r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9990
Expires: Thu, 08 Dec 2022 07:13:58 GMT
Date: Thu, 08 Dec 2022 04:27:28 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12488
Expires: Thu, 08 Dec 2022 07:55:36 GMT
Date: Thu, 08 Dec 2022 04:27:28 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 08 Dec 2022 04:08:08 GMT
content-type: application/json
age: 1160
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c3470f9f0a4df8c1496b577fa9435ff6
f83b0226bb57ed0f3e1acdad61b940414add135d
f542579e3a3577a646babde862282c2afda6ed784360a915143216100f7a3d91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F542579E3A3577A646BABDE862282C2AFDA6ED784360A915143216100F7A3D91"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6691
Expires: Thu, 08 Dec 2022 06:18:59 GMT
Date: Thu, 08 Dec 2022 04:27:28 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: r6qh9TGMd3iN+Lh4DPY3CZXhTaKUW4Ae16yz3pRTxmt0zQQcMIwndIN7faLb6Gnv4Np+ct+JSMQ=
x-amz-request-id: WNXJH81JJ8ANSTMY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 03:49:37 GMT
age: 2271
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:27:28 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
electrcirepairpay.ml/
200 OK 24 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (10232), with CRLF, LF line terminators
Hash 21f0e318210746302408d8555e26d8bc
0eb13fda670c1375d1c8fb2e4433ce3c58404e11
9387c8be04cf77bfc131523f8230a161cb867637ae5af6e316ad94467c9db163
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
content-type: text/html
last-modified: Fri, 30 Sep 2022 04:08:09 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 24538
date: Thu, 08 Dec 2022 04:27:28 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 04:27:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3074a66f6d9b2e2af9b41ec0e2f4e2db
942e2c49b3848f11da966937f5914c62aed24bce
7c3b21b91aab06aff58cc56ce4b7273a7d320df8b0b4ad685c660e03ba0b72aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 04:27:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 04:27:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
electrcirepairpay.ml/wp-content/plugins/easy-testimonials-pro/include/assets/css/rateit-ver=4.8.2.css
200 OK 401 B URL HTTP/1.1 electrcirepairpay.ml/wp-content/plugins/easy-testimonials-pro/include/assets/css/rateit-ver=4.8.2.css
IP
File type ASCII text, with very long lines (1244), with no line terminators
Hash af96e9b51ec9f9a4dd60804219525c16
587d44ccdbdbb1b36aa1ea97643a73cfbab7d960
a18ed1cdbe912f740a668317cf727381145e31191ec2745bdf4f9be8b348fe8f
GET /wp-content/plugins/easy-testimonials-pro/include/assets/css/rateit-ver=4.8.2.css HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:29 GMT
content-type: text/css
last-modified: Mon, 19 Sep 2022 14:53:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 401
date: Thu, 08 Dec 2022 04:27:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 08 Dec 2022 04:07:55 GMT
age: 1174
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 3531524befd90335a5cedc7ae4772fb0
092b6ec0e7e242ce3b9c05a70d050fe0264a33cb
4afab98a1c0cc67a956ef89eecf183b95f5eb61a3cf90ea3618f76c47252c174
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=136412
Date: Thu, 08 Dec 2022 04:27:29 GMT
Etag: "6390cdeb-1d7"
Expires: Fri, 09 Dec 2022 18:21:01 GMT
Last-Modified: Wed, 07 Dec 2022 17:31:23 GMT
Server: ECS (cha/81DD)
X-Cache: Miss from cloudfront
Via: 1.1 b5d0d50a85cb855c8d83851f71d078e2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ORD52-C1
X-Amz-Cf-Id: zRMdocW-6IwIqr-XlOaQvz6D3eLAbqZ5Ht4U4LbLZKLKaSblnYQdPg==
Age: 2978
electrcirepairpay.ml/wp-content/themes/Riviera/css/font-awesome.min-ver=4.8.2.css
200 OK 8.0 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/themes/Riviera/css/font-awesome.min-ver=4.8.2.css
IP
File type ASCII text, with very long lines (31155)
Hash fd00d32e7adddbb9af10869087bc703b
872e13427e42adc08151b9a415e5af43e207cbe3
160d88266af99a6f958ab58aa1b441a0e662ab028f55696007423409766fe9a1
GET /wp-content/themes/Riviera/css/font-awesome.min-ver=4.8.2.css HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:29 GMT
content-type: text/css
last-modified: Fri, 16 Sep 2022 23:24:11 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 7989
date: Thu, 08 Dec 2022 04:27:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/themes/Riviera/css/owl.theme.default.min-ver=4.8.2.css
200 OK 445 B URL HTTP/1.1 electrcirepairpay.ml/wp-content/themes/Riviera/css/owl.theme.default.min-ver=4.8.2.css
IP
File type ASCII text, with very long lines (846)
Hash ae8c145b90696c5f5cc30c3b201e623c
cd7d2820e198bc34818f22981e52fc01be638a48
5b8d1a6e1444489ec1ad92b3a976f71d483df4d2c70c44dc13ff18242666dbf1
GET /wp-content/themes/Riviera/css/owl.theme.default.min-ver=4.8.2.css HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:29 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 22:08:09 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 445
date: Thu, 08 Dec 2022 04:27:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/themes/Riviera/css/owl.carousel.min-ver=4.8.2.css
200 OK 1.0 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/themes/Riviera/css/owl.carousel.min-ver=4.8.2.css
IP
File type ASCII text, with very long lines (2908)
Hash ab7e893dcb022b8df9653cf85832cee9
b95d19cf9829a27654b8fdcc2653561be862a45d
bd7bc2934912138f7d0f3a0cdcfe268af6036f57d2fa871a6c24608e3fa23f88
GET /wp-content/themes/Riviera/css/owl.carousel.min-ver=4.8.2.css HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:29 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 10:24:57 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1029
date: Thu, 08 Dec 2022 04:27:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/plugins/easy-testimonials/include/assets/css/style-ver=4.8.2.css
200 OK 28 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/plugins/easy-testimonials/include/assets/css/style-ver=4.8.2.css
IP
File type ASCII text, with very long lines (42128), with no line terminators
Hash 5e70f71333f8273edafcf0300864ac87
132e6f17424427163b8b37b30fa95466c49a6e09
538a4d779f9a58bd83db8920f6a823c68b9bfb680bcd10bfa2ac94e4b5ce4b71
GET /wp-content/plugins/easy-testimonials/include/assets/css/style-ver=4.8.2.css HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:29 GMT
content-type: text/css
last-modified: Sat, 27 Aug 2022 23:24:56 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 28157
date: Thu, 08 Dec 2022 04:27:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 04:27:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f3831239d083e472c41b07daa1e9865e
1c04eecfb419aed52e76abfd07bbb2e44d78abe3
53d0f595b8a5058885bc79f175b6add9304c42c0d3ff1c86539b349645b556d7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "53D0F595B8A5058885BC79F175B6ADD9304C42C0D3FF1C86539B349645B556D7"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6499
Expires: Thu, 08 Dec 2022 06:15:48 GMT
Date: Thu, 08 Dec 2022 04:27:29 GMT
Connection: keep-alive
electrcirepairpay.ml/wp-content/themes/Riviera/css/animate.min-ver=4.8.2.css
200 OK 5.5 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/themes/Riviera/css/animate.min-ver=4.8.2.css
IP
File type ASCII text, with very long lines (55851)
Hash 8d64695b20c25396b5e8f0389b1225a4
e1739b1a022ebcb2adf6604157dc8d84cb07e05d
162dc0e31c56179cb90b906b9df9a3565abaf1ca497e5be2ecb5fe2a6c1d8b8b
GET /wp-content/themes/Riviera/css/animate.min-ver=4.8.2.css HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:29 GMT
content-type: text/css
last-modified: Tue, 30 Aug 2022 10:22:15 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 5478
date: Thu, 08 Dec 2022 04:27:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
liqadprdct-capture-prod-east.gannettdigital.com/capture_logger/api/v1/insights
200 OK 0 B URL HTTP/1.1 liqadprdct-capture-prod-east.gannettdigital.com/capture_logger/api/v1/insights
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /capture_logger/api/v1/insights HTTP/1.1
Host: liqadprdct-capture-prod-east.gannettdigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://electrcirepairpay.ml/
Origin: http://electrcirepairpay.ml
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-headers: content-type
x-envoy-upstream-service-time: 1
date: Thu, 08 Dec 2022 04:27:29 GMT
server: envoy
transfer-encoding: chunked
electrcirepairpay.ml/wp-content/themes/Riviera/css/stellarnav-ver=4.8.2.css
200 OK 2.5 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/themes/Riviera/css/stellarnav-ver=4.8.2.css
IP
Hash 15361efccb3b5f0fba7ef4e6b31232d1
566c9536de00f4f93bc37730053339d05cc7ac27
b579998da1062ce9ec705494f25863329a1041842a1391883591fdc3c09a56d6
GET /wp-content/themes/Riviera/css/stellarnav-ver=4.8.2.css HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:29 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 22:08:09 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2529
date: Thu, 08 Dec 2022 04:27:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/plugins/smart-slider-3/library/media/smartslider.min-1664480503.css
200 OK 3.6 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/plugins/smart-slider-3/library/media/smartslider.min-1664480503.css
IP
File type ASCII text, with very long lines (18216), with no line terminators
Hash 9303399b4b44b0046695005f32b64bbc
369115efc793659ad061459fea3180cbb261e5ec
b95be2ae62e1099c57e1c82a547f7e66d6891e534c68a4acff5aae7a8ee009e5
GET /wp-content/plugins/smart-slider-3/library/media/smartslider.min-1664480503.css HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:29 GMT
content-type: text/css
last-modified: Thu, 29 Sep 2022 19:41:43 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3592
date: Thu, 08 Dec 2022 04:27:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp/wp-includes/js/jquery/jquery-migrate.min-ver=1.4.1.js
200 OK 4.3 kB URL HTTP/1.1 electrcirepairpay.ml/wp/wp-includes/js/jquery/jquery-migrate.min-ver=1.4.1.js
IP
File type ASCII text, with very long lines (9959)
Hash cbb781ab16adc76588b488d1e472b8a9
85455b9c0b265a0bb9815ce834c67972ff0d437d
4ae120ba11bfa1cb6f71ceeecc5b6a0abe34cb4fb195a46ef3a85b40d1e1244e
Analyzer Verdict Alert fortinet Phishing
GET /wp/wp-includes/js/jquery/jquery-migrate.min-ver=1.4.1.js HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:29 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 22:08:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4303
date: Thu, 08 Dec 2022 04:27:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
ocsp.digicert.com/
200 OK 471 B IP
Hash 053aff7451e55d4269dd9610ab070f3f
b3376256d11d159b0c7280ba1515b78d7d9e12ca
24114ca560fe70d03185bd66985603fd5a03dc310aa9a8ea7a7b3723ed46ce3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5105
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 04:27:29 GMT
Last-Modified: Thu, 08 Dec 2022 03:02:24 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
liqadprdct-capture-prod-east.gannettdigital.com/capture_logger/api/v1/insights
200 OK 16 B URL HTTP/1.1 liqadprdct-capture-prod-east.gannettdigital.com/capture_logger/api/v1/insights
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JSON data\012- , ASCII text, with no line terminators
Hash 7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
POST /capture_logger/api/v1/insights HTTP/1.1
Host: liqadprdct-capture-prod-east.gannettdigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Content-Length: 324
Origin: http://electrcirepairpay.ml
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
access-control-expose-headers:
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
content-type: application/json; charset=utf-8
vary: Accept, Origin
etag: W/"c955e57777ec0d73639dca6748560d00"
cache-control: max-age=0, private, must-revalidate
x-request-id: 86e3bcf1-e451-4943-98ba-1e692c104ab1
x-runtime: 0.002506
x-envoy-upstream-service-time: 3
date: Thu, 08 Dec 2022 04:27:29 GMT
server: envoy
transfer-encoding: chunked
electrcirepairpay.ml/wp-content/themes/Riviera/css/bootstrap.min-ver=4.8.2.css
200 OK 25 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/themes/Riviera/css/bootstrap.min-ver=4.8.2.css
IP
File type ASCII text, with very long lines (65371)
Hash ae354b1192e390fa65684522a47d425a
15211eb37324e87a537d2e6e3190a6ef2a3bf58d
54be5ac49a68ddbdd0d7876e5157c5eba571cd007c4c559b68943b4e2d0ff2cf
GET /wp-content/themes/Riviera/css/bootstrap.min-ver=4.8.2.css HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:29 GMT
content-type: text/css
last-modified: Tue, 23 Aug 2022 04:54:09 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 25241
date: Thu, 08 Dec 2022 04:27:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/themes/Riviera/css/style-ver=4.8.2.css
200 OK 22 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/themes/Riviera/css/style-ver=4.8.2.css
IP
File type assembler source, ASCII text
Hash e7d9d85541403d8d1a34980f4e5257ab
5e27cc7070d787a98b24f4b7e6b370366ec3fc26
2da0b4dcb8f74af11c499c04e9224aec7edaf1d79d0743a9c8782bb7270e376c
GET /wp-content/themes/Riviera/css/style-ver=4.8.2.css HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:29 GMT
content-type: text/css
last-modified: Mon, 19 Sep 2022 14:53:11 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 22155
date: Thu, 08 Dec 2022 04:27:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/plugins/smart-slider-3/nextend/media/dist/n2.min-1664480503.js
200 OK 1.5 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/plugins/smart-slider-3/nextend/media/dist/n2.min-1664480503.js
IP
File type ASCII text, with very long lines (3495), with no line terminators
Hash 471727625f47a1a52adac7d999b81538
41175bf5fa0a45559f93b17a353dca089c065d16
d4c56f9b081c8e6d5896cc1850b5162f584a7c78a08a5572fe22d33e30c69b39
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/smart-slider-3/nextend/media/dist/n2.min-1664480503.js HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:29 GMT
content-type: application/javascript
last-modified: Thu, 29 Sep 2022 19:41:43 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1473
date: Thu, 08 Dec 2022 04:27:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp/wp-includes/js/jquery/jquery-ver=1.12.4.js
200 OK 39 kB URL HTTP/1.1 electrcirepairpay.ml/wp/wp-includes/js/jquery/jquery-ver=1.12.4.js
IP
File type ASCII text, with very long lines (32077)
Hash 52e2b84578787767c3c49a3b193b94a4
99a84318ca297a4d061b7008e1c3e3e806a79d3c
d9a40b219cc9307378ddb0cd864a73518bb83a249abdf3ef0edbeb8c3eca79df
Analyzer Verdict Alert fortinet Phishing
GET /wp/wp-includes/js/jquery/jquery-ver=1.12.4.js HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:29 GMT
content-type: application/javascript
last-modified: Sat, 20 Aug 2022 17:37:14 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 39407
date: Thu, 08 Dec 2022 04:27:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/plugins/smart-slider-3/nextend/media/dist/nextend-webfontloader.min-1664480503.js
200 OK 5.3 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/plugins/smart-slider-3/nextend/media/dist/nextend-webfontloader.min-1664480503.js
IP
File type Unicode text, UTF-8 text, with very long lines (12306), with no line terminators
Hash 744af79f1a98f1ba6f899dd68aed47fa
7b13f1521df8990c8ac2014970903996b17a9f9c
8089ffdec86af3e117f048ef7601c2924b4bd2e152bb60bf3f24f1599ec41657
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/smart-slider-3/nextend/media/dist/nextend-webfontloader.min-1664480503.js HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:29 GMT
content-type: application/javascript
last-modified: Thu, 29 Sep 2022 19:41:43 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 5308
date: Thu, 08 Dec 2022 04:27:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/plugins/smart-slider-3/library/media/plugins/type/simple/simple/dist/smartslider-simple-type-frontend.min-1664480503.js
200 OK 4.2 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/plugins/smart-slider-3/library/media/plugins/type/simple/simple/dist/smartslider-simple-type-frontend.min-1664480503.js
IP
File type ASCII text, with very long lines (18213), with no line terminators
Hash fad248ea4f3576a97ffbb7a358b7b579
4311c3d905ccf3d5d3611d4c6e8bef4b039be853
1de24b8720bfd7bb5d6e32aa96bbeaa48979a08270fbbdf6c56b09cb7cfc07a9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/smart-slider-3/library/media/plugins/type/simple/simple/dist/smartslider-simple-type-frontend.min-1664480503.js HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:29 GMT
content-type: application/javascript
last-modified: Thu, 29 Sep 2022 19:41:43 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4240
date: Thu, 08 Dec 2022 04:27:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HuPJSdtjwf9PSzyghUTH+w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TZ0epm/aNDQcLir7UiF2IiMu+jc=
electrcirepairpay.ml/wp-content/plugins/easy-testimonials-pro/include/assets/css/easy_testimonials_pro_new-ver=4.8.2.css
200 OK 6.0 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/plugins/easy-testimonials-pro/include/assets/css/easy_testimonials_pro_new-ver=4.8.2.css
IP
File type ASCII text, with CRLF line terminators
Hash d5f1d5d1e40dafd7efaec9dfc3b95eb1
41f241e2fd4e7f746f21cbe5c6e37e1000539c31
9ba75634fe0eeab04d4a5a6a5de962ec85b1f9ad7c87e79932daf8116d3d668d
GET /wp-content/plugins/easy-testimonials-pro/include/assets/css/easy_testimonials_pro_new-ver=4.8.2.css HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:29 GMT
content-type: text/css
last-modified: Tue, 23 Aug 2022 04:54:09 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 5987
date: Thu, 08 Dec 2022 04:27:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/plugins/easy-testimonials-pro/include/assets/css/responsive-ver=4.8.2.css
200 OK 1.7 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/plugins/easy-testimonials-pro/include/assets/css/responsive-ver=4.8.2.css
IP
File type ASCII text, with CRLF line terminators
Hash 1385207719fe58ca59caf2c698de551d
37cc0eb2aa9570437a37a882ac09d914ca23fd88
141a7aeb2adb82c2728d6ec5cac28ad992bfa87a2c470814d46a9114656f9092
GET /wp-content/plugins/easy-testimonials-pro/include/assets/css/responsive-ver=4.8.2.css HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:29 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 22:08:09 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1689
date: Thu, 08 Dec 2022 04:27:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/plugins/easy-testimonials-pro/include/assets/css/easy_testimonials_pro-ver=4.8.2.css
200 OK 20 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/plugins/easy-testimonials-pro/include/assets/css/easy_testimonials_pro-ver=4.8.2.css
IP
File type CSV text\012- , Unicode text, UTF-8 text, with CRLF line terminators
Hash 723348d1945fe12ed638ea7b5c16fa56
3301b939fec43a057035c964045e866bfeb875ff
b634b0133126a33963ca2e452c783ef22d47b803fd8b7152fdb1cf1fe366fbe3
GET /wp-content/plugins/easy-testimonials-pro/include/assets/css/easy_testimonials_pro-ver=4.8.2.css HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:29 GMT
content-type: text/css
last-modified: Wed, 14 Sep 2022 10:51:38 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 20421
date: Thu, 08 Dec 2022 04:27:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/plugins/easy-testimonials-pro/include/assets/css/ionicons.min-ver=4.8.2.css
200 OK 10 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/plugins/easy-testimonials-pro/include/assets/css/ionicons.min-ver=4.8.2.css
IP
File type Unicode text, UTF-8 text, with very long lines (51221), with CRLF line terminators
Hash 4b65bc9f3e2c1e4238c71cfe56b41e5a
e5d4ac31cd3be69677c7146853282d13cf3dd4da
a477c1945fbc58811b469198defe9776156afd7930e6c5294799223a31348386
GET /wp-content/plugins/easy-testimonials-pro/include/assets/css/ionicons.min-ver=4.8.2.css HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:29 GMT
content-type: text/css
last-modified: Tue, 23 Aug 2022 04:54:09 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 10237
date: Thu, 08 Dec 2022 04:27:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/plugins/smart-slider-3/library/media/dist/smartslider-frontend.min-1664480503.js
200 OK 32 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/plugins/smart-slider-3/library/media/dist/smartslider-frontend.min-1664480503.js
IP
File type ASCII text, with very long lines (32024)
Hash dc54cb8b0bd9a10ced5c04643612390f
5a7b09a3bbbe76aab32b6543259cb7217536b885
10fb92307c1558a3af722909d965ce3b0e1404e6ff18b9607cc0db0995bd6980
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/smart-slider-3/library/media/dist/smartslider-frontend.min-1664480503.js HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:29 GMT
content-type: application/javascript
last-modified: Thu, 29 Sep 2022 19:41:43 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 31475
date: Thu, 08 Dec 2022 04:27:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/plugins/gravityforms/css/formreset.min-ver=2.2.6.css
200 OK 425 B URL HTTP/1.1 electrcirepairpay.ml/wp-content/plugins/gravityforms/css/formreset.min-ver=2.2.6.css
IP
File type ASCII text, with very long lines (3840), with no line terminators
Hash 29ac158f86bcf2b6c4a09fb9c77a3bde
ad31c0f6513793ae8e394f7b262dd08fdd86bcab
3c7ff28b4c3e19895593c905af7c80c42eba5a14e1e5d7198966862068afb8bc
GET /wp-content/plugins/gravityforms/css/formreset.min-ver=2.2.6.css HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:30 GMT
content-type: text/css
last-modified: Sun, 11 Sep 2022 21:38:56 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 425
date: Thu, 08 Dec 2022 04:27:30 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/plugins/gravityforms/css/readyclass.min-ver=2.2.6.css
200 OK 4.2 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/plugins/gravityforms/css/readyclass.min-ver=2.2.6.css
IP
File type ASCII text, with very long lines (30635), with no line terminators
Hash 8ec07a0ed5fa0add4a85bf1cd1901807
cc042434f944cd2244ee14e2d9f3192b0c14c515
61d4492c8d29d45fa4d9bae1920e6d944f88f273fbc6a043f80836f96cdd270a
GET /wp-content/plugins/gravityforms/css/readyclass.min-ver=2.2.6.css HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:30 GMT
content-type: text/css
last-modified: Sun, 11 Sep 2022 21:38:56 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4232
date: Thu, 08 Dec 2022 04:27:30 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/plugins/gravityforms/css/browsers.min-ver=2.2.6.css
200 OK 1.4 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/plugins/gravityforms/css/browsers.min-ver=2.2.6.css
IP
File type ASCII text, with very long lines (7262), with no line terminators
Hash 1a4087e0d895ea8e9d5de6375c99614e
04a83e18d6c1a13909a321a99ec9bb21c836a207
befb03145661da8911f265a6ee2a8edcb31eb2a6c1ca28c9061ece44ff60c3c4
GET /wp-content/plugins/gravityforms/css/browsers.min-ver=2.2.6.css HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:30 GMT
content-type: text/css
last-modified: Sun, 11 Sep 2022 21:38:56 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1382
date: Thu, 08 Dec 2022 04:27:30 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/themes/Riviera/js/bootstrap.min-ver=4.8.2.js
200 OK 12 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/themes/Riviera/js/bootstrap.min-ver=4.8.2.js
IP
File type ASCII text, with very long lines (32033)
Hash dac14870597de5d0198b4b4c7165da08
6cee2214cb2ec7b970415fc167f62bd0d13ced43
e9d1c800a7e9e81adca8d6a382805693796052320a209442bab63f0ef0c24cf2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Riviera/js/bootstrap.min-ver=4.8.2.js HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:30 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 21:24:56 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 11889
date: Thu, 08 Dec 2022 04:27:30 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
cdn.rlets.com/capture_static/mms/mms.js
200 OK 15 kB URL HTTP/2 cdn.rlets.com/capture_static/mms/mms.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 73d9872316eb30dc517486d204cd5a40
e8779c3eeecdb9da7486fa81fbce8efdb3e3ce3c
4ab487fe214e51c0abdc3b26728bd60f15f81afc3cf742f3797e70f70def169a
GET /capture_static/mms/mms.js HTTP/1.1
Host: cdn.rlets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 07 Nov 2022 20:49:52 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 07 Dec 2022 16:55:55 GMT
etag: W/"f62fe0451df1f329c4bd2d57f1690606"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: yS6H064UtVPkJsqEwDMMYZ9vTtp4pAuzxGOj7Ve4oM_qqStOxYTcPw==
age: 41503
X-Firefox-Spdy: h2
electrcirepairpay.ml/wp-content/themes/Riviera/js/owl.carousel.min-ver=4.8.2.js
200 OK 13 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/themes/Riviera/js/owl.carousel.min-ver=4.8.2.js
IP
File type ASCII text, with very long lines (32000)
Hash f40d5a49a54ce4de32589b63ac637c9a
5c0ff7eb1f2c298602e1e350b93910922feeb217
9b9349fe051b4a857ef764a40dab87ca1ecc6357b66acafd9ec148723d3066f5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Riviera/js/owl.carousel.min-ver=4.8.2.js HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:30 GMT
content-type: application/javascript
last-modified: Sun, 04 Sep 2022 08:25:01 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 13175
date: Thu, 08 Dec 2022 04:27:30 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/themes/Riviera/js/skip-link-focus-ver=4.8.2.js
200 OK 424 B URL HTTP/1.1 electrcirepairpay.ml/wp-content/themes/Riviera/js/skip-link-focus-ver=4.8.2.js
IP
Hash 6226660c67147356222d01bc777520b3
56f801942816f4255f6bd33e5602c5a0fc7d009a
3d1346e1064e1c1256d0672902ad0d4d70390e8532c6ece280fd451b238c3201
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Riviera/js/skip-link-focus-ver=4.8.2.js HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:30 GMT
content-type: application/javascript
last-modified: Tue, 23 Aug 2022 04:54:09 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 424
date: Thu, 08 Dec 2022 04:27:30 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/themes/Riviera/js/stellarnavfocus.min-ver=4.8.2.js
200 OK 1.9 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/themes/Riviera/js/stellarnavfocus.min-ver=4.8.2.js
IP
File type HTML document, ASCII text, with very long lines (6678), with no line terminators
Hash e26ec00078d9b65cebac28096c3f363c
ea404a5e1a1271cf3f66f0eaf75ac0be16066634
49ddbb272ebb31d73d83ebbac124e3f3dfa30923de75c652121283307785fdf6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Riviera/js/stellarnavfocus.min-ver=4.8.2.js HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:30 GMT
content-type: application/javascript
last-modified: Sun, 11 Sep 2022 21:38:57 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1931
date: Thu, 08 Dec 2022 04:27:30 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 3582a0014f712cac68b26c42dc00cb2b
c674e470b2960d805bb2b02c89fa67a4f209d343
ba71a642d1131853c04216ec34fb5eec5838d951c9f1ca3979b2da6886e1fb65
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=141934
Date: Thu, 08 Dec 2022 04:27:30 GMT
Etag: "6390d62d-1d7"
Expires: Fri, 09 Dec 2022 19:53:04 GMT
Last-Modified: Wed, 07 Dec 2022 18:06:37 GMT
Server: ECS (cha/81FE)
X-Cache: Miss from cloudfront
Via: 1.1 b5d0d50a85cb855c8d83851f71d078e2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ORD52-C1
X-Amz-Cf-Id: rk5DMTHlufBLViKHevv0V4q-mrlm2_IumFtliIhoZc3Rbt0S862r1w==
Age: 6387
electrcirepairpay.ml/wp-content/themes/Riviera/js/custom-ver=4.8.2.js
200 OK 923 B URL HTTP/1.1 electrcirepairpay.ml/wp-content/themes/Riviera/js/custom-ver=4.8.2.js
IP
Hash 799e9be1d3a6d4c6452f523a159d3849
27b1e3d38292b10ba5266f4bde49dc24c8e2e4de
87d5bec919d77d40c67770b09ea3db8491a26ddca68fe9d1b3ce7ea09bba5b3c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Riviera/js/custom-ver=4.8.2.js HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:30 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 22:08:09 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 923
date: Thu, 08 Dec 2022 04:27:30 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/plugins/easy-testimonials-pro/include/assets/js/jquery.cycle2.pro.min-ver=4.8.2.js
200 OK 12 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/plugins/easy-testimonials-pro/include/assets/js/jquery.cycle2.pro.min-ver=4.8.2.js
IP
File type ASCII text, with very long lines (10340), with CRLF line terminators
Hash a86f20c3c65336a9f49fbe8075e4fe20
55b470f0ba7714558938612bb7afa2424044095c
cc8ab9304cbc40e5d36c4300d04bcd7eeec51c5a0c66515244d2be21be519f90
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/easy-testimonials-pro/include/assets/js/jquery.cycle2.pro.min-ver=4.8.2.js HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:30 GMT
content-type: application/javascript
last-modified: Sat, 27 Aug 2022 23:24:56 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 11534
date: Thu, 08 Dec 2022 04:27:30 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/plugins/easy-testimonials-pro/include/assets/js/jquery.rateit.min-ver=4.8.2.js
200 OK 2.5 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/plugins/easy-testimonials-pro/include/assets/js/jquery.rateit.min-ver=4.8.2.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (6160), with CRLF line terminators
Hash 66b299b2861122b07b4121108429a42f
8afd1ec8e4ced6db852795154626eac69f0abd34
fb6bb852a9157975716f3809f977ccf09e0f75fc071d35e9af7a813c925e14a6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/easy-testimonials-pro/include/assets/js/jquery.rateit.min-ver=4.8.2.js HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:30 GMT
content-type: application/javascript
last-modified: Thu, 25 Aug 2022 13:53:18 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2512
date: Thu, 08 Dec 2022 04:27:30 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/plugins/smart-slider-3/nextend/media/dist/nextend-frontend.min-1664480503.js
200 OK 33 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/plugins/smart-slider-3/nextend/media/dist/nextend-frontend.min-1664480503.js
IP
File type ASCII text, with very long lines (32078)
Hash 51aba2cae90cddf57767e8d3035ea83b
608a67c102306cf902288ca8b2fb062f3871e34c
3664cdbf5c1bbe7145b8989c859c21c2b033c9526df511611629b00406badd95
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/smart-slider-3/nextend/media/dist/nextend-frontend.min-1664480503.js HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:29 GMT
content-type: application/javascript
last-modified: Thu, 29 Sep 2022 19:41:43 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 32952
date: Thu, 08 Dec 2022 04:27:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp/wp-includes/js/wp-embed.min-ver=4.8.2.js
200 OK 765 B URL HTTP/1.1 electrcirepairpay.ml/wp/wp-includes/js/wp-embed.min-ver=4.8.2.js
IP
File type ASCII text, with very long lines (1398), with no line terminators
Hash 36d31e5e90ecad1726b083b201f01ac2
a932a9781ee6d270e4505dc5ed28e3108f9ee851
c141ad9f1aa165b8ed384d8a8b755e763ea6b1696163e405d717af7ba2783f80
Analyzer Verdict Alert fortinet Phishing
GET /wp/wp-includes/js/wp-embed.min-ver=4.8.2.js HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:30 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 21:24:56 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 765
date: Thu, 08 Dec 2022 04:27:30 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/plugins/gravityforms/js/jquery.maskedinput.min-ver=2.2.6.js
200 OK 2.1 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/plugins/gravityforms/js/jquery.maskedinput.min-ver=2.2.6.js
IP
File type ASCII text, with very long lines (4112)
Hash 8eacc08683a046a965bd82356509a29f
b7f10a8fd60ed052bacb57a1fb29aed07ed2a4c2
5a48bfb50d5ae3f2b10807a324b9f65aa550e0d33ba294c767442b5b1aecc6ae
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gravityforms/js/jquery.maskedinput.min-ver=2.2.6.js HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:30 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 23:24:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2050
date: Thu, 08 Dec 2022 04:27:30 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
cdn.rlets.com/capture_configs/6cc/fc4/bb5/d9d4875971b1516508f347a.js
200 OK 46 kB URL HTTP/2 cdn.rlets.com/capture_configs/6cc/fc4/bb5/d9d4875971b1516508f347a.js
IP
File type Unicode text, UTF-8 text, with very long lines (32996)
Hash 37fdfbd1e389423e43f70181c7642e44
5c4f4156f73081b78467f23b0e0e189744cff7e4
2135dd3ef1987e3f6cc9177b6935dee70bcda1a5cecae24028dfed90407a342c
GET /capture_configs/6cc/fc4/bb5/d9d4875971b1516508f347a.js HTTP/1.1
Host: cdn.rlets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Thu, 08 Dec 2022 04:27:29 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control:
etag: W/"d8c35393184240ce55d592ea9bda91be"
x-request-id: d12b8c1b-13cb-4e0b-99c8-af92830f6e42
x-runtime: 0.063399
content-encoding: br
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 2Hy7Cyv3LwjF3Rv1zjnpcrt1CZRmABvI3qs3vOivD_j-9L_q6quDNQ==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 04:27:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 04:27:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
electrcirepairpay.ml/wp-content/plugins/gravityforms/js/placeholders.jquery.min-ver=2.2.6.js
200 OK 1.9 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/plugins/gravityforms/js/placeholders.jquery.min-ver=2.2.6.js
IP
File type ASCII text, with very long lines (4610)
Hash 42c33206b0ffcfd294b638f4f0fc8970
d8cb43d56c566e9db76d394f4d9bd534691cd363
94d9597be8a88251457705060dabbce62d4afd56d0c094e48661d588d05ba5f5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gravityforms/js/placeholders.jquery.min-ver=2.2.6.js HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:30 GMT
content-type: application/javascript
last-modified: Sun, 04 Sep 2022 08:25:00 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1855
date: Thu, 08 Dec 2022 04:27:30 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0e9eef4ed41ef94e9ea175ad243e294e
b6f83e508270413dabe55e2884b5409ca7978e24
0e741ca8d92717128bca7aed937bca43519a8d20a9d3dd8670da656ad51a695e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 04:27:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://electrcirepairpay.ml
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 18:52:41 GMT
expires: Tue, 05 Dec 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 207289
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://electrcirepairpay.ml
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 06:30:11 GMT
expires: Sat, 02 Dec 2023 06:30:11 GMT
cache-control: public, max-age=31536000
age: 511039
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 04:27:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
electrcirepairpay.ml/wp-content/uploads/logo.png
200 OK 6.3 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/uploads/logo.png
IP
File type PNG image data, 320 x 75, 8-bit colormap, non-interlaced\012- data
Hash a60085d9682245ea000485744afa4d3b
4d14199c2a129dbb21a86d35fe62c1570b70eeca
d36c41f125e89de4d6526bcc2ee1fac22e1614fb1e2739bd54a7da2633a441a5
GET /wp-content/uploads/logo.png HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:30 GMT
content-type: image/png
last-modified: Fri, 20 Dec 2019 15:44:23 GMT
accept-ranges: bytes
content-length: 6255
date: Thu, 08 Dec 2022 04:27:30 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/themes/Riviera/images/LocalIQ_Powered.png
200 OK 2.2 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/themes/Riviera/images/LocalIQ_Powered.png
IP
File type PNG image data, 80 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 70c59f0a9353542a407c87a7568e1c5f
b3153c1648f387f3b120838259a797389d85ce2b
ad1d1603236f303cb0731a3fe247f787b7404ff6d9668c1870af63f9e0a733b0
GET /wp-content/themes/Riviera/images/LocalIQ_Powered.png HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:30 GMT
content-type: image/png
last-modified: Mon, 15 Aug 2022 22:08:09 GMT
accept-ranges: bytes
content-length: 2165
date: Thu, 08 Dec 2022 04:27:30 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8552
Expires: Thu, 08 Dec 2022 06:50:03 GMT
Date: Thu, 08 Dec 2022 04:27:31 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8552
Expires: Thu, 08 Dec 2022 06:50:03 GMT
Date: Thu, 08 Dec 2022 04:27:31 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8552
Expires: Thu, 08 Dec 2022 06:50:03 GMT
Date: Thu, 08 Dec 2022 04:27:31 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg
200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c408efaa98ac2ce63bb1618368d10c15
a51bbb49ebd862d04eaee465d0a35b22dcd21391
077eb8c8739f527828c71c25a1c3aaae46afead3aac093ec11a6d5488ef2f0ec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9596
x-amzn-requestid: e5e6ceb2-5bad-4146-a9de-92a859716029
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy3_qH63oAMFfLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639106ca-678bed1b7729b8aa2645688d;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FsbiyZG0110CEANduIIWuLcxFOxfrV0YPvOSy-ScXFIX1qM6qaOdCg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:21:22 GMT
age: 21969
etag: "a51bbb49ebd862d04eaee465d0a35b22dcd21391"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57be99ac898a37d73f2ba4a24f56248f
04e32eb45581201a6a1863200e4d139df48285e6
a20081b64fc019372843360b15aa3461ec9dd3deb50ab398bca0a5e74d5468c2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 12534
x-amzn-requestid: 2a01f2ba-cf3a-4f59-8339-214c66bcc0d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czDbyGTcoAMF_TQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911918-5d3eba8d01e4175a71acc6cd;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 22:52:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NoZlZ8WFfOuIbkWaC2pJPJQrWtjzz2gCHJWr-u-nMNYmu8MkTf6_PA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:03:58 GMT
age: 19413
etag: "04e32eb45581201a6a1863200e4d139df48285e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F377ab47f-a48d-4112-a562-b49a358636f1.png
200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F377ab47f-a48d-4112-a562-b49a358636f1.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f5ce4070e5050733be6bded399afe53
77cf1dd30e86f5568a8e64cb42f536cf2af9301c
7fe19657e1add41e913e9a326023ff484180ca17615175ddc5d2ab57217566bc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F377ab47f-a48d-4112-a562-b49a358636f1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4538
x-amzn-requestid: 143f359f-c0fd-4d32-8de5-cc2c2804bb39
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4gIHzXoAMFqmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6391079a-27db2e3c6de7216e3c17caea;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:37:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CTvoYad2nNPubKimSZrkJXGTDWZK6u3fTli1YnBgrXk7WPAtmvO2rA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:04:30 GMT
age: 22981
etag: "77cf1dd30e86f5568a8e64cb42f536cf2af9301c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 210b27f5f6310d8fad640acce3d9ae0e
08d241e56622cb900754d95bc5d58ed8826d9f32
64410e13759cdfa24976dcba0c64aca27edc3ee56358f344e55f60793422e3ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: 0232ddcd-8274-431e-a55e-8298fbfd6dfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcuMG6bIAMFUng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e5a-3cc17121425f87321ce7ae7e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: va_vly0iX6rzm_aTWrryPRjoTWlI-_0m6rpS6VrTx-nsd71dk1cSZw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 08:32:51 GMT
age: 71680
etag: "08d241e56622cb900754d95bc5d58ed8826d9f32"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feaa98459-9507-4e55-9fad-ef4a6111e4fc.jpeg
200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feaa98459-9507-4e55-9fad-ef4a6111e4fc.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 911f9077bb888e775390cd5f34825f93
d64877f85440c5b7ab98bd29589f273b2b003608
9ae0779879235abd98a87fd4a25b0e2c1961d7e37ae2481867393e47ac871947
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feaa98459-9507-4e55-9fad-ef4a6111e4fc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8295
x-amzn-requestid: e13ec956-9996-44d1-b216-1138c273d557
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy42XHI_oAMFfCw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63910828-532765c65249a4b339abfad4;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:39:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kcb5fl-miXnXqm7WbECVJvVsd4qmhOxOpbTAaE9MRlDPAIZnUuFi4w==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 21:54:49 GMT
age: 23562
etag: "d64877f85440c5b7ab98bd29589f273b2b003608"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc231183-b100-4921-9a48-0bac91da0d2b.jpeg
200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc231183-b100-4921-9a48-0bac91da0d2b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 280c788841ca669f2c8556f03ee85b68
c15a4519a69eb6b5cc624344a7c3d99335a095d9
451a816aa2129c3a7712a01b96daee492ae2ab25c4940405063098f3b7ad10ae
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc231183-b100-4921-9a48-0bac91da0d2b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6032
x-amzn-requestid: 22b80af7-87cf-4719-8bc8-927077cc3aa1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4hoFraoAMFpVA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639107a3-42927c064ee65d3b23121b36;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:37:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6M8oH6MMBavZDrPB-1sohGs3gJK1LjDbeDYZ0OAIlTLqJ6LdGbkCTg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 21:59:08 GMT
age: 23303
etag: "c15a4519a69eb6b5cc624344a7c3d99335a095d9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.electricrepair.ca/wp-content/uploads/2018/11/slide2_1541465228.jpg
200 OK 82 kB URL HTTP/1.1 www.electricrepair.ca/wp-content/uploads/2018/11/slide2_1541465228.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1108x390, components 3\012- data
Hash 39f3762410aef4c9827fbbc3bad09c3a
c91fbfe5d58e602f346703a775a9b8811f906e1f
73f6f8d1c1433510d46d1dbe41991f10c97f1093ca49149a0f945f27d356938f
GET /wp-content/uploads/2018/11/slide2_1541465228.jpg HTTP/1.1
Host: www.electricrepair.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 82111
Cache-Control: max-age=31622400
Content-Type: image/jpeg
Etag: "5dfcec57-140bf"
Expires: Wed, 06 Dec 2023 17:30:30 GMT
Last-Modified: Fri, 20 Dec 2019 15:44:23 GMT
Server: nginx
X-Pantheon-Styx-Hostname: styx-fe2-a-86d8b58f4d-x2x9k
X-Styx-Req-Id: 83ad5b84-74c2-11ed-830d-122badd39cc0
Date: Thu, 08 Dec 2022 04:27:31 GMT
X-Served-By: cache-chi-kigq8000131-CHI, cache-bma1627-BMA
X-Cache: HIT, MISS
X-Cache-Hits: 1, 0
X-Timer: S1670473651.936753,VS0,VE106
Age: 212221
Accept-Ranges: bytes
Via: 1.1 varnish, 1.1 varnish
www.electricrepair.ca/wp-content/uploads/2018/11/slide3_1541465227.jpg
200 OK 92 kB URL HTTP/1.1 www.electricrepair.ca/wp-content/uploads/2018/11/slide3_1541465227.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1108x390, components 3\012- data
Hash d8ad171e17b9a7ab769e77391c01a8cd
668f263ff83e28fc9f1537964b6b50db3457f8f5
e81d7b088694bb198b9ab15dae6c4a337f67e615d12d5875368c73e2a3a78664
GET /wp-content/uploads/2018/11/slide3_1541465227.jpg HTTP/1.1
Host: www.electricrepair.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 91733
Cache-Control: max-age=31622400
Content-Type: image/jpeg
Etag: "5dfcec57-16655"
Expires: Sat, 11 Nov 2023 23:59:10 GMT
Last-Modified: Fri, 20 Dec 2019 15:44:23 GMT
Server: nginx
X-Pantheon-Styx-Hostname: styx-fe2-b-fffb9c8f-4r2l8
X-Styx-Req-Id: ab2d5391-6153-11ed-9026-7299c9fd9cdb
Date: Thu, 08 Dec 2022 04:27:31 GMT
X-Served-By: cache-chi-kigq8000140-CHI, cache-bma1657-BMA
X-Cache: HIT, MISS
X-Cache-Hits: 1, 0
X-Timer: S1670473651.936575,VS0,VE106
Age: 2348901
Accept-Ranges: bytes
Via: 1.1 varnish, 1.1 varnish
www.electricrepair.ca/wp-content/uploads/2018/11/slide1_1541465228.jpg
200 OK 106 kB URL HTTP/1.1 www.electricrepair.ca/wp-content/uploads/2018/11/slide1_1541465228.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1108x390, components 3\012- data
Size 106 kB (105487 bytes)
Hash 60429900726cc54e990931ad2b6f8cd9
37b3426b612729ab148e1cbd518025d09b23eb7a
8cd6905670a2f45142199fda69c40a9a7e58a60b4556d9a7667ab834e2e15d27
GET /wp-content/uploads/2018/11/slide1_1541465228.jpg HTTP/1.1
Host: www.electricrepair.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 105487
Cache-Control: max-age=31622400
Content-Type: image/jpeg
Etag: "5dfcec57-19c0f"
Expires: Thu, 07 Dec 2023 19:38:01 GMT
Last-Modified: Fri, 20 Dec 2019 15:44:23 GMT
Server: nginx
X-Pantheon-Styx-Hostname: styx-fe2-b-749969788b-zq82t
X-Styx-Req-Id: 7ec4ee72-759d-11ed-b62e-7678b06c1548
Date: Thu, 08 Dec 2022 04:27:31 GMT
X-Served-By: cache-chi-kigq8000043-CHI, cache-bma1652-BMA
X-Cache: HIT, MISS
X-Cache-Hits: 1, 0
X-Timer: S1670473651.934085,VS0,VE123
Age: 118169
Accept-Ranges: bytes
Via: 1.1 varnish, 1.1 varnish
www.electricrepair.ca/wp-content/themes/Riviera/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL HTTP/2 www.electricrepair.ca/wp-content/themes/Riviera/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/themes/Riviera/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.electricrepair.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://electrcirepairpay.ml
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: max-age=31622400
content-type: font/woff2
etag: "638e1d8a-12d68"
expires: Thu, 07 Dec 2023 19:38:01 GMT
last-modified: Mon, 05 Dec 2022 16:34:18 GMT
server: nginx
x-pantheon-styx-hostname: styx-fe2-b-749969788b-6jv2h
x-styx-req-id: 7ee5546d-759d-11ed-83bd-da1fa59150ae
date: Thu, 08 Dec 2022 04:27:31 GMT
x-served-by: cache-chi-kigq8000024-CHI, cache-bma1674-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1670473651.963900,VS0,VE112
age: 118169
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 77160
X-Firefox-Spdy: h2
electrcirepairpay.ml/wp-content/themes/Riviera/js/jquery-ui.min-ver=4.8.2.js
200 OK 84 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/themes/Riviera/js/jquery-ui.min-ver=4.8.2.js
IP
File type ASCII text, with very long lines (32250)
Hash 531708aebcb3d1f6c8571ecf3f574175
1040d3e1e79c3b810969c4b4cfcf0c89340c6c6d
6a47788e244333764cf9453573f25f0371ea585ec63ef80481742ab5bc176013
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Riviera/js/jquery-ui.min-ver=4.8.2.js HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:30 GMT
content-type: application/javascript
last-modified: Sat, 20 Aug 2022 17:37:13 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 83600
date: Thu, 08 Dec 2022 04:27:30 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/uploads/2018/06/easa.jpg
200 OK 16 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/uploads/2018/06/easa.jpg
IP
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 100x100, segment length 16, comment: "File written by Adobe Photoshop\250 5.0", baseline, precision 8, 126x123, components 3\012- data
Hash 1b577e64ecfee3a8cf41f6c5d05e263b
c275c1039a9e41b6e8ea8780f7dc3d58d24a2634
d44917b9a6d01612a5dc130edfc1ecb1143a754241b381e00549a123795f5ee5
GET /wp-content/uploads/2018/06/easa.jpg HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:30 GMT
content-type: image/jpeg
last-modified: Fri, 20 Dec 2019 15:44:23 GMT
accept-ranges: bytes
content-length: 15832
date: Thu, 08 Dec 2022 04:27:30 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/uploads/2018/11/slide2_1541465228.jpg
200 OK 82 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/uploads/2018/11/slide2_1541465228.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1108x390, components 3\012- data
Hash 39f3762410aef4c9827fbbc3bad09c3a
c91fbfe5d58e602f346703a775a9b8811f906e1f
73f6f8d1c1433510d46d1dbe41991f10c97f1093ca49149a0f945f27d356938f
GET /wp-content/uploads/2018/11/slide2_1541465228.jpg HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:30 GMT
content-type: image/jpeg
last-modified: Fri, 20 Dec 2019 15:44:23 GMT
accept-ranges: bytes
content-length: 82111
date: Thu, 08 Dec 2022 04:27:30 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
capture-api.reachlocalservices.com/originCountry
200 OK 0 B URL HTTP/2 capture-api.reachlocalservices.com/originCountry
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /originCountry HTTP/1.1
Host: capture-api.reachlocalservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: http://electrcirepairpay.ml/
Origin: http://electrcirepairpay.ml
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 0
date: Thu, 08 Dec 2022 04:27:31 GMT
x-amzn-requestid: 172dc1d3-ef3a-4c75-b6cb-3dd17cab250a
access-control-allow-origin: *
access-control-allow-headers: Content-Type,X-Amz-Date,Authorization,X-Api-Key,X-Amz-Security-Token
x-amz-apigw-id: cz0kEEXIPHcFWZw=
access-control-allow-methods: GET,OPTIONS
x-cache: Miss from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CxPw_6k0QymAg9zUdPs6H8yIRv3Wq1n0ifPQdHMFzUSDz9hmbF4LrQ==
X-Firefox-Spdy: h2
electrcirepairpay.ml/wp-content/uploads/2018/11/slide3_1541465227.jpg
200 OK 92 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/uploads/2018/11/slide3_1541465227.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1108x390, components 3\012- data
Hash d8ad171e17b9a7ab769e77391c01a8cd
668f263ff83e28fc9f1537964b6b50db3457f8f5
e81d7b088694bb198b9ab15dae6c4a337f67e615d12d5875368c73e2a3a78664
GET /wp-content/uploads/2018/11/slide3_1541465227.jpg HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:31 GMT
content-type: image/jpeg
last-modified: Fri, 20 Dec 2019 15:44:23 GMT
accept-ranges: bytes
content-length: 91733
date: Thu, 08 Dec 2022 04:27:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 141625715e5b6c5ecdbf299800764078
0131989f0bbc2a991fcec057f6a87dbb3cb7225d
0ba93c9d25d5f64abf6ce9881d5da8a6deff754cb81dca92c78052d273864668
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=107446
Date: Thu, 08 Dec 2022 04:27:31 GMT
Etag: "6390564f-1d7"
Expires: Fri, 09 Dec 2022 10:18:17 GMT
Last-Modified: Wed, 07 Dec 2022 09:01:03 GMT
Server: ECS (cha/81FC)
X-Cache: Miss from cloudfront
Via: 1.1 b5d0d50a85cb855c8d83851f71d078e2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ORD52-C1
X-Amz-Cf-Id: 16LPIOuN5jix5eY0dapX6WgPc-rW_DJ5rya2xtxmgBorc5a-bLaoaw==
Age: 4634
api.userway.org/api/tunings/Mw7XVK7Xv9
200 OK 600 B URL HTTP/2 api.userway.org/api/tunings/Mw7XVK7Xv9
IP
File type JSON data\012- , ASCII text, with very long lines (600), with no line terminators
Hash 73ab1970a400c0b53d86f51bff739f27
b7609826cc9c06781dbce5e3c9953fce0fbfb731
555ab5c190ef297f30287334693da7ff41130414694d2b6a8c612106c6ee11f9
POST /api/tunings/Mw7XVK7Xv9 HTTP/1.1
Host: api.userway.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1425
Origin: http://electrcirepairpay.ml
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 04:27:31 GMT
content-type: application/json; charset=utf-8
content-length: 600
x-service-version: uw-pr
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, PATCH, POST, DELETE
access-control-allow-headers: *
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
x-service-request-id: usr328624334bd047c
etag: W/"258-t2CYJsycBngdvOXjyZU/zg+/tzE"
X-Firefox-Spdy: h2
capture-api.reachlocalservices.com/originCountry
200 OK 36 B URL HTTP/2 capture-api.reachlocalservices.com/originCountry
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash f4ef312241ae70acfc37e208984fb296
1dec72e1a225c5916793cdc6f3d1838ac9f60fbd
5dace332d9f7f7234db5de2649961e1ff07282ea99593057e92f2819590247d6
GET /originCountry HTTP/1.1
Host: capture-api.reachlocalservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Origin: http://electrcirepairpay.ml
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 36
date: Thu, 08 Dec 2022 04:27:31 GMT
x-amzn-requestid: b9cbf68c-480e-4778-8888-e34bd66dd81e
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Access-Control-Allow-Headers, Authorization, X-Requested-With
x-amz-apigw-id: cz0kJH3gvHcFxtQ=
access-control-allow-methods: GET,POST,PUT,DELETE,OPTIONS
x-amzn-trace-id: Root=1-639167b3-077c3ede5bda9d4e2451ae76;Sampled=0
access-control-allow-credentials: true
x-cache: Miss from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LUwRldTcWmUlsf14Nb2JPSwKjBPaKGXTQLXgZIdzN_Eewy0PizeNEw==
X-Firefox-Spdy: h2
electrcirepairpay.ml/favicon.ico
404 Not Found 1.2 kB URL HTTP/1.1 electrcirepairpay.ml/favicon.ico
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
GET /favicon.ico HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 404 Not Found
keep-alive: timeout=5, max=100
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Thu, 08 Dec 2022 04:27:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
electrcirepairpay.ml/wp-content/uploads/2018/11/slide1_1541465228.jpg
200 OK 106 kB URL HTTP/1.1 electrcirepairpay.ml/wp-content/uploads/2018/11/slide1_1541465228.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1108x390, components 3\012- data
Size 106 kB (105487 bytes)
Hash 60429900726cc54e990931ad2b6f8cd9
37b3426b612729ab148e1cbd518025d09b23eb7a
8cd6905670a2f45142199fda69c40a9a7e58a60b4556d9a7667ab834e2e15d27
GET /wp-content/uploads/2018/11/slide1_1541465228.jpg HTTP/1.1
Host: electrcirepairpay.ml
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
HTTP/1.1 200 OK
keep-alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Thu, 15 Dec 2022 04:27:30 GMT
content-type: image/jpeg
last-modified: Fri, 20 Dec 2019 15:44:23 GMT
accept-ranges: bytes
content-length: 105487
date: Thu, 08 Dec 2022 04:27:30 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
js-agent.newrelic.com/nr-1216.min.js
200 OK 14 kB URL HTTP/2 js-agent.newrelic.com/nr-1216.min.js
IP
File type ASCII text, with very long lines (32022)
Hash b7c09cc097b2847f9edc784adba62dcb
5aa648623cf5e3b4b215fe5d068a7904c59f2925
6da450b6a3ba53bdab36f6529e987a245cdfca9a37b77790f06dfd8d5797bdaa
GET /nr-1216.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Vf9xsFZHH0UI6bmTnW+KeBzegICGOxvtMLIWtbljNKoJtdkUEk/MfmbYPFui+bgtiUf/4lC5dk8=
x-amz-request-id: 4AV5AVKCCR961CNG
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "9f533d8cd24b2c5e3b4dc886ecbd43e8"
x-amz-version-id: mHHzJIqOizHibcYt0xqAszRr0gQRiNYy
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 08 Dec 2022 04:27:32 GMT
via: 1.1 varnish
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 657
x-timer: S1670473653.705108,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 14391
X-Firefox-Spdy: h2
6ccfc4bb-5d9d-4875-971b-1516508f347a.rlets.com/api/v1/visits
200 OK 73 B URL HTTP/2 6ccfc4bb-5d9d-4875-971b-1516508f347a.rlets.com/api/v1/visits
IP
File type gzip compressed data, from Unix\012- data
Hash 516a128bb6000ca8154792678f4333fb
41d0257bea96afd36c6f3e40fcfdc9ca247f8e01
9fa62b52f24b87a40410fe842cb9be494abed114a2eac2eb406c8b4a4d372d10
OPTIONS /api/v1/visits HTTP/1.1
Host: 6ccfc4bb-5d9d-4875-971b-1516508f347a.rlets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://electrcirepairpay.ml/
Origin: http://electrcirepairpay.ml
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 04:27:32 GMT
content-type: text/html
x-frame-options: ALLOWALL
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-allow-headers: Content-Type
cache-control: no-cache
x-request-id: 3b369a05-223c-4c57-a073-08d06ae019ee
x-runtime: 0.001649
X-Firefox-Spdy: h2
cdn.userway.org/widgetapp/2022-12-07/widget_app_base_1670431810099.js
200 OK 0 B URL HTTP/2 cdn.userway.org/widgetapp/2022-12-07/widget_app_base_1670431810099.js
IP
ASN #60068 Datacamp Limited
GET /widgetapp/2022-12-07/widget_app_base_1670431810099.js HTTP/1.1
Host: cdn.userway.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 04:27:30 GMT
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, POST, DELETE
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
last-modified: Wed, 07 Dec 2022 16:52:53 GMT
etag: W/"a9f1c7d7780cd7a28c608b7254f7af53"
cache-control: max-age=25920000, public
vary: Accept-Encoding
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qJNgDJ7ngdm7nJ5gFGl5QMN7P78jKNnkvOT5qrvDdaBPwuOFwDHPMg==
age: 91
x-accel-expires: @1696352165
server: CDN77-Turbo
x-77-nzt: AblMCRSUQa3/DaIAAA
x-77-nzt-ray: af585630770fdc25b2679163214d0130
x-cache: HIT
x-age: 41485
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:100,100i,300,300i,400,400i,700,700i,900,900i&ver=4.8.2
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato:100,100i,300,300i,400,400i,700,700i,900,900i&ver=4.8.2
IP
GET /css?family=Lato:100,100i,300,300i,400,400i,700,700i,900,900i&ver=4.8.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Dec 2022 04:27:29 GMT
date: Thu, 08 Dec 2022 04:27:29 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Alike%7COpen+Sans:300,300i,400,400i,600,700,700i
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Alike%7COpen+Sans:300,300i,400,400i,600,700,700i
IP
GET /css?family=Alike%7COpen+Sans:300,300i,400,400i,600,700,700i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Dec 2022 04:27:29 GMT
date: Thu, 08 Dec 2022 04:27:29 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.userway.org/widgetapp/2022-12-07/locales/en-US.json
200 OK 0 B URL HTTP/2 cdn.userway.org/widgetapp/2022-12-07/locales/en-US.json
IP
ASN #60068 Datacamp Limited
GET /widgetapp/2022-12-07/locales/en-US.json HTTP/1.1
Host: cdn.userway.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://electrcirepairpay.ml
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 04:27:31 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, POST, DELETE
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
last-modified: Wed, 07 Dec 2022 16:52:53 GMT
etag: W/"0c4b53012957584c54e80867ff489590"
cache-control: max-age=25920000, public
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YDtGG3fHudwJa0frM1hWAe98sVyizxz7VbVzEVm-T3Fz6CHngJcXdg==
age: 78
x-accel-expires: @1696352168
server: CDN77-Turbo
x-77-nzt: AblMCRSzRJD/C6IAAA
x-77-nzt-ray: af585630770fdc25b36791635c59a539
x-cache: HIT
x-age: 41483
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
6ccfc4bb-5d9d-4875-971b-1516508f347a.rlets.com/api/v1/visits
200 OK 0 B URL HTTP/2 6ccfc4bb-5d9d-4875-971b-1516508f347a.rlets.com/api/v1/visits
IP
POST /api/v1/visits HTTP/1.1
Host: 6ccfc4bb-5d9d-4875-971b-1516508f347a.rlets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Content-Length: 499
Origin: http://electrcirepairpay.ml
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 04:27:32 GMT
content-type: application/json; charset=utf-8
x-frame-options: ALLOWALL
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-allow-headers: Content-Type
etag: W/"a5b51620a535058754c9e25551263218"
cache-control: max-age=0, private, must-revalidate
set-cookie: visitor_id=c4f595ee-a2cc-4183-82b4-83266c123163; path=/; expires=Wed, 08 Dec 2032 04:27:32 GMT; secure; SameSite=None
x-request-id: 6fc81d1f-2e8b-4579-a475-67d1d264cad1
x-runtime: 0.005422
X-Firefox-Spdy: h2
cdn.userway.org/widget.js
200 OK 0 B URL HTTP/2 cdn.userway.org/widget.js
IP
ASN #60068 Datacamp Limited
GET /widget.js HTTP/1.1
Host: cdn.userway.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 04:27:29 GMT
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, POST, DELETE
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
last-modified: Wed, 07 Dec 2022 16:52:56 GMT
etag: W/"8794e6def696372210802b66339a52c7"
cache-control: max-age=3600, public
vary: Accept-Encoding
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BmvtYlpGDaWSt3UUAcf4VwzDfaDqiRgE_kUgWgULYWy7V3qCh292aA==
age: 797
x-accel-expires: @1670476606
server: CDN77-Turbo
x-77-nzt: AblMCRQOYnb/gwIAAA
x-77-nzt-ray: af585630770fdc25b1679163644ab104
x-cache: HIT
x-age: 643
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat:300,300i,400,400i,500,500i,600,600i,700,700i,800,800i&ver=4.8.2
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:300,300i,400,400i,500,500i,600,600i,700,700i,800,800i&ver=4.8.2
IP
GET /css?family=Montserrat:300,300i,400,400i,500,500i,600,600i,700,700i,800,800i&ver=4.8.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Dec 2022 04:27:29 GMT
date: Thu, 08 Dec 2022 04:27:29 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.electricrepair.ca/wp-content/uploads/null
404 Not Found 0 B URL HTTP/2 www.electricrepair.ca/wp-content/uploads/null
IP
GET /wp-content/uploads/null HTTP/1.1
Host: www.electricrepair.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://electrcirepairpay.ml/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
cache-control: no-cache, must-revalidate, max-age=0
content-encoding: gzip
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
link: <https://www.electricrepair.ca/wp-json/>; rel="https://api.w.org/"
server: nginx
x-pantheon-styx-hostname: styx-fe2-a-86d8b58f4d-mcvgf
x-styx-req-id: a1429124-76b0-11ed-ab4b-5ae596065430
date: Thu, 08 Dec 2022 04:27:31 GMT
x-served-by: cache-chi-klot8100117-CHI, cache-bma1659-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1670473651.958069,VS0,VE537
vary: Accept-Encoding, Cookie, Cookie
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2
68.65.120.152
23.36.77.32
93.184.220.29
185.76.9.24
0.0.0.0