detectportal.firefox.com/success.txt?ipv4
200 OK 8 B URL HTTP/1.1 detectportal.firefox.com/success.txt?ipv4
IP
Hash ae780585f49b94ce1444eb7d28906123
7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Sat, 07 Jan 2023 05:50:28 GMT
Age: 76250
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b782882bdabaf3b08e64120922b4a4b7
2035ed7fc9fb5b6ee9715601ba43de5f94d0c0e9
3fe7d1a9a55b86ec25d02634749ccfae11f3477033ba8cd7ac4131b7948ba619
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3FE7D1A9A55B86EC25D02634749CCFAE11F3477033BA8CD7AC4131B7948BA619"
Last-Modified: Sat, 07 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6424
Expires: Sun, 08 Jan 2023 04:48:23 GMT
Date: Sun, 08 Jan 2023 03:01:19 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d3405f533ce6be9c97de960ff92370a1
eba9eb556b72da474c6e8c87fd84d4576c3ab179
d80b7abd0584c171a896e3c38060ed2e433c7cc5c0a0e8f96dcabe2534e4fde8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D80B7ABD0584C171A896E3C38060ED2E433C7CC5C0A0E8F96DCABE2534E4FDE8"
Last-Modified: Sat, 07 Jan 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19658
Expires: Sun, 08 Jan 2023 08:28:57 GMT
Date: Sun, 08 Jan 2023 03:01:19 GMT
Connection: keep-alive
getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
200 OK 51 kB URL HTTP/2 getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash bf07dfd1a6732ac9659245a06fd04462
6a2e73b54012afdaf03d8f81b50c421f7ab15f3b
fdbcd4a11ea53a39ab7250717c93e17aa8b8a08adfdb3fed48cb12ad1880127c
GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30 HTTP/1.1
Host: getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
vary: Accept-Encoding
content-location: global-recs.php
tcn: choice
x-frame-options: SAMEORIGIN
status: 200 OK
x-source: Pocket
pragma: cache
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE"
x-cache: Miss from cloudfront
x-amz-cf-pop: SEA73-P2
x-amz-cf-id: f0DFoo98_b4pjy42nWeBZrRwgxZMdN6BbqwXVUdzekq2d8OkGg9ncg==
content-encoding: gzip
via: 1.1 020978022b22df6352245f09cfbc410c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 08 Jan 2023 02:59:30 GMT
content-type: application/json
content-length: 50804
age: 109
cache-control: s-maxage=900,public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 75f0037a1d53a9a5321a796206ec3e24
70d42c9bf1334f20e1cea4ce3c8212e0e780ee77
80ec1e61f9563e799c9f44ea31e616c37daea1b9670091fbbc6efc39ebafe3d3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "80EC1E61F9563E799C9F44EA31E616C37DAEA1B9670091FBBC6EFC39EBAFE3D3"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6113
Expires: Sun, 08 Jan 2023 04:43:12 GMT
Date: Sun, 08 Jan 2023 03:01:19 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: KciODWqCGlISAncKGVDv/vHHN6yLq4TXlh8a9rosJ+kNIF/69m3VtuPb7rvhrn8/APXUNXh35D4Cv+IbmlY/XQ==
x-amz-request-id: Y4R1P5HE39YKNT77
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 08 Jan 2023 02:14:47 GMT
age: 2792
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 516b9d6951b09439a51d5284994ed92f
5c78edb38bae36caa8e2db8ed6635a32e46c91dd
eaaf4ebc59d2a06d02b552154c5adb7c713ffc4a7f5caabcff1c2b4cd6ec5c7b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EAAF4EBC59D2A06D02B552154C5ADB7C713FFC4A7F5CAABCFF1C2B4CD6EC5C7B"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7033
Expires: Sun, 08 Jan 2023 04:58:32 GMT
Date: Sun, 08 Jan 2023 03:01:19 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 08 Jan 2023 02:41:26 GMT
content-type: application/json
age: 1193
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:19 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
elegantluxurylimousine.com/
301 Moved Permanently 0 B URL HTTP/1.1 elegantluxurylimousine.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 08 Jan 2023 03:01:19 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
P3P: CP="NOI"
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=jsaslem5rnnmju4ksmmnvi1dvf; path=/
Location: https://elegantluxurylimousine.com/
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 08 Jan 2023 02:17:21 GMT
age: 2638
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash cfd444f5be228587757ef907c1a0f08c
6e6775913cd118e032c36131f03bbcf48f40fb2b
acdecb94b91a3816502a567112666c4d2626243d1fe27380c5bccafc09070c35
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5293
Cache-Control: max-age=145334
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 03:01:19 GMT
Etag: "63b9b208-1d7"
Expires: Mon, 09 Jan 2023 19:23:33 GMT
Last-Modified: Sat, 07 Jan 2023 17:55:20 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 8589b6a84dd5a09ec546aff38bbd2515
1c3a3d8a69ae7a3ebda64292caf0e0f5968e81f7
f013da155203f0509d56e8174c2ae5ed23aad413b4391f276efd388519743b17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5234
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 03:01:20 GMT
Last-Modified: Sun, 08 Jan 2023 01:34:06 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
shavar.services.mozilla.com/downloads?client=Firefox&appver=96.0a&pver=2.2
200 OK 8 B URL HTTP/1.1 shavar.services.mozilla.com/downloads?client=Firefox&appver=96.0a&pver=2.2
IP
Hash 29fc57841962e407cb50c1be60284bf7
ce968a77e2996da5eee8925182318f171ccdce47
ae7e7075247dcfad763f1e131aeac3d2e756bb03d48b0d315a50c69636e5dc8b
POST /downloads?client=Firefox&appver=96.0a&pver=2.2 HTTP/1.1
Host: shavar.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 773
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Date: Sun, 08 Jan 2023 03:01:20 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 8
Connection: Close
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: EoftlQvYlPsYrNAODW1ivA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: RZea4L34kuNCea3E5nKntG3zpk8=
firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221673136079904%22
200 OK 22 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221673136079904%22
IP
File type JSON data\012- , ASCII text, with very long lines (21675), with no line terminators
Hash 5e6be2c6504ddbd506649d125060ca47
152b11d7d10743fef19765b128d2c1784a38b860
d50ecc7081332896941ad248419d9e4baeade789849897f3227a4f727417d0b6
GET /v1/buckets/monitor/collections/changes/changeset?_expected=%221673136079904%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 21675
via: 1.1 google
date: Sun, 08 Jan 2023 02:02:01 GMT
age: 3559
last-modified: Sun, 08 Jan 2023 00:01:19 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1672274234552&_since=%221666204638208%22
200 OK 10 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1672274234552&_since=%221666204638208%22
IP
File type JSON data\012- , ASCII text, with very long lines (10471), with no line terminators
Hash 787b71f12c7186955694d95ca3b0f421
4dbfebf44a9bce2b04f738b1c46040c3b5f4c200
6b46a99d5d280f23b3042aa4bc65e9f8f1479a4847d8611a751b4c29d940c6b2
GET /v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1672274234552&_since=%221666204638208%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 10471
via: 1.1 google
date: Sun, 08 Jan 2023 02:14:30 GMT
age: 2810
last-modified: Thu, 05 Jan 2023 16:36:43 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
elegantluxurylimousine.com/
200 OK 19 kB URL HTTP/2 elegantluxurylimousine.com/
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (35920), with CRLF, LF line terminators
Hash 0ecd6b046175bb3802bdaddbd02d9b20
35f7e02a59f3b9eb17e423f7b8908a37f20ae3b1
5cf5a21745a5c7ed9796316095e42349cbace05951605f37e4da2a45a3273d30
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:20 GMT
content-type: text/html; charset=UTF-8
content-length: 19446
p3p: CP="NOI"
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
link: <https://elegantluxurylimousine.com/wp-json/>; rel="https://api.w.org/", <https://elegantluxurylimousine.com/>; rel=shortlink
set-cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs; path=/
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: uVOkOie/ybGFD8yGdInVDAh+fgdkNvLWrQwxeuJkfJ6URQKrgBK6C6eM5SmX2oJQ4jBRy8OSejs=
x-amz-request-id: EG7PPHPPZKJQXJS7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 08 Jan 2023 02:15:35 GMT
age: 2745
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 63bccc1f66ce9e92e4b40dfb3d397e96
b256695f795919c1fa3d0de461cf4d44fb7573f3
739ed63c77b8f2f8ae1e929d2e6ce784986ea0d3230d2a65cc9f733837c8a581
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 03:01:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 63bccc1f66ce9e92e4b40dfb3d397e96
b256695f795919c1fa3d0de461cf4d44fb7573f3
739ed63c77b8f2f8ae1e929d2e6ce784986ea0d3230d2a65cc9f733837c8a581
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 03:01:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 63bccc1f66ce9e92e4b40dfb3d397e96
b256695f795919c1fa3d0de461cf4d44fb7573f3
739ed63c77b8f2f8ae1e929d2e6ce784986ea0d3230d2a65cc9f733837c8a581
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 03:01:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 63bccc1f66ce9e92e4b40dfb3d397e96
b256695f795919c1fa3d0de461cf4d44fb7573f3
739ed63c77b8f2f8ae1e929d2e6ce784986ea0d3230d2a65cc9f733837c8a581
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 03:01:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 63bccc1f66ce9e92e4b40dfb3d397e96
b256695f795919c1fa3d0de461cf4d44fb7573f3
739ed63c77b8f2f8ae1e929d2e6ce784986ea0d3230d2a65cc9f733837c8a581
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 03:01:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1673136072480&_since=%221666483264567%22
200 OK 52 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1673136072480&_since=%221666483264567%22
IP
File type JSON data\012- , ASCII text, with very long lines (51861), with no line terminators
Hash 37fb250ed54760111e195dd0dd9488cf
b4205687a3e28fc84c0c328b33e8408b32cc87fe
7e1c0b138e3f1046e65a2313b8b636cd76fa16157f1648ac3c81ece7abc50f61
GET /v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1673136072480&_since=%221666483264567%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 51861
via: 1.1 google
date: Sun, 08 Jan 2023 02:17:01 GMT
last-modified: Sun, 08 Jan 2023 00:01:12 GMT
content-type: application/json
age: 2660
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
detectportal.firefox.com/success.txt?ipv4
200 OK 8 B URL HTTP/1.1 detectportal.firefox.com/success.txt?ipv4
IP
Hash ae780585f49b94ce1444eb7d28906123
7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Sat, 07 Jan 2023 05:50:28 GMT
Age: 76253
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
firefox.settings.services.mozilla.com/v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1672941627252&_since=%221666279968541%22
200 OK 65 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1672941627252&_since=%221666279968541%22
IP
File type ASCII text, with very long lines (64552), with no line terminators
Hash 7456fcb16cfb7f0cfd720287b0b36a79
8d41b6ebea6cb44612615511a192b494d2f2d29d
b91761ba0f6febd6587e6f544080f2d88754817bdf8168f5cc10477c2dd4e2f3
GET /v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1672941627252&_since=%221666279968541%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 64552
via: 1.1 google
date: Sun, 08 Jan 2023 02:17:02 GMT
age: 2659
last-modified: Thu, 05 Jan 2023 18:00:27 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258
200 OK 682 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258
IP
File type JSON data\012- , ASCII text, with very long lines (682), with no line terminators
Hash 27407524bde645d9281e1912e7c028a7
bcff0bb29b60d9ed82e2b31a7c1a1c61718cffa4
c3de92034f19aa14b77ebd3340fd0f19be625cafc9a89b6607f5bd0bcc59c913
GET /v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 682
via: 1.1 google
date: Sun, 08 Jan 2023 02:19:24 GMT
age: 2517
last-modified: Thu, 05 Jan 2023 16:36:54 GMT
etag: "1672936614628"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 294742535da40d02498d9e1c865d4014
99d45ec581ccba41915745f22da696aa9c5758ea
645f09beffda2d924626cedd5aa832a5a0e1b136ddf3fdc0b65fd9526f8b5531
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 03:01:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://elegantluxurylimousine.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 04 Jan 2023 19:33:54 GMT
expires: Thu, 04 Jan 2024 19:33:54 GMT
cache-control: public, max-age=31536000
age: 286047
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/uploads/2016/09/Logo.png
200 OK 39 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/uploads/2016/09/Logo.png
IP
File type PNG image data, 213 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash e38af388213ca0a86e235c454d005327
1e7d01186895541ca3ec8b2f411915a9071266ea
6bf86e3452fef64efebbcd63d70f38a565c4500e6aa733b99b6376cae033d7f0
GET /wp-content/uploads/2016/09/Logo.png HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: image/png
content-length: 39407
last-modified: Fri, 30 Sep 2016 22:22:52 GMT
etag: "57eee5bc-99ef"
cache-control: public, max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/uploads/2016/07/bg.jpg
200 OK 23 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/uploads/2016/07/bg.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x925, components 3\012- data
Hash 45456db7633f5ea07dcb5a978ca8b962
6da06850c94dbb39a7e501b145f6a072874d0263
59fadeab623fce9e460fbadf523362444735c1f761a1d854e91b8da3a83b7911
GET /wp-content/uploads/2016/07/bg.jpg HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: image/jpeg
content-length: 22682
last-modified: Sun, 17 Jul 2016 13:19:29 GMT
etag: "578b85e1-589a"
cache-control: public, max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/cookie/v17/syky-y18lb0tSbf9kgqS.woff2
200 OK 14 kB URL HTTP/2 fonts.gstatic.com/s/cookie/v17/syky-y18lb0tSbf9kgqS.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 14456, version 1.0\012- data
Hash 7a93cfe157bf03fdac08d381c241b458
6c502bd8dd6045e41c80b6de80341760a83130a3
4e8b3c170321fd6a38ad24b7df1aebf59b19d9f07fada7beef10f7e5664b13f9
GET /s/cookie/v17/syky-y18lb0tSbf9kgqS.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://elegantluxurylimousine.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14456
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 13:34:30 GMT
expires: Sat, 06 Jan 2024 13:34:30 GMT
cache-control: public, max-age=31536000
age: 134811
last-modified: Thu, 21 Apr 2022 16:46:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/themes/betheme/js/plugins.js?ver=13.5
200 OK 60 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/themes/betheme/js/plugins.js?ver=13.5
IP
Hash 5f9bd089f08d5365b6529fcc64bfe61c
7c87a05bb8ae471ee4f93cfef27374d0a0e6e92c
69a0e4787bb7a4f25a65bd2dbe07c6d06d7e066902eab440203f8e7ad60f87bd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/betheme/js/plugins.js?ver=13.5 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Sat, 16 Jul 2016 21:25:28 GMT
vary: Accept-Encoding
etag: W/"578aa648-35d87"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22
200 OK 935 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22
IP
File type JSON data\012- , ASCII text, with very long lines (935), with no line terminators
Hash 8dfd6594683a5bf7cd93e01209f50211
19cb02aa7671f24647720f9e68c2cbb54877ecc5
a2d0798015b32a39d99f66bd308c7c5455fce64990124e6c7c9a4c445bc76a48
GET /v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 935
via: 1.1 google
date: Sun, 08 Jan 2023 02:31:47 GMT
age: 1774
last-modified: Thu, 05 Jan 2023 16:36:45 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1670864154336&_since=%221657747510534%22
200 OK 1.9 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1670864154336&_since=%221657747510534%22
IP
File type JSON data\012- , ASCII text, with very long lines (1870), with no line terminators
Hash 2085f39f634d9327eec2eb2dd33f59a7
951c6fe916294358b9cabdfe7646fcb472327672
acd63f269c6fb246d47ce30d5a177fa4ecbe5d5d36206ff58715edf0beef06e1
GET /v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1670864154336&_since=%221657747510534%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1870
via: 1.1 google
date: Sun, 08 Jan 2023 02:17:03 GMT
age: 2658
last-modified: Thu, 05 Jan 2023 16:36:45 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/search-config/changeset?_expected=1672778333687&_since=%221661199949574%22
200 OK 15 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/search-config/changeset?_expected=1672778333687&_since=%221661199949574%22
IP
File type JSON data\012- , ASCII text, with very long lines (15183), with no line terminators
Hash f8b0578cc18a12900766933d967abf9a
a5793c70cf428c08535410b9ec69502601718a06
a80011c51bbe1b7d4102f1e89b4193dc2c8961f43512d3f05290de7a0cf8f87b
GET /v1/buckets/main/collections/search-config/changeset?_expected=1672778333687&_since=%221661199949574%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 15183
via: 1.1 google
date: Sun, 08 Jan 2023 02:48:33 GMT
age: 768
last-modified: Tue, 03 Jan 2023 20:38:53 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/uploads/2016/07/divider.png
200 OK 5.2 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/uploads/2016/07/divider.png
IP
File type PNG image data, 1920 x 130, 8-bit/color RGBA, non-interlaced\012- data
Hash 06d68ae86aedf66d19c0df2823944d09
1081d2cfa416680be6a1cee447742c196e5873e9
d052e1aa9c977b1a00ef87de4aa42d542ca6578beb03043bf3986d5318e1404c
GET /wp-content/uploads/2016/07/divider.png HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: image/png
content-length: 5206
last-modified: Sun, 17 Jul 2016 13:18:49 GMT
etag: "578b85b9-1456"
cache-control: public, max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/uploads/2014/12/car-61.jpg
200 OK 28 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/uploads/2014/12/car-61.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x343, components 3\012- data
Hash 901447d6956702af5a3a0685e577d639
a3b7c837e2ddd0319c87f33f6fa38ce57e8cc8af
0bbf848beba81baea3accb6c7409d33486fa413a087be8dde377f493b120adab
GET /wp-content/uploads/2014/12/car-61.jpg HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: image/jpeg
content-length: 27895
last-modified: Mon, 18 Jul 2016 08:02:43 GMT
etag: "578c8d23-6cf7"
cache-control: public, max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/uploads/2014/12/car-71.jpg
200 OK 36 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/uploads/2014/12/car-71.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x343, components 3\012- data
Hash 8b1a8f1b0cb6b879d488746c98065617
7f5f908c73fcc6fd76d17c9befc943c0e8070553
a754d26a86f15d45dedfcb310fb70aec8bf1d0db53e291701c5d6351fadbdb08
GET /wp-content/uploads/2014/12/car-71.jpg HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: image/jpeg
content-length: 36260
last-modified: Mon, 18 Jul 2016 08:02:45 GMT
etag: "578c8d25-8da4"
cache-control: public, max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/uploads/2014/12/car-41.jpg
200 OK 30 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/uploads/2014/12/car-41.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x343, components 3\012- data
Hash c411a4207494b34f537bfb290f39f5be
211b52b68dadabcb828f7a2cea5457d540b69026
cf18d6d8e505357ece4e1403c2e5a24e23d9fb450188f3a8d1b4abfc6d4af96d
GET /wp-content/uploads/2014/12/car-41.jpg HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: image/jpeg
content-length: 30544
last-modified: Mon, 18 Jul 2016 08:02:46 GMT
etag: "578c8d26-7750"
cache-control: public, max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/uploads/2014/12/car-51.jpg
200 OK 36 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/uploads/2014/12/car-51.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x343, components 3\012- data
Hash de4035d49aeb9c2c02430ac6e51fc30c
cb8330ae1bb119e0d2e99b5b81fd8b1fc0d7625c
ae0b9dd5d8d5ba2ac25ca511923e191214f435c1910fbcd86878a31c7c0ecafc
GET /wp-content/uploads/2014/12/car-51.jpg HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: image/jpeg
content-length: 36526
last-modified: Mon, 18 Jul 2016 08:02:46 GMT
etag: "578c8d26-8eae"
cache-control: public, max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.4.2
200 OK 972 B URL HTTP/2 elegantluxurylimousine.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.4.2
IP
Hash 75a27490f257dc4f1c1e9ab497029f8e
0d73ab07def21fcbaf0ac9d195f38c861b686fe0
260b016ab2fe63e7288842ca8eced74d77fbce9d3981d91d57cf8e45adf83c7a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.4.2 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:20 GMT
content-type: text/css
last-modified: Sat, 16 Jul 2016 21:27:36 GMT
vary: Accept-Encoding
etag: W/"578aa6c8-44b"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-includes/js/jquery/ui/sortable.min.js?ver=1.11.4
200 OK 30 kB URL HTTP/2 elegantluxurylimousine.com/wp-includes/js/jquery/ui/sortable.min.js?ver=1.11.4
IP
Hash 60db624ddf603d7b8dc8655ea0b60125
be1911630e5b2796d9c610274d2a799f3884becc
34626ad909c8714f703ee0eaa84735230e10524e313683559bac4b33c58ae855
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/sortable.min.js?ver=1.11.4 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 08:24:41 GMT
vary: Accept-Encoding
etag: W/"6077f849-60fc"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 457ca75ed75785c514fb36a16792410f
fcc640c00713c93633d0b2887104c8fbc6c754f9
ff6a40bdaa6bc25eefb2d7ed130ea34460494d92c19c07dff4cc371c45d1ac44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF6A40BDAA6BC25EEFB2D7ED130EA34460494D92C19C07DFF4CC371C45D1AC44"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6725
Expires: Sun, 08 Jan 2023 04:53:26 GMT
Date: Sun, 08 Jan 2023 03:01:21 GMT
Connection: keep-alive
elegantluxurylimousine.com/wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=13.5
200 OK 3.7 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=13.5
IP
Hash 42f4d9030f57739bb4024a5552e32467
3da03a81b78e78bcb114a1b1cef8edd67f83f88c
4c97c88dca67fb93fa75bf46a50565acf690bc7fa62c16188f2256389b68685a
GET /wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=13.5 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: text/css
last-modified: Sat, 16 Jul 2016 21:25:28 GMT
vary: Accept-Encoding
etag: W/"578aa648-27a1"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/plugins/formcraft3/assets/js/autosize.js?ver=5.0.18
200 OK 11 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/plugins/formcraft3/assets/js/autosize.js?ver=5.0.18
IP
Hash 48754cc8b92a123e9673eb168ffe04c2
b3f4c68bb09daff9782a15962adf5ec153658164
92d46cce82707e9f0347305ce5d4d7a83eb4131df524603a4597341914a23f8a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/formcraft3/assets/js/autosize.js?ver=5.0.18 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Mon, 18 Jul 2016 08:17:45 GMT
vary: Accept-Encoding
etag: W/"578c90a9-7f6"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash afcc8f4875f4b74ca0640829b689731e
584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df
3e487396389c4330abc99bc99053eecc6aaf56f7afa398d70c30e1f4709577a0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13626
x-amzn-requestid: 407fef75-2217-4da7-8ea8-b5ede48a0615
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eNKshEEvoAMFkMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b524b6-72ca4e7b3034e7ac1f3fa1ed;Sampled=0
x-amzn-remapped-date: Wed, 04 Jan 2023 07:03:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xOpZDrVh8MsfFqh0HuJJIWFvlgIm0jUE73p9MpgRA1PO_VAv0vP2nw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 16:43:14 GMT
age: 37087
etag: "584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff46c6dc4-4e33-494e-b1dd-d2da59accb42.jpeg
200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff46c6dc4-4e33-494e-b1dd-d2da59accb42.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6b9822ea0495a55cff2c979c1abf85e9
67f2888ed156e249c97ba1fe12df18c850b7c019
94c9114c3b17c2ecc5783c3da644b2cdd9eb83ae8cd705e78a99bc4d5a5e9514
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff46c6dc4-4e33-494e-b1dd-d2da59accb42.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6455
x-amzn-requestid: 758a4992-bb36-41ca-8152-7b1497319108
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZDxEFraIAMFYjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b9e66d-458a3fc7350017c32a591ee0;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 21:38:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QlOiSpajpHa_3AkVweQdbrfxNR1v8ehm55ar_GEH0EKiLqljmj1u5A==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 22:05:53 GMT
etag: "67f2888ed156e249c97ba1fe12df18c850b7c019"
content-type: image/jpeg
age: 17728
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc647e729-b53f-49f8-a6ab-2ce5f8545fb6.jpeg
200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc647e729-b53f-49f8-a6ab-2ce5f8545fb6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 72302799dca34901be4db1c732277abb
34c149aa1986ba9bbefeddae4f19ff58f4b5093b
f017823817627b30cc424f10babc7cea1470158788026a06ef537435bf7d495c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc647e729-b53f-49f8-a6ab-2ce5f8545fb6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6536
x-amzn-requestid: 231fb617-4d68-4069-9627-135017be4a93
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZDufFHeIAMFiYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b9e65c-53903c7d05368c07629f4156;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 21:38:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CgCLMZPEe18AbIV0uxNOAC2kvwDiy-myo9Q103jA2IS-l0ANK0_EhQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 21:41:46 GMT
age: 19175
etag: "34c149aa1986ba9bbefeddae4f19ff58f4b5093b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/plugins/wordpress-popup/inc/external/wpmu-lib/js/wpmu-ui.3.min.js?ver=5.0.18
200 OK 17 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/plugins/wordpress-popup/inc/external/wpmu-lib/js/wpmu-ui.3.min.js?ver=5.0.18
IP
Hash 3f1e115d538372c59afb7337f9bbeace
14ec69673f083b071a66be27ccf1ef6b772bcdc9
c28134552631f580b42c2f5d700da2040eca650eac64d70aaff4c17264af5cbd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wordpress-popup/inc/external/wpmu-lib/js/wpmu-ui.3.min.js?ver=5.0.18 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Tue, 19 Jul 2016 02:32:40 GMT
vary: Accept-Encoding
etag: W/"578d9148-5e8e"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fc3fbba-c748-477d-b1a9-4218da052cc0.jpeg
200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fc3fbba-c748-477d-b1a9-4218da052cc0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fc604aed78008733f09b024b71a6fda9
0f3f633b0b34ac3662febdc45704362c49622a42
7c4f5871e571148c25f83b8676846ab1b0e82be3f4a1b3fb7c05bfe23e29c1b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fc3fbba-c748-477d-b1a9-4218da052cc0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9644
x-amzn-requestid: 63281b3f-e673-4836-9729-7f595b0fb8b3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZDu5FkioAMF9tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b9e65f-5869b987090de6f758472be9;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 21:38:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JsNm98uTnFfNyDnk651OGxB92JTaNKc7H92yP3FCBhUb9BBsFs-Ygg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 21:41:46 GMT
age: 19175
etag: "0f3f633b0b34ac3662febdc45704362c49622a42"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/uploads/2016/07/car-1.png
200 OK 122 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/uploads/2016/07/car-1.png
IP
File type PNG image data, 1095 x 323, 8-bit colormap, non-interlaced\012- data
Size 122 kB (121976 bytes)
Hash 7babd4b9c89aee8fff31701b2be9a03f
ae2297017c08ef2095c58a3e6a768cb294015912
b727d39b9a4307ff04fb34126244099f1f03a986ddbe1b0467f5afbff73de2db
GET /wp-content/uploads/2016/07/car-1.png HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: image/png
content-length: 121976
last-modified: Sun, 17 Jul 2016 19:27:32 GMT
etag: "578bdc24-1dc78"
cache-control: public, max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/uploads/2016/07/shades.png
200 OK 216 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/uploads/2016/07/shades.png
IP
File type PNG image data, 1555 x 925, 8-bit colormap, non-interlaced\012- data
Size 216 kB (216102 bytes)
Hash 4ddddc5577020b6525c8e3d057afd9ce
f3d6f3bc399920fb3f358b39dd06f5fb2732461f
f71061ae085a6c479a5d95f2ef34cf272223a471fd12a996781b83aa64c6373d
GET /wp-content/uploads/2016/07/shades.png HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: image/png
content-length: 216102
last-modified: Sun, 17 Jul 2016 18:36:40 GMT
etag: "578bd038-34c26"
cache-control: public, max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/uploads/2016/07/TAGS.png
200 OK 160 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/uploads/2016/07/TAGS.png
IP
File type PNG image data, 552 x 166, 8-bit/color RGBA, non-interlaced\012- data
Size 160 kB (159691 bytes)
Hash abb8ef3148d7d31a33a1e0985b071a51
61e50a91cee23426f801f971d4688b6f4e86bd84
ac852162b00c442539d330ec0c592cfba1e91f33952ae72489b6edc16c6d3640
GET /wp-content/uploads/2016/07/TAGS.png HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: image/png
content-length: 159691
last-modified: Sun, 17 Jul 2016 20:07:14 GMT
etag: "578be572-26fcb"
cache-control: public, max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/uploads/2014/12/book-your-ride-1.png
200 OK 167 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/uploads/2014/12/book-your-ride-1.png
IP
File type PNG image data, 500 x 337, 8-bit/color RGB, non-interlaced\012- data
Size 167 kB (167419 bytes)
Hash a67eba68905df7dc2e8354a58209b6d1
2c150ebee1b5da7ee7ef5df9d95a08430f3420af
c2656551ce5f488b25e6e508ba2052fbc9e05bca2fd2b27843083aef44ac85b8
GET /wp-content/uploads/2014/12/book-your-ride-1.png HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: image/png
content-length: 167419
last-modified: Mon, 18 Jul 2016 07:54:09 GMT
etag: "578c8b21-28dfb"
cache-control: public, max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/uploads/2014/12/Chrysler-300.png
200 OK 142 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/uploads/2014/12/Chrysler-300.png
IP
File type PNG image data, 600 x 301, 8-bit/color RGBA, non-interlaced\012- data
Size 142 kB (141594 bytes)
Hash a0003cea7c92f5b5064f19c22e292131
1e139bec630615d7b813594e30aab7dc43e927e9
91e39556e6b071b347bf69c5492becbc527354a114c98422e6baf5faa3cbeb2d
GET /wp-content/uploads/2014/12/Chrysler-300.png HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: image/png
content-length: 141594
last-modified: Mon, 18 Jul 2016 08:44:49 GMT
etag: "578c9701-2291a"
cache-control: public, max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/uploads/2014/12/bottom-services-1.jpg
200 OK 62 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/uploads/2014/12/bottom-services-1.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x446, components 3\012- data
Hash ff0edea5484c06a67434d8ca7f6e0fd5
9951c8d99f1f96f0d7362756b4ca486677c4137e
7938e30e525feba0da6c38b0ab00b0911d233b8c3e1cd06cf2278663445db1d3
GET /wp-content/uploads/2014/12/bottom-services-1.jpg HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: image/jpeg
content-length: 62351
last-modified: Sun, 17 Jul 2016 22:53:51 GMT
etag: "578c0c7f-f38f"
cache-control: public, max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22
200 OK 1.7 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22
IP
File type JSON data\012- , ASCII text, with very long lines (1717), with no line terminators
Hash 9926dd12e53baa8da1eec96be6d08557
86eb33775ec30a3d9e0e797283bf268033b3f347
25b7a58f94e1c9b2c9a0be74f6439238c9017f3ac567decd8b7b553440d45d4c
GET /v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1717
via: 1.1 google
date: Sun, 08 Jan 2023 02:10:44 GMT
age: 3037
last-modified: Sun, 01 Jan 2023 16:36:44 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Cookie&ver=5.0.18
200 OK 48 kB URL HTTP/2 fonts.googleapis.com/css?family=Cookie&ver=5.0.18
IP
Hash 648515e464801b0f02fafbf5361f4fef
47a27c8970b7d83b9a67921dd98c6bda7f582e8a
b4ee4535c53dea08e572aad01d4d760f1f6421ac93d802d5ee2959c61f668fea
GET /css?family=Cookie&ver=5.0.18 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 08 Jan 2023 03:01:20 GMT
date: Sun, 08 Jan 2023 03:01:20 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.5.3
200 OK 95 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.5.3
IP
Hash 2894777c43066899395bfa59344cfdaa
df701d1c789f8c7d81ec70485c6d70d82df402ce
b68d168ba2ded9e819fc5ada8f81e8eaf2617d3e4bd8f5973e4abbc1ad40ad19
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.5.3 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Sat, 16 Jul 2016 21:29:28 GMT
vary: Accept-Encoding
etag: W/"578aa738-19b6a"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
200 OK 82 kB URL HTTP/2 elegantluxurylimousine.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP
Hash 48669b9f797ee0b47ab15046afabe8d5
a9d59e4cc1fbb6d1a40bb8e7c5d68666f2054cb6
300f97d86331331ae7e4ace0addef1a138991f04f15f26a94aac031368893b89
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Thu, 05 Sep 2019 08:33:47 GMT
vary: Accept-Encoding
etag: W/"5d70c86b-17a6a"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/uploads/2014/12/Bachelorette-Parties.jpg
200 OK 75 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/uploads/2014/12/Bachelorette-Parties.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 576x400, components 3\012- data
Hash 8f51e524eae1348befac846b82f3a19c
76732d7e90b0124aa99c2f1cd62dba467939e7e2
a9d8915567481ab6596930020fa2ea2d8339e2a32296d5203d56c28305150d9d
GET /wp-content/uploads/2014/12/Bachelorette-Parties.jpg HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: image/jpeg
content-length: 74942
last-modified: Sun, 17 Jul 2016 21:03:44 GMT
etag: "578bf2b0-124be"
cache-control: public, max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/uploads/2014/12/Birthday-Parties.jpg
200 OK 61 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/uploads/2014/12/Birthday-Parties.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 576x400, components 3\012- data
Hash a50914b838d2f69033b4452510ee84bf
ccf9fdd105a83bda522a878a347248f74eb837ea
8df28224ebc159ccfeb29ebdc4a3c088327bd7d2ee7af8b96a2ad4564cdfe511
GET /wp-content/uploads/2014/12/Birthday-Parties.jpg HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: image/jpeg
content-length: 61144
last-modified: Sun, 17 Jul 2016 21:03:46 GMT
etag: "578bf2b2-eed8"
cache-control: public, max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Cookie%3A400
200 OK 48 kB URL HTTP/2 fonts.googleapis.com/css?family=Cookie%3A400
IP
Hash 177f7576fdd424f8bce01eec9508e901
21bb897f3882806b9bcb29f3e5e023a7090569fd
88bd4860c3fe9ef1eb29f694eb4dcda1405bb10d958c92a60afe6b2a2d515e83
GET /css?family=Cookie%3A400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 08 Jan 2023 03:01:20 GMT
date: Sun, 08 Jan 2023 03:01:20 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
200 OK 5.7 kB URL HTTP/2 elegantluxurylimousine.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP
Hash dc9908f7696fded57534a706bf8c94c3
61a171e247a97852fec0e347e7b3de3b6010a50c
cabf61b2fd2d9355050d3ea8656c53d52f7b93bd7b03129905b8c64c6515bf83
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Mon, 11 Jul 2016 20:19:23 GMT
vary: Accept-Encoding
etag: W/"5783ff4b-2748"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/plugins/wordpress-popup/inc/external/wpmu-lib/css/wpmu-ui.3.min.css?ver=5.0.18
200 OK 4.8 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/plugins/wordpress-popup/inc/external/wpmu-lib/css/wpmu-ui.3.min.css?ver=5.0.18
IP
Hash 63627a8ab51f76ebb9e50671e562c650
db66119915049ede9808ae1e5bd5717ecf2ee42e
2d98cadd80ff771340368a0b88ad0bc77b922c1a368b01ff7920cac771fae18e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wordpress-popup/inc/external/wpmu-lib/css/wpmu-ui.3.min.css?ver=5.0.18 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: text/css
last-modified: Tue, 19 Jul 2016 02:32:40 GMT
vary: Accept-Encoding
etag: W/"578d9148-4cc6"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.5.3
200 OK 35 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.5.3
IP
Hash 3a946ff8106494de5c39edc27057eede
42f9d78bd47c9cd99a28243f027fd6012c12b116
13b53a3023a52105ac62ae19b56e008e0e6e10540bbaabf141d4b7e3c9cbc69e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.5.3 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Sat, 16 Jul 2016 21:29:28 GMT
vary: Accept-Encoding
etag: W/"578aa738-dae8"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/plugins/wordpress-popup/inc/external/wpmu-lib/css/animate.3.min.css?ver=5.0.18
200 OK 102 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/plugins/wordpress-popup/inc/external/wpmu-lib/css/animate.3.min.css?ver=5.0.18
IP
Size 102 kB (102327 bytes)
Hash 763f28eec2f1bb034f091c3d170b1118
89e3777b4f2797c5e5d95451c5190bff4024b613
267517b6e01de93b3beaf5b7f2b3cc41eb8ab65574d1f964953d4bdd4699c450
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wordpress-popup/inc/external/wpmu-lib/css/animate.3.min.css?ver=5.0.18 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: text/css
last-modified: Tue, 19 Jul 2016 02:32:40 GMT
vary: Accept-Encoding
etag: W/"578d9148-d930"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/plugins/formcraft3/assets/fontello/font/fc.woff?61304469
200 OK 23 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/plugins/formcraft3/assets/fontello/font/fc.woff?61304469
IP
File type Web Open Font Format, TrueType, length 23380, version 1.0\012- data
Hash f54c8756fd0aaf54605b5f0a87d3a9e2
5023d8b25f8c1ea5ef6e458ecbaf770acd9734d4
135db08a67cef6b6f4b062ea0b4346bcb23efc42e457eca93a39e9ca639f9e7d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/formcraft3/assets/fontello/font/fc.woff?61304469 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/wp-content/plugins/formcraft3/assets/css/common-elements.css?ver=3.2.4
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/font-woff
content-length: 23380
last-modified: Mon, 18 Jul 2016 08:17:45 GMT
etag: "578c90a9-5b54"
cache-control: public, max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/themes/betheme/assets/animations/animations.min.css?ver=13.5
200 OK 63 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/themes/betheme/assets/animations/animations.min.css?ver=13.5
IP
Hash 050043eb707eacedff14c5eed8e49d66
1d35a7b9e7cebf4c0a5eb5c0d3156be5fe23e4a8
c435141e4af4317a2de7a003aa949d9e0a30a71be0c527e838807578cef42e06
GET /wp-content/themes/betheme/assets/animations/animations.min.css?ver=13.5 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:20 GMT
content-type: text/css
last-modified: Sat, 16 Jul 2016 21:25:28 GMT
vary: Accept-Encoding
etag: W/"578aa648-e48c"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/themes/betheme/js/parallax/translate3d.js?ver=13.5
200 OK 1.8 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/themes/betheme/js/parallax/translate3d.js?ver=13.5
IP
Hash e8074a6a8d6553a1ee4b18a0c71bb942
a2fcc32fd250912dc4e94f46816af1ea68b548c8
ba018ab71c7e56a61db49f323e785275ea2a32e8232f14dea73d5e7f2ec530fd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/betheme/js/parallax/translate3d.js?ver=13.5 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Sat, 16 Jul 2016 21:25:28 GMT
vary: Accept-Encoding
etag: W/"578aa648-1a3b"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/themes/betheme/assets/ui/images/ui-bg_flat_75_ffffff_40x100.png
200 OK 178 B URL HTTP/2 elegantluxurylimousine.com/wp-content/themes/betheme/assets/ui/images/ui-bg_flat_75_ffffff_40x100.png
IP
File type PNG image data, 40 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 8692e6efddf882acbff144c38ea7dfdf
a9bb131c4acff0d07fa7b7f21bef05179c28d13b
39ab7ccd9f4e82579da78a9241265df288d8eb65dbbd7cf48aed2d0129887df5
GET /wp-content/themes/betheme/assets/ui/images/ui-bg_flat_75_ffffff_40x100.png HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=13.5
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: image/png
content-length: 178
last-modified: Sat, 16 Jul 2016 21:25:28 GMT
etag: "578aa648-b2"
cache-control: public, max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/plugins/formcraft3/assets/css/form.css?ver=3.2.4
200 OK 7.4 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/plugins/formcraft3/assets/css/form.css?ver=3.2.4
IP
File type ASCII text, with very long lines (53003), with no line terminators
Hash a5bf24c8a6d372399f2e48eee8ad30b7
84f3b1cc0d9495d92fc67458686b8944a8b48449
d79115a279cae637f0c2c42b200f0e7bd17cd6362dfde7ffd6d64af7f70f5818
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/formcraft3/assets/css/form.css?ver=3.2.4 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:20 GMT
content-type: text/css
last-modified: Mon, 18 Jul 2016 08:17:45 GMT
vary: Accept-Encoding
etag: W/"578c90a9-cf0b"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
200 OK 2.0 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP
File type GIF image data, version 89a, 24 x 24\012- data
Hash 51d80d11b76cf9d958d4b54b0cec326d
de4684247041a7fff1d2e5107481aa71a7c1aeb7
3470ff65e4074cbdc797a069b5ee6a5a7196fe558f31ea826cca4a699137b40c
GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.5.3
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: image/gif
content-length: 1986
last-modified: Sat, 16 Jul 2016 21:29:28 GMT
etag: "578aa738-7c2"
cache-control: public, max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/uploads/2016/07/favicon.png
200 OK 1.9 kB URL HTTP/2 elegantluxurylimousine.com/wp-content/uploads/2016/07/favicon.png
IP
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 8b67e8d21e424bd8e05e39e1db3f37da
6373131841a900c97261e34382c715295a710718
2519c4c4426d8aadf1bae7cf11e47dd53d9f4206da2d88484b8ddf98e405e4fb
GET /wp-content/uploads/2016/07/favicon.png HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:22 GMT
content-type: image/png
content-length: 1872
last-modified: Sun, 17 Jul 2016 20:38:35 GMT
etag: "578beccb-750"
cache-control: public, max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/plugins/formcraft3/assets/js/jquery.fileupload.js?ver=5.0.18
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-content/plugins/formcraft3/assets/js/jquery.fileupload.js?ver=5.0.18
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/formcraft3/assets/js/jquery.fileupload.js?ver=5.0.18 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Mon, 18 Jul 2016 08:17:45 GMT
vary: Accept-Encoding
etag: W/"578c90a9-461d"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 08:24:41 GMT
vary: Accept-Encoding
etag: W/"6077f849-f59"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/themes/betheme/js/menu.js?ver=13.5
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-content/themes/betheme/js/menu.js?ver=13.5
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/betheme/js/menu.js?ver=13.5 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Sat, 16 Jul 2016 21:25:28 GMT
vary: Accept-Encoding
etag: W/"578aa648-99e"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/themes/betheme/css/responsive.css?ver=13.5
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-content/themes/betheme/css/responsive.css?ver=13.5
IP
GET /wp-content/themes/betheme/css/responsive.css?ver=13.5 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: text/css
last-modified: Sat, 16 Jul 2016 21:25:28 GMT
vary: Accept-Encoding
etag: W/"578aa648-e6ff"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4
IP
GET /wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 08:24:41 GMT
vary: Accept-Encoding
etag: W/"6077f849-1aab"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/plugins/formcraft3/assets/js/form.js?ver=3.2.4
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-content/plugins/formcraft3/assets/js/form.js?ver=3.2.4
IP
GET /wp-content/plugins/formcraft3/assets/js/form.js?ver=3.2.4 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Mon, 18 Jul 2016 08:17:45 GMT
vary: Accept-Encoding
etag: W/"578c90a9-f662"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/themes/betheme/css/base.css?ver=13.5
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-content/themes/betheme/css/base.css?ver=13.5
IP
GET /wp-content/themes/betheme/css/base.css?ver=13.5 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:20 GMT
content-type: text/css
last-modified: Sat, 16 Jul 2016 21:25:28 GMT
vary: Accept-Encoding
etag: W/"578aa648-c00c"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/themes/betheme/assets/animations/animations.min.js?ver=13.5
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-content/themes/betheme/assets/animations/animations.min.js?ver=13.5
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/betheme/assets/animations/animations.min.js?ver=13.5 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Sat, 16 Jul 2016 21:25:28 GMT
vary: Accept-Encoding
etag: W/"578aa648-768"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=13.5
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=13.5
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=13.5 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Sat, 16 Jul 2016 21:25:28 GMT
vary: Accept-Encoding
etag: W/"578aa648-cdde"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 08:24:41 GMT
vary: Accept-Encoding
etag: W/"6077f849-c46"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto&ver=5.0.18
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto&ver=5.0.18
IP
GET /css?family=Roboto&ver=5.0.18 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 08 Jan 2023 03:01:20 GMT
date: Sun, 08 Jan 2023 03:01:20 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/themes/betheme/assets/prettyPhoto/prettyPhoto.css?ver=13.5
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-content/themes/betheme/assets/prettyPhoto/prettyPhoto.css?ver=13.5
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/betheme/assets/prettyPhoto/prettyPhoto.css?ver=13.5 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: text/css
last-modified: Sat, 16 Jul 2016 21:25:28 GMT
vary: Accept-Encoding
etag: W/"578aa648-47d4"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-includes/css/dist/block-library/style.min.css?ver=5.0.18
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-includes/css/dist/block-library/style.min.css?ver=5.0.18
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.0.18 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:20 GMT
content-type: text/css
last-modified: Wed, 09 Jan 2019 23:07:51 GMT
vary: Accept-Encoding
etag: W/"5c367ec7-643a"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/themes/betheme/style.css?ver=13.5
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-content/themes/betheme/style.css?ver=13.5
IP
GET /wp-content/themes/betheme/style.css?ver=13.5 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:20 GMT
content-type: text/css
last-modified: Sat, 16 Jul 2016 21:25:28 GMT
vary: Accept-Encoding
etag: W/"578aa648-11a"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/themes/betheme/css/layout.css?ver=13.5
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-content/themes/betheme/css/layout.css?ver=13.5
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/betheme/css/layout.css?ver=13.5 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:20 GMT
content-type: text/css
last-modified: Sat, 16 Jul 2016 21:25:28 GMT
vary: Accept-Encoding
etag: W/"578aa648-1a3a8"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.11.4
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.11.4
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/tabs.min.js?ver=1.11.4 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 08:24:41 GMT
vary: Accept-Encoding
etag: W/"6077f849-2eec"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.11.4
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.11.4
IP
GET /wp-includes/js/jquery/ui/accordion.min.js?ver=1.11.4 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 08:24:41 GMT
vary: Accept-Encoding
etag: W/"6077f849-2172"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/themes/betheme/js/scripts.js?ver=13.5
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-content/themes/betheme/js/scripts.js?ver=13.5
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/betheme/js/scripts.js?ver=13.5 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Sat, 16 Jul 2016 21:25:28 GMT
vary: Accept-Encoding
etag: W/"578aa648-ebb5"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=13.5
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=13.5
IP
GET /wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=13.5 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: text/css
last-modified: Sat, 16 Jul 2016 21:25:28 GMT
vary: Accept-Encoding
etag: W/"578aa648-4c9b"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-includes/js/wp-embed.min.js?ver=5.0.18
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-includes/js/wp-embed.min.js?ver=5.0.18
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-embed.min.js?ver=5.0.18 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 08:24:41 GMT
vary: Accept-Encoding
etag: W/"6077f849-56f"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/themes/betheme/css/shortcodes.css?ver=13.5
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-content/themes/betheme/css/shortcodes.css?ver=13.5
IP
GET /wp-content/themes/betheme/css/shortcodes.css?ver=13.5 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:20 GMT
content-type: text/css
last-modified: Sat, 16 Jul 2016 21:25:28 GMT
vary: Accept-Encoding
etag: W/"578aa648-1ed25"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 08:24:41 GMT
vary: Accept-Encoding
etag: W/"6077f849-8d4c"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato&ver=5.0.18
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato&ver=5.0.18
IP
GET /css?family=Lato&ver=5.0.18 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 08 Jan 2023 03:01:20 GMT
date: Sun, 08 Jan 2023 03:01:20 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.4.2
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.4.2
IP
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.4.2 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Sat, 16 Jul 2016 21:27:36 GMT
vary: Accept-Encoding
etag: W/"578aa6c8-2e2b"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/plugins/formcraft3/assets/css/common-elements.css?ver=3.2.4
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-content/plugins/formcraft3/assets/css/common-elements.css?ver=3.2.4
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/formcraft3/assets/css/common-elements.css?ver=3.2.4 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:20 GMT
content-type: text/css
last-modified: Mon, 18 Jul 2016 08:17:45 GMT
vary: Accept-Encoding
etag: W/"578c90a9-cfe1"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-includes/js/wp-emoji-release.min.js?ver=5.0.18
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-includes/js/wp-emoji-release.min.js?ver=5.0.18
IP
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.0.18 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 08:24:41 GMT
vary: Accept-Encoding
etag: W/"6077f849-2ea7"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.5.3
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.5.3
IP
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.5.3 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:20 GMT
content-type: text/css
last-modified: Sat, 16 Jul 2016 21:29:28 GMT
vary: Accept-Encoding
etag: W/"578aa738-8f74"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/plugins/wordpress-popup/js/public.min.js?ver=5.0.18
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-content/plugins/wordpress-popup/js/public.min.js?ver=5.0.18
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wordpress-popup/js/public.min.js?ver=5.0.18 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Tue, 19 Jul 2016 02:32:40 GMT
vary: Accept-Encoding
etag: W/"578d9148-2378"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4
IP
GET /wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 08:24:41 GMT
vary: Accept-Encoding
etag: W/"6077f849-2a9f"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Sat, 16 Jul 2016 21:27:36 GMT
vary: Accept-Encoding
etag: W/"578aa6c8-3b90"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
elegantluxurylimousine.com/wp-content/plugins/formcraft3/assets/js/tooltip.min.js?ver=5.0.18
200 OK 0 B URL HTTP/2 elegantluxurylimousine.com/wp-content/plugins/formcraft3/assets/js/tooltip.min.js?ver=5.0.18
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/formcraft3/assets/js/tooltip.min.js?ver=5.0.18 HTTP/1.1
Host: elegantluxurylimousine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://elegantluxurylimousine.com/
Cookie: PHPSESSID=e0t3ad40bi5m9ge3aatromj1rs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 03:01:21 GMT
content-type: application/javascript
last-modified: Mon, 18 Jul 2016 08:17:45 GMT
vary: Accept-Encoding
etag: W/"578c90a9-1feb"
cache-control: public, max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
45.32.74.106
23.36.77.32
93.184.220.29