wccenters.com/
95.216.102.241301 Moved Permanently 707 B IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Content-Type: text/html
Content-Length: 707
Date: Thu, 22 Sep 2022 05:51:30 GMT
Location: https://wccenters.com/
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 804f8bbb7f556d51a5f52d5ebd5b6eef
922cd7e06df278615a04abb81d811d14596c8180
ef4804d381a34ab67873a7755621081c49c646310e085a9b2356ae07098f6021
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Length, Backoff, Retry-After, Content-Type
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 22 Sep 2022 05:13:57 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -1CqXNhF87rU25lSLBfLzuLyj1-pONJwK3w0Qy0CRZgQl4t40Or6hg==
Age: 2253
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16574
Expires: Thu, 22 Sep 2022 10:27:44 GMT
Date: Thu, 22 Sep 2022 05:51:30 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 22 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: aQuEQ1wMbkY4Vu1yxt5hqOIxR6ETuBdlOl3ReqL98dGq8NhDh9BqHQ==
age: 4576
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 05:51:30 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
wccenters.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
95.216.102.241200 OK 11 kB URL HTTP/2 wccenters.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (43771)
Hash d45207ee05c1f0c57dfa075e61405ccd
a8d35143a2d828a739ea0fdde75f97d33621e7ec
a9a4adbbcee31ec277f1bdd573eef97dc4341f29f2db3b5685a02dfe4d2fe9bb
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:30 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 12:40:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10946
date: Thu, 22 Sep 2022 05:51:30 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
95.216.102.241200 OK 848 B URL HTTP/2 wccenters.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
Hash c962ba8e7d42ff9da18392b41dad5151
7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: text/css
last-modified: Wed, 07 Sep 2022 11:54:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 848
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/plugins/mp-timetable/media/css/style.css?ver=2.4.6
95.216.102.241200 OK 1.8 kB URL HTTP/2 wccenters.com/wp-content/plugins/mp-timetable/media/css/style.css?ver=2.4.6
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (10982), with no line terminators
Hash ab08dd8dfc8e0aaf5f259928d1d2a24d
536241244e6d12c1db4f07c57ebd34f101f5d219
9c1b2fc2f082103474fea1ba5f7267a564f017208a497625e003936067bae317
GET /wp-content/plugins/mp-timetable/media/css/style.css?ver=2.4.6 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 17:17:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1818
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/themes/medicare/style.crush.css?ver=6.0.2
95.216.102.241200 OK 69 kB URL HTTP/2 wccenters.com/wp-content/themes/medicare/style.crush.css?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (345)
Hash f81ec592953d1e7f253647629eb7614c
b1984e955718289dc6c7f3acd661038017d18c9f
7d2d25e38cc180e294c17a0ec36733fb2f2f536d6bdf3185e44f613d25116009
GET /wp-content/themes/medicare/style.crush.css?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: text/css
last-modified: Mon, 10 Dec 2018 18:18:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 69197
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/themes/medicare/css/magnific-popup.css?ver=6.0.2
95.216.102.241200 OK 1.8 kB URL HTTP/2 wccenters.com/wp-content/themes/medicare/css/magnific-popup.css?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
Hash 0644e198a874bd3f3ce9e73af0d5df4b
14cd9a0617079402b0a02706c482e3fc3e64055e
c82ed909a2b99aa599bd3d136f310187df9c3d984b8e1a67ecf04322af122b0f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/medicare/css/magnific-popup.css?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: text/css
last-modified: Mon, 10 Dec 2018 18:18:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1817
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/plugins/custom-facebook-feed/assets/css/cff-style.min.css?ver=4.1.5
95.216.102.241200 OK 3.1 kB URL HTTP/2 wccenters.com/wp-content/plugins/custom-facebook-feed/assets/css/cff-style.min.css?ver=4.1.5
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (17495), with no line terminators
Hash 7475024b7d32fefe3f43ef628341824e
ee253a77ea793f9796210691150ec2a1a8971406
458da5e6935d0fa8915cbdeb34a1954a7326d821de992fdabe783669d02fd942
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/custom-facebook-feed/assets/css/cff-style.min.css?ver=4.1.5 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: text/css
last-modified: Wed, 07 Sep 2022 11:56:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3138
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/plugins/contact-form-7/includes/js/jquery-ui/themes/smoothness/jquery-ui.min.css?ver=1.12.1
95.216.102.241200 OK 7.1 kB URL HTTP/2 wccenters.com/wp-content/plugins/contact-form-7/includes/js/jquery-ui/themes/smoothness/jquery-ui.min.css?ver=1.12.1
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (29523)
Hash 5c50a206eeb4bac8d073558691ededdd
24e40ca0700157a4e7e93e6ac811b5cf17cceab8
fd85984b26127ffb3ffec856e57a0852210ad3c6047c9815670a085e5c0f6beb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/jquery-ui/themes/smoothness/jquery-ui.min.css?ver=1.12.1 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: text/css
last-modified: Wed, 07 Sep 2022 11:54:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7111
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/plugins/youtube-embed-plus/styles/ytprefs.min.css?ver=14.1.3
95.216.102.241200 OK 1.6 kB URL HTTP/2 wccenters.com/wp-content/plugins/youtube-embed-plus/styles/ytprefs.min.css?ver=14.1.3
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (8319)
Hash 149474d682845bad768a656bd63cdf1a
15c0ee990c58e397fa8dfda810c8e94ae35daa19
1d5db34f92820846f5f57760fc55c16d4f6f3ee0ec35302c12f4fc89cd19073e
GET /wp-content/plugins/youtube-embed-plus/styles/ytprefs.min.css?ver=14.1.3 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: text/css
last-modified: Sat, 16 Jul 2022 15:08:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1604
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
95.216.102.241200 OK 30 kB URL HTTP/2 wccenters.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65447)
Hash 34f918ada1fe4f01c5a4b90065bbc37a
a731f6ce2d413805e39ae45994012b1bd5ea1e2b
eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Wed, 10 Mar 2021 15:37:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30273
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
95.216.102.241200 OK 4.0 kB URL HTTP/2 wccenters.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 09:36:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/plugins/bt_cost_calculator/jquery.dd.js?ver=6.0.2
95.216.102.241200 OK 11 kB URL HTTP/2 wccenters.com/wp-content/plugins/bt_cost_calculator/jquery.dd.js?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (440), with CRLF line terminators
Hash 32951937264b343af609438761ff6c5d
c9b440e7777477ab202b0e271fc68d42162e15d9
a3dfa5fc048d2653b1f62d61866cf9648816b6a6991e9d2ecbbd1f8e6a42e3d5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/bt_cost_calculator/jquery.dd.js?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 13:19:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11168
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/plugins/medicare/bt_elements.js?ver=6.0.2
95.216.102.241200 OK 2.1 kB URL HTTP/2 wccenters.com/wp-content/plugins/medicare/bt_elements.js?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash 0a8aec3254bac9d34d2d3d146f8818ca
4e8cc76a206149163a61183266ff70098061d47a
5488de3ad3baadd6b52c972b4f58835a7f81dde147b21ce4b4e476f0efec9110
GET /wp-content/plugins/medicare/bt_elements.js?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 13:19:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2149
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/themes/medicare/js/viewport-units-buggyfill.js?ver=6.0.2
95.216.102.241200 OK 4.3 kB URL HTTP/2 wccenters.com/wp-content/themes/medicare/js/viewport-units-buggyfill.js?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
Hash 1f07de034d9e670799969690c615f77b
346b8e72719838030ad84c9662bc0659f8cc21f3
ff3da803ea6c9721297689d7494feee261b06dcaa03b7f78706fde819c9ee264
GET /wp-content/themes/medicare/js/viewport-units-buggyfill.js?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 13:18:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4276
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/themes/medicare/js/slick.min.js?ver=6.0.2
95.216.102.241200 OK 9.7 kB URL HTTP/2 wccenters.com/wp-content/themes/medicare/js/slick.min.js?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (32012)
Hash bd866f8b76cf825c7bdec37ee6f9b9f7
55713b460d21ac368579287039a8356749aa153f
ab16af22834b214eff6550973cb89bb2c06d5f27e5fae8981ef7188baff78ddc
GET /wp-content/themes/medicare/js/slick.min.js?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 13:18:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9697
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/themes/medicare/js/jquery.magnific-popup.min.js?ver=6.0.2
95.216.102.241200 OK 7.4 kB URL HTTP/2 wccenters.com/wp-content/themes/medicare/js/jquery.magnific-popup.min.js?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (21014)
Hash 3a40837be19c52858d8bd03b5e50c277
fff22e3b2869a91f3f5ac39beb752805ff71c41f
3cba67c320d0544bd6a7f2fac5b82651393dbbcecc9a847a25189ffde5c84a3a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/medicare/js/jquery.magnific-popup.min.js?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 13:18:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7368
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/themes/medicare/js/iscroll.js?ver=6.0.2
95.216.102.241200 OK 11 kB URL HTTP/2 wccenters.com/wp-content/themes/medicare/js/iscroll.js?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
Hash f021969f748d4f6f541886cfafffc586
049345396120b0d8349686e50c6d539c9a622681
afd6ad883cf045971102b7b04a3df1cfa6d5ea9e8a675be9e41d38797c4f7c03
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/medicare/js/iscroll.js?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 13:18:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10727
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/themes/medicare/js/fancySelect.js?ver=6.0.2
95.216.102.241200 OK 1.6 kB URL HTTP/2 wccenters.com/wp-content/themes/medicare/js/fancySelect.js?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
Hash 605875c859f7943bcbc7fd396ea0a5e8
41e8107daba379a4ad3789a5368d2e0c86a84f46
12349c34b81312d69cec0a13de083f0f4b03b95568901a2bc756155661356e98
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/medicare/js/fancySelect.js?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 13:18:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1555
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/themes/medicare/js/modernizr.custom.js?ver=6.0.2
95.216.102.241200 OK 5.6 kB URL HTTP/2 wccenters.com/wp-content/themes/medicare/js/modernizr.custom.js?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text, with very long lines (14586), with no line terminators
Hash 41842c08f3931096d4c36ac297e2202a
1441855dc9cb8edee25dd83adf610c58966c2f79
146a3647307a2bde1c1416a88e20d40c371e4d43d950029fb7961e42cd0c23f3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/medicare/js/modernizr.custom.js?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 13:18:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5617
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/themes/medicare/js/viewport-units-buggyfill.hacks.js?ver=6.0.2
95.216.102.241200 OK 1.2 kB URL HTTP/2 wccenters.com/wp-content/themes/medicare/js/viewport-units-buggyfill.hacks.js?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
Hash dcc647280f8106d112580659c9e1c575
4bc228e003d815414f20aea426f9f515af37331b
f77d6c9f6a869537341634b135e664917f656f97155ccd4c91100bdbaa62fedf
GET /wp-content/themes/medicare/js/viewport-units-buggyfill.hacks.js?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 13:18:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1212
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/themes/medicare/js/misc.js?ver=6.0.2
95.216.102.241200 OK 3.6 kB URL HTTP/2 wccenters.com/wp-content/themes/medicare/js/misc.js?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
Hash 3087eca9c9a5d1943f1774c2bef14a12
241af67f68f4b1d3099f3b5e1024902d175f02ba
1f1e8176b7695bb14c76c6a89cc3df4a425abe3aa518a26d4c1ff4b3dec4d900
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/medicare/js/misc.js?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 13:18:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3649
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/themes/medicare/js/header.misc.js?ver=6.0.2
95.216.102.241200 OK 2.8 kB URL HTTP/2 wccenters.com/wp-content/themes/medicare/js/header.misc.js?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash d2834b7103498a39f88af4d87aa3e3ef
1d724734c14d9b40f7b6b6f70537e528e0042044
884171ac2e56c83a4601a50e1b59f9ebe6ee9de2ba43f54e1475e831f2f6182b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/medicare/js/header.misc.js?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 13:18:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2758
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/themes/medicare/js/dir.hover.js?ver=6.0.2
95.216.102.241200 OK 910 B URL HTTP/2 wccenters.com/wp-content/themes/medicare/js/dir.hover.js?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
Hash 960391ef86a352e31b845535fcb966c5
287269877d94b7dfe3a17d8c6d243f40a8b2b90b
f90a39e63f9976e3fe6024a0678a59992b6d444800ce04d5501bcafa4306a00d
GET /wp-content/themes/medicare/js/dir.hover.js?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 13:18:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 910
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/themes/medicare/js/sliders.js?ver=6.0.2
95.216.102.241200 OK 1.6 kB URL HTTP/2 wccenters.com/wp-content/themes/medicare/js/sliders.js?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash 5c46facbb8f81e6841b35e838c5bf5d0
ee5d3840b2dd9a96aa4792bcee21bbd84ccf2e74
ff0901620ae959cdb16c153d3c990c5e2a498d658e06bac8e416720d95e7ad48
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/medicare/js/sliders.js?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 13:18:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1563
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=14.1.3
95.216.102.241200 OK 4.3 kB URL HTTP/2 wccenters.com/wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=14.1.3
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (719)
Hash 655ae195638aa5deff03219f6a3d5338
12095c93dfa21d824ddf700d30d314ac8827ba6a
1faf4a5669c7c3bc5e363429e463f7fb89884b5e1a09aa447c3698533b54c7ed
GET /wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=14.1.3 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Sat, 16 Jul 2022 15:08:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4266
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/uploads/2022/04/logo1.png
95.216.102.241200 OK 117 kB URL HTTP/2 wccenters.com/wp-content/uploads/2022/04/logo1.png
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 1000 x 1000, 8-bit/color RGBA, non-interlaced\012- data
Size 117 kB (117339 bytes)
Hash c761073e36417134c9c9dd93d2400796
f1031c450138c7b53b87f2d5d58ca8dd7009511e
04ded437e09ea86deac8fd2fee5ad609143bb7f3f5547917f69df7b97f004f97
GET /wp-content/uploads/2022/04/logo1.png HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: image/png
last-modified: Wed, 13 Apr 2022 08:04:15 GMT
accept-ranges: bytes
content-length: 117339
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a79e3fb6006915f9224684bbf94e54f6
8634c28b2be5a6ee744fa4627853f5fc9a8547f8
500e68bbfc37e3b9f22201367dad6c84dad258d60d3fd38b52555a413bb5b73e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3642
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 05:51:31 GMT
Last-Modified: Thu, 22 Sep 2022 04:50:49 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
wccenters.com/wp-content/uploads/2022/04/Screenshot_128.jpg
95.216.102.241200 OK 14 kB URL HTTP/2 wccenters.com/wp-content/uploads/2022/04/Screenshot_128.jpg
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 252x262, components 3\012- data
Hash 7b4f31f5df1964c7595c6df45b2ba05c
ed1a600980c059927be26671ac207d93d6cf3644
8b3213f9a432ca6c270d7fd4356124bad0232cb13cc4bd77cf910394c39fff24
GET /wp-content/uploads/2022/04/Screenshot_128.jpg HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: image/jpeg
last-modified: Wed, 13 Apr 2022 05:07:06 GMT
accept-ranges: bytes
content-length: 13635
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/uploads/2022/04/Screenshot_43.jpg
95.216.102.241200 OK 16 kB URL HTTP/2 wccenters.com/wp-content/uploads/2022/04/Screenshot_43.jpg
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 256x258, components 3\012- data
Hash 8546472369e1dfbc87e2d3fc698938fb
d7a54094c02a46dc906094c04e45cd202209a089
19c9f91f1fe145f925106dc7c2781e3b31873b0ce61022c5f3ef5c71e78616a0
GET /wp-content/uploads/2022/04/Screenshot_43.jpg HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: image/jpeg
last-modified: Wed, 13 Apr 2022 05:15:55 GMT
accept-ranges: bytes
content-length: 16371
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/uploads/2022/04/Screenshot_129.jpg
95.216.102.241200 OK 24 kB URL HTTP/2 wccenters.com/wp-content/uploads/2022/04/Screenshot_129.jpg
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 254x257, components 3\012- data
Hash 4eacbee0449fb4ed58e648239b535fde
7f7fa052440456e3a9f4a6cf64bf6526582cc9a4
df01eaca053b68028fd04648935b9de4750e83639c42cc101a198b471412defa
GET /wp-content/uploads/2022/04/Screenshot_129.jpg HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: image/jpeg
last-modified: Wed, 13 Apr 2022 05:17:16 GMT
accept-ranges: bytes
content-length: 24260
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/uploads/2022/04/Screenshot_132.jpg
95.216.102.241200 OK 15 kB URL HTTP/2 wccenters.com/wp-content/uploads/2022/04/Screenshot_132.jpg
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 256x257, components 3\012- data
Hash fb80491396f3e2b22c9102936b2fdf03
03d2925273b746ae48460387a96f27d73c7368e0
e3dc8c9bdb72f6ac7484327da8deccc048a53a37dcb5a7581988d263ae4af40d
GET /wp-content/uploads/2022/04/Screenshot_132.jpg HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: image/jpeg
last-modified: Wed, 13 Apr 2022 05:18:31 GMT
accept-ranges: bytes
content-length: 15396
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/uploads/2022/04/31658062_193250351472684_2913215517319757824_n.jpg
95.216.102.241200 OK 31 kB URL HTTP/2 wccenters.com/wp-content/uploads/2022/04/31658062_193250351472684_2913215517319757824_n.jpg
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, progressive, precision 8, 587x587, components 3\012- data
Hash a08a5e73c13207c0a8d28cca7d1446db
c9daef3108da52af4f4e2d88202a953eaa0311fe
1374f90e841a7335a672f385f9dc68a08f38689bf34e4cb948182f9fadf101a5
GET /wp-content/uploads/2022/04/31658062_193250351472684_2913215517319757824_n.jpg HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: image/jpeg
last-modified: Tue, 12 Apr 2022 06:15:45 GMT
accept-ranges: bytes
content-length: 31296
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/uploads/2022/04/148394275_2236367859976198_3128799266143731712_n.jpg
95.216.102.241200 OK 36 kB URL HTTP/2 wccenters.com/wp-content/uploads/2022/04/148394275_2236367859976198_3128799266143731712_n.jpg
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6], baseline, precision 8, 267x258, components 3\012- data
Hash 36ce959a7d1e1aa436b74ac4b2068ca7
424cf03331bfefa84e327c68a9d4a69fe4205856
78f2d8af565aa629dc5746e88108062de53df86b85c770f73e49970d6c4ac1a7
GET /wp-content/uploads/2022/04/148394275_2236367859976198_3128799266143731712_n.jpg HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: image/jpeg
last-modified: Tue, 12 Apr 2022 06:31:33 GMT
accept-ranges: bytes
content-length: 36313
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
95.216.102.241200 OK 2.4 kB URL HTTP/2 wccenters.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (11256), with no line terminators
Hash ce94f62588d05264ac0148712111cb11
518bcd922f54169aeb199c0ccbc5877165ac218e
84ab658a69c39f424be0b27f61d612447d01606fce33beb962cbea53627d8c81
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: text/css
last-modified: Tue, 29 Sep 2020 16:23:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2394
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2
95.216.102.241200 OK 982 B URL HTTP/2 wccenters.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (4186), with no line terminators
Hash 24f4d7f425e792ab35adaab50816e54a
9e25bf79b674ddb7ba09ad7f118c50ec473c02c8
1c78bfb4d523785a4ebd37bb1f79f214f9bdb16673f7cc50805f7f1a26ad7f83
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: text/css
last-modified: Fri, 07 Jun 2019 21:15:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 982
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-includes/js/comment-reply.min.js?ver=6.0.2
95.216.102.241200 OK 1.2 kB URL HTTP/2 wccenters.com/wp-includes/js/comment-reply.min.js?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (2946)
Hash 7d8acf37582bf5212cbf4e31105de2ac
19581f31ceed66b11804eb6a2b3d00d43f73f071
d48d28cdb9d3dd8b812129663e5cc8b373b67629e2e65988d2b274960f7b847f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/comment-reply.min.js?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Fri, 08 Apr 2022 20:37:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1228
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
95.216.102.241200 OK 2.8 kB URL HTTP/2 wccenters.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (9680), with no line terminators
Hash 8a91034fce0e4a2464d2170d38d31382
f00c20cfcbd136ee9aa20d07085c10f470548fe4
1a8f0bcd2b76caf977b08ed30bdd29eb77405ca4c1fe2315b41f8fe2542f1528
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Wed, 07 Sep 2022 11:54:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2799
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
95.216.102.241200 OK 3.7 kB URL HTTP/2 wccenters.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text, with very long lines (12211), with no line terminators
Hash b3777786fbf0ac18aa59c687154a9db8
3f24b0cfae49dc3e70f149edaf203a661cd59c88
8e3993f3b5eb33611a7c40d80d1cb048b4329ebb9ad0d9e8eb583e48fda70bb5
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Wed, 07 Sep 2022 11:54:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3689
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/plugins/custom-facebook-feed/assets/js/cff-scripts.min.js?ver=4.1.5
95.216.102.241200 OK 12 kB URL HTTP/2 wccenters.com/wp-content/plugins/custom-facebook-feed/assets/js/cff-scripts.min.js?ver=4.1.5
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (42232), with no line terminators
Hash 2ac179368553837c6145688a56cdd29a
5c830ec1334ed7104797414e80fee80c74f90944
08b0839dba034da3604737de3ab6c4b27abbe56aa7d92fb931667a2ab9055bb9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/custom-facebook-feed/assets/js/cff-scripts.min.js?ver=4.1.5 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Wed, 07 Sep 2022 11:56:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12539
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5f68499f2ba3b2c5aa7e979ee9b4d3a8
67a456fe80bd69aa2fbd0331ba343d1789509d0f
394e18527ce3ad7de2274de2e5e6a7f3fb390e7d6c4f7342ab485b7794e169e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 05:51:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
wccenters.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
95.216.102.241200 OK 6.6 kB URL HTTP/2 wccenters.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 139a41f01d192d239e7dce15ca307983
62a3e7c0c77209832dc649bc5583e5e0b4918bf5
d796462a5d212cd93b315b43dafb6e77dbe1c3aa567964dc40c1ab0e2c28f405
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Fri, 08 Apr 2022 20:37:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6637
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/plugins/contact-form-7/includes/js/html5-fallback.js?ver=5.6.3
95.216.102.241200 OK 284 B URL HTTP/2 wccenters.com/wp-content/plugins/contact-form-7/includes/js/html5-fallback.js?ver=5.6.3
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
Hash 8a826908de3458265582421aed30bca6
86eaa822da2a1132f138fd54db74ac03ca8967fc
a65b32614f9e3e3502a1ba4366eb75103e0eb01501ea5eef187fa14a818ecbf8
GET /wp-content/plugins/contact-form-7/includes/js/html5-fallback.js?ver=5.6.3 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Wed, 07 Sep 2022 11:54:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 284
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/uploads/2022/04/1WhatsApp-Image-2021-09-04-at-1.46.42-PM.jpeg
95.216.102.241200 OK 256 kB URL HTTP/2 wccenters.com/wp-content/uploads/2022/04/1WhatsApp-Image-2021-09-04-at-1.46.42-PM.jpeg
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6], baseline, precision 8, 710x769, components 3\012- data
Size 256 kB (256028 bytes)
Hash 987090f911b296ffc239b5b3ebc7f880
1c913e8f610c20f9363b3888081d86ac1fadd6f0
4754c66b6def2fec0485ef5b93b67633698b905bce131325a22746a8425253d8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/04/1WhatsApp-Image-2021-09-04-at-1.46.42-PM.jpeg HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: image/jpeg
last-modified: Tue, 12 Apr 2022 06:28:23 GMT
accept-ranges: bytes
content-length: 256028
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/uploads/2022/04/WhatsApp-Image-2021-07-20-at-8.png
95.216.102.241200 OK 622 kB URL HTTP/2 wccenters.com/wp-content/uploads/2022/04/WhatsApp-Image-2021-07-20-at-8.png
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 1024 x 768, 8-bit/color RGBA, non-interlaced\012- data
Size 622 kB (621649 bytes)
Hash 756b44221c66412dc1df5f9d7c419b8d
5153438df7a76df716e057bfbf41e5d7c840162e
fbbd0b631a2df0271418fa67ef7fe286b0ee860bacee8006d337f95df2fab702
GET /wp-content/uploads/2022/04/WhatsApp-Image-2021-07-20-at-8.png HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: image/png
last-modified: Mon, 11 Apr 2022 19:34:40 GMT
accept-ranges: bytes
content-length: 621649
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=14.1.3
95.216.102.241200 OK 903 B URL HTTP/2 wccenters.com/wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=14.1.3
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text, with very long lines (3102)
Hash fc37037bc0346d714250415f57711bf8
0aa849cd61e0a579803e9301a80c66b89c2cda20
78adeb56acae46d5024f26f44e14aa677e23686a64e7601996e4877f6d6b6242
GET /wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=14.1.3 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Sat, 16 Jul 2022 15:08:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 903
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a79e3fb6006915f9224684bbf94e54f6
8634c28b2be5a6ee744fa4627853f5fc9a8547f8
500e68bbfc37e3b9f22201367dad6c84dad258d60d3fd38b52555a413bb5b73e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3642
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 05:51:31 GMT
Last-Modified: Thu, 22 Sep 2022 04:50:49 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
wccenters.com/wp-content/uploads/2022/04/usmanamin-1.jpeg
95.216.102.241200 OK 285 kB URL HTTP/2 wccenters.com/wp-content/uploads/2022/04/usmanamin-1.jpeg
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x1246, components 3\012- data
Size 285 kB (285193 bytes)
Hash 80ea9456f061c314b41f92a88ba3e351
898b7be463d34926bb3abd52af7cfa70a1db1dd3
f52c598b2ea4138ca1fcba0dbfd138b86260efd1db41c29c68c9c34daa0dc619
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/04/usmanamin-1.jpeg HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: image/jpeg
last-modified: Tue, 12 Apr 2022 06:24:48 GMT
accept-ranges: bytes
content-length: 285193
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/plugins/medicare/bt_parallax.js?ver=6.0.2
95.216.102.241200 OK 483 B URL HTTP/2 wccenters.com/wp-content/plugins/medicare/bt_parallax.js?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash e73a65042c688de2c3186108fd37a43d
26d291b7d6988f8d5d773115410a16a58117c000
d6dd7baf1325fba8ebf87003d70a9f7e56e0c08683b5e23c5f15900ab361dd87
GET /wp-content/plugins/medicare/bt_parallax.js?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 13:19:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 483
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/plugins/medicare/imagesloaded.pkgd.min.js?ver=6.0.2
95.216.102.241200 OK 2.2 kB URL HTTP/2 wccenters.com/wp-content/plugins/medicare/imagesloaded.pkgd.min.js?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (6832)
Hash 714c62965ea6a282884385a58aa6214b
9e44d8c1ff92cc14254649029f3001c8e7e4af30
509edd584d1bb4be3dc00cbf7276ea2b498ae703f5da5d8a9f8597cd50094831
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/medicare/imagesloaded.pkgd.min.js?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 13:19:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2233
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/plugins/medicare/packery.pkgd.min.js?ver=6.0.2
95.216.102.241200 OK 10 kB URL HTTP/2 wccenters.com/wp-content/plugins/medicare/packery.pkgd.min.js?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (32033)
Hash de303caa85f315d01796c95c108e5d2a
79782bac961a71d8a51113b4d413aa7046a6d809
f29dfbb403de706ab8e100203bbe5592a553319d1d9dc2c9fb4f00ee5d698a3a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/medicare/packery.pkgd.min.js?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 13:19:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10166
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/plugins/medicare/bt_grid_tweak.js?ver=6.0.2
95.216.102.241200 OK 1.2 kB URL HTTP/2 wccenters.com/wp-content/plugins/medicare/bt_grid_tweak.js?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash 9a1add03312fd7fa9c41eb7c1af027d2
0f3a3b0090ecd9c6ceb64ee80377e56c096480c9
9c8967a759f43b2e2ccf5f2dad27a599bce97aed7302a54ea83ed44b8dfb355d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/medicare/bt_grid_tweak.js?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 13:19:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1220
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/plugins/medicare/bt_grid.js?ver=6.0.2
95.216.102.241200 OK 1.8 kB URL HTTP/2 wccenters.com/wp-content/plugins/medicare/bt_grid.js?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash 9b353259ba6e614eceb0007cdc34bd28
362f6de0c6afdd4c7f4089c3914790fbc046dd9e
fef59595bf645f4a43ed0ba6f33d6d402024b87d687c499af9fcf560399f8868
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/medicare/bt_grid.js?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 13:19:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1779
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
95.216.102.241200 OK 36 kB URL HTTP/2 wccenters.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65266)
Hash ae9e4d6bef6e24982560a13d7a057326
32623cea274c7118492a696e18301b86363d7b06
e2b697029e72758669d8adc08d9bdb06ca5a0e5130df6f7b6de176c156f90237
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Tue, 29 Sep 2020 16:23:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 36311
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.2
95.216.102.241200 OK 479 B URL HTTP/2 wccenters.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1191), with no line terminators
Hash 62b3593ce258f7488f936d31b1ab1b6e
34c14a9bf90463e4456add8d8d039453b8bb8b8e
be4b9efdf77f14940f6b8aa22e7287411cf0377f99009d49276b5cfa47c4f3ad
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Fri, 08 Apr 2022 20:37:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 479
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/themes/medicare/js/video_shortcode.js?ver=6.0.2
95.216.102.241200 OK 396 B URL HTTP/2 wccenters.com/wp-content/themes/medicare/js/video_shortcode.js?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
Hash 3c954593a8ccc875a7f093a9b7190fd3
0b8e0cc29b3aab7397a6b7323876c8aec0952688
ded8f86bd0cb8eed662a4fe06e71eff56ffb9277fac836530bc8edf2719cdaae
GET /wp-content/themes/medicare/js/video_shortcode.js?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 13:18:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 396
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/themes/medicare/print.css?ver=6.0.2
95.216.102.241200 OK 50 B URL HTTP/2 wccenters.com/wp-content/themes/medicare/print.css?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
Hash ce0f7331324ac9d8ef32e9f41a865a1a
9b032d9852b7e86ac56630a4e4350bee30f8e7fa
d44cdf42f317cfd40b15680b6e0c51b0182528d02f76d80626f220fc81fe4e64
GET /wp-content/themes/medicare/print.css?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: text/css
last-modified: Mon, 10 Dec 2018 18:18:58 GMT
accept-ranges: bytes
content-length: 50
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5f68499f2ba3b2c5aa7e979ee9b4d3a8
67a456fe80bd69aa2fbd0331ba343d1789509d0f
394e18527ce3ad7de2274de2e5e6a7f3fb390e7d6c4f7342ab485b7794e169e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 05:51:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 22 Sep 2022 05:03:22 GMT
Cache-Control: max-age=3600
Expires: Thu, 22 Sep 2022 06:03:22 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NFfbFbUwAqY5dhXJzCe2_T13X11WOauFThcrZAyoUjJxe5BmcPijXg==
Age: 2889
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 05:51:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2
142.250.74.163200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 21144, version 1.0\012- data
Hash 2bc7630144496092dc786ce63109e560
723df3658078cfed03c85e47f15fc439eb4331be
7c9c80a6c32c0619d61c28f28723e68c5f8f75163e77ee5cf64c39e640e0d71e
GET /s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://wccenters.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21144
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 22:36:55 GMT
expires: Wed, 20 Sep 2023 22:36:55 GMT
cache-control: public, max-age=31536000
age: 112476
last-modified: Tue, 19 Apr 2022 19:43:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 05:51:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
wccenters.com/wp-content/uploads/2015/12/bg-doktorka.jpg
95.216.102.241200 OK 13 kB URL HTTP/2 wccenters.com/wp-content/uploads/2015/12/bg-doktorka.jpg
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 35", baseline, precision 8, 1600x456, components 3\012- data
Hash f9422ee46d30f4cb29a9cea5c200c09e
bc815122f1a5cf9d7ef6c013f0edc53b3a9dbef9
bfffa6483055c36868b87d8c2c348e88c70fe60ddcf4c273c854502fbec20537
GET /wp-content/uploads/2015/12/bg-doktorka.jpg HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: image/jpeg
last-modified: Mon, 11 Apr 2022 08:30:36 GMT
accept-ranges: bytes
content-length: 12610
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
142.250.74.163200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 35764, version 1.0\012- data
Hash 60f23230f1a8d5c3b7d25b73f5b5ce23
ed08ada85d017893b9bcb8224e99154c6708f5d2
22b6cdc450204c1cb32b31e679d812fea1c17ac506a7b78daeb12bd0ab25fde8
GET /s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://wccenters.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 21:14:36 GMT
expires: Tue, 19 Sep 2023 21:14:36 GMT
cache-control: public, max-age=31536000
age: 203815
last-modified: Mon, 18 Jul 2022 19:06:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/barlowsemicondensed/v14/wlpvgxjLBV1hqnzfr-F8sEYMB0Yybp0mudRXeIqq.woff2
142.250.74.163200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/barlowsemicondensed/v14/wlpvgxjLBV1hqnzfr-F8sEYMB0Yybp0mudRXeIqq.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 21308, version 1.0\012- data
Hash 1fbae0f241c04128e5567d5fd49bb2cb
3ede311a6b1f69f51265b76a99154f549e6b3b22
d9302cb5aec72de2f2ff0c475fd3b1518cca263f808bbbf63757c5812b5f8f9a
GET /s/barlowsemicondensed/v14/wlpvgxjLBV1hqnzfr-F8sEYMB0Yybp0mudRXeIqq.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://wccenters.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21308
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 23:10:14 GMT
expires: Wed, 20 Sep 2023 23:10:14 GMT
cache-control: public, max-age=31536000
age: 110477
last-modified: Tue, 19 Apr 2022 18:14:38 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
wccenters.com/wp-content/uploads/2022/04/Bright-Motorcycle-Vlog-Youtube-Thumbnail-1.jpg
95.216.102.241200 OK 22 kB URL HTTP/2 wccenters.com/wp-content/uploads/2022/04/Bright-Motorcycle-Vlog-Youtube-Thumbnail-1.jpg
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 21724, version 1.0\012- data
Hash c3609c36a150ce088ea4dcab92b7c00b
0c18236a183e962533a4f61bff3ae2581313561a
65a47caa5183b035bf78d0f93adbe5cea500333410259c54abf2de356740df7e
GET /wp-content/uploads/2022/04/Bright-Motorcycle-Vlog-Youtube-Thumbnail-1.jpg HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: image/jpeg
last-modified: Wed, 13 Apr 2022 07:59:45 GMT
accept-ranges: bytes
content-length: 114123
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3p-ks51os.woff2
142.250.74.163200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3p-ks51os.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 20992, version 1.0\012- data
Hash 9bbb36e16c6af8205e564346df9579c0
8dc297321f4b344e6ea16b549734b10097594860
6563f08627fa2cd60c0c300318405b6f545f0d7f469df6ba87c9e31ecc987217
GET /s/barlow/v12/7cHqv4kjgoGqM7E3p-ks51os.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://wccenters.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20992
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:43:44 GMT
expires: Thu, 21 Sep 2023 19:43:44 GMT
cache-control: public, max-age=31536000
age: 36467
last-modified: Tue, 19 Apr 2022 19:13:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
wccenters.com/wp-content/themes/medicare/fonts/Pe-icon-7-stroke.woff?d7yf1v
95.216.102.241200 OK 59 kB URL HTTP/2 wccenters.com/wp-content/themes/medicare/fonts/Pe-icon-7-stroke.woff?d7yf1v
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format, TrueType, length 58556, version 1.0\012- data
Hash b38ef310874bdd008ac14ef3db939032
7e544bb11b7655998db6f324c612f7ffbf0ab66e
6fb4217048f333e23e0fd0ba2ab05e05fd7500f86a5a80a7cf04a2f94b257bec
GET /wp-content/themes/medicare/fonts/Pe-icon-7-stroke.woff?d7yf1v HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://wccenters.com/wp-content/themes/medicare/style.crush.css?ver=6.0.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: font/woff
last-modified: Mon, 10 Dec 2018 18:18:58 GMT
accept-ranges: bytes
content-length: 58556
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ff6d50919e56aed75c47feb45ee2f2ec
98f558a4b2d4f3c271abc93d0b74ece4ad7a59ef
b1b6f0e78b5a1e2092cba6d71d0d5a918066c0486176cef0a19f51e2d5a9962e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5054
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 05:51:31 GMT
Last-Modified: Thu, 22 Sep 2022 04:27:17 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
wccenters.com/wp-content/themes/medicare/css/print.css
95.216.102.241200 OK 687 B URL HTTP/2 wccenters.com/wp-content/themes/medicare/css/print.css
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash fcefa6f7a3abb0c30b087335d3c95e47
a42ebfc3ac3ee3965c0908000a30187299ef96f3
51c6588e8086c4a7632352b83f041102bef68b3bfb6b0007e4c8da20e5e4dfbd
GET /wp-content/themes/medicare/css/print.css HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/wp-content/themes/medicare/print.css?ver=6.0.2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: text/css
last-modified: Mon, 10 Dec 2018 18:18:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 687
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 35343b6981ed4c9eb2cd90bc8c2146cd
4e49432e50195a2bc528fb1745a2899306c79db8
cf55f53534e3e8b62513618cda90832a7b9bcd0d15b1a8f6bb51db6eb60daefd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 05:51:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
wccenters.com/wp-content/themes/medicare/fonts/Medical-Set.ttf?onir9v
95.216.102.241200 OK 20 kB URL HTTP/2 wccenters.com/wp-content/themes/medicare/fonts/Medical-Set.ttf?onir9v
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type gzip compressed data, max compression\012- data
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /wp-content/themes/medicare/fonts/Medical-Set.ttf?onir9v HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/wp-content/themes/medicare/style.crush.css?ver=6.0.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: font/ttf
last-modified: Mon, 10 Dec 2018 18:18:58 GMT
accept-ranges: bytes
content-length: 214820
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css?ver=6.0.2
104.18.11.207200 OK 32 kB URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css?ver=6.0.2
IP 104.18.11.207:0
File type ASCII text, with very long lines (30837)
Hash dc4c6d431803142ccd48bec2504c11bd
4a0c5c5c12d6e402067403daf286ff5f451291e3
2984c797a5dadf10ebb806a839712bd0fae4dc00481275097d5276dbea0a97bd
GET /font-awesome/4.7.0/css/font-awesome.min.css?ver=6.0.2 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 05:51:31 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 03/12/2022 14:32:07
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: ec1206c2a47aeda2610124b4ef59cfba
cdn-cache: HIT
cf-cache-status: HIT
age: 2051251
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74e8c4ecefb6b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
wccenters.com/wp-content/uploads/2022/04/cropped-logo-32x32.png
95.216.102.241200 OK 1.8 kB URL HTTP/2 wccenters.com/wp-content/uploads/2022/04/cropped-logo-32x32.png
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 2257ba7bb3a7f2b5f80b6d7f86fe7797
0c3df13d4b44a05164c008157cd5c4d0905168cc
1b0f4222ff89fb7de755cec8b976917ef5a659764a2692a06c3c5b90ad15aafc
GET /wp-content/uploads/2022/04/cropped-logo-32x32.png HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: image/png
last-modified: Wed, 13 Apr 2022 05:58:33 GMT
accept-ranges: bytes
content-length: 1828
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 35343b6981ed4c9eb2cd90bc8c2146cd
4e49432e50195a2bc528fb1745a2899306c79db8
cf55f53534e3e8b62513618cda90832a7b9bcd0d15b1a8f6bb51db6eb60daefd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 05:51:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
54.186.209.73101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.186.209.73:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: wfPBqVozuhrSKnCrGuflZA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: D2vUv57maI87IgCemsPiqe2hAug=
wccenters.com/wp-content/themes/medicare/js/enquire.min.js
95.216.102.241200 OK 936 B URL HTTP/2 wccenters.com/wp-content/themes/medicare/js/enquire.min.js
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (2045), with CRLF line terminators
Hash 4372895238a9f490f2e351a370d42a53
b283ca0e923a65dba8b54c24a6812f21cc00b34b
b102a3d97d60465f529a969ac85781d3a534c37ed93c35cb57e713303876cbb4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/medicare/js/enquire.min.js HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Cookie: _ga=GA1.2.1851839251.1663825892; _gid=GA1.2.452117348.1663825892; _gat=1
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:32 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 13:18:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 936
date: Thu, 22 Sep 2022 05:51:32 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/themes/medicare/fonts/Essential.ttf?ljkb42
95.216.102.241200 OK 214 kB URL HTTP/2 wccenters.com/wp-content/themes/medicare/fonts/Essential.ttf?ljkb42
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, Craft-essential\012- data
Size 214 kB (213756 bytes)
Hash 8059acd17dc4d02593ab5bfeece7ab1a
dcd35ad2c42b642d795b58439de84afdf36e90bc
0a7062f9894c0d7bcd4e0358cc75f943313b05a403db5a3176f2a4bdf4308617
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/medicare/fonts/Essential.ttf?ljkb42 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/wp-content/themes/medicare/style.crush.css?ver=6.0.2
Cookie: _ga=GA1.2.1851839251.1663825892; _gid=GA1.2.452117348.1663825892; _gat=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:32 GMT
content-type: font/ttf
last-modified: Mon, 10 Dec 2018 18:18:58 GMT
accept-ranges: bytes
content-length: 213756
date: Thu, 22 Sep 2022 05:51:32 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/themes/medicare/fonts/Technology-Collection.ttf?sdr0gav
95.216.102.241200 OK 103 kB URL HTTP/2 wccenters.com/wp-content/themes/medicare/fonts/Technology-Collection.ttf?sdr0gav
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, Technology-Collection\012- data
Size 103 kB (103340 bytes)
Hash e10194affccb0bbe47d04a44a0fdb397
6002c6fe6f79e974a57683fa20c76e19c88f970c
50fad7326f74cfb968b878715459f19c195a1676748e6d6af3779e01da0166e5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/medicare/fonts/Technology-Collection.ttf?sdr0gav HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/wp-content/themes/medicare/style.crush.css?ver=6.0.2
Cookie: _ga=GA1.2.1851839251.1663825892; _gid=GA1.2.452117348.1663825892; _gat=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:32 GMT
content-type: font/ttf
last-modified: Mon, 10 Dec 2018 18:18:56 GMT
accept-ranges: bytes
content-length: 103340
date: Thu, 22 Sep 2022 05:51:32 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/themes/medicare/fonts/Hospital-2.ttf?tvrq72d
95.216.102.241200 OK 36 kB URL HTTP/2 wccenters.com/wp-content/themes/medicare/fonts/Hospital-2.ttf?tvrq72d
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, Hospital-2 \012- data
Hash 0dcb21bdac474f82dd5d2f0092bb5f9b
e5651ad0f37cfe04d5f896a6b80f15a85af61aa8
13281f7cf5bfa7cb2c98500367e43e3c63a0b9deb726365d522fd0f00b0162b5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/medicare/fonts/Hospital-2.ttf?tvrq72d HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/wp-content/themes/medicare/style.crush.css?ver=6.0.2
Cookie: _ga=GA1.2.1851839251.1663825892; _gid=GA1.2.452117348.1663825892; _gat=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:32 GMT
content-type: font/ttf
last-modified: Mon, 10 Dec 2018 18:18:56 GMT
accept-ranges: bytes
content-length: 36044
date: Thu, 22 Sep 2022 05:51:32 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-includes/js/mediaelement/mejs-controls.svg
95.216.102.241200 OK 1.3 kB URL HTTP/2 wccenters.com/wp-includes/js/mediaelement/mejs-controls.svg
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (4597)
Hash 523e89523bf2e33352e22272b85ec630
fe6fa07a6ffb32f9d9baaa7b857eea6fbdbf754d
acf1ec2ee28483e5d75b0d24180d30b20b8e85f2dcd9151ef7db5b72fa276056
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mejs-controls.svg HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
Cookie: _ga=GA1.2.1851839251.1663825892; _gid=GA1.2.452117348.1663825892; _gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:32 GMT
content-type: image/svg+xml
last-modified: Tue, 01 Aug 2017 05:13:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1316
date: Thu, 22 Sep 2022 05:51:32 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/uploads/2022/04/my-video4-rgcokgcx-ljn520fw-tuw2vzds_sJwyKh4Q-1-1.mp4?_=1
95.216.102.241206 Partial Content 115 kB URL HTTP/2 wccenters.com/wp-content/uploads/2022/04/my-video4-rgcokgcx-ljn520fw-tuw2vzds_sJwyKh4Q-1-1.mp4?_=1
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size 115 kB (115074 bytes)
Hash 0d941e9c68bcbf3b1a3d230ce48ca7ef
c0c203f75d24e3502da2106f224a0c16df95d133
d34d2087c5b07b7ea67e7f07051069ddb6f9a1f7af9f012f92fdfd05917061cd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/04/my-video4-rgcokgcx-ljn520fw-tuw2vzds_sJwyKh4Q-1-1.mp4?_=1 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://wccenters.com/
Cookie: _ga=GA1.2.1851839251.1663825892; _gid=GA1.2.452117348.1663825892; _gat=1
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
content-type: video/mp4
last-modified: Wed, 13 Apr 2022 05:07:49 GMT
content-range: bytes 0-5622638/5622639
content-length: 5622639
date: Thu, 22 Sep 2022 05:51:32 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c3dc89ea2daeec65f3255371661f2b1b
42d925fc09fe78ce664ba07b49883f027a024c5b
055a012e5b0c2d2f0c633da56e79db5744a2aad1d43fd52237fac385128fc7df
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1817
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 05:51:32 GMT
Last-Modified: Thu, 22 Sep 2022 05:21:15 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 827 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (724)
Hash 29973cf3b0ef9f16fe31ed981b2f6573
f22eb80b89b5e0ae9ace854aab6676d56eaef6a1
476822c80e0a0ee078edb7a74db59378f8b1d43d2de844e28a9e9c2f68a4c8d8
GET /rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 15 Sep 2023 04:48:06 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KZc887Dvnxb+Me2YGy9lcw==
x-fb-debug: VIMe/RAH3vyw97MwWfCWz6fMY1kbB6cNDLKkRMIqalTz92cMR0NLQ46+JdvJha/NCdioVB6h/AhA7AEdusfGNg==
priority: u=3,i
content-length: 827
x-fb-trip-id: 1679558926
date: Thu, 22 Sep 2022 05:51:32 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yK/l/en_US/DFz2q585Cjs.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 23 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yK/l/en_US/DFz2q585Cjs.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (42045)
Hash 0d15ae898adcd82bf30fc62fa941911d
eb3af610a1cf31f92e790c8bd08a79e2f0b011d1
98e9d40a3c4e19022b61436d7cbf5dca6bebaa3d5b4dbd0fa455f467ee1935f5
GET /rsrc.php/v3iEpO4/yK/l/en_US/DFz2q585Cjs.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 21 Sep 2023 05:28:12 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: DRWuiYrc2CvzD8YvqUGRHQ==
x-fb-debug: 01ChkMvQurqnxdXE2GcRD9Ae39DtR2aJmEpx88kBDArUhbvAIu9bBC95SDYOwj3nliv4aJYNdEryUQy3595dmg==
content-length: 23379
x-fb-trip-id: 1679558926
date: Thu, 22 Sep 2022 05:51:32 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yb/l/0,cross/_qbYuUo5HEt.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 4.9 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yb/l/0,cross/_qbYuUo5HEt.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4093)
Hash 86345cdbd9bae8ae9fd64ca84329557d
227c673e5ae8591ff095f43c502b4a646d009c00
d06eaaad9324d7afb24f222579f331cd27d0ad0ed13d7337f10ac302ac7ac4df
GET /rsrc.php/v3/yb/l/0,cross/_qbYuUo5HEt.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 21 Sep 2023 16:23:28 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: hjRc29m66K6f1kyoQylVfQ==
x-fb-debug: xMLVDCy/nXudKp4lrW1ilT1I5Bb1VPZj+5LwFHMMlQzstDvT0vweiBQelRzZfY6IFacbu5F32A6MyQEQUL1fAA==
content-length: 4924
x-fb-trip-id: 1679558926
date: Thu, 22 Sep 2022 05:51:32 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y5/r/eTtBV70R6Mu.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 91 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y5/r/eTtBV70R6Mu.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (18569)
Hash 71734beb815db65fba1192100b6bdfe3
d2d269ed2688679786c5b51153f03bda76c4c749
9efe57ee8cf83a4d9a864d77226765ea72f0357ad7be038a7fabde0a3a8855e9
GET /rsrc.php/v3/y5/r/eTtBV70R6Mu.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 21 Sep 2023 05:37:57 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: cXNL64Fdtl+6EZIQC2vf4w==
x-fb-debug: Aprf/qM9wmY1Cq8wSPfvb891ay8QmzMOV7OcygbzSHWEAmRrhJ+tGqhSPZ1XQSKR/gqDXd3e/V/OBlNmIq4ygA==
content-length: 91360
x-fb-trip-id: 1679558926
date: Thu, 22 Sep 2022 05:51:32 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y3/r/BjeESKDbisI.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y3/r/BjeESKDbisI.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (5329)
Hash b587fd0cf22e71e100b93f07a0d514fc
e8b202d9a2704432ab65bcc35b38fe0b5cbc9e9a
977396d0763f85d37b0cb457725e6ba24802125e623b0678c907047ec37488d2
GET /rsrc.php/v3/y3/r/BjeESKDbisI.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 22 Sep 2023 03:25:44 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-fb-rlafr: 0
content-md5: tYf9DPIuceEAuT8HoNUU/A==
x-fb-debug: GCpArXMKYlRdg1v2NzW0p5YExoImzQ7kkrqklht1OFjRYMaEpV155E7E+B/cXsYT1D7rBeHtO4u32FC0HKgyDA==
content-length: 12294
x-fb-trip-id: 1679558926
date: Thu, 22 Sep 2022 05:51:32 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yC/r/FSfnunPw8Ih.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yC/r/FSfnunPw8Ih.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type C source, ASCII text, with very long lines (8001)
Hash 809c1f2ec0dde739ab41fe0f7591b8bb
e29711bc42df031afab96927793c7eb1874bd8ed
16204f2bc3d7c786fc7870b5aeb0d3206b0b3d5e2b3f13ad4d79d16b46ecbb57
GET /rsrc.php/v3/yC/r/FSfnunPw8Ih.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 21 Sep 2023 05:26:54 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: gJwfLsDd5zmrQf4PdZG4uw==
x-fb-debug: kfNZXs4/Q14sDVJbe6ediyYz56Iw0DB78E2BIE8wfBFoOgBgI+/w3+PAiAJTK/gPSFp/UDs8CUSQHds0C/PcHg==
content-length: 16206
x-fb-trip-id: 1679558926
date: Thu, 22 Sep 2022 05:51:32 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
wccenters.com/wp-json/contact-form-7/v1/contact-forms/1165/refill
95.216.102.241200 OK 505 B URL HTTP/2 wccenters.com/wp-json/contact-form-7/v1/contact-forms/1165/refill
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
Hash 3f585b6f5406eee3c4594b844e445e50
f5809faa3889001da970d95e64e956ec2094f356
20449e39c557d724678ff1927f67509b11171c62eeb2d371a028e4ac0a1db75d
Analyzer Verdict Alert fortinet Phishing
GET /wp-json/contact-form-7/v1/contact-forms/1165/refill HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wccenters.com/
Connection: keep-alive
Cookie: _ga=GA1.2.1851839251.1663825892; _gid=GA1.2.452117348.1663825892; _gat=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
x-robots-tag: noindex
link: <https://wccenters.com/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
allow: GET
vary: Origin
date: Thu, 22 Sep 2022 05:51:33 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15106
Expires: Thu, 22 Sep 2022 10:03:19 GMT
Date: Thu, 22 Sep 2022 05:51:33 GMT
Connection: keep-alive
wccenters.com/wp-json/contact-form-7/v1/contact-forms/1165/feedback/schema
95.216.102.241200 OK 981 B URL HTTP/2 wccenters.com/wp-json/contact-form-7/v1/contact-forms/1165/feedback/schema
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
Hash 11610767b1f14720d93d6971db4de8da
449f68546c229c2bef34ed925f7c65503bcd27cc
e89a66c7ad0aaa8171c8726b09e96b17d1f82b2b66b457c4e7af439b26917dcf
Analyzer Verdict Alert fortinet Phishing
GET /wp-json/contact-form-7/v1/contact-forms/1165/feedback/schema HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wccenters.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
x-robots-tag: noindex
link: <https://wccenters.com/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
allow: GET
vary: Origin
date: Thu, 22 Sep 2022 05:51:32 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15106
Expires: Thu, 22 Sep 2022 10:03:19 GMT
Date: Thu, 22 Sep 2022 05:51:33 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c0201d377c57a684452c0d26372e674d
3829f81048cc63b5f0d1e82dfbe3b8e31646e733
efa055dc93267be2dddd94b334c0655c2e1f1682467fd738e013a778aea175b9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14397
x-amzn-requestid: c5a03ce8-f695-4ad3-8c42-c3bfd47d6279
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yv1wLGqKIAMF-Og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6329699a-2b130d8b1a4b1b9131db8984;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 07:19:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: itH-GLLUay6dtfjGStUDeT3wOwVf-S3tWSY31HjriEFaRUiD8aFKNw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 07:41:48 GMT
age: 79785
etag: "3829f81048cc63b5f0d1e82dfbe3b8e31646e733"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c2db94039cb675cb250519fe57b2b3c9
37222a70df5d9a69073b4b32ebc3a5da60006001
444f4359ac25747e7c5d7e09202f195d407bc94a4933ac7ebbbaf9839bf59aff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12048
x-amzn-requestid: 59e98571-f927-44b3-b088-29ec1e4cc3bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYxD-FnIIAMF5Eg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202ee6-14e47d9a3ae47d0f607033a8;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:19:02 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 55e0txtcytlUpcNWSLrHWN3FC1t4dMHGTrHGhNV7YFIhOz6c45UcCQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 12:43:54 GMT
age: 61659
etag: "37222a70df5d9a69073b4b32ebc3a5da60006001"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4ee5bbd-73ba-4da9-bcfc-b6aa9ce9eb86.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4ee5bbd-73ba-4da9-bcfc-b6aa9ce9eb86.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 069a8e60288777306e90e53763f87811
e5bb6dd623282f8db053604a852dda28e6f6de8f
48acd402e55b65f5bbde1bc7b13b604f07b58742712c3e50b07c5a57c6c109a0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4ee5bbd-73ba-4da9-bcfc-b6aa9ce9eb86.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10670
x-amzn-requestid: 5c5bf01a-3f05-4afe-9f13-61f7d4e0901c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1GPFHSDoAMFXww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b83f9-11818e616f4e330e714fc44f;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:36:57 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: R46vPpd-F1yZ09jzsABLQ9rBWm9dRtkUnM_ISyA_x3nRhQoaryXKkw==
via: 1.1 0800f067ff646622f3e8e507cb9b52e8.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 22:13:39 GMT
age: 27474
etag: "e5bb6dd623282f8db053604a852dda28e6f6de8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36673ded-0a09-4aa6-b4c8-c3e3be3b0e4a.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36673ded-0a09-4aa6-b4c8-c3e3be3b0e4a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2b5c8545323317489392c1f56707078e
fcc0cdd72a5c97f13b0c59e5b39e06a6add18a9c
c79efda3b792026233b13c07a2c69e3dff0fdbccfb081c768ffc7e52aa744668
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36673ded-0a09-4aa6-b4c8-c3e3be3b0e4a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8058
x-amzn-requestid: 78d8a4f9-b85f-4055-a17e-90ccd231e462
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YshUOE7jIAMFm-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632815b4-7d0717045b5fd71d5a41ccdb;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 07:09:40 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: KIQtEVYv-6RhnqJgjPU8FvwsKCKB48L91EedTn4XPXlylltRVHHTwQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 08:01:19 GMT
age: 78614
etag: "fcc0cdd72a5c97f13b0c59e5b39e06a6add18a9c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa5fccb8-005e-4a27-aee2-802639e26592.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa5fccb8-005e-4a27-aee2-802639e26592.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 095da54b533e1dbad223f820b7018ff5
d0859402a9e0c61d6193995130db553995c1be9d
aadbdba88629367686d44a660ff1bf3969643bed29546553d0d22837aba38543
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa5fccb8-005e-4a27-aee2-802639e26592.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7206
x-amzn-requestid: cb23bf7a-e726-44c8-8952-c3edc9411989
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1Gu-EyEoAMFtFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b84c6-2d9be9e7136d8223377efa43;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:40:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: QEprxJCYcjCenh0SWk-6Ich2zgX3nR8nj-i6Bt-qVXIw4VC9Mtybvw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 22:11:23 GMT
etag: "d0859402a9e0c61d6193995130db553995c1be9d"
content-type: image/jpeg
age: 27610
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91c56f0b9810bfdd84e10a626b89e389
15d83e44d568938b6c9c87201e898cedb3edec0a
942de9764e1c408f7512759774aab0479db201e6fae15ccc39e653adae4cb86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8678
x-amzn-requestid: c671a9ab-c5d0-4743-b13e-cc9a47e3d2fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vEThIAMFSwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-17ed13811d3833ea00a34423;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hp-WIGb9M8tEmNGOVjx6UQKx9E4-1oJmka0a6seG7inahqYByPmRAg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:22 GMT
age: 29831
etag: "15d83e44d568938b6c9c87201e898cedb3edec0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
wccenters.com/wp-admin/admin-ajax.php
95.216.102.241200 OK 0 B URL HTTP/2 wccenters.com/wp-admin/admin-ajax.php
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 262
Origin: https://wccenters.com
Connection: keep-alive
Referer: https://wccenters.com/
Cookie: _ga=GA1.2.1851839251.1663825892; _gid=GA1.2.452117348.1663825892; _gat=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://wccenters.com
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
x-robots-tag: noindex
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-length: 0
date: Thu, 22 Sep 2022 05:51:33 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-admin/admin-ajax.php
95.216.102.241200 OK 845 B URL HTTP/2 wccenters.com/wp-admin/admin-ajax.php
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- HTML document, ASCII text, with very long lines (7519), with no line terminators
Hash ab60b91d35e89f116cb702a56a8e57ce
dff0df5630f57fdee36c7d2a6a556730e91bc4e5
1e13ee8912b86bd2844a2793e94df7fb1c5f5de15eb12860dfd0e0083b5e9a45
Analyzer Verdict Alert fortinet Phishing
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 128
Origin: https://wccenters.com
Connection: keep-alive
Referer: https://wccenters.com/
Cookie: _ga=GA1.2.1851839251.1663825892; _gid=GA1.2.452117348.1663825892; _gat=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://wccenters.com
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
x-robots-tag: noindex
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-length: 845
content-encoding: br
vary: Accept-Encoding
date: Thu, 22 Sep 2022 05:51:33 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/uploads/2022/04/258143297_4473082896101564_7199841230014822390_n-540x540.jpg
95.216.102.241200 OK 69 kB URL HTTP/2 wccenters.com/wp-content/uploads/2022/04/258143297_4473082896101564_7199841230014822390_n-540x540.jpg
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 540x540, components 3\012- data
Hash ea9b2a64901f95042dd034393b18ecd4
13d6292a6191fe18d39a505a50d0710768ac3799
cabfcc5878806f62ea145a83d4c827cbb219bbdb3483dc389ab78e372695680e
GET /wp-content/uploads/2022/04/258143297_4473082896101564_7199841230014822390_n-540x540.jpg HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Cookie: _ga=GA1.2.1851839251.1663825892; _gid=GA1.2.452117348.1663825892; _gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:33 GMT
content-type: image/jpeg
last-modified: Wed, 13 Apr 2022 06:26:44 GMT
accept-ranges: bytes
content-length: 69352
date: Thu, 22 Sep 2022 05:51:33 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/uploads/2015/09/264122140_4548661465213151_6307044466700511725_n-540x450.jpg
95.216.102.241200 OK 72 kB URL HTTP/2 wccenters.com/wp-content/uploads/2015/09/264122140_4548661465213151_6307044466700511725_n-540x450.jpg
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 540x450, components 3\012- data
Hash 86ab3badbb71fb6233beac81d701e2e8
d02cc47b6c374555495b6d9cb953bd8c9c540787
0b208eec6b60296a1723e079848df4d19299911d2089d23ca7197339c39425ff
GET /wp-content/uploads/2015/09/264122140_4548661465213151_6307044466700511725_n-540x450.jpg HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Cookie: _ga=GA1.2.1851839251.1663825892; _gid=GA1.2.452117348.1663825892; _gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:33 GMT
content-type: image/jpeg
last-modified: Mon, 11 Apr 2022 21:39:16 GMT
accept-ranges: bytes
content-length: 72464
date: Thu, 22 Sep 2022 05:51:33 GMT
X-Firefox-Spdy: h2
wccenters.com/wp-content/uploads/2015/09/265577769_4569145059831458_7994421444288077459_n-540x540.jpg
95.216.102.241200 OK 67 kB URL HTTP/2 wccenters.com/wp-content/uploads/2015/09/265577769_4569145059831458_7994421444288077459_n-540x540.jpg
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 540x540, components 3\012- data
Hash 3aa6dc8a67acdd0264860210b9428d23
2a039151838b90f05deeccd3a05a59ccead2eaf7
fbd9f53632465d0bda23d562ca022648412d8d90b1c209e7b77dc5f07fb47403
GET /wp-content/uploads/2015/09/265577769_4569145059831458_7994421444288077459_n-540x540.jpg HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Cookie: _ga=GA1.2.1851839251.1663825892; _gid=GA1.2.452117348.1663825892; _gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:33 GMT
content-type: image/jpeg
last-modified: Mon, 11 Apr 2022 21:34:06 GMT
accept-ranges: bytes
content-length: 66840
date: Thu, 22 Sep 2022 05:51:33 GMT
X-Firefox-Spdy: h2
www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2F1671853029557912%2F&tabs&width=300&small_header=&adapt_container_width=true&hide_cover=&hide_cta=&show_facepile=&locale=en_US
157.240.200.35200 OK 85 kB URL HTTP/2 www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2F1671853029557912%2F&tabs&width=300&small_header=&adapt_container_width=true&hide_cover=&hide_cta=&show_facepile=&locale=en_US
IP 157.240.200.35:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (18465)
Hash 61d6dd52c1b4e96f9f3c8d660c664ea6
2e2143944ca1468dff0f72789ffe51c373000fc4
9e85ef3e6327762a143a248eac6dee846b44ee7093b8cbaf49d961dbbe64c097
GET /plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2F1671853029557912%2F&tabs&width=300&small_header=&adapt_container_width=true&hide_cover=&hide_cta=&show_facepile=&locale=en_US HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: W6QisNOAqQ93/W+08tId4sQslNsE0EdSgFpSj4YRbSm1VOCtjh4/HycOrpJ2Qt4wjqr+htZS13ZJYJwlOYFSDw==
date: Thu, 22 Sep 2022 05:51:32 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
wccenters.com/
95.216.102.241200 OK 0 B IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 16:45:54 GMT
content-type: text/html; charset=UTF-8
content-encoding: br
vary: Accept-Encoding
date: Thu, 22 Sep 2022 05:51:30 GMT
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2
wccenters.com/wp-content/plugins/bt_cost_calculator/cc.main.js?ver=6.0.2
95.216.102.241200 OK 0 B URL HTTP/2 wccenters.com/wp-content/plugins/bt_cost_calculator/cc.main.js?ver=6.0.2
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
GET /wp-content/plugins/bt_cost_calculator/cc.main.js?ver=6.0.2 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 29 Sep 2022 05:51:31 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 13:19:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4338
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Barlow%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CPlayfair+Display%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CBarlow%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CBarlow+Semi+Condensed%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CBarlow+Semi+Condensed%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic&subset=latin%2Clatin-ext&ver=1.0.0
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Barlow%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CPlayfair+Display%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CBarlow%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CBarlow+Semi+Condensed%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CBarlow+Semi+Condensed%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic&subset=latin%2Clatin-ext&ver=1.0.0
IP 142.250.74.10:0
GET /css?family=Barlow%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CPlayfair+Display%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CBarlow%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CBarlow+Semi+Condensed%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CBarlow+Semi+Condensed%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic&subset=latin%2Clatin-ext&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 22 Sep 2022 05:51:31 GMT
date: Thu, 22 Sep 2022 05:51:31 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
wccenters.com/wp-content/uploads/2022/04/my-video4-rgcokgcx-ljn520fw-tuw2vzds_sJwyKh4Q-1-1.mp4?_=1
95.216.102.241206 Partial Content 0 B URL HTTP/2 wccenters.com/wp-content/uploads/2022/04/my-video4-rgcokgcx-ljn520fw-tuw2vzds_sJwyKh4Q-1-1.mp4?_=1
IP 95.216.102.241:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/04/my-video4-rgcokgcx-ljn520fw-tuw2vzds_sJwyKh4Q-1-1.mp4?_=1 HTTP/1.1
Host: wccenters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://wccenters.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
content-type: video/mp4
last-modified: Wed, 13 Apr 2022 05:07:49 GMT
content-range: bytes 0-5622638/5622639
content-length: 5622639
date: Thu, 22 Sep 2022 05:51:31 GMT
X-Firefox-Spdy: h2