591
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (4219)
Size
1.9 kB (1941 bytes)
Hash
8ce9201f9f9cbd86f13407bbcb7ec76b
43564b968d107b437ebed6ef15b9a8d91c6c1c93
6478724eeadbaf003b1c52a574a9db30e88fc2f0d47d0a15ab0bb3270323b24e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/essential-addons-elementor/eael-314.css?ver=1664048591 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 11 Aug 2022 06:22:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1941
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/uploads/essential-addons-elementor/eael-2660.css?ver=1664048591

192.185.198.152

200 OK

11 kB

URL HTTP/2
polarbearsac.com/wp-content/uploads/essential-addons-elementor/eael-2660.css?ver=1664048591
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (41743)
Size
11 kB (10738 bytes)
Hash
5396c43378871b02d8cab16256c2db93
99222767fa9575cf1553b5020ef5dbda54aa627a
b8f0ba75ba90bcc86e5b2e179f8c1a967fccb0bb8b6cce83b796404fdb829aa4

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/essential-addons-elementor/eael-2660.css?ver=1664048591 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 24 Sep 2022 19:47:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10738
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/themes/plumbersx/assets/css/compatibilities/jetpack/jetpack.min.css?ver=10.1

192.185.198.152

200 OK

391 B

URL HTTP/2
polarbearsac.com/wp-content/themes/plumbersx/assets/css/compatibilities/jetpack/jetpack.min.css?ver=10.1
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (908), with no line terminators
Size
391 B (391 bytes)
Hash
7ce9d5aaaac4a245394a8b62d23888d4
c649a8548543627b4c8a0b66c2767441361a0390
e04c29d175fddfaed5170f6b294f176c35c88cec42f2cb2b0d8e7bf3696fd460

HTTP Headers

GET /wp-content/themes/plumbersx/assets/css/compatibilities/jetpack/jetpack.min.css?ver=10.1 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 12 May 2022 22:20:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 391
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/uploads/elementor/css/post-2658.css?ver=1668359101

192.185.198.152

200 OK

1.9 kB

URL HTTP/2
polarbearsac.com/wp-content/uploads/elementor/css/post-2658.css?ver=1668359101
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (4417)
Size
1.9 kB (1866 bytes)
Hash
d06d3a977697d787ad20b9e1eb0ecad7
12c6134d3f12b8ddd611dacf4fd4caebc7997204
e5951a7a059e806fd122ba35b7c65c49e92a84ab7e86f02f39aee492f655341e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/elementor/css/post-2658.css?ver=1668359101 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 17:05:01 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1866
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/plumbersx-features/inc/advanced/assets/css/pro.min.css?ver=1.2.0

192.185.198.152

200 OK

4.5 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/plumbersx-features/inc/advanced/assets/css/pro.min.css?ver=1.2.0
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (21813), with no line terminators
Size
4.5 kB (4477 bytes)
Hash
b32f6aafe5f1f358ad447a1fc9f76164
08133314baed64d23ee939f74c1338546efe98c8
bc78935a4f5de7f79aaa5c28660b7957f7fd94decd3fb0bb0ba5dd63f576d3a4

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/plumbersx-features/inc/advanced/assets/css/pro.min.css?ver=1.2.0 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 12 May 2022 22:21:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4477
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/creame-whatsapp-me/public/css/joinchat.min.css?ver=4.5.11

192.185.198.152

200 OK

5.5 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/creame-whatsapp-me/public/css/joinchat.min.css?ver=4.5.11
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (15058), with no line terminators
Size
5.5 kB (5513 bytes)
Hash
3def0fe2f05c25af87eac8b0a1237859
8df7b82bca837c88c9eba0e3d11b08cfc2056841
f09a0dba701dfe3896e8c548e1dac0f663088de18df44a480c4d7d81cf32fbec

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/creame-whatsapp-me/public/css/joinchat.min.css?ver=4.5.11 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Oct 2022 17:16:55 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5513
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/uploads/elementor/css/post-2660.css?ver=1668359102

192.185.198.152

200 OK

1.8 kB

URL HTTP/2
polarbearsac.com/wp-content/uploads/elementor/css/post-2660.css?ver=1668359102
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (8877), with no line terminators
Size
1.8 kB (1752 bytes)
Hash
b5fc99a1ee1729a9850a78d79bec949e
414cd943d3107f405ffd88c5621f4fe9161c0bfc
574a45ee1256a8832cdd55d9c05f3037582a4a307ffedab8abf7ffdf485f2153

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/elementor/css/post-2660.css?ver=1668359102 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 17:05:02 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1752
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3

192.185.198.152

200 OK

13 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (57726)
Size
13 kB (12577 bytes)
Hash
dc63c0a8e2d5857cc7a00a4b5456dabb
ee29df5eb2a4bf3eb805b160551c1afd84b42599
035ef40b1dd3df1eefb2dd3c8c2096425727fb939b06f3aa0bc6ef91dafd5441

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12577
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3

192.185.198.152

200 OK

309 B

URL HTTP/2
polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (483)
Size
309 B (309 bytes)
Hash
0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 309
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3

192.185.198.152

200 OK

308 B

URL HTTP/2
polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (491)
Size
308 B (308 bytes)
Hash
851fd514d412b7e854365f20a4227c8a
08bf47072f70af1816450cc85a5efb3b8f9114d2
a9449e3cc7c003e5ed6b93bae7b0bba3e4f1713c52214f41d3591692a759b9d7

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 308
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3

192.185.198.152

200 OK

308 B

URL HTTP/2
polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (489)
Size
308 B (308 bytes)
Hash
0a08469d24387f830bbaaa00b3c228ae
01f5dfeb8f93a32c9a8f66fe5940758109771fcd
3c7c29e5fc1193ff7ce24f72f77b2dc129e1a9434a97ef7b625f6f715531803c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 308
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

192.185.198.152

200 OK

4.6 kB

URL HTTP/2
polarbearsac.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (11126)
Size
4.6 kB (4618 bytes)
Hash
acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 18 Nov 2020 20:36:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4618
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1

192.185.198.152

200 OK

5.3 kB

URL HTTP/2
polarbearsac.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (15660)
Size
5.3 kB (5321 bytes)
Hash
710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 25 May 2022 05:01:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5321
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Lora%3A400%2C400i%7CRaleway%3A300%2C400%2C400i%2C600%2C600i%2C700%7CPlayfair+Display%3A400%2C400i%2C700%7CPoppins%3A400%2C400i%2C500%2C500i%2C600%2C600i%2C700&subset=latin%2Clatin-ext

142.250.74.10

200 OK

6.4 kB

URL HTTP/2
fonts.googleapis.com/css?family=Lora%3A400%2C400i%7CRaleway%3A300%2C400%2C400i%2C600%2C600i%2C700%7CPlayfair+Display%3A400%2C400i%2C700%7CPoppins%3A400%2C400i%2C500%2C500i%2C600%2C600i%2C700&subset=latin%2Clatin-ext
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (12534)
Size
6.4 kB (6441 bytes)
Hash
7a3b90cb4029a4f542d3b0f0924e6c96
1a06884a31c84c52dfd2f3288dcb6d9b57e0b631
b0b84de7b6b35c46d8a005fdf2f7c0ee5732bedb82aec891005432531c605c6a

HTTP Headers

GET /css?family=Lora%3A400%2C400i%7CRaleway%3A300%2C400%2C400i%2C600%2C600i%2C700%7CPlayfair+Display%3A400%2C400i%2C700%7CPoppins%3A400%2C400i%2C500%2C500i%2C600%2C600i%2C700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 15 Nov 2022 04:40:52 GMT
date: Tue, 15 Nov 2022 04:40:52 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4

192.185.198.152

409 Conflict

83 B

URL HTTP/2
polarbearsac.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css

192.185.198.152

200 OK

1.7 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (11736)
Size
1.7 kB (1652 bytes)
Hash
0c23e3daeced16658c7a35cf02adbdbb
49cb5407d71e1951893556e7db9cb1dcbc0ca50c
ef2f88a60b4e387b7c977bd1f61a6efda4376539b2eb786537115ec462e8761c

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1652
content-type: text/css
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4

192.185.198.152

409 Conflict

83 B

URL HTTP/2
polarbearsac.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4

192.185.198.152

409 Conflict

83 B

URL HTTP/2
polarbearsac.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/uploads/elementor/css/post-504.css?ver=1668359102

192.185.198.152

200 OK

269 B

URL HTTP/2
polarbearsac.com/wp-content/uploads/elementor/css/post-504.css?ver=1668359102
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (887), with no line terminators
Size
269 B (269 bytes)
Hash
64fcc7697d87fc5c364f575a7193f654
82b6eeed0d2d4ed4e7aa43fb3df2c5e1386822b1
991ca27516ec0e52be8a8a6b18a79742d36b9e11ecc0122d47724ee2382969bd

HTTP Headers

GET /wp-content/uploads/elementor/css/post-504.css?ver=1668359102 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 17:05:02 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 269
content-type: text/css
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1

192.185.198.152

200 OK

21 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65497)
Size
21 kB (21133 bytes)
Hash
4d700275c476e1eaddc8adfcf1dbb285
4944a662c079cb6ae3f473a213fc9b034d8c4cd0
0b2c26f4e33bd4b2a04c7c2d5f0b0a9861b99a09d3cfffac5285cdb7eaa68bc4

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/uploads/elementor/css/post-2898.css?ver=1668359102

192.185.198.152

200 OK

270 B

URL HTTP/2
polarbearsac.com/wp-content/uploads/elementor/css/post-2898.css?ver=1668359102
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (894), with no line terminators
Size
270 B (270 bytes)
Hash
0d4b4fc7ab23ca7eb6bb1feb258728fe
984ba18fd799c60c8d932bb20150f2088c96904e
d98b95e4e6e2d1b30a1cbd3c3fff8e7730d562d325424dd5947ac4df16064dc4

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/elementor/css/post-2898.css?ver=1668359102 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 17:05:02 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 270
content-type: text/css
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=5.4.2

192.185.198.152

200 OK

4.4 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=5.4.2
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (26516)
Size
4.4 kB (4436 bytes)
Hash
fdd462f58aee3f9349eabdefb5ca0b57
bb6e017d5537630516ccb98952593690a8c69864
ca51806fcedbe90dd613c4c28673af8693381806a5cb3b43dce2ea4f43e8b314

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=5.4.2 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4436
content-type: text/css
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/uploads/elementor/css/post-2894.css?ver=1668359102

192.185.198.152

200 OK

270 B

URL HTTP/2
polarbearsac.com/wp-content/uploads/elementor/css/post-2894.css?ver=1668359102
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (894), with no line terminators
Size
270 B (270 bytes)
Hash
15c7863ba03afae0085b17a39b08518e
518497465d857df9f94a85200491c95648a0a85a
9cd56667cdc9bb3f680d06430ef11d48cb1f93c43a1571c81bdce7f08a7abba4

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/elementor/css/post-2894.css?ver=1668359102 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 17:05:02 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 270
content-type: text/css
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/uploads/2021/08/testi-1.png

192.185.198.152

200 OK

11 kB

URL HTTP/2
polarbearsac.com/wp-content/uploads/2021/08/testi-1.png
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 65 x 65, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (10924 bytes)
Hash
af8c80d3763ee7912f884fd539c6ff72
6edcb1dcf0c211b0d51426679e2b6b45ab4a87dd
757abd516cb6fcadbb76ee7eced806783d313ca1d6472dcffc887201d0d46c23

HTTP Headers

GET /wp-content/uploads/2021/08/testi-1.png HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 12 May 2022 22:22:13 GMT
accept-ranges: bytes
content-length: 10924
content-type: image/png
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/uploads/2021/08/testi-2.png

192.185.198.152

200 OK

12 kB

URL HTTP/2
polarbearsac.com/wp-content/uploads/2021/08/testi-2.png
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 65 x 65, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (11891 bytes)
Hash
90ef3122ebab38ccb65cd5e1c7ba3eee
5781f41812c651de29b1d36d77675e7510bd53bb
c68447b483fb7884f9d61b4443824949c12239135413d11dcd2edcd46576a798

HTTP Headers

GET /wp-content/uploads/2021/08/testi-2.png HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 12 May 2022 22:22:13 GMT
accept-ranges: bytes
content-length: 11891
content-type: image/png
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/uploads/essential-addons-elementor/eael-314.js?ver=1664048591

192.185.198.152

200 OK

1.3 kB

URL HTTP/2
polarbearsac.com/wp-content/uploads/essential-addons-elementor/eael-314.js?ver=1664048591
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (3784), with no line terminators
Size
1.3 kB (1276 bytes)
Hash
3aad3c90b160612bf43b47bf18233ccc
0aebd65c65837d3fbda761fc3c0ba334e67e6864
273053b59299967807ff16a1dbeac12c534df326379d478e7c0083982b511c82

HTTP Headers

GET /wp-content/uploads/essential-addons-elementor/eael-314.js?ver=1664048591 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 11 Aug 2022 06:22:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1276
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.2

192.185.198.152

200 OK

2.9 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.2
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (8014), with no line terminators
Size
2.9 kB (2937 bytes)
Hash
1c44ef5e10d4a8e0d89d78ad512e2cbc
6b5a049fefb1c791a9f84e9a97c9256ad0fae8ac
7f3df0933239d81fd6c58b50ea4b943db51c48aecd636b249514937c91c03d62

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.2 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 16:50:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2937
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=5.4.2

192.185.198.152

200 OK

13 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=5.4.2
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (59158)
Size
13 kB (12862 bytes)
Hash
e6b67e11736ae36a062b381717f2ea9f
a663a79bc8d42aa58bfea1351cc27e0d0b09c9b2
a07a94d36246d0b3e5b9b18e274e31995d0e23cda955babf5e350e91a879523d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=5.4.2 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12862
content-type: text/css
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.11

192.185.198.152

200 OK

3.2 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.11
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (8082), with no line terminators
Size
3.2 kB (3170 bytes)
Hash
4454f3d1d2c990f95a5b434529bdf8a6
ed4a23d5a3dad2d37cdd8b4e293c39a8d73ae740
c2dc85bf51a76388a7ccb3b2accf086465063751c426c04ed4f1ff149818147a

HTTP Headers

GET /wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.11 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Oct 2022 17:16:55 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3170
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/themes/plumbersx/assets/js/main.min.js?ver=10.1

192.185.198.152

200 OK

3.5 kB

URL HTTP/2
polarbearsac.com/wp-content/themes/plumbersx/assets/js/main.min.js?ver=10.1
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (11505), with no line terminators
Size
3.5 kB (3474 bytes)
Hash
be13daf3de9cff7297ab4adbd8e30e6d
1e5c44ec2e3bac780eed6a6e8745a4e61c491c8a
b7167c6af9dc2e2b87f250e293e621f80cb3a52abb2ae86bff3520b7401059d6

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/plumbersx/assets/js/main.min.js?ver=10.1 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 12 May 2022 22:20:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3474
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

192.185.198.152

200 OK

43 kB

URL HTTP/2
polarbearsac.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65447)
Size
43 kB (42661 bytes)
Hash
e57309fda30c6c1f9758f4ce3ec8c7a0
5d6017abcde132b3af32d4791a16408a9f607cea
2c285e3c8df0c998ba39a468ffa443cd4153d014053ff167a7a9f6155eef3186

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 04:43:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=5.4.2

192.185.198.152

200 OK

4.4 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=5.4.2
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (14869)
Size
4.4 kB (4359 bytes)
Hash
7bab7ad64ffbd7846dd6819250b93e2e
c924918d540389aff62220088b6761f38a5da272
045250efe67364c953a91f6a60cf407ebb5cfdb2da04e84c3d98e5bab5eca9ba

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=5.4.2 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4359
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1

192.185.198.152

200 OK

2.3 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (4918)
Size
2.3 kB (2312 bytes)
Hash
afe0ea20b00c3b25a89a6b2d6a98c6ac
53c0425fb9abdc217a90ec20509996cd2a5f9e1d
f70c2aa0ee7d185b9ded30b1f2037e4fbd828583d61f68eab99fd2f37b36b2a3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2312
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/plumbersx-features/inc/advanced/assets/js/pro.min.js?ver=1.2.0

192.185.198.152

200 OK

1.8 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/plumbersx-features/inc/advanced/assets/js/pro.min.js?ver=1.2.0
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (5791), with no line terminators
Size
1.8 kB (1809 bytes)
Hash
12f5963b000ed74c651415473ad08d70
27a99cd0e43df391ddafb56af02e33dfed9f23f2
3b99f5f88146b03d23c62fad5446270553f4f0a29f60da1c48118476c0db0546

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/plumbersx-features/inc/advanced/assets/js/pro.min.js?ver=1.2.0 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 12 May 2022 22:21:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1809
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
6ef0902b533f55dfd04c6500c6ebcaf3
e708b4b070993aabf1ea8344353af2bee22b8c0f
3ce865c607405decdf25774074b044ee772dd46576dcc9e26b394b9e2a96210f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=104527
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 04:40:53 GMT
Etag: "63720da4-117"
Expires: Wed, 16 Nov 2022 09:43:00 GMT
Last-Modified: Mon, 14 Nov 2022 09:43:00 GMT
Server: nginx
Content-Length: 279

polarbearsac.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1

192.185.198.152

200 OK

13 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (32907)
Size
13 kB (13291 bytes)
Hash
ec532bc72e833d74239248a507033f2d
e682bb6b3a3d8dce061c9974064efa177b286cbc
5225c44ca2b4081202505c1b0a9c16446eda2d51038ac8ed1a5eea1630b0541b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 13291
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
6ef0902b533f55dfd04c6500c6ebcaf3
e708b4b070993aabf1ea8344353af2bee22b8c0f
3ce865c607405decdf25774074b044ee772dd46576dcc9e26b394b9e2a96210f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=104527
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 04:40:53 GMT
Etag: "63720da4-117"
Expires: Wed, 16 Nov 2022 09:43:00 GMT
Last-Modified: Mon, 14 Nov 2022 09:43:00 GMT
Server: nginx
Content-Length: 279

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1

142.250.74.10

200 OK

10 kB

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (3922)
Size
10 kB (10400 bytes)
Hash
a49b833b960bba1d56083ac4d90395c8
3a3b3df57e76fefef8fd2a0632a19db57c8ae8bf
8c1952bed6f6b2820cc0dec3052f435d56a17c5bfff21c65ab63f212f97c873f

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 15 Nov 2022 04:40:52 GMT
date: Tue, 15 Nov 2022 04:40:52 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

polarbearsac.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2

192.185.198.152

200 OK

8.3 kB

URL HTTP/2
polarbearsac.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (8189)
Size
8.3 kB (8344 bytes)
Hash
838560e989767f2ef5951b9eeee20352
6bf8419cb4d68d9beced9e4b79b22b347ae16a46
72e6d275c5229613a59aef94523fc6a96330553976aee003d8544d5806fa0c3d

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 04:43:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8344
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1

192.185.198.152

200 OK

16 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (40474)
Size
16 kB (16151 bytes)
Hash
6aeb2153cae643eef82bc2bfd981284f
72ded3873d2eca2490b951a270c2ad90d2be820f
e1f85226ca5e06d9aa02a495ab567529e78f5aeae6924566e58e18debe6f38bb

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16151
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-includes/js/wp-util.min.js?ver=6.1

192.185.198.152

200 OK

758 B

URL HTTP/2
polarbearsac.com/wp-includes/js/wp-util.min.js?ver=6.1
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1391)
Size
758 B (758 bytes)
Hash
60bc75e3b14030c62d9fd3a3d317d8a8
6d919bbd05a3984a8e5e67b693e6d5d41cc885f9
e22df84be1a3ffe3b54352a4a39e14adb3fac69f2ce755e4c7babbc243c5bb4b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/wp-util.min.js?ver=6.1 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 04:43:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 758
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8

192.185.198.152

200 OK

374 B

URL HTTP/2
polarbearsac.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (754), with no line terminators
Size
374 B (374 bytes)
Hash
ef785f463505633971eae5c08ad626d4
624e22257f386801822229db3a4bbd2e24b25e2f
b2a0dc77f0f79d81698a7e3893e16ecba7b0d980b80a5233656d9b11f1d8160d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 18:02:59 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 374
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4

192.185.198.152

200 OK

2.1 kB

URL HTTP/2
polarbearsac.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (5477)
Size
2.1 kB (2103 bytes)
Hash
f0bd7ad12acdee26cbb2701c1ba3610b
53c5d15129860868b60b74cb010b2c6050a64f69
e6d0cb19e56d22e8e511c23ca2bd233bedb40e3c7cf4ff38fe6f059bc7e0c64f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 14 Jun 2020 05:23:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2103
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/plumbersx-features/inc/plugins/bolvo-builder/pro-features/assets/js/frontend.js?ver=1.2.83

192.185.198.152

200 OK

12 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/plumbersx-features/inc/plugins/bolvo-builder/pro-features/assets/js/frontend.js?ver=1.2.83
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
12 kB (11880 bytes)
Hash
eacd9eb8c5f9aa02c8ef82eb2fee3daf
eb8797cee220ae2029e74153cb04447891fe47eb
6e9b5717863813327233c4b04542dd8eca0ca305836bd5175a733a30c4f3d122

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/plumbersx-features/inc/plugins/bolvo-builder/pro-features/assets/js/frontend.js?ver=1.2.83 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 12 May 2022 22:21:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 11880
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/foogallery/extensions/default-templates/shared/img/icons.svg

192.185.198.152

200 OK

9.0 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/foogallery/extensions/default-templates/shared/img/icons.svg
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (636), with CRLF line terminators
Size
9.0 kB (9005 bytes)
Hash
e2bcc8536d946b613867b8e9565a1558
ef0c75b3e003afc55cecf6c9f1253c1cbcbb99b2
c8f7c1bf37afd5f5b582acdfe460876a60324c65f6fa1fe74f711ec5b9666ff8

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/foogallery/extensions/default-templates/shared/img/icons.svg HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/wp-content/plugins/foogallery/extensions/default-templates/shared/css/foogallery.min.css?ver=2.2.26
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:44 GMT
accept-ranges: bytes
content-length: 9005
content-type: image/svg+xml
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-includes/js/masonry.min.js?ver=4.2.2

192.185.198.152

200 OK

9.2 kB

URL HTTP/2
polarbearsac.com/wp-includes/js/masonry.min.js?ver=4.2.2
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (23966)
Size
9.2 kB (9216 bytes)
Hash
2a730dafa34e6ff81513d31e486cdbdb
1fce17d256f67ae086d74092a03006997d9b0add
7a5fd36a453a3a7471fa93b8169579f9a98e2df7a262c44d28d3de41a0f7ae1c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 14 Jun 2020 05:23:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9216
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6ea606a3c83b6b14b9375c84e37870d8
d73a898c2f3eba8e71d6d4f675c47107df0a5795
0dc0268899f946356be887d4ee84b411136f373200ce90464b331697b6cd9487

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 04:40:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

polarbearsac.com/wp-content/uploads/2022/05/aircond.png

192.185.198.152

200 OK

95 kB

URL HTTP/2
polarbearsac.com/wp-content/uploads/2022/05/aircond.png
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 336 x 272, 8-bit/color RGBA, non-interlaced\012- data
Size
95 kB (95289 bytes)
Hash
4828dc5c73a3e960ed5b3ec0494e5d6c
c172254fbabbefc601d9727e01c1fc41e7e86e02
6822e555fdfa9050da660f48f7f3f9f13bed5021afbb56584c8e367fb014c30b

HTTP Headers

GET /wp-content/uploads/2022/05/aircond.png HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/wp-content/uploads/elementor/css/post-314.css?ver=1668359101
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 17 May 2022 00:47:11 GMT
accept-ranges: bytes
content-length: 95289
content-type: image/png
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/themes/plumbersx/assets/css/main.min.css?ver=10.1

192.185.198.152

200 OK

300 kB

URL HTTP/2
polarbearsac.com/wp-content/themes/plumbersx/assets/css/main.min.css?ver=10.1
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
data
Size
300 kB (300453 bytes)
Hash
81c35a5096ee3e6856c80f222929c8bd
62eba57c67bd14bc9efa283ea68a6e786140b60d
6cb8ebe5ce9f88e5fe23b637a4a6d1c95d781b9f79505e44b46104d51957c197

HTTP Headers

GET /wp-content/themes/plumbersx/assets/css/main.min.css?ver=10.1 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 12 May 2022 22:20:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2

192.185.198.152

200 OK

77 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Size
77 kB (76764 bytes)
Hash
f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:43 GMT
accept-ranges: bytes
content-length: 76764
content-type: font/woff2
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2

192.185.198.152

200 OK

13 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Size
13 kB (13276 bytes)
Hash
f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://polarbearsac.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:43 GMT
accept-ranges: bytes
content-length: 13276
content-type: font/woff2
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0

192.185.198.152

200 OK

93 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 93372, version 1.0\012- data
Size
93 kB (93372 bytes)
Hash
aab0bb3379e0eb7ebc26071db61fbd57
711c8d350c4192c2f1aa7f73551445b89fb4b161
691fa7d17effc7d303eda0ad7e4a1d91b2f375506cfc8a774480cc2b55f156ea

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://polarbearsac.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:43 GMT
accept-ranges: bytes
content-length: 93372
content-type: font/woff2
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/plumbersx-features/inc/plugins/bolvo-builder/pro-features/assets/css/frontend.css?ver=1.2.83

192.185.198.152

200 OK

106 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/plumbersx-features/inc/plugins/bolvo-builder/pro-features/assets/css/frontend.css?ver=1.2.83
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
data
Size
106 kB (106404 bytes)
Hash
c00cc1eb102d143e10c81a26da80bcc6
313787f7d2470297769ecf9e0c40b2599f166560
6286ea6e463c0b1a34d53626cabf6bd51d3cfed3390d39171d9905a36d4f9b69

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/plumbersx-features/inc/plugins/bolvo-builder/pro-features/assets/css/frontend.css?ver=1.2.83 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 12 May 2022 22:21:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2

216.58.207.195

200 OK

7.7 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Size
7.7 kB (7748 bytes)
Hash
a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://polarbearsac.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 08:32:10 GMT
expires: Thu, 09 Nov 2023 08:32:10 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
age: 504523
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2

216.58.207.195

200 OK

7.9 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://polarbearsac.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 21:48:50 GMT
expires: Thu, 09 Nov 2023 21:48:50 GMT
cache-control: public, max-age=31536000
age: 456723
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2

216.58.207.195

200 OK

46 kB

URL HTTP/2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Size
46 kB (46524 bytes)
Hash
c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826

HTTP Headers

GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://polarbearsac.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 14 Nov 2022 21:13:13 GMT
expires: Tue, 14 Nov 2023 21:13:13 GMT
cache-control: public, max-age=31536000
age: 26860
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/raleway/v28/1Ptsg8zYS_SKggPNyCg4TYFq.woff2

216.58.207.195

200 OK

49 kB

URL HTTP/2
fonts.gstatic.com/s/raleway/v28/1Ptsg8zYS_SKggPNyCg4TYFq.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 48620, version 1.0\012- data
Size
49 kB (48620 bytes)
Hash
8b3f45fbebe40f151e3bdadf9062f2c6
d4b9145fb8346c6442cc946bc25da699dd035e0e
4defd36147167542db6c6ac44452d3784f51bf7f124128fe5f4581bbdb8d2ccc

HTTP Headers

GET /s/raleway/v28/1Ptsg8zYS_SKggPNyCg4TYFq.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://polarbearsac.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 00:39:04 GMT
expires: Wed, 15 Nov 2023 00:39:04 GMT
cache-control: public, max-age=31536000
age: 14509
last-modified: Mon, 18 Jul 2022 19:45:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5922
Expires: Tue, 15 Nov 2022 06:19:35 GMT
Date: Tue, 15 Nov 2022 04:40:53 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5922
Expires: Tue, 15 Nov 2022 06:19:35 GMT
Date: Tue, 15 Nov 2022 04:40:53 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5922
Expires: Tue, 15 Nov 2022 06:19:35 GMT
Date: Tue, 15 Nov 2022 04:40:53 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6ea606a3c83b6b14b9375c84e37870d8
d73a898c2f3eba8e71d6d4f675c47107df0a5795
0dc0268899f946356be887d4ee84b411136f373200ce90464b331697b6cd9487

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 04:40:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5922
Expires: Tue, 15 Nov 2022 06:19:35 GMT
Date: Tue, 15 Nov 2022 04:40:53 GMT
Connection: keep-alive

polarbearsac.com/wp-content/uploads/2022/09/installation.jpg

192.185.198.152

200 OK

40 kB

URL HTTP/2
polarbearsac.com/wp-content/uploads/2022/09/installation.jpg
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, progressive, precision 8, 554x394, components 3\012- data
Size
40 kB (40386 bytes)
Hash
dd94ed2ab351c537001f23dd46012705
6203c059071eff283d32f8eefa21ff715c2e8a30
7a4197fafc7028acd379eb6be1b202d581906bc9d318af794b158bf136267420

HTTP Headers

GET /wp-content/uploads/2022/09/installation.jpg HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 24 Sep 2022 19:40:50 GMT
accept-ranges: bytes
content-length: 40386
content-type: image/jpeg
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/uploads/2022/09/reparacion.jpg

192.185.198.152

200 OK

39 kB

URL HTTP/2
polarbearsac.com/wp-content/uploads/2022/09/reparacion.jpg
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, progressive, precision 8, 554x394, components 3\012- data
Size
39 kB (39149 bytes)
Hash
d64c2d8f01a9a04ff06a04f499aa1091
5e45797c4a40305ac9ed52b3968639f97ce16b16
2709bab12767fe41823754c21a70f754b2fb2bdbb4f13dc7ca8550f253b743ab

HTTP Headers

GET /wp-content/uploads/2022/09/reparacion.jpg HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 24 Sep 2022 19:40:39 GMT
accept-ranges: bytes
content-length: 39149
content-type: image/jpeg
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/uploads/2022/05/pblg.png

192.185.198.152

200 OK

63 kB

URL HTTP/2
polarbearsac.com/wp-content/uploads/2022/05/pblg.png
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 1141 x 1499, 8-bit/color RGBA, non-interlaced\012- data
Size
63 kB (62930 bytes)
Hash
927f8a7d20cf1e5a3a29d9d7f80f5c64
55266f850c120d64d88675abdf15a27dc3b33990
fd0eb4a6fd244316654b0d8c1017c00c9579a63d04230b920bb817aac9a4f641

HTTP Headers

GET /wp-content/uploads/2022/05/pblg.png HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 13 May 2022 00:16:32 GMT
accept-ranges: bytes
content-length: 62930
content-type: image/png
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c0c0f21-d8ce-4a68-96de-3d9fe7f62af1.jpeg

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c0c0f21-d8ce-4a68-96de-3d9fe7f62af1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12049 bytes)
Hash
d8a88adfc74554dbc851f24a004ec884
e4e4d9c1fd4c32b7ce7a9b14fbe132ef91214c46
99bfddf63d54da3cb418fb5bfe97f20b18ac62c49eb26fa9b1f67e122b5abc13

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c0c0f21-d8ce-4a68-96de-3d9fe7f62af1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12049
x-amzn-requestid: f62fd1a1-7dea-48ca-b174-c0f56a33b400
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bOAeRGLAoAMFW4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6368adf4-62d5d59331ce02cf7376c3d3;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 07:04:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 2xZgikE54j2V5eCSmx7WBtR3w1SCOKZgkUMQAn58UvWZaoofg6YZug==
via: 1.1 599f04a365a179d553682d476509c388.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 03:38:20 GMT
age: 3753
etag: "e4e4d9c1fd4c32b7ce7a9b14fbe132ef91214c46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd11e6547-de5b-41d6-a923-9194b88afaba.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.9 kB (5856 bytes)
Hash
b891dd714ee24b92f59f0697dd45c2b4
8b54f502df3eb318b87ff8a3313007876752e181
d50396bc97a46452ed3af30dbfffc9fe75cf7d4ec347c0a8460d99a6affd1fb2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd11e6547-de5b-41d6-a923-9194b88afaba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5856
x-amzn-requestid: b6972c46-67c1-4928-85d3-f8fe5f086449
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bhQaYHsHoAMF30A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6370610f-4ad4de3440d05bce46b54ebd;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 03:14:23 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Rd662WbccpmBSTlfWbSNYkXLKRCTr3-HGg9m4S_CNQ5kqcnPalr41w==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 03:23:46 GMT
age: 4627
etag: "8b54f502df3eb318b87ff8a3313007876752e181"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11715 bytes)
Hash
cd5bdc050716bb76afe8090fc81617e7
5109c156b180727767fc03c411190ccc0d3fb5fc
9b13e7838946c6654dda17886c2ca8d42de934acb93f4bddb1008dfa1bd1ea99

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11715
x-amzn-requestid: 20e508bd-6568-4225-9bee-c683a49d44f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUHkpIAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-7dc726b94a37fc667e2e6646;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: X3SUo1LP97TxraRav0ftskBhzWkTJInHaS44PW26yloF-dgD-bHBuA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 21:45:57 GMT
age: 24896
etag: "5109c156b180727767fc03c411190ccc0d3fb5fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9b23464-6c45-4e45-acd1-ac75bde164c7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (7982 bytes)
Hash
508368e91f7702272c5610f905e4204b
0d61ccdb959e45368a9f6ada26679974374d81a2
bd3b3d55264bccbbf647577e3f93c35dd56840967713fcb948e67426c8a71b38

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9b23464-6c45-4e45-acd1-ac75bde164c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7982
x-amzn-requestid: 35753773-2e2d-4def-a9ef-6224343d62e0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bklm8E9qoAMFQgQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371b62c-46372f151eb5ba9f0f5ec3a0;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 03:29:48 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T8ocx27r2N_V74-jyk23ATbGtw9TJBqSRB0MK0Kahre8ESS5kM_9lQ==
via: 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 21:47:22 GMT
age: 24811
etag: "0d61ccdb959e45368a9f6ada26679974374d81a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F594089c3-0cc3-4e41-b8df-290b4d9aa986.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.3 kB (9311 bytes)
Hash
c5f45accbd2d3551103631fa77deee8f
7295ef4c52bcea1be24b963d7ff170ef5bacf713
495e2cef9d9ebec66f1ddcf478512af7e37a301b562d7b75e5d28bb7753d2290

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F594089c3-0cc3-4e41-b8df-290b4d9aa986.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9311
x-amzn-requestid: ccbd88f7-a72f-4f7c-868d-907b2dbea1ad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bZ9_UEQ4IAMFmzQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636d76c8-4c0b800d7bf5064346932e15;Sampled=0
x-amzn-remapped-date: Thu, 10 Nov 2022 22:10:16 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: bJa_vwFYVNizWkPP2aLO8cOJiMqMfZmD34-hAnOlmJ0K2OO3dghWvw==
via: 1.1 0a2ce08fa1ec3c33302a7547d3305978.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 22:09:42 GMT
age: 23471
etag: "7295ef4c52bcea1be24b963d7ff170ef5bacf713"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b1ce583-5604-4223-b88e-880659fdc0e7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (8025 bytes)
Hash
94c82cd0e4204ea23b9bd86a3f576fa8
1651325ad361d1c86a4b81edb6b75af27f490a39
0173a565be87e87b2a8fccb3bfe4f237ddd9fdafa5711e79f0c4381882238886

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b1ce583-5604-4223-b88e-880659fdc0e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8025
x-amzn-requestid: e7f9048b-7b8a-4e69-954f-31a7be2548e7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bRUl5HvRoAMFy0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636a0158-063e221d1d6a4dac5f42ec48;Sampled=0
x-amzn-remapped-date: Tue, 08 Nov 2022 07:12:24 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Fu14fmRDqxHs_RHrfXZRez5LnYW6HNuD-AvFDdzQwsxa1BPBFEqh-A==
via: 1.1 ec2a2c75c16156e4d43504606c118b90.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 03:35:56 GMT
age: 3897
etag: "1651325ad361d1c86a4b81edb6b75af27f490a39"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/uploads/2021/09/POLAR-BEARS-FINAL-05-1536x1536.png

192.185.198.152

200 OK

130 kB

URL HTTP/2
polarbearsac.com/wp-content/uploads/2021/09/POLAR-BEARS-FINAL-05-1536x1536.png
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 1536 x 1536, 8-bit/color RGBA, non-interlaced\012- data
Size
130 kB (129704 bytes)
Hash
7cb2fa9a55a88266d619a34ac3eddf33
83169e95c479d82ea924afb0ff0244c4af70db55
700f89e9f29015825267e511e997ce667fd0639b7c8f4f7fb19a18c4ab2e673e

HTTP Headers

GET /wp-content/uploads/2021/09/POLAR-BEARS-FINAL-05-1536x1536.png HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 12 May 2022 22:27:16 GMT
accept-ranges: bytes
content-length: 129704
content-type: image/png
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4

192.185.198.152

409 Conflict

83 B

URL HTTP/2
polarbearsac.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/uploads/2021/08/service-person-1.png

192.185.198.152

200 OK

276 kB

URL HTTP/2
polarbearsac.com/wp-content/uploads/2021/08/service-person-1.png
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 329 x 510, 8-bit/color RGBA, non-interlaced\012- data
Size
276 kB (275460 bytes)
Hash
a9214f507abe7f62d2a239545b6e39bb
311111c5e38dcb83978e9c981021ad1a4095a8cd
e2a6a0d2cb7be23cf2d3645eb369b2353da73bd1f10e2ba7769e3829db0916a1

HTTP Headers

GET /wp-content/uploads/2021/08/service-person-1.png HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 12 May 2022 22:22:11 GMT
accept-ranges: bytes
content-length: 275460
content-type: image/png
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/uploads/2022/05/peo.png

192.185.198.152

200 OK

318 kB

URL HTTP/2
polarbearsac.com/wp-content/uploads/2022/05/peo.png
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 430 x 576, 8-bit/color RGBA, non-interlaced\012- data
Size
318 kB (318340 bytes)
Hash
e6821abc0ee9679d537630b4020f5112
6046037da5b901a848a4d5dd81f83052a28fc7a0
c19c584b2332dfb8b50bc4dc7e72ee4105328fd97805a80db1db7529be181103

HTTP Headers

GET /wp-content/uploads/2022/05/peo.png HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 12 May 2022 23:23:20 GMT
accept-ranges: bytes
content-length: 318340
content-type: image/png
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4

192.185.198.152

409 Conflict

83 B

URL HTTP/2
polarbearsac.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Tue, 15 Nov 2022 04:40:54 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
6ef0902b533f55dfd04c6500c6ebcaf3
e708b4b070993aabf1ea8344353af2bee22b8c0f
3ce865c607405decdf25774074b044ee772dd46576dcc9e26b394b9e2a96210f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=104527
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 04:40:54 GMT
Etag: "63720da4-117"
Expires: Wed, 16 Nov 2022 09:43:01 GMT
Last-Modified: Mon, 14 Nov 2022 09:43:00 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279

polarbearsac.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1

192.185.198.152

200 OK

1.2 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (2620), with no line terminators
Size
1.2 kB (1187 bytes)
Hash
55936584085d0d310919b755eda1ab3f
be317c3b2ed5143669375295b3107e591bf708da
aad2265c39cafa6e01b791b1ef5025a2d237ee91346ef446beb722fdcd578d58

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1187
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:54 GMT
server: Apache
X-Firefox-Spdy: h2

plumbersx.bolvosites.com/maindemo2/wp-content/uploads/sites/4/2021/08/slider-1.jpg

172.67.168.121

200 OK

104 kB

URL HTTP/2
plumbersx.bolvosites.com/maindemo2/wp-content/uploads/sites/4/2021/08/slider-1.jpg
IP
172.67.168.121:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x595, components 3\012- data
Size
104 kB (104136 bytes)
Hash
bbb5fb12a36e7db8c301f53363d61fb9
13ea02108465ba987bd7d6208552fb6e3afd7606
1392f19d9f5116059654360019b731de58b25fac1ed7ade8856985b18aaea471

HTTP Headers

GET /maindemo2/wp-content/uploads/sites/4/2021/08/slider-1.jpg HTTP/1.1
Host: plumbersx.bolvosites.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 15 Nov 2022 04:40:54 GMT
content-type: image/jpeg
content-length: 104136
last-modified: Wed, 11 Aug 2021 06:19:26 GMT
etag: "61136bee-196c8"
expires: Wed, 15 Nov 2023 04:40:53 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6flVKZ9uKUs7YHItilqvpjzYmFrgy9bEqICKXRVIUIzfMjKuiC59pZl%2FfcmdPArziv%2BueHlO0rzTXBqbkNmTB2S6sZ9uFg6ys%2B77n3H3NXw5tgjGQKRlucHx70NwTooQ5pykXCSu%2B9RqKIA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a54fb67e0ffab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0

192.185.198.152

200 OK

4.2 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (10544)
Size
4.2 kB (4200 bytes)
Hash
552977febe8ef2c71b0806dfaefd2552
01baebfd09383c5d44f066e7b5540fcca6a5eae4
7895907f5a4f54c08c4705b1a194e21c556d68027c5e0a70d4c05b377e712b1d

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4200
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:54 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/elementor/assets/js/lightbox.2d166d71ba2a6a9e66fd.bundle.min.js

192.185.198.152

200 OK

11 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/elementor/assets/js/lightbox.2d166d71ba2a6a9e66fd.bundle.min.js
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (28962)
Size
11 kB (11357 bytes)
Hash
a54ba90ecf64e3c38191e104c4c64086
e6eac405eb96fd797184190102ced8798c5fe9d2
148ba4313e2824c3e952fe6e4de858b44b4714984e6a00daf7ab30e83e899673

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/lightbox.2d166d71ba2a6a9e66fd.bundle.min.js HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 11357
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:54 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js

192.185.198.152

200 OK

671 B

URL HTTP/2
polarbearsac.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1320)
Size
671 B (671 bytes)
Hash
3b0adb15e8343e46117fae1a91c1519f
96c16d5554d161466f482aba020ec272b004c57c
3c227e3607c75db2282b30d2d12ad8a6d8b6e57bee331aa9c58a0f5dd9177955

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 671
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:54 GMT
server: Apache
X-Firefox-Spdy: h2

plumbersx.bolvosites.com/maindemo2/wp-content/uploads/sites/4/2021/08/choos-water.png

172.67.168.121

200 OK

209 kB

URL HTTP/2
plumbersx.bolvosites.com/maindemo2/wp-content/uploads/sites/4/2021/08/choos-water.png
IP
172.67.168.121:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 685 x 366, 8-bit/color RGBA, non-interlaced\012- data
Size
209 kB (208931 bytes)
Hash
195b33c2b0c149bb9b88944d6453db8f
0554aa32a288af91e727960f76788c11f4b08ab2
ea20c32b03227b0b368ce2838bfe3e83a1fa16db2eb3d7bebd46b74720780004

HTTP Headers

GET /maindemo2/wp-content/uploads/sites/4/2021/08/choos-water.png HTTP/1.1
Host: plumbersx.bolvosites.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 15 Nov 2022 04:40:54 GMT
content-type: image/png
content-length: 208931
last-modified: Mon, 16 Aug 2021 07:58:35 GMT
etag: "611a1aab-33023"
expires: Wed, 15 Nov 2023 04:40:54 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sGjv46h5gNJuB6MCHNdDmnrNrjjqHrv%2FrRDXGnL8jQLj0uq943CDbWApT01CwuHKyEIs%2BtIBXbzhAbDaXutvh4o%2BviolWEXPDF4Dt2DzNu9wfitZDSIw4H5oUEGp5MCNMyR5Vcet%2Bcuah8A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a54fb6ce26fab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/elementor/assets/js/tabs.2327c8f9bd0a558456b9.bundle.min.js

192.185.198.152

200 OK

1.6 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/elementor/assets/js/tabs.2327c8f9bd0a558456b9.bundle.min.js
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (3675)
Size
1.6 kB (1584 bytes)
Hash
dd51c95ebd8a43f9725273137eb46944
36dcb321bb8277ce7cf15f5937d5f67fa66fbd80
a38865a14523d5fe81325cb7ddaa710ad453299ca4802f029e1373a3b2e569c6

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/tabs.2327c8f9bd0a558456b9.bundle.min.js HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1584
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:54 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2

216.58.207.195

200 OK

7.8 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Size
7.8 kB (7816 bytes)
Hash
25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://polarbearsac.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 19:30:59 GMT
expires: Thu, 09 Nov 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 464995
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/uploads/2021/08/pba_s3-300x225.jpg

192.185.198.152

200 OK

22 kB

URL HTTP/2
polarbearsac.com/wp-content/uploads/2021/08/pba_s3-300x225.jpg
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x225, components 3\012- data
Size
22 kB (22244 bytes)
Hash
981aef1481e4e4daf3f51f996893ebc9
3e8fcf1845e40c303660deb34aeb5c6f952eda4f
0b84365ef36940fbbad48c2fa6188d870b85b8a9fc06a6e8a554a459ed3d130a

HTTP Headers

GET /wp-content/uploads/2021/08/pba_s3-300x225.jpg HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 12 May 2022 23:53:30 GMT
accept-ranges: bytes
content-length: 22244
content-type: image/jpeg
date: Tue, 15 Nov 2022 04:40:54 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/uploads/2021/09/cropped-POLAR-BEARS-FINAL-05-32x32.png

192.185.198.152

200 OK

1.3 kB

URL HTTP/2
polarbearsac.com/wp-content/uploads/2021/09/cropped-POLAR-BEARS-FINAL-05-32x32.png
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
1.3 kB (1302 bytes)
Hash
fca06cda10b705a27385c6f0ed11024f
7cdc29505e4c6819e2d90ec86b6d666e0d8b7786
9da162b7122b91e357d5ce2e0ac3121f4cd90653c13f7bc276252b0bc637bba1

HTTP Headers

GET /wp-content/uploads/2021/09/cropped-POLAR-BEARS-FINAL-05-32x32.png HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 12 May 2022 23:24:54 GMT
accept-ranges: bytes
content-length: 1302
content-type: image/png
date: Tue, 15 Nov 2022 04:40:55 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6

192.185.198.152

200 OK

60 kB

URL HTTP/2
polarbearsac.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
data
Size
60 kB (59464 bytes)
Hash
d5a136ee98c6a2b919f1f82f5a2c41d9
f8cae394df489985b5a1a23338b153e51df4e120
e0ca9541f1651eb2fed913ef3c6838207f176f0bd69897a0a78b3be019b7ee47

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 16:48:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:54 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1p5/EWg-zhOv62k

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/EWg-zhOv62k
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
511602eed23238cad755a26e5074702b
1754bea65431cec749b90f6babdedd97df92af89
190424653aeec3fbb2893535f8760110ec091befb90633fd2d50b67ecdcdc648

HTTP Headers

POST /s/gts1p5/EWg-zhOv62k HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 04:40:55 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn.plyr.io/3.6.1/plyr.svg

104.27.195.88

200 OK

2.4 kB

URL HTTP/2
cdn.plyr.io/3.6.1/plyr.svg
IP
104.27.195.88:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (5785), with no line terminators
Size
2.4 kB (2400 bytes)
Hash
6dcd578367004740c8ad132c14a3d079
c3078a0d8dabacb419fb0006ce9b1f7c20bb6249
c3ed5ab1874652fa65c167ceb4b476136f45346af73b8c1d40bf79b42c606208

HTTP Headers

GET /3.6.1/plyr.svg HTTP/1.1
Host: cdn.plyr.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://polarbearsac.com
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 15 Nov 2022 04:40:55 GMT
content-type: image/svg+xml
x-amz-id-2: AqSzQ7xwhN/at9p4Fu/gZru7JHsdx8ra/iYVFPqj1dhQmLcOa4kIJtxcYfJ6paYKloCVZgfx0m4=
x-amz-request-id: X4MAMQHGGN7J6CGE
last-modified: Tue, 28 Apr 2020 13:16:43 GMT
etag: W/"3a727a9b7eef825081d78cc6e48aaadf"
cache-control: max-age=31536000, immutable
via: 1.1 varnish, 1.1 varnish
x-served-by: cache-iad-kiad7000121-IAD, cache-mia11377-MIA
x-cache: MISS, HIT
x-cache-hits: 0, 347
x-timer: S1668452845.143461,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Range, Date, Cache-Control, Content-Type, Accept, Origin, Accept
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0Orfr%2B9btMN1KmGzIG%2FBTzVoJZLYgoUDxvualiNxB%2B%2BVgTBun5D0eNvOFoWnWCFMjpCc1X9oC2zmP3I5PuRIKMtdL1IgbzP444gTgH%2Ft7hUlfCTyrwiwspd2tE1r"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a54fc1685a1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4cc31a8-ba2e-4cc0-bf6e-0daaf01962d2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7504 bytes)
Hash
9459d8c5ec4b22476e1470e5476f70f7
78118517bfffe997c85f08bd9b7b7ac9270d9b02
647d0898ed6a38191ff91ca316e90a72d9a5ce563c3602a8d4c477c64f096be4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4cc31a8-ba2e-4cc0-bf6e-0daaf01962d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 7504
x-amzn-requestid: 553a2ee3-9dcb-44ac-b0e1-e8ea660eedcc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bOAmqGAyoAMFv5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6368ae2a-7af9fba56c5ae9ca5f513668;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 07:05:14 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rRrM6hW5gFH8bLxrzQv5emBacEQrqldwEfD1M0YycB4XphG-XXwRuA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 05:03:47 GMT
age: 85033
etag: "78118517bfffe997c85f08bd9b7b7ac9270d9b02"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=ABeeZee%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&subset=latin&ver=10.1

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=ABeeZee%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&subset=latin&ver=10.1
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=ABeeZee%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&subset=latin&ver=10.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 15 Nov 2022 04:40:52 GMT
date: Tue, 15 Nov 2022 04:40:52 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/plumbersx-features/inc/plugins/bolvo-builder/assets/frontend/js/frontend.min.js?ver=1.2.83

192.185.198.152

200 OK

0 B

URL HTTP/2
polarbearsac.com/wp-content/plugins/plumbersx-features/inc/plugins/bolvo-builder/assets/frontend/js/frontend.min.js?ver=1.2.83
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/plumbersx-features/inc/plugins/bolvo-builder/assets/frontend/js/frontend.min.js?ver=1.2.83 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 12 May 2022 22:21:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/plumbersx-features/inc/plugins/bolvo-builder/assets/frontend/css/frontend.css?ver=1.2.83

192.185.198.152

200 OK

0 B

URL HTTP/2
polarbearsac.com/wp-content/plugins/plumbersx-features/inc/plugins/bolvo-builder/assets/frontend/css/frontend.css?ver=1.2.83
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/plumbersx-features/inc/plugins/bolvo-builder/assets/frontend/css/frontend.css?ver=1.2.83 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 12 May 2022 22:21:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/

192.185.198.152

200 OK

0 B

URL HTTP/2
polarbearsac.com/
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
link: <https://polarbearsac.com/wp-json/>; rel="https://api.w.org/", <https://polarbearsac.com/wp-json/wp/v2/pages/314>; rel="alternate"; type="application/json", <https://polarbearsac.com/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/uploads/2021/09/video-polares.mp4

192.185.198.152

206 Partial Content

0 B

URL HTTP/2
polarbearsac.com/wp-content/uploads/2021/09/video-polares.mp4
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/2021/09/video-polares.mp4 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 206 Partial Content
last-modified: Sat, 24 Sep 2022 18:24:30 GMT
accept-ranges: bytes
content-length: 2570844
content-range: bytes 0-2570843/2570844
content-type: video/mp4
date: Tue, 15 Nov 2022 04:40:53 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1

192.185.198.152

200 OK

0 B

URL HTTP/2
polarbearsac.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 04:43:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

polarbearsac.com/wp-content/plugins/foobox-image-lightbox/free/js/foobox.free.min.js?ver=2.7.17

192.185.198.152

200 OK

0 B

URL HTTP/2
polarbearsac.com/wp-content/plugins/foobox-image-lightbox/free/js/foobox.free.min.js?ver=2.7.17
IP
192.185.198.152:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/foobox-image-lightbox/free/js/foobox.free.min.js?ver=2.7.17 HTTP/1.1
Host: polarbearsac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://polarbearsac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 24 Sep 2022 18:16:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 15 Nov 2022 04:40:52 GMT
server: Apache
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (44)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations