r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3893
Expires: Fri, 03 Feb 2023 14:09:11 GMT
Date: Fri, 03 Feb 2023 13:04:18 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2528
Expires: Fri, 03 Feb 2023 13:46:26 GMT
Date: Fri, 03 Feb 2023 13:04:18 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 12:36:10 GMT
content-type: application/json
age: 1688
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7d2222d41721947297aaeb5a6e3d0714
04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065
de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17274
Expires: Fri, 03 Feb 2023 17:52:12 GMT
Date: Fri, 03 Feb 2023 13:04:18 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: /iEeH9LZXbZcRy8QPnq6wjIMIZkAzJtl8nfIkJlpXn2ZL44MeKGDeZOcFbPp7Crsr/7Tcgp78A8=
x-amz-request-id: D15VXANWMENQE0MN
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 12:23:32 GMT
age: 2446
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 13:04:18 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 12:49:06 GMT
age: 913
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.workingtogethercol.org/inbox/Bofa/verify.php
301 Moved Permanently 0 B URL HTTP/1.1 www.workingtogethercol.org/inbox/Bofa/verify.php
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /inbox/Bofa/verify.php HTTP/1.1
Host: www.workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 03 Feb 2023 13:04:17 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://workingtogethercol.org/inbox/Bofa/verify.php
Content-Length: 0
Keep-Alive: timeout=5, max=100
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14804
Expires: Fri, 03 Feb 2023 17:11:03 GMT
Date: Fri, 03 Feb 2023 13:04:19 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qOzY8l60BLYwPDT7NtXekw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lv8TaZGb4PPOQLN6rgKjbSrawsg=
fonts.googleapis.com/css?family=Open+Sans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%7COswald%3A300%2C400%2C700&subset=latin%2Clatin-ext&ver=6.1.1
200 OK 1.2 kB URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%7COswald%3A300%2C400%2C700&subset=latin%2Clatin-ext&ver=6.1.1
IP
Hash 318d90a4ac0d8282a039e224d18c9b48
deb10484e709533c740eabdbd448b178ef5b8c5d
4e7ce9ac7f4ad13ee6f6f6e8b78e3657a2aacaabc3bc459a583314c02d7f3112
GET /css?family=Open+Sans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%7COswald%3A300%2C400%2C700&subset=latin%2Clatin-ext&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 03 Feb 2023 13:04:20 GMT
Date: Fri, 03 Feb 2023 13:04:20 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
workingtogethercol.org/inbox/Bofa/verify.php
404 Not Found 64 kB URL HTTP/1.1 workingtogethercol.org/inbox/Bofa/verify.php
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash de049f3e0a974eaad6452e5585a39d2a
a0636fa99f9d6b5bd5d804180d25f63e2c3faa3c
2838df953b7d17fe2826777d23b5c3412ee3b76f8536dad45934b8390feb5395
Analyzer Verdict Alert fortinet Phishing
GET /inbox/Bofa/verify.php HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Date: Fri, 03 Feb 2023 13:04:18 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://workingtogethercol.org/wp-json/>; rel="https://api.w.org/"
X-TEC-API-VERSION: v1
X-TEC-API-ROOT: https://workingtogethercol.org/wp-json/tribe/events/v1/
X-TEC-API-ORIGIN: https://workingtogethercol.org
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
workingtogethercol.org/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
200 OK 2.6 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
IP
File type ASCII text, with very long lines (2630), with no line terminators
Hash eade318fbed91c096467dffa56406638
69d306a2097e792f99c80a5e0bb8863260399cad
d589803f3ab380582ab137b22493c2bacaa92424fa88cee212e80288cac11fbb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:19 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 13 Jan 2023 21:05:24 GMT
Accept-Ranges: bytes
Content-Length: 2630
Keep-Alive: timeout=5, max=100
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=9.1.5
200 OK 10 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=9.1.5
IP
File type ASCII text, with very long lines (10435), with no line terminators
Hash 27a91498e22d4778e559dd13a12c6ab6
9868807cc628fab1cc5ccb6f6c53934e6e9303b4
4a25eb6972f4a513da7ead5d8c0f74832ed42b1ae5e1f13ed3ea36f0865a59c9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=9.1.5 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:19 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 13 Jan 2023 21:04:46 GMT
Accept-Ranges: bytes
Content-Length: 10435
Keep-Alive: timeout=5, max=100
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6
200 OK 9.3 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6
IP
File type ASCII text, with very long lines (9281), with no line terminators
Hash 57a347480fbe0b3d235993f4f1ec3b2c
ec01673e887c236765156496c7d00111238554d8
9097a2c579616889e829be95554ebf90ec5900045f4d2282cce31d5a999acc03
GET /wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:19 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:04:47 GMT
Accept-Ranges: bytes
Content-Length: 9281
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0
200 OK 31 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0
IP
File type ASCII text, with very long lines (30441)
Hash d3ec229e04c8634c88cc4cb3f2934c11
785cb4beecaad98329fff0a54f9a5536cda200ab
73835f9dd494931cd0562ab2d4db8aaf3d54dca375abade1794ad1a12ae0d97c
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:19 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 13 Jan 2023 21:05:24 GMT
Accept-Ranges: bytes
Content-Length: 30603
Keep-Alive: timeout=5, max=100
Content-Type: text/css
workingtogethercol.org/wp-includes/css/classic-themes.min.css?ver=1
200 OK 217 B URL HTTP/1.1 workingtogethercol.org/wp-includes/css/classic-themes.min.css?ver=1
IP
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:19 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:34:06 GMT
Accept-Ranges: bytes
Content-Length: 217
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
200 OK 19 kB URL HTTP/1.1 workingtogethercol.org/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:19 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:34:06 GMT
Accept-Ranges: bytes
Content-Length: 18617
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
200 OK 95 kB URL HTTP/1.1 workingtogethercol.org/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
File type ASCII text, with very long lines (47826)
Hash 71d925864153f0edf91037f3d31048e8
cc16a0524ac63b5ce29f703a66412224f0dd771a
c324ef26b20264369e4568dc9ef1c5cb1f325f6bc4e8b7c01f7fe93fa353276a
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:19 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 13 Jan 2023 21:34:06 GMT
Accept-Ranges: bytes
Content-Length: 94889
Keep-Alive: timeout=5, max=100
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.17.0
200 OK 29 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.17.0
IP
File type ASCII text, with very long lines (29337), with no line terminators
Hash 4de6dfc6ff180e33262861a679d40546
8de11c7f99e413282baa349d11657ccd2c468d4f
3e61990964ebd31443be4e6598163ebd71b73b139c42d52547b8a290f7d059ca
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.17.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:19 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:05:24 GMT
Accept-Ranges: bytes
Content-Length: 29337
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2
200 OK 2.8 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2
IP
Hash 443a0083792b1ca61e8116184cb5901e
03c1b038741f1e9e75d3d7b006d6e3b2744e0b85
9a38595d63dfae35b88183515b69f8b742128b564b9ea4dbd79908c3aa73921a
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:19 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:13:14 GMT
Accept-Ranges: bytes
Content-Length: 2803
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.14
200 OK 13 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.14
IP
Hash 4045fbc98e0caae7e213f52330c52c21
253b81dc846081e189174789220a296d96849681
168642741cf6acd34501d09c8cc1c7e6be332ca9222f3223419bd1664b381839
GET /wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.14 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:19 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:26 GMT
Accept-Ranges: bytes
Content-Length: 12663
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15269
Expires: Fri, 03 Feb 2023 17:18:49 GMT
Date: Fri, 03 Feb 2023 13:04:20 GMT
Connection: keep-alive
workingtogethercol.org/wp-content/plugins/trx_addons/js/swiper/swiper.css
200 OK 20 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/trx_addons/js/swiper/swiper.css
IP
File type ASCII text, with very long lines (1468), with CRLF line terminators
Hash 743fe7521d0b6e061e08b8a0b9b68d03
4a734584e843d64b9af3c6e208172275fbed152a
03dd1f03727f2ab5db6796a4dbdbb0f30ca200a1ea626295ef346920e840c674
GET /wp-content/plugins/trx_addons/js/swiper/swiper.css HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:25 GMT
Accept-Ranges: bytes
Content-Length: 20516
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15269
Expires: Fri, 03 Feb 2023 17:18:49 GMT
Date: Fri, 03 Feb 2023 13:04:20 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg
200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fe87e986c62630127a7fdd979c802947
28ce91c8643c4bc4dcc4cd26dfc69dc6219ce5bf
770a765c927c0f81d0c41acd45a7a24f5799f9497fcc73489cab4fafbf994bdb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5256
x-amzn-requestid: b0455eb8-b10c-4328-8abe-65c5184f6654
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frx7uFcooAMFpxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dafd17-553139816e1fb7b65e683dc6;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 00:00:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pwRBB72InX8OP4KXpQKTs9T4iMY0E3hPX8Nko9gd7m1BOm8_DqbRaA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:46:56 GMT
age: 55044
etag: "28ce91c8643c4bc4dcc4cd26dfc69dc6219ce5bf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9ab97f766ee1ed6ebbb2b3889a9157b4
f87f165404dec4d65531e6e25146cb77601f3616
f3d0f76f956371b1733a526f10a8253fc3396a459d7af59380d8e8db7dee8ec2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 14071
x-amzn-requestid: 40cb363f-2c4d-4361-9fe1-10e4c8b2fe29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fiTo4Ek2oAMFs6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d73305-6cb63d3c49f9f84e639467f6;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 03:01:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aTs6L8dJENFRdtBn7ggAbY5yaYRAzSY2B0bmElV4YNPrJg-KRDAyNA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:46:56 GMT
age: 55044
etag: "f87f165404dec4d65531e6e25146cb77601f3616"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
workingtogethercol.org/wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=3.0.14
200 OK 52 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=3.0.14
IP
Hash 0980d41921dd19f587a756dfd37f7241
33e2dfde06f0d59907363cfd44e92530ec57d7da
55be0279a70e3fba10c1bac51f946a69e2d3dcf03c9e1ede467b7fd20e2e0f5d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=3.0.14 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:19 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:26 GMT
Accept-Ranges: bytes
Content-Length: 51945
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/trx_addons/js/magnific/magnific-popup.css
200 OK 7.3 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/trx_addons/js/magnific/magnific-popup.css
IP
File type ASCII text, with CRLF line terminators
Hash c03fe8704d90e35eba342d2ca2c5a530
74a41372d833195b77dd9e167f82ca395cc4702d
1155981e8193622f58553eed0bba2fa43512af362a3d54dedef64c46970bb371
GET /wp-content/plugins/trx_addons/js/magnific/magnific-popup.css HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:25 GMT
Accept-Ranges: bytes
Content-Length: 7302
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3490571dd2de0a747987b9a0e18cccc8
18e9f8f160d3515f1cb31fc7538ac762a6cab344
1c071d7f3b288b29254500f94f19c0db0633c6aa90812f2e92c4f64992f5221a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10796
x-amzn-requestid: 5c9b1a83-c99a-44b9-9a90-5edd7ef1e225
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi0XKG93oAMFtsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76760-01bf754d6c725c3275c02a1b;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 06:44:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vUJO-Pt9Hi1ndrCQQT1nNCGT7oDOYBpA8-EawHanESoZAsZv32dQdg==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 00:25:04 GMT
age: 45556
etag: "18e9f8f160d3515f1cb31fc7538ac762a6cab344"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w0Zm5V0TQxsQ7917U3fdhS_n7qKE143PuhI2JmNCDM_Pf0yPLyW6yA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 04:53:21 GMT
age: 29459
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15269
Expires: Fri, 03 Feb 2023 17:18:49 GMT
Date: Fri, 03 Feb 2023 13:04:20 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a6aaf87a867f93dc9268a8b27973b97
f52ccbe6cbced1994acb13a00b05436553b6813e
3fbd7441712035f4d53c17eec93bc278e6c072043f3b5a721cac349fc0dabe77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10166
x-amzn-requestid: 54fe0d12-360f-4d97-bcf3-b24747d956aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fY_4zHEcoAMF1iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d379d1-4ba89e44005f616a0ed3ed24;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:14:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G0R-0w9HtLB5OXb-w-RyR9QCnrddkS29FqF_GeAQa1CRWkqaUJwQoA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:27:53 GMT
age: 52587
etag: "f52ccbe6cbced1994acb13a00b05436553b6813e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d4041f3b5316bc84c9e6d88ddbc85b89
4978a4a20836b6f5d863d331bcedad782b7b4ac6
549b62d2c4ec965b8bec62010c0ce338dfea7992ee83eb7af61ff1a30d21f8b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5641
x-amzn-requestid: b53b54b1-3b00-47cf-a25c-e93910c2ebfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuvzpHsXoAMFsuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ce3-0c4fc8154763febb44460ac2;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: x4-BZdG4JGRKCSdKynnuweZfo9l0XZtDB-MiANy7C2Yz1URYMHP4sQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:28:50 GMT
age: 52530
etag: "4978a4a20836b6f5d863d331bcedad782b7b4ac6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15269
Expires: Fri, 03 Feb 2023 17:18:49 GMT
Date: Fri, 03 Feb 2023 13:04:20 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15269
Expires: Fri, 03 Feb 2023 17:18:49 GMT
Date: Fri, 03 Feb 2023 13:04:20 GMT
Connection: keep-alive
workingtogethercol.org/wp-content/plugins/trx_addons/css/font-icons/css/trx_addons_icons-embedded.css?ver=6.1.1
200 OK 160 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/trx_addons/css/font-icons/css/trx_addons_icons-embedded.css?ver=6.1.1
IP
File type ASCII text, with very long lines (57855), with CRLF line terminators
Size 160 kB (160406 bytes)
Hash e95d9e5356295f2f8be929e170635b18
adc69e32ac6988dcfb64026b39b5113b047642eb
c728923992680a35c6b82ac7140312a5a9a42d8f67ab23480fa2d5d87a2d0282
GET /wp-content/plugins/trx_addons/css/font-icons/css/trx_addons_icons-embedded.css?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:25 GMT
Accept-Ranges: bytes
Content-Length: 160406
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=9.1.5
200 OK 244 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=9.1.5
IP
File type Unicode text, UTF-8 text, with very long lines (65528), with no line terminators
Size 244 kB (244272 bytes)
Hash 9beaa3b32b7ef001fd53b4dcb51bba51
23ddb50481a8f7201c0c2ef202365e459f0b1e34
f0272ed6fec23d7c96c4c63796d95bb3e47357443dc3d886491e7a0ebcf79938
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=9.1.5 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:19 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 13 Jan 2023 21:04:46 GMT
Accept-Ranges: bytes
Content-Length: 244272
Keep-Alive: timeout=5, max=100
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.3.0
200 OK 18 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.3.0
IP
File type ASCII text, with very long lines (17809), with no line terminators
Hash 1ddf23fcfd1b2941c456ce01da8180a6
156ef5cc77061010e3f4123a47fa415c6391e5ff
dd18a408a35aa5d393458657eb24fb56ab754ece3f88bd78a038e5793d3f6991
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.3.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:04:47 GMT
Accept-Ranges: bytes
Content-Length: 17809
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/trx_addons/css/trx_addons.css
200 OK 188 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/trx_addons/css/trx_addons.css
IP
File type ASCII text, with very long lines (65389)
Size 188 kB (187567 bytes)
Hash 4853fcc2572ae1fc20306eeb0f15ac59
5412cda5d96a895cf8c6e577794009f977aa0d3e
949d46afe08a3c56e8021dac0edd866a912bad6c548d284ddb99fddcc2e31241
GET /wp-content/plugins/trx_addons/css/trx_addons.css HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:25 GMT
Accept-Ranges: bytes
Content-Length: 187567
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21
200 OK 3.8 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21
IP
Hash 9c6b63558e5de592c160563dbe08dd0d
e4969ab55cc566759623f6b4e1c7d6b3bcdc21cd
14a77bc82e039ce4be0d9ba9b0237495b0a9578d34eb92d444093d440f6190ba
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:05:06 GMT
Accept-Ranges: bytes
Content-Length: 3812
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/themes/save-life/css/font-face/GoodDog/stylesheet.css?ver=6.1.1
200 OK 284 B URL HTTP/1.1 workingtogethercol.org/wp-content/themes/save-life/css/font-face/GoodDog/stylesheet.css?ver=6.1.1
IP
Hash 8e40f1e57ed67b7f3dc20d23ee0d1985
b97cf2b12ab4550ec6bd644ffaaf8dc53a7a5a13
c0a1bcf4b149ea89eb106cb7fd293f5cf07b380cb65513df57c76ca8bd713830
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/save-life/css/font-face/GoodDog/stylesheet.css?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:00:50 GMT
Accept-Ranges: bytes
Content-Length: 284
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/trx_addons/css/trx_addons.animation.css?ver=6.1.1
200 OK 86 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/trx_addons/css/trx_addons.animation.css?ver=6.1.1
IP
File type ASCII text, with CRLF line terminators
Hash d15378bff4238d25a916814f09dfedc2
659fce1e18a5a97762a0e7c4ca7f217c46581488
b321ff6d68390b2e2414b729d7e1836300ec0420cc34b7c0b4eef10ff1d3f3f1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/trx_addons/css/trx_addons.animation.css?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:25 GMT
Accept-Ranges: bytes
Content-Length: 85785
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.3.0
200 OK 63 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.3.0
IP
File type Unicode text, UTF-8 text, with very long lines (62781), with no line terminators
Hash 4911ee48036e51ae4980b7be957d899f
e577252607817c3fdc773123f41220c8a910d95a
a831fbad3ff846921596056c21beb9c77328927cc84403156ec0fcfa330d338a
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.3.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:04:47 GMT
Accept-Ranges: bytes
Content-Length: 62783
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/themes/save-life/style.css
200 OK 132 kB URL HTTP/1.1 workingtogethercol.org/wp-content/themes/save-life/style.css
IP
Size 132 kB (131776 bytes)
Hash 70f4517c51fdf3f1ac174694c3c55525
bf0a48c0e57daa7446e286eec2ada54bf6be3b34
a70f8529e0d5674a3598c6fd07051f947df0d5c8da5c6d64125341a5a7317b47
GET /wp-content/themes/save-life/style.css HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:00:50 GMT
Accept-Ranges: bytes
Content-Length: 131776
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/themes/save-life/css/__styles.css?ver=6.1.1
200 OK 221 kB URL HTTP/1.1 workingtogethercol.org/wp-content/themes/save-life/css/__styles.css?ver=6.1.1
IP
File type ASCII text, with very long lines (65384)
Size 221 kB (221232 bytes)
Hash 25c0e81931b9e802d3089002b7a22e89
588a7cebc2f4872330bdbdd52d37865ff77fbb15
ca825b0a58a96e930c5843e0fe305faf239f290af4821cd20218d6d3b114c63d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/save-life/css/__styles.css?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 20:42:24 GMT
Accept-Ranges: bytes
Content-Length: 221232
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
200 OK 11 kB URL HTTP/1.1 workingtogethercol.org/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP
File type ASCII text, with very long lines (11256), with no line terminators
Hash 2b0dd7eecea03b4bdedb94ba622fdb03
703becba85161118dd6fc66af465428ef43f561c
b7908a015a567ec2363011df2475368dbff34360e9da3fdff50604d6395fb646
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:34:06 GMT
Accept-Ranges: bytes
Content-Length: 11256
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
200 OK 4.2 kB URL HTTP/1.1 workingtogethercol.org/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
IP
File type ASCII text, with very long lines (4186), with no line terminators
Hash ea958276b7de454bd3c2873f0dc47e5f
b143f6e8e8f79d8f104c26b0057ef5514d763219
2e10d353ff038c2cad3492fc17801af3e6ef2669c9e9713bdb78b1dcb104c4fe
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:34:06 GMT
Accept-Ranges: bytes
Content-Length: 4186
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/themes/save-life/css/responsive.css?ver=6.1.1
200 OK 177 kB URL HTTP/1.1 workingtogethercol.org/wp-content/themes/save-life/css/responsive.css?ver=6.1.1
IP
File type assembler source, ASCII text, with very long lines (652)
Size 177 kB (177430 bytes)
Hash cb0b7321e6b92c01f8ab7676e3bf91b8
493da5bca82ebdeea57476050ac0a74a677d1736
1ade4319a9e4c5d8d3cc3e059c3a8d0587f773fb3def1872d01499847724126f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/save-life/css/responsive.css?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:00:50 GMT
Accept-Ranges: bytes
Content-Length: 177430
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
200 OK 90 kB URL HTTP/1.1 workingtogethercol.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
File type ASCII text, with very long lines (65447)
Hash 17738318d61d394f1de8890d589afaec
f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:34:06 GMT
Accept-Ranges: bytes
Content-Length: 89684
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/themes/save-life/css/__colors.css?ver=6.1.1
200 OK 577 kB URL HTTP/1.1 workingtogethercol.org/wp-content/themes/save-life/css/__colors.css?ver=6.1.1
IP
File type ASCII text, with very long lines (65384)
Size 577 kB (577263 bytes)
Hash f5c90f92293e6e5424f91814c8819c57
645051d31da27e54b12db920331c0deeb1c3e125
d3817022ee87c317f94025865cbb17cc8f2bc5890ef4635fdaf76afbc6285649
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/save-life/css/__colors.css?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 20:42:24 GMT
Accept-Ranges: bytes
Content-Length: 577263
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 11 kB URL HTTP/1.1 workingtogethercol.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:34:06 GMT
Accept-Ranges: bytes
Content-Length: 11224
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/themes/save-life/css/fontello/css/fontello-embedded.css?ver=6.1.1
200 OK 283 kB URL HTTP/1.1 workingtogethercol.org/wp-content/themes/save-life/css/fontello/css/fontello-embedded.css?ver=6.1.1
IP
File type ASCII text, with very long lines (65220)
Size 283 kB (282916 bytes)
Hash 86fe3f69592039d33afa256430222162
656462df60ec5fb6e3b56c7d82af8116db9da55d
da7e187e5018b898e381a0aca78bc4229e3086186809d713aeb1e7ef94901ebc
GET /wp-content/themes/save-life/css/fontello/css/fontello-embedded.css?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:00:50 GMT
Accept-Ranges: bytes
Content-Length: 282916
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.3.0
200 OK 9.5 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.3.0
IP
File type ASCII text, with very long lines (9111)
Hash 4ffc462852340d9e6b5b7b29276fcb71
5e04050e09e3f7d8107ef3b9aa9313be618c460e
18336635cd5e9edf2aff3ae18b67250684311c2a459457091b063dafba57d526
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.3.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:04:47 GMT
Accept-Ranges: bytes
Content-Length: 9505
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.3.0
200 OK 3.0 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.3.0
IP
File type HTML document, ASCII text, with very long lines (3029), with no line terminators
Hash f449e3e4a7c058f7c48f57e05c788fb0
e7b0c58a1a14c14a92e452cc544b312ed91fa52e
bfd861dc2936299f52adca1da826c273dced7c77ad4c33d31916ad55ab354e89
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.3.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:04:47 GMT
Accept-Ranges: bytes
Content-Length: 3029
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.8.0
200 OK 992 B URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.8.0
IP
Hash 787fe4f547a6cb7f4ce4934641085910
c2dee88d5bdfef214ce9c56f71a1df51cda0f328
654aaebdea944313257827be97eb196a8218a2cdfc9ba399db23e2cd4c02bd79
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.8.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:34 GMT
Accept-Ranges: bytes
Content-Length: 992
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.14
200 OK 58 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.14
IP
File type Unicode text, UTF-8 text, with very long lines (12602)
Hash 11188e3c0006d83216e161ae1d59c86e
158c7818f4d65b85bd613b35f81a5ff62972522b
6540abd4143b1bce02006ebb345dd9a4c6bb18e5580c529361b6e3e1b7b8522c
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.14 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:28 GMT
Accept-Ranges: bytes
Content-Length: 57704
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.19
200 OK 6.5 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.19
IP
File type ASCII text, with very long lines (6525), with no line terminators
Hash 9ba7153038a33b219e97df4f7347546e
93235e3baae2224ad5a086845d41db471d02359f
f752c3c539d0a59c1dd7438e0524b0a2f9f63718f99501afd4a47c129cfa74b8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.19 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:04:27 GMT
Accept-Ranges: bytes
Content-Length: 6525
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
200 OK 15 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
IP
File type Unicode text, UTF-8 text, with very long lines (14924), with no line terminators
Hash 157f18464a93eab7fb62a7f3e618ac2c
f47727e80d529d6e4941fea32f2e8a8ee5008b8a
9ed8f2a0e573467348e64fb1945eeac1698f32af9e9c723153eb7142d6a43306
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:05:24 GMT
Accept-Ranges: bytes
Content-Length: 14927
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
200 OK 21 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
IP
File type HTML document, ASCII text, with very long lines (21310), with no line terminators
Hash f3d7b1578081c9cf982cfbc29f514836
fdb6b04b917b9a1c72e3cf2da686c2584d3fd50f
c0f874276d38c6d9e43767d76a15de39506461b268a3cbf19fc8218f3ec8631a
GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:04:47 GMT
Accept-Ranges: bytes
Content-Length: 21310
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.17.0
200 OK 25 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.17.0
IP
File type HTML document, ASCII text, with very long lines (24951), with no line terminators
Hash 540be7a8259fbeaf4a732a344b267a7d
ac51cc9bb5df51bd9568de8707b9b176f7d60254
a692f16cca3d27ae6772b85e05c46d117ca45678783d5ee010df7d67e8f12485
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.17.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:05:24 GMT
Accept-Ranges: bytes
Content-Length: 24951
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0
200 OK 486 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0
IP
File type ASCII text, with very long lines (65358)
Size 486 kB (485521 bytes)
Hash 78622094275696078e4f06007407e11d
d7f583d841c46bd24bd9134e20c645b14e6ec713
521457922129a04fbc4524021ac47021659a1e1931c5dfe1a0e13be5dcaaefba
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:34 GMT
Accept-Ranges: bytes
Content-Length: 485521
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2
200 OK 11 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2
IP
File type ASCII text, with very long lines (10565), with no line terminators
Hash 7f0734e228d3f1a255a8b817a5005b8e
3dfca70a7a3e298fc392f2393ca60d350eebb5fd
23bb39b607b39a93d953762d2a618a3cbc69c52ceaf70d96890137ca1d2b0228
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:13:14 GMT
Accept-Ranges: bytes
Content-Length: 10565
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 45 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://workingtogethercol.org
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 02 Feb 2023 00:41:24 GMT
Expires: Fri, 02 Feb 2024 00:41:24 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2
Age: 130977
workingtogethercol.org/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2
200 OK 13 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2
IP
File type HTML document, ASCII text, with very long lines (12652), with no line terminators
Hash f57435a927d422043befe66bd74f4d68
4a2f90016ca54d0938263c50b8995bf889f6278b
f84293668b02b8c83c20c5c2cf51f8a5a64ac5a15d34be26c85382496b107700
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:13:14 GMT
Accept-Ranges: bytes
Content-Length: 12652
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/trx_addons/js/swiper/swiper.jquery.min.js
200 OK 69 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/trx_addons/js/swiper/swiper.jquery.min.js
IP
File type ASCII text, with very long lines (32072), with CRLF line terminators
Hash f2f89081adcc0eabba52280466f3bb36
4380050e6b3ff059b19dec13d65ca02a916e7df5
edd1d42602d9c5cfae9967751ee3945607c80c24f946b063376458cfa169cb03
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/trx_addons/js/swiper/swiper.jquery.min.js HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:25 GMT
Accept-Ranges: bytes
Content-Length: 68628
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/trx_addons/js/magnific/jquery.magnific-popup.min.js
200 OK 20 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/trx_addons/js/magnific/jquery.magnific-popup.min.js
IP
File type ASCII text, with very long lines (20087), with CRLF line terminators
Hash b37d7edf99565d3858eaa1ad80df3cff
786a4343711e9af5e5dfcc493e7d2331b48875bb
b0a45cd5aed66e27bd8ee861d0e3b782c8e79849bde32f90f078b9f2451a36f2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/trx_addons/js/magnific/jquery.magnific-popup.min.js HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:21 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:25 GMT
Accept-Ranges: bytes
Content-Length: 20219
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/trx_addons/js/trx_addons.js
200 OK 116 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/trx_addons/js/trx_addons.js
IP
File type ASCII text, with very long lines (65389)
Size 116 kB (115603 bytes)
Hash 30ff015fb6084e01e0d5afbc2ed4e7cf
7e22a4429d9f5b01ecd014a6c5a1b6c4906d347b
29e1ea749f9ff7cb19aeca9519c2c2494e2bff2b4edc4d3a7474bad5eb52bb42
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/trx_addons/js/trx_addons.js HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:21 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:25 GMT
Accept-Ranges: bytes
Content-Length: 115603
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/essential-grid/public/assets/js/rbtools.min.js?ver=6.5.14
200 OK 129 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/essential-grid/public/assets/js/rbtools.min.js?ver=6.5.14
IP
File type ASCII text, with very long lines (45108)
Size 129 kB (128668 bytes)
Hash 13c0e15e77282cb9a81d7ab1f7f6b956
a19812785e6871612d7e936b5d2889d10149637b
82c6e9fccae16e121eb4fd7800a79bca62d9bcfb760ca55e26bb4b441d48cb67
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-grid/public/assets/js/rbtools.min.js?ver=6.5.14 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:26 GMT
Accept-Ranges: bytes
Content-Length: 128668
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.3.0
200 OK 1.8 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.3.0
IP
File type ASCII text, with very long lines (1668)
Hash d0a6d8547c66b0d7b0172466558d1208
ff93916519c7b9483251f609e4d29f38c30a66e3
3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.3.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:21 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:04:47 GMT
Accept-Ranges: bytes
Content-Length: 1834
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.14
200 OK 385 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.14
IP
File type ASCII text, with very long lines (64288)
Size 385 kB (385173 bytes)
Hash e1127efba608518ff2ac4976e3706232
88214af265c867a3955d6b96619c6f614cb311fa
b893d1b1e1836ef5731a8e15b1a4e1536d147dfd9c9815414347a0c7db199119
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.14 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:20 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:28 GMT
Accept-Ranges: bytes
Content-Length: 385173
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.3.0
200 OK 2.1 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.3.0
IP
File type ASCII text, with very long lines (2139), with no line terminators
Hash b72c1cbb1530a011a27bd9800f26765a
27b825c5d8255f33b8427a059d4545ebd65e1746
a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.3.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:21 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:04:47 GMT
Accept-Ranges: bytes
Content-Length: 2139
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.3.0
200 OK 2.9 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.3.0
IP
File type ASCII text, with very long lines (2938), with no line terminators
Hash 0fd625c3991a4015814cffdc88e2fc82
d7c2f53e058210ff3ea773297641008bab71a5f3
2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.3.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:21 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:04:47 GMT
Accept-Ranges: bytes
Content-Length: 2938
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.22.0
200 OK 4.6 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.22.0
IP
File type ASCII text, with very long lines (4602), with no line terminators
Hash 25d887c9c8997522cf1184e1171d605c
8f9fc958307ce831e7313d22d996908f578956e2
ccdea9568a2dafdc3b5dfafd7cc65ed784a235fe1a3c2da2e4183a9bb834c136
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.22.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:21 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:05:06 GMT
Accept-Ranges: bytes
Content-Length: 4602
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21
200 OK 12 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21
IP
File type ASCII text, with very long lines (11827)
Hash 06a3b48689b0314af6c5da5b6ff27bfd
a98a815d90cba195409d39bd74d31b1e6f9dbf95
4cd7a0d2c9eb03966a0dc60658526c20fa4e8ee4a0660da469f55edaf9a18c9f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:21 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:05:06 GMT
Accept-Ranges: bytes
Content-Length: 11900
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/themes/save-life/js/superfish.js
200 OK 7.0 kB URL HTTP/1.1 workingtogethercol.org/wp-content/themes/save-life/js/superfish.js
IP
Hash f9d05e09e25decde14b866e111961d9c
8e158e5e21983ae63784fccbe5b80809a8df68a0
2dfe5caba27a4d6bb517de3a082ec7889b732919945586f4a7aae68116fed632
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/save-life/js/superfish.js HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:21 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:00:50 GMT
Accept-Ranges: bytes
Content-Length: 6993
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/themes/save-life/js/__scripts.js
200 OK 80 kB URL HTTP/1.1 workingtogethercol.org/wp-content/themes/save-life/js/__scripts.js
IP
File type ASCII text, with very long lines (65384)
Hash 30f917f476a49936213b4a6f58eb345a
79b2714adf8f8331f5c15bc5aef699c930b75325
448f3515e293dd74bc413a269efab6137bbb37d4de4e2dd3ae52955de5017b24
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/save-life/js/__scripts.js HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:21 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 20:42:24 GMT
Accept-Ranges: bytes
Content-Length: 79689
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
200 OK 158 kB URL HTTP/1.1 workingtogethercol.org/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
IP
File type ASCII text, with very long lines (65266)
Size 158 kB (158005 bytes)
Hash e53ec3d6e21be78115810135f5e956fe
523892839b88351523e0498ba881c4431197b54e
b15c3ea03d50c2430490e7416733a254feea4237bb60b54181bd3473ebe4149f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:21 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:34:06 GMT
Accept-Ranges: bytes
Content-Length: 158005
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
200 OK 1.2 kB URL HTTP/1.1 workingtogethercol.org/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
IP
File type ASCII text, with very long lines (1191), with no line terminators
Hash 51300497928562f8c86c7aaba99237cd
e5826832b85c6afc6502b74cbb8ac5394b04c363
6d161e98e47ae150b51211443eef37040fb6269dcf85ad2048548066dca99e6f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:21 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:34:06 GMT
Accept-Ranges: bytes
Content-Length: 1191
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
200 OK 906 B URL HTTP/1.1 workingtogethercol.org/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
IP
File type HTML document, ASCII text, with very long lines (906), with no line terminators
Hash 2c6d3b562a48e0df5474999dd47e58fb
945220e990eb176c14e53cc663fb01e04e31b59f
3e6131330963c472b950b8aaf544ba3829735b8ccb103d614ba7793e3a786550
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:21 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:34:06 GMT
Accept-Ranges: bytes
Content-Length: 906
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0
200 OK 20 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0
IP
File type ASCII text, with very long lines (19905)
Hash 596d6e5d8400fd1e913f9adc21071f93
fee2d7a4ac08d5a522c2298a5ad3ed30ac9e62ec
159faf7827be43b4c85a35fc941924a9de59a169d42d600b49161f60debf9dff
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:21 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:03:34 GMT
Accept-Ranges: bytes
Content-Length: 20124
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
workingtogethercol.org/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.3.0
200 OK 7.0 kB URL HTTP/1.1 workingtogethercol.org/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.3.0
IP
File type ASCII text, with very long lines (7043), with no line terminators
Hash 456663a286a204386735fd775542a59e
0a61620b88f4ae0fa7d71e2c7a014ea2c3ab5749
a7a83e60e7e3b8cadeed69327ba498b4cd68605db6e408729fa1b946758e7501
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.3.0 HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:21 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 21:04:47 GMT
Accept-Ranges: bytes
Content-Length: 7043
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
workingtogethercol.org/wp-content/themes/save-life/images/404.png
200 OK 27 kB URL HTTP/1.1 workingtogethercol.org/wp-content/themes/save-life/images/404.png
IP
File type PNG image data, 374 x 430, 8-bit/color RGBA, non-interlaced\012- data
Hash 655a779e82adb10407e3460839d0b2c0
e30efef8bb47e6bc49c3b6ef7491510d2bc2e093
164c25e67af1b8a998af4a64e387ae540ccb0d93958b05e4beb3da42910bbcc3
GET /wp-content/themes/save-life/images/404.png HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:21 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2022 19:00:50 GMT
Accept-Ranges: bytes
Content-Length: 27204
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
workingtogethercol.org/wp-content/uploads/2017/01/logo.png
200 OK 8.8 kB URL HTTP/2 workingtogethercol.org/wp-content/uploads/2017/01/logo.png
IP
File type PNG image data, 182 x 85, 8-bit/color RGBA, non-interlaced\012- data
Hash e33aca5009a91149633dec607a50e3a2
1cbb109ee14eff341df094f4ee26cd1d8aa2393a
d3cdd2cc46e5040cf1cf95a3a00bb75a7fcb7e620f1b59d5fc31a45f506aa260
GET /wp-content/uploads/2017/01/logo.png HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://workingtogethercol.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 31 Mar 2022 19:05:49 GMT
accept-ranges: bytes
content-length: 8796
content-type: image/png
date: Fri, 03 Feb 2023 13:04:21 GMT
server: Apache
X-Firefox-Spdy: h2
workingtogethercol.org/wp-content/uploads/2022/03/Recurso-1.png
200 OK 401 kB URL HTTP/2 workingtogethercol.org/wp-content/uploads/2022/03/Recurso-1.png
IP
File type PNG image data, 8258 x 2386, 8-bit/color RGBA, non-interlaced\012- data
Size 401 kB (401058 bytes)
Hash f110a19c91e51601399dc02bfcfecc6c
d3901bc993d875600d8dcaa29ad93f5028b5f850
e4257ab58fa510c157ae299ed44a0471c9fc1f107a2b94dc020d0e2bdefefca4
GET /wp-content/uploads/2022/03/Recurso-1.png HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://workingtogethercol.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 31 Mar 2022 20:05:00 GMT
accept-ranges: bytes
content-length: 401058
content-type: image/png
date: Fri, 03 Feb 2023 13:04:21 GMT
server: Apache
X-Firefox-Spdy: h2
workingtogethercol.org/wp-content/uploads/2022/03/cropped-Recurso-7-32x32.png
200 OK 1.5 kB URL HTTP/2 workingtogethercol.org/wp-content/uploads/2022/03/cropped-Recurso-7-32x32.png
IP
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 27d9dc8a5e318cf63e654bb6b1d8e91e
abe680c9f3720e7166957fd45a42f5075ca936f3
a7f0d80d8d07b8023189b01b6681ec5d1667fe2e44b616bf73a4b0d89eb75d85
GET /wp-content/uploads/2022/03/cropped-Recurso-7-32x32.png HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://workingtogethercol.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 31 Mar 2022 20:03:37 GMT
accept-ranges: bytes
content-length: 1544
content-type: image/png
date: Fri, 03 Feb 2023 13:04:22 GMT
server: Apache
X-Firefox-Spdy: h2
workingtogethercol.org/wp-content/uploads/2022/03/cropped-Recurso-7-192x192.png
200 OK 13 kB URL HTTP/2 workingtogethercol.org/wp-content/uploads/2022/03/cropped-Recurso-7-192x192.png
IP
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 7d067e24c99b3d6f1cd7391bec19e9eb
27a0e6cda3fe938640addeb68359f84d202a4555
edce40b6d8b2b1eb7006f2355d7a9d008c6c3ed3aa8f2799b261e69db305028c
GET /wp-content/uploads/2022/03/cropped-Recurso-7-192x192.png HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://workingtogethercol.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 31 Mar 2022 20:03:37 GMT
accept-ranges: bytes
content-length: 12763
content-type: image/png
date: Fri, 03 Feb 2023 13:04:22 GMT
server: Apache
X-Firefox-Spdy: h2
workingtogethercol.org/?wc-ajax=get_refreshed_fragments
200 OK 495 B URL HTTP/1.1 workingtogethercol.org/?wc-ajax=get_refreshed_fragments
IP
File type JSON data\012- , ASCII text, with very long lines (495), with no line terminators
Hash ed5c1cf49466781e90ab03b154c8b6a3
81d6f73c123fba32918bf78cca45f488e6b55715
34f1c67e3ea3efd2492db58afaf72098591324ba56f12078ae851212dbc2d44b
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: workingtogethercol.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: http://workingtogethercol.org
Connection: keep-alive
Referer: http://workingtogethercol.org/inbox/Bofa/verify.php
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:04:21 GMT
Server: Apache
Access-Control-Allow-Origin: http://workingtogethercol.org
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Robots-Tag: noindex
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json; charset=UTF-8
45.33.119.221
23.33.119.27