| r3.o.lencr.org/ |  23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hashaea93551fa9deb76ae49a3b4019d64fe e3b8862057ebe839959228e42246d7b1807fc90c 7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7957
Expires: Fri, 09 Dec 2022 22:38:57 GMT
Date: Fri, 09 Dec 2022 20:26:20 GMT
Connection: keep-alive
|
|
| planprophet.com/ |  72.167.48.161 | 301 Moved Permanently | 162 B |
IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET / HTTP/1.1
Host: planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 09 Dec 2022 20:26:20 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://planprophet.com/
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash7181eff9c60e83eb0004ece591e47dca 0fd8cd0c9d10b0547938982e57d2c43e2d98679f 89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4374
Expires: Fri, 09 Dec 2022 21:39:14 GMT
Date: Fri, 09 Dec 2022 20:26:20 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashb44c4b5daa307a355e7bab1c83c1ca82 dbd14cd873f1dd4502f277b3f51cb7bc8da0c080 fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 20:08:20 GMT
content-type: application/json
age: 1080
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash4ee537977be9c03702f8ffe0025bf1fe 21637881c4aa34c4add703f8bff4eff573159f45 4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3649
Expires: Fri, 09 Dec 2022 21:27:09 GMT
Date: Fri, 09 Dec 2022 20:26:20 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash53341dea33f4f3d9b4966f80589f429a 20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: aVbUYz/jPX+JNL6GfeT6MYpdMXiw4ZESaobA2gTCrhQ2EMIQlwygIEdNMK6es1+FH+rBzQ0Swls=
x-amz-request-id: RMNFDT8XQ4XTJHPC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 19:48:29 GMT
age: 2271
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:21 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 19:33:13 GMT
age: 3188
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.sectigo.com/ |  104.18.32.68 | 200 OK | 472 B |
IP104.18.32.68:0
Hash7298c7f15aeab92e334916efb9731ea4 35b3f61c518cad0d76c212862241b8011b93f579 ae91c4aa3f8cacd3a2ff5c6f30e01fbe3df8f764553238b752dd0d8eedf33ae6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 20:26:21 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 07 Dec 2022 07:59:00 GMT
Expires: Wed, 14 Dec 2022 07:58:59 GMT
Etag: "35b3f61c518cad0d76c212862241b8011b93f579"
Cache-Control: max-age=386557,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 777079ab49c41c06-OSL
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashe6be4d2155028ffff5d01ab6e7edf6da 07172071b5cf43c4cd7d7930b4ad8518ec1e32e9 4d8a5fa2362fd0910babd6d128d850d4460829468eb23d34ee5ee6eaa42d5a38
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3819
Cache-Control: max-age=135853
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:26:21 GMT
Etag: "6392faaf-1d7"
Expires: Sun, 11 Dec 2022 10:10:34 GMT
Last-Modified: Fri, 09 Dec 2022 09:06:55 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 34.210.150.237 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP34.210.150.237:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +YlMsqnrvABL5euwznCPig==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: bW4PuKeC3xBGprIhZcNxdNsZ5Mw=
|
|
| planprophet.com/ | 72.167.48.161 | 301 Moved Permanently | 0 B |
IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET / HTTP/1.1
Host: planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 09 Dec 2022 20:26:22 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-redirect-by: WordPress
location: https://www.planprophet.com/
x-powered-by: PHP/7.4.33, PleskLin
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash48c90992f0837a58e0a36118a27dae6a 3d238fed35e6d247bddbba92864e6b92e6aed9b6 cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2268
Expires: Fri, 09 Dec 2022 21:04:11 GMT
Date: Fri, 09 Dec 2022 20:26:23 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash48c90992f0837a58e0a36118a27dae6a 3d238fed35e6d247bddbba92864e6b92e6aed9b6 cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2268
Expires: Fri, 09 Dec 2022 21:04:11 GMT
Date: Fri, 09 Dec 2022 20:26:23 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash48c90992f0837a58e0a36118a27dae6a 3d238fed35e6d247bddbba92864e6b92e6aed9b6 cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2268
Expires: Fri, 09 Dec 2022 21:04:11 GMT
Date: Fri, 09 Dec 2022 20:26:23 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg | 34.120.237.76 | 200 OK | 6.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8546542f00ea29ef4df6ab8d3c7c2164 5c8ffe91490006a9890188b53f875568c2b6bd8f 7fb11750ac339ac283da62fd370862c6b95a103a585ca5dd8c90038718d818a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6578
x-amzn-requestid: 6392feb9-e33e-42fa-bc10-b5e31e654c9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4beGG7oAMF8hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903aaf-2c890b7b0a16617346a0f7e7;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H067kZXU_djWxbWO34bYMqa0xZ-WF9ntEBhZ-kV_TDoJFXQL_J1hqQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:34:27 GMT
age: 60716
etag: "5c8ffe91490006a9890188b53f875568c2b6bd8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg | 34.120.237.76 | 200 OK | 7.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash5de5d319f43d9c9c641419d96655541f cde4c7fa0145d3645af17e34c83c63c08f76a076 fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 400d1465-ecbf-4d95-8aa8-4dce5dca0716
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctluwGo4oAMFhTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee991-6dba29ae7065d5347a1a420d;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:04:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Lazl-stakC-31gMuQ2WzH9uFkIb0g7HaaM3xkwSFdFJMWKTaKqrBEQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 04:07:07 GMT
age: 58756
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg | 34.120.237.76 | 200 OK | 7.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8c3214044657f3b876d1f1848bca5684 7558222788f06623ddae6e883413e38e1146281e e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: N-zFZ8yeL7RrOZ5xfqvfBaE3zcXWecvr6Jd-93nKiUZlCXp2n2_Bgw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:41:46 GMT
age: 60277
etag: "7558222788f06623ddae6e883413e38e1146281e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg | 34.120.237.76 | 200 OK | 7.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8c94003641bb5a7595e7004f80f95d22 3446450df60d732f9021d5bfd5f5f7c6c870d9ec 4d782dbf94b2163e9bc18028cd0c1a391fdcfcb019f23c4c26ea0b44432039ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7801
x-amzn-requestid: cb8d5aab-409f-4b39-b498-b1ba84f34e06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFRNHX4oAMFvoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c07-7c6e3bfa3f81082b48f43fa9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8QHhEAFHTHd-5UqS1S5qwJj_h4WNfix2CgS4MO4zR_psrzgMP3SZ5g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 17:48:23 GMT
age: 9480
etag: "3446450df60d732f9021d5bfd5f5f7c6c870d9ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg | 34.120.237.76 | 200 OK | 5.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashfba9a3854df65740512f96efe7442e58 8fbff7725c842d70e047c635a725723a9dc9c55a 6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5188
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ck2-5G9joAMFlPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7Dp35PIr_WYUI1bBa21AvmCMEPi0d3jnhuS8eEk3Q3CXRcGWAnkD8g==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 16:56:53 GMT
age: 12570
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg | 34.120.237.76 | 200 OK | 13 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash730ba1a8edb79ba6f83b46d1ba5aed7b 55a236fedf6f5f7ca2bb88ae13e20846a50fd36d f8043e76265c59073d111987fd4c08d05a3ac80989af9269cca9ebcc21af4013
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12748
x-amzn-requestid: edd028e3-c23e-4985-b12d-d3ebe760df47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjuciEptIAMFj9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af783-1c151eb66f590c9c0e0c4c82;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:15:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -y4-_OwHl5_OFykJYYZSqwIopjKoYy1MhaGTpVXd4Grq2EsUP2c3IA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 07:44:29 GMT
age: 45714
etag: "55a236fedf6f5f7ca2bb88ae13e20846a50fd36d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash795e67bdfadc3c890a663080413b56b7 fdefde3befb6aceac3c337c34c8d738f5091908c 8375b55cfc13989b0cf96293b7bead2ce5811a993b3445da1776ca7015c36985
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:26:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashedac2b4e678c48b1fc3be3a06793bfcb 23f1f41a2194536d77a2497d7255b13747fd9af0 e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:26:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash4e3dc85fd71bdb106039966a96cdd02b 53d3487232ddcac30b53c224c94e63571633e5af d0a3a292876b50c590a3fa6c04d3471a6fb726c54f57e75c21f2e1bd45424ace
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:26:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash4e3dc85fd71bdb106039966a96cdd02b 53d3487232ddcac30b53c224c94e63571633e5af d0a3a292876b50c590a3fa6c04d3471a6fb726c54f57e75c21f2e1bd45424ace
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:26:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.googletagmanager.com/gtag/js?id=G-QQ3BW4Z090 | 142.250.74.40 | 200 OK | 77 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=G-QQ3BW4Z090 IP142.250.74.40:0
File typeASCII text, with very long lines (22462) Hash7fd0a69662781cec344372e8abb63735 b519915ef5c547c2e0bc9d276a050392042f4f71 92f691139db6936516fffb68913c05d14ed17ecb57a9056ae266b62ce152d40b
GET /gtag/js?id=G-QQ3BW4Z090 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Dec 2022 20:26:26 GMT
expires: Fri, 09 Dec 2022 20:26:26 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76822
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 | 72.167.48.161 | 200 OK | 12 kB |
URL HTTP/2www.planprophet.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeASCII text, with very long lines (47826) Hashbbcd196ef73c82698a25fa35cf7bee7d 2a84c5540e59776982a65005b6bc28f61db8fca3 2f2dd49188b7b7c2e33f115d80f35b6de25b71a92a5c21ea1a63409be21d49fe
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 03:18:31 GMT
etag: W/"63745687-172a9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto:400%7CPoppins:500%2C700&display=swap | 142.250.74.106 | 200 OK | 1.1 kB |
URL HTTP/2fonts.googleapis.com/css?family=Roboto:400%7CPoppins:500%2C700&display=swap IP142.250.74.106:0
Hashb304d91aa96ea42a68af60224ffe9637 de97f3e0694df96b2c2570396e1f0341ebdca521 4963fd1b7028cc9184110677bcf046a6ec86d3ee29ca3ffb394b29a4af7a8bac
GET /css?family=Roboto:400%7CPoppins:500%2C700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Dec 2022 20:26:26 GMT
date: Fri, 09 Dec 2022 20:26:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/themes/phox-child/assets/img/printsmith2.png | 72.167.48.161 | 200 OK | 4.5 kB |
URL HTTP/2www.planprophet.com/wp-content/themes/phox-child/assets/img/printsmith2.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hash5816df12be04415e7fb504f3b2da111f e280855eac8702ab220b134174f961e31d8996b3 0c9913ae91bc51e98aa3b3a99aabd14cd1cf687cb4cb1fbdfae6850c6cc1e7c9
GET /wp-content/themes/phox-child/assets/img/printsmith2.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 4466
last-modified: Tue, 06 Dec 2022 22:09:22 GMT
etag: "1172-5ef300e6143d9"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/themes/phox-child/assets/img/printersplan2.png | 72.167.48.161 | 200 OK | 1.8 kB |
URL HTTP/2www.planprophet.com/wp-content/themes/phox-child/assets/img/printersplan2.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hash3cf6fa2625544ec300f218f355ec7638 05cc66a60906e7245cf68cfaa501bf6e3232891c 640ebe8e50bb2094656fb6ffeff36fa2bbc29f6a45d2289657d5c745bbf9cbd7
GET /wp-content/themes/phox-child/assets/img/printersplan2.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 1834
last-modified: Tue, 06 Dec 2022 22:09:22 GMT
etag: "72a-5ef300e6176a1"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/2022/01/Artboard-6.png | 72.167.48.161 | 200 OK | 11 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/2022/01/Artboard-6.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hash283b48fe7d055742017e8c003ebe607e 2d2de78acc0a78d2381580cd1a0b87134dfb763a bbeced3bc6163cf2021e436f8b932e62799aafa4f0a2b04e298e98d005a41aa9
GET /wp-content/uploads/2022/01/Artboard-6.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 10788
last-modified: Fri, 12 Aug 2022 22:09:37 GMT
etag: "2a24-5e61289af286f"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-16@3x-pk8rrmgnmged51ejii1mo49ehyusd82atyn9y9ee4g.png | 72.167.48.161 | 200 OK | 1.4 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-16@3x-pk8rrmgnmged51ejii1mo49ehyusd82atyn9y9ee4g.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hashccc14ec81b537881b74a7d96c401549f 712f41fccce8131f83bf5519489729be647120ad 3400bd6631ecda7b9681aa807efdd4fcec317d02cb10faf2f6b6d078e2cd3636
GET /wp-content/uploads/elementor/thumbs/Artboard-16@3x-pk8rrmgnmged51ejii1mo49ehyusd82atyn9y9ee4g.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 1354
last-modified: Fri, 12 Aug 2022 22:01:28 GMT
etag: "54a-5e6126c87199b"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-17@3x-pk8rrnehtafngnd6d0g98m0v3cq5kx6163arfjczy8.png | 72.167.48.161 | 200 OK | 912 B |
URL HTTP/2www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-17@3x-pk8rrnehtafngnd6d0g98m0v3cq5kx6163arfjczy8.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hasha96926877a71cfa07fbb7ad2e7eb71fe 2bf520c4ce209e18b88965489afd1c89cb2ef1d9 a0b2dd97d713202ce25fbcbcdc27a1e0672830341b0d751db531895a4eebc088
GET /wp-content/uploads/elementor/thumbs/Artboard-17@3x-pk8rrnehtafngnd6d0g98m0v3cq5kx6163arfjczy8.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 912
last-modified: Fri, 12 Aug 2022 22:01:28 GMT
etag: "390-5e6126c87022a"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-99@4x-plzf9tcg8elng8i13v6i11csjfb0op95vp0d6415vk.png | 72.167.48.161 | 200 OK | 1.4 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-99@4x-plzf9tcg8elng8i13v6i11csjfb0op95vp0d6415vk.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hashb2659d6ace59c1bbf064f8c7a508baf3 e7a11144cbd9c2e652a96bb80a1a6a6a2b911d5d afc2b4a0c9748494baf59001353ffd15fdd8def29306c5ca2b23cf4e9bf23ed0
GET /wp-content/uploads/elementor/thumbs/Artboard-99@4x-plzf9tcg8elng8i13v6i11csjfb0op95vp0d6415vk.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 1386
last-modified: Fri, 12 Aug 2022 22:01:24 GMT
etag: "56a-5e6126c49357b"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-18@3x-pk8rrhrgoa7xizld9y0htng3j1hyaqjn5bdujvlczk.png | 72.167.48.161 | 200 OK | 924 B |
URL HTTP/2www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-18@3x-pk8rrhrgoa7xizld9y0htng3j1hyaqjn5bdujvlczk.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hash628a1649c6dc25b3548ecb37a46a195b 0b4d267bf8708b9f76c8a6d4b3a212753e011dab f0bbd5849c3a5da95ff3530a208e7bfbfb0bbca649be08ad37d243d16f791bcc
GET /wp-content/uploads/elementor/thumbs/Artboard-18@3x-pk8rrhrgoa7xizld9y0htng3j1hyaqjn5bdujvlczk.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 924
last-modified: Fri, 12 Aug 2022 22:01:28 GMT
etag: "39c-5e6126c86fa5a"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/revslider/public/assets/assets/dummy.png | 72.167.48.161 | 200 OK | 68 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/revslider/public/assets/assets/dummy.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typePNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data Hash2a637d3d825673c0e3462fa4ed9a1c5c 81668d396da22832d75a986407ff10035e0d5899 69539b5b3777cffda28a66d7f2aa9b17c91ee1ec8fd50c00c442af91753a60f7
GET /wp-content/plugins/revslider/public/assets/assets/dummy.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/png
content-length: 68
cache-control: private
x-accel-version: 0.01
last-modified: Wed, 13 Jul 2022 14:47:29 GMT
etag: "44-5e3b0dd49d0c4"
accept-ranges: bytes
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/2022/02/PIP_gris1-1-150x150.png | 72.167.48.161 | 200 OK | 2.1 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/2022/02/PIP_gris1-1-150x150.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hash317f724377c61af4e8bb4c79017c5238 da51b55f7be7d462221137e4293283509efacdf0 6da3ab5037863a729b1b21a27b369a458910b69754370f6df538487a3a061528
GET /wp-content/uploads/2022/02/PIP_gris1-1-150x150.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 2148
last-modified: Fri, 12 Aug 2022 22:08:35 GMT
etag: "864-5e612860306ce"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/2022/03/1-150x150.png | 72.167.48.161 | 200 OK | 5.2 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/2022/03/1-150x150.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hashe313b7fe480f2f65a23403ec7a3a0ec9 33f8d7b73fc0d252080fb0d13b0d364b5d9979f4 4ae72f3d76e7407fb99d892e74946e4d36d5b36ac9ed9ec8a2484dd429b193a7
GET /wp-content/uploads/2022/03/1-150x150.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 5168
last-modified: Fri, 12 Aug 2022 22:07:51 GMT
etag: "1430-5e612835b79c7"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/2022/05/10-150x150.png | 72.167.48.161 | 200 OK | 2.5 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/2022/05/10-150x150.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hash3ceccfa8db43405f8794cca357f41cda 474c532d3be53afab617a897df9a39e5967a5531 a092bdd67d3746e0cdd7303110b2c486d7088b26f38193123ef6bf0f3945bb21
GET /wp-content/uploads/2022/05/10-150x150.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 2522
last-modified: Fri, 12 Aug 2022 22:05:17 GMT
etag: "9da-5e6127a3739d9"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/2022/03/8-2-150x150.png | 72.167.48.161 | 200 OK | 2.2 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/2022/03/8-2-150x150.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hash6c8ff4af1f783ad8cf4f3bae6961b700 74c7eb512dbdbde43c2d961ac49739c906c60a71 7bab7c33dbe20fd419d4f6da2ad775edf20dbaad6db6f3646ca28fd8409e61e7
GET /wp-content/uploads/2022/03/8-2-150x150.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 2242
last-modified: Fri, 12 Aug 2022 22:07:34 GMT
etag: "8c2-5e612825b4e1d"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/2022/05/9-150x150.png | 72.167.48.161 | 200 OK | 4.0 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/2022/05/9-150x150.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hashd2b01294f343cb504b82fe35428c2804 6f51ae9fe6d82c1971df46e73f4f8489c90bd358 ce30905d48589d4db5d1b682168159ca0cd5321ecc90aa4e701d7445d8090965
GET /wp-content/uploads/2022/05/9-150x150.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 3992
last-modified: Fri, 12 Aug 2022 22:05:15 GMT
etag: "f98-5e6127a15c33e"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-28-copy@2x-pkbkeyrsfki3z6kpt7qk5q9qo5ozmh8xypxemy66f4.png | 72.167.48.161 | 200 OK | 6.9 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-28-copy@2x-pkbkeyrsfki3z6kpt7qk5q9qo5ozmh8xypxemy66f4.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hash903c07cc5fa7d765245ef495b3246406 2dfca0c270793a93470ff6cad792ed098f19464b 0aae6f57839d7f58e60b6bbe198244c8ba3fafabfb4ec208059bc9f9cc03a02e
GET /wp-content/uploads/elementor/thumbs/Artboard-28-copy@2x-pkbkeyrsfki3z6kpt7qk5q9qo5ozmh8xypxemy66f4.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 6850
last-modified: Fri, 12 Aug 2022 22:01:27 GMT
etag: "1ac2-5e6126c78bdbc"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/2022/05/11-150x150.png | 72.167.48.161 | 200 OK | 2.1 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/2022/05/11-150x150.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hash4f559713e8200dcd19392e6773444e24 ac13d94a7809bc9c43bd2d765718a17cce8da757 31bba2079134665e7b3dd48aefb7c25c3910dbc09e9a05dc075766430078dddc
GET /wp-content/uploads/2022/05/11-150x150.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 2148
last-modified: Fri, 12 Aug 2022 22:05:16 GMT
etag: "864-5e6127a28227a"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/2022/05/12-150x150.png | 72.167.48.161 | 200 OK | 2.2 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/2022/05/12-150x150.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hash3476a2031c77d44252b6d578b82b7d74 f99bb50d60fef250cd5203495e0c91a80bdcd893 6b0cf525badf0e0adcfce2ad780941f15b269c665a95e97295a2b9c6d80ea634
GET /wp-content/uploads/2022/05/12-150x150.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 2198
last-modified: Fri, 12 Aug 2022 22:05:16 GMT
etag: "896-5e6127a271cc1"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-28-copy-6@2x-poayqqgoaqm24q4qq7fs5p9ollesfi4ofz2vdhrg8w.png | 72.167.48.161 | 200 OK | 7.2 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-28-copy-6@2x-poayqqgoaqm24q4qq7fs5p9ollesfi4ofz2vdhrg8w.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hash05c8ae45f9727df2ac9b165f4b065d93 0cac4604c66e52244577b07d7c9d2ed140ec4360 d93019c1b13494a7081c18df6ab72d5ba11a9785c13fe03d6ea899efc843c110
GET /wp-content/uploads/elementor/thumbs/Artboard-28-copy-6@2x-poayqqgoaqm24q4qq7fs5p9ollesfi4ofz2vdhrg8w.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 7240
last-modified: Fri, 12 Aug 2022 22:01:27 GMT
etag: "1c48-5e6126c793ea5"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-28-copy-7@2x-poaytakuwi45qiexsb97y20utcsrduadgn0gelyvb4.png | 72.167.48.161 | 200 OK | 6.7 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-28-copy-7@2x-poaytakuwi45qiexsb97y20utcsrduadgn0gelyvb4.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hashfa2478460fe6c3af7f988ec6998fcbb8 5bbaeef707d2be9f2c5f61fd9f833d93a9d72aa0 098f80b6b660da24f476753ad5d9058f8845671dca94df5edd88a9ad02e25a09
GET /wp-content/uploads/elementor/thumbs/Artboard-28-copy-7@2x-poaytakuwi45qiexsb97y20utcsrduadgn0gelyvb4.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 6748
last-modified: Fri, 12 Aug 2022 22:01:27 GMT
etag: "1a5c-5e6126c791b7d"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-28-copy-2@2x-pkbkjdmiikjkha5z1meid46n29y0rbrkwk6gqpmn7k.png | 72.167.48.161 | 200 OK | 6.3 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-28-copy-2@2x-pkbkjdmiikjkha5z1meid46n29y0rbrkwk6gqpmn7k.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hashe0a7a133ce4e4429e392bbf17276f486 e531b54d87fe277ba766af468fab8f8bd15952c0 7dddcb3161a4e39a929025592a100e178d7db26cc83505b900d1d6eb7c82ee7c
GET /wp-content/uploads/elementor/thumbs/Artboard-28-copy-2@2x-pkbkjdmiikjkha5z1meid46n29y0rbrkwk6gqpmn7k.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 6334
last-modified: Fri, 12 Aug 2022 22:01:28 GMT
etag: "18be-5e6126c86a852"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-28-copy-9@2x-poayswha1zkuwczf2n5tenkxwkq96dqeep867gjrwg.png | 72.167.48.161 | 200 OK | 5.9 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-28-copy-9@2x-poayswha1zkuwczf2n5tenkxwkq96dqeep867gjrwg.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hash705124c52748e97d27acb6316fe124f3 ac984a426f7a1cd0effca4d18fe62cfab0bf5e85 006c03c1dd52e9aa5264e872c0e161c04fa6b88751df641facc8671decfb1879
GET /wp-content/uploads/elementor/thumbs/Artboard-28-copy-9@2x-poayswha1zkuwczf2n5tenkxwkq96dqeep867gjrwg.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 5894
last-modified: Fri, 12 Aug 2022 22:01:27 GMT
etag: "1706-5e6126c78dcfd"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/2022/02/Sir-Speedy_gris1-1-150x150.png | 72.167.48.161 | 200 OK | 3.8 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/2022/02/Sir-Speedy_gris1-1-150x150.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hasha11add58c9deb16ccecf65d615e91820 249f5f53766fcc33c7e023f40e098809e14c8ab1 74d65cfbc5cacefb7f1e8c9759fdd59a2b9748d30d7eb6472272a485e43a0467
GET /wp-content/uploads/2022/02/Sir-Speedy_gris1-1-150x150.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 3834
last-modified: Fri, 12 Aug 2022 22:08:13 GMT
etag: "efa-5e61284b6608e"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-28-copy-8@2x-poays57yjsjjjo30htdmwcgkoeglz5q6myb3afo6ww.png | 72.167.48.161 | 200 OK | 6.1 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-28-copy-8@2x-poays57yjsjjjo30htdmwcgkoeglz5q6myb3afo6ww.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hash1f38e6f437b4d24c028ec712018d0b27 5ebc8b9f76e66c7583b0d48f740b14522cb7a313 679a0a77ece0862de4b0f82be19238edb379744c3eb1af0e469ad659087af2c9
GET /wp-content/uploads/elementor/thumbs/Artboard-28-copy-8@2x-poays57yjsjjjo30htdmwcgkoeglz5q6myb3afo6ww.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 6122
last-modified: Fri, 12 Aug 2022 22:01:27 GMT
etag: "17ea-5e6126c78fc3d"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/2022/02/Allegra_gris1-1-150x150.png | 72.167.48.161 | 200 OK | 3.9 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/2022/02/Allegra_gris1-1-150x150.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hash284cb946ae8c9e9ddd775dd032a797a7 cebbfa498acb518dd97db29741b40497172e403e 1e314e70b1ec78447e76d3fbdb72b05342c341dcc3c8e7f5ae1e61ff74de9803
GET /wp-content/uploads/2022/02/Allegra_gris1-1-150x150.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 3864
last-modified: Fri, 12 Aug 2022 22:09:34 GMT
etag: "f18-5e612898685d8"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/themes/phox-child/assets/img/entpms2.png | 72.167.48.161 | 200 OK | 1.1 kB |
URL HTTP/2www.planprophet.com/wp-content/themes/phox-child/assets/img/entpms2.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hash22354e23012948e93012dee7f58c865d 1dbb0e706d27f0420c87516e597882f6a9057f67 64ec756eb1374fa7289135e797d97ac42800f3230c1c4a393fc577c18e4fe1b2
GET /wp-content/themes/phox-child/assets/img/entpms2.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 1126
last-modified: Tue, 06 Dec 2022 22:09:22 GMT
etag: "466-5ef300e62842b"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/2022/07/loading.gif | 72.167.48.161 | 200 OK | 31 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/2022/07/loading.gif IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeGIF image data, version 89a, 250 x 250\012- data Hashad60f1aef0715ea92c338a2713557a2e b61b78f3e7d917b6c7082d6aeef49f8564b9da08 e79b4e0f5e03e731e0185cace6f7c1d3898115b60c1830b9cac23c5ed3e8d98c
GET /wp-content/uploads/2022/07/loading.gif HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/gif
content-length: 31381
last-modified: Fri, 15 Jul 2022 18:24:40 GMT
cache-control: private
etag: "62d1b0e8-7a95"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-28@2x-pkbkev0fo8cyoqq6f641vr7wam7irou0m7bgpubr40.png | 72.167.48.161 | 200 OK | 8.4 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-28@2x-pkbkev0fo8cyoqq6f641vr7wam7irou0m7bgpubr40.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hash37a01016e1a5a4bbd8420f0de607396f 377d17d64dfcf0ec47b28df763ceecae344f37f0 83ed8db331b501e520c8fd41385c2b0e9249d40067cac36c96a1c5acdb7ed6c5
GET /wp-content/uploads/elementor/thumbs/Artboard-28@2x-pkbkev0fo8cyoqq6f641vr7wam7irou0m7bgpubr40.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 8390
last-modified: Fri, 12 Aug 2022 22:01:27 GMT
etag: "20c6-5e6126c787b54"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-28-copy-4@2x-pkbkexty8qgtnkm2ypbxl8ia2rtmes57ml9x5o7klc.png | 72.167.48.161 | 200 OK | 8.5 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/elementor/thumbs/Artboard-28-copy-4@2x-pkbkexty8qgtnkm2ypbxl8ia2rtmes57ml9x5o7klc.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hasha50f7aa20a1f8ebdf93f4202cc95ec9a 9ca75cf246b0078ae869c3182906811b13336ee3 12606acaabd5ca55927dc9bbfaa39d275c138c11555af5eed6f0ed4d52390498
GET /wp-content/uploads/elementor/thumbs/Artboard-28-copy-4@2x-pkbkexty8qgtnkm2ypbxl8ia2rtmes57ml9x5o7klc.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: image/webp
content-length: 8490
last-modified: Fri, 12 Aug 2022 22:01:27 GMT
etag: "212a-5e6126c79afee"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:26 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/elementor-pro/assets/css/widget-animated-headline.min.css | 72.167.48.161 | 200 OK | 1.9 kB |
URL HTTP/2www.planprophet.com/wp-content/plugins/elementor-pro/assets/css/widget-animated-headline.min.css IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeASCII text, with very long lines (19239) Hash252a945d1b6dccd6ae0238c39daa9c69 ae56359f6c402d3148cb1d6cdee2c4b04a9dea71 87b45722270ad322b74da51cccd07fd4a20d13f876f481950ca169411a3de7af
GET /wp-content/plugins/elementor-pro/assets/css/widget-animated-headline.min.css HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 18:47:50 GMT
etag: W/"632a0ad6-4b52"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash8105b33e4e3af998e9d016e156205c22 dfa2f5cecd72be8ec63d5f833b82cd993a5ce8b9 4a682a72e5d599d48706927cbc0852df5ac36dbb57747681cc2ee91c719c7ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:26:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.planprophet.com/wp-content/plugins/phox-host/assets/css/libs/owl-carousel/owl.carousel.min.css?ver=2.2.3 | 72.167.48.161 | 200 OK | 1.4 kB |
URL HTTP/2www.planprophet.com/wp-content/plugins/phox-host/assets/css/libs/owl-carousel/owl.carousel.min.css?ver=2.2.3 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeASCII text, with very long lines (3184) Hashf9ed2c67b22667d0e7809efe11b3f6c6 aef24d0af4ca157bbb942257cdd0cdc0fcb6bdb5 1d3bedf6c27ede309c59084cc787f82b8a8cf2d01dc2cbb9501b62876c1c0c3e
GET /wp-content/plugins/phox-host/assets/css/libs/owl-carousel/owl.carousel.min.css?ver=2.2.3 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Thu, 14 Jul 2022 19:47:34 GMT
etag: W/"62d072d6-d17"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 | 72.167.48.161 | 200 OK | 5.5 kB |
URL HTTP/2www.planprophet.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeHTML document, ASCII text, with very long lines (12332) Hash2662a1f445a0d1bf1911dcd3e6cf6115 c0c5c3df970664760be663ab95de3764a0af67b9 d9d5cca7cc0f7fd0c91c530e3700239952b7b8ce2241af22f8b6b8466976f909
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Fri, 21 Oct 2022 02:01:40 GMT
etag: W/"6351fd84-3ea6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| stats.g.doubleclick.net/g/collect?v=2&tid=G-QQ3BW4Z090&cid=93429029.1670617585>m=2oebu0&aip=1 | 64.233.165.154 | 204 No Content | 0 B |
URL HTTP/2stats.g.doubleclick.net/g/collect?v=2&tid=G-QQ3BW4Z090&cid=93429029.1670617585>m=2oebu0&aip=1 IP64.233.165.154:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-QQ3BW4Z090&cid=93429029.1670617585>m=2oebu0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.planprophet.com
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.planprophet.com
date: Fri, 09 Dec 2022 20:26:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashc9208747f2926b414bae65ed0e18fac5 3b25f459b1fe1a63689880699450305a8aee8b77 2c5333a23ade630e8dd8242aa59e371fa2208e265c58916e6fa799683d53f196
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:26:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashe4f546e102d986faf1029509d599b730 cc045a705fd6758b7b575fde5dfb79facc9c3546 ef492301b2b30e5076f7dffa07973e65e9a200ba9ef4d3568a527d3f973f3349
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:26:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/karla/v23/qkBbXvYC6trAT7RVLtw.woff2 | 216.58.207.227 | 200 OK | 29 kB |
URL HTTP/2fonts.gstatic.com/s/karla/v23/qkBbXvYC6trAT7RVLtw.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 29224, version 1.0\012- data Hash8f31fffe19876c366e578ce8e5d1d1e0 a86aa4b756555a54191fec48f8a42787b856bde3 602af0e0c5fb12b2fa41c8514959d7389f34ab1fcc04a1c1b42d580fee270fbb
GET /s/karla/v23/qkBbXvYC6trAT7RVLtw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.planprophet.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29224
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 05:33:54 GMT
expires: Tue, 05 Dec 2023 05:33:54 GMT
cache-control: public, max-age=31536000
age: 399153
last-modified: Mon, 11 Jul 2022 20:38:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.planprophet.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:33:54 GMT
expires: Thu, 07 Dec 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 175953
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 | 216.58.207.227 | 200 OK | 31 kB |
URL HTTP/2fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data Hashac0d2859ea5f8fd6bcb3c305c08ec184 7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7 ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.planprophet.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 06:30:11 GMT
expires: Sat, 09 Dec 2023 06:30:11 GMT
cache-control: public, max-age=31536000
age: 50176
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 | 216.58.207.227 | 200 OK | 7.9 kB |
URL HTTP/2fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data Hash9212f6f9860f9fc6c69b02fedf6db8c3 ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.planprophet.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 13:33:11 GMT
expires: Sat, 09 Dec 2023 13:33:11 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
age: 24796
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 | 216.58.207.227 | 200 OK | 8.0 kB |
URL HTTP/2fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data Hash72993dddf88a63e8f226656f7de88e57 179f97ec0275f09603a8db94d4380eb584d81cd5 f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.planprophet.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 13:33:11 GMT
expires: Sat, 09 Dec 2023 13:33:11 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
age: 24796
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.planprophet.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 13:33:13 GMT
expires: Sat, 09 Dec 2023 13:33:13 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 24794
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 | 216.58.207.227 | 200 OK | 7.7 kB |
URL HTTP/2fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data Hasha09f2fccfee35b7247b08a1a266f0328 0da2d17e738f46d2a09e6fb7969da451719a9820 cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.planprophet.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:28:50 GMT
expires: Thu, 07 Dec 2023 19:28:50 GMT
cache-control: public, max-age=31536000
age: 176257
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 | 216.58.207.227 | 200 OK | 7.8 kB |
URL HTTP/2fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data Hash25b0e113ca7cce3770d542736db26368 cb726212d5d525021752a1d8470a0fb593e0c49e 9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.planprophet.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 13:33:13 GMT
expires: Sat, 09 Dec 2023 13:33:13 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
age: 24794
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/themes/phox-child/assets/js/custom.js?ver=6.1.1 | 72.167.48.161 | 200 OK | 10 kB |
URL HTTP/2www.planprophet.com/wp-content/themes/phox-child/assets/js/custom.js?ver=6.1.1 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeASCII text, with CRLF, LF line terminators Hasha2fe6c841f21fef88fe17b14ef049ff0 dc4d043e861fd45e3430cec22cd881e5212b946c 6a5d9ff33c5d4de30ab4ccafa0a9438819485fc69946d299e1dab80b20a76b16
GET /wp-content/themes/phox-child/assets/js/custom.js?ver=6.1.1 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 15:50:24 GMT
etag: W/"6331ca40-1d9a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/elementor/css/post-4397.css?ver=1665081313 | 72.167.48.161 | 200 OK | 31 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/elementor/css/post-4397.css?ver=1665081313 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeASCII text, with very long lines (27701), with no line terminators Hash50f874ef2e844f1603c036c0c8c553ac ff5416cbb41f4d0da1b1215bf3d33a7c4856ec15 09f09c12be1b98d8e145c8723a43872183aff7d0f07b047ef2ef4b938df3c99a
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/uploads/elementor/css/post-4397.css?ver=1665081313 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Thu, 06 Oct 2022 18:35:13 GMT
etag: W/"633f1fe1-6c35"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/themes/phox/assets/js/popper.min.js?ver=2.1.7 | 72.167.48.161 | 200 OK | 8.4 kB |
URL HTTP/2www.planprophet.com/wp-content/themes/phox/assets/js/popper.min.js?ver=2.1.7 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeASCII text, with very long lines (19015) Hashff3c0542204095f7447a7d4413fcc31b 6f9f91f35a1c62f1ae7ac391247ca29513f1574c ec39a7b4ad3a2f6010d851440c2bb8002502552447ef67dc394d3142cd2c21b3
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/themes/phox/assets/js/popper.min.js?ver=2.1.7 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Thu, 14 Jul 2022 19:41:55 GMT
etag: W/"62d07183-5984"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashc9208747f2926b414bae65ed0e18fac5 3b25f459b1fe1a63689880699450305a8aee8b77 2c5333a23ade630e8dd8242aa59e371fa2208e265c58916e6fa799683d53f196
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:26:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.planprophet.com/wp-content/themes/phox/assets/fonts/icomoon.ttf?gm7fsa | 72.167.48.161 | 200 OK | 1.6 kB |
URL HTTP/2www.planprophet.com/wp-content/themes/phox/assets/fonts/icomoon.ttf?gm7fsa IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeTrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data Hash8dd765bee52be1a0e8fff44c67121a50 22d64dae748a25b5028e6adcda3e388fb04de440 193a7c193378ecb0e9f9eb61a4bb45630539f542e6174cc3940715304d8fbef3
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/themes/phox/assets/fonts/icomoon.ttf?gm7fsa HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/wp-content/themes/phox/assets/css/style.css?ver=2.1.7
Cookie: _ga_QQ3BW4Z090=GS1.1.1670617585.1.0.1670617585.60.0.0; _ga=GA1.1.93429029.1670617585
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:27 GMT
content-type: application/font-sfnt
content-length: 1628
last-modified: Thu, 14 Jul 2022 19:41:55 GMT
etag: "62d07183-65c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/themes/phox/assets/webfonts/fa-brands-400.woff2 | 72.167.48.161 | 200 OK | 78 kB |
URL HTTP/2www.planprophet.com/wp-content/themes/phox/assets/webfonts/fa-brands-400.woff2 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeWeb Open Font Format (Version 2), TrueType, length 78460, version 331.-31392\012- data Hashf075c50f89795e4cdb4d45b51f1a6800 f726c4275bb494a045fde059175f072de06c01df 71b3ce72680f4183d28db86b184542051fd533bb1146933233e4f6a20cf98cba
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/themes/phox/assets/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.planprophet.com/wp-content/themes/phox/assets/css/all.min.css?ver=2.1.7
Cookie: _ga_QQ3BW4Z090=GS1.1.1670617585.1.0.1670617585.60.0.0; _ga=GA1.1.93429029.1670617585
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:27 GMT
content-type: font/woff2
content-length: 78460
last-modified: Thu, 14 Jul 2022 19:41:55 GMT
etag: "62d07183-1327c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 | 72.167.48.161 | 200 OK | 78 kB |
URL HTTP/2www.planprophet.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeWeb Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data Hashe8a427e15cc502bef99cfd722b37ea98 a9922842a120a7f1eaced667480c5e185a106d69 d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.planprophet.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Cookie: _ga_QQ3BW4Z090=GS1.1.1670617585.1.0.1670617585.60.0.0; _ga=GA1.1.93429029.1670617585
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:27 GMT
content-type: font/woff2
content-length: 78196
last-modified: Thu, 06 Oct 2022 18:32:20 GMT
etag: "633f1f34-13174"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/2022/05/BG_IMG_1.jpg | 72.167.48.161 | 200 OK | 268 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/2022/05/BG_IMG_1.jpg IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeJPEG image data, baseline, precision 8, 1920x1080, components 3\012- data Size268 kB (267459 bytes) Hashc1f426af0e376e79dccdbcd4b483d002 8e50ec5b04a35634824f8beaabe658956e445b0f 833c297d9162693fe723e484f7eacce79dd93fff7814d7691ecdfe43bceeef21
GET /wp-content/uploads/2022/05/BG_IMG_1.jpg HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/wp-content/uploads/elementor/css/post-13.css?ver=1665081312
Cookie: _ga_QQ3BW4Z090=GS1.1.1670617585.1.0.1670617585.60.0.0; _ga=GA1.1.93429029.1670617585
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:27 GMT
content-type: image/jpeg
content-length: 267459
last-modified: Fri, 06 May 2022 05:06:47 GMT
cache-control: private
etag: "6274ace7-414c3"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0 | 72.167.48.161 | 200 OK | 93 kB |
URL HTTP/2www.planprophet.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeWeb Open Font Format (Version 2), TrueType, length 93372, version 1.0\012- data Hashaab0bb3379e0eb7ebc26071db61fbd57 711c8d350c4192c2f1aa7f73551445b89fb4b161 691fa7d17effc7d303eda0ad7e4a1d91b2f375506cfc8a774480cc2b55f156ea
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.planprophet.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
Cookie: _ga_QQ3BW4Z090=GS1.1.1670617585.1.0.1670617585.60.0.0; _ga=GA1.1.93429029.1670617585
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:27 GMT
content-type: font/woff2
content-length: 93372
last-modified: Thu, 06 Oct 2022 18:32:19 GMT
etag: "633f1f33-16cbc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/themes/phox/assets/webfonts/fa-regular-400.woff2 | 72.167.48.161 | 200 OK | 14 kB |
URL HTTP/2www.planprophet.com/wp-content/themes/phox/assets/webfonts/fa-regular-400.woff2 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeWeb Open Font Format (Version 2), TrueType, length 13548, version 331.-31392\012- data Hash4a74738e7728e93c4394b8604081da62 fb9648469530a05fa9aac80e47d4d6960472a242 ce20ed8a323117c8a718ff1ddc6dabb997373b575a8e896f2bf02b846c082c9d
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/themes/phox/assets/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.planprophet.com/wp-content/themes/phox/assets/css/all.min.css?ver=2.1.7
Cookie: _ga_QQ3BW4Z090=GS1.1.1670617585.1.0.1670617585.60.0.0; _ga=GA1.1.93429029.1670617585
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:27 GMT
content-type: font/woff2
content-length: 13548
last-modified: Thu, 14 Jul 2022 19:41:55 GMT
etag: "62d07183-34ec"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/themes/phox/assets/js/custom-script.js?ver=2.1.7 | 72.167.48.161 | 200 OK | 78 kB |
URL HTTP/2www.planprophet.com/wp-content/themes/phox/assets/js/custom-script.js?ver=2.1.7 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
Hash5bf153d29bfb0ec1399a717bb7315101 dcb8164ec292092758247ef42f37836aab33c846 5947f22e65ece2c2c08c34102c7b1b29cbeae29664b7177b967900365ef755be
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/themes/phox/assets/js/custom-script.js?ver=2.1.7 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Thu, 14 Jul 2022 19:41:55 GMT
etag: W/"62d07183-3840"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/2022/03/Printers-Plan-1.png | 72.167.48.161 | 200 OK | 3.6 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/2022/03/Printers-Plan-1.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hash8154c8af8e521fcaaf8a4459586066a4 ce689e7e6f18ed06c857b3a6a9385ae21a266c37 66206001a43f09a98542fe836b7b7996a23f1507ffae307ba48f6de9922cacd0
GET /wp-content/uploads/2022/03/Printers-Plan-1.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Cookie: _ga_QQ3BW4Z090=GS1.1.1670617585.1.0.1670617585.60.0.0; _ga=GA1.1.93429029.1670617585
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:27 GMT
content-type: image/webp
content-length: 3596
last-modified: Fri, 12 Aug 2022 22:06:35 GMT
etag: "e0c-5e6127ed41dbd"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:27 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/2022/08/EPMS_logo.png | 72.167.48.161 | 200 OK | 4.0 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/2022/08/EPMS_logo.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hash78223aa1587517bcae4eed3a649737f1 497063dcd06aeb3cd37794aa9a63ad07b90eb2d3 f90a1f348f616c1f6ccfc5216c2b89902a032becabe855ecaabcf0e3ffe77b94
GET /wp-content/uploads/2022/08/EPMS_logo.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Cookie: _ga_QQ3BW4Z090=GS1.1.1670617585.1.0.1670617585.60.0.0; _ga=GA1.1.93429029.1670617585
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:27 GMT
content-type: image/webp
content-length: 3994
last-modified: Fri, 12 Aug 2022 22:02:48 GMT
etag: "f9a-5e6127151c485"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:27 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/themes/phox/assets/js/jquery.plugin.js?ver=2.1.7 | 72.167.48.161 | 200 OK | 20 kB |
URL HTTP/2www.planprophet.com/wp-content/themes/phox/assets/js/jquery.plugin.js?ver=2.1.7 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
Hash1b86a9e6232ee88b139c22df18ff9b26 8470ca52b9d6e8a458a89473699333e2bc75f476 f221522e8451db0e8d39043eeee75dfeb26e4226cc0b9699a5eb6488a29f4c23
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/themes/phox/assets/js/jquery.plugin.js?ver=2.1.7 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Thu, 14 Jul 2022 19:41:55 GMT
etag: W/"62d07183-3a32"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 | 72.167.48.161 | 200 OK | 13 kB |
URL HTTP/2www.planprophet.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeWeb Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data Hashf0f8230116992e521526097a28f54066 0447c6b10bbf73f97b23dcfd6e6a48510822cb6e 8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.planprophet.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
Cookie: _ga_QQ3BW4Z090=GS1.1.1670617585.1.0.1670617585.60.0.0; _ga=GA1.1.93429029.1670617585
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:27 GMT
content-type: font/woff2
content-length: 13276
last-modified: Thu, 06 Oct 2022 18:32:20 GMT
etag: "633f1f34-33dc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash32d90ff0cc366730c3633c1201b4c058 f4175292b607197a15085e14bf69df301dff6706 b4b2f80fbe9b02f3d54dc35a3738c31a4d7cb5a5e528fcbce50263d8c458231a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:26:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-QQ3BW4Z090&cid=93429029.1670617585>m=2oebu0&aip=1&z=339234789 | 142.250.74.131 | 200 OK | 42 B |
URL HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-QQ3BW4Z090&cid=93429029.1670617585>m=2oebu0&aip=1&z=339234789 IP142.250.74.131:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-QQ3BW4Z090&cid=93429029.1670617585>m=2oebu0&aip=1&z=339234789 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 20:26:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/phox-host//assets/css/libs/animate.css?ver=3.7.0 | 72.167.48.161 | 200 OK | 4.9 kB |
URL HTTP/2www.planprophet.com/wp-content/plugins/phox-host//assets/css/libs/animate.css?ver=3.7.0 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
Hashad6535f0d761d76823aee2b93cc2ca3e 90b0290ccc5483d54b5bc50e13219415ca831116 e10f0196d10e458b8deed6b0792e79c01f84948d5f7654a2db7987e18b5a71f6
GET /wp-content/plugins/phox-host//assets/css/libs/animate.css?ver=3.7.0 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Thu, 14 Jul 2022 19:47:34 GMT
etag: W/"62d072d6-14df1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/2022/01/cropped-Artboard-5-32x32.png | 72.167.48.161 | 200 OK | 848 B |
URL HTTP/2www.planprophet.com/wp-content/uploads/2022/01/cropped-Artboard-5-32x32.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hash5803dd224eef0111bb5d48202d281d4a 6aa0f3764662a917de5479be9b092a7a0cfbb2aa f67dbdabb702f759453eba880ef4701d70eba09877c7925ee3e2782cb6a32ded
GET /wp-content/uploads/2022/01/cropped-Artboard-5-32x32.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Cookie: _ga_QQ3BW4Z090=GS1.1.1670617585.1.0.1670617585.60.0.0; _ga=GA1.1.93429029.1670617585
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:27 GMT
content-type: image/webp
content-length: 848
last-modified: Fri, 12 Aug 2022 22:09:36 GMT
etag: "350-5e612899e3095"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:27 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/2022/01/cropped-Artboard-5-192x192.png | 72.167.48.161 | 200 OK | 5.5 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/2022/01/cropped-Artboard-5-192x192.png IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeRIFF (little-endian) data, Web/P image\012- data Hash96f7cde01852c3c6c02d353d6f47edaf 614a50ccfbc2a78f0bb81f196908cbb580027b1b 97314b51b25bc4ee0681bdd8cc3bf5b1d03ed8958b628d269a837beeea6bc40e
GET /wp-content/uploads/2022/01/cropped-Artboard-5-192x192.png HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Cookie: _ga_QQ3BW4Z090=GS1.1.1670617585.1.0.1670617585.60.0.0; _ga=GA1.1.93429029.1670617585
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:27 GMT
content-type: image/webp
content-length: 5454
last-modified: Fri, 12 Aug 2022 22:09:36 GMT
etag: "154e-5e612899ee446"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 09 Dec 2023 20:26:27 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/elementor/assets/js/image-carousel.e02695895b33b77d89de.bundle.min.js | 72.167.48.161 | 200 OK | 190 kB |
URL HTTP/2www.planprophet.com/wp-content/plugins/elementor/assets/js/image-carousel.e02695895b33b77d89de.bundle.min.js IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeASCII text, with very long lines (2760) Size190 kB (189628 bytes) Hashf97fb5ff52779d27792229b8fd6890fc 07ebeaff504981afd2641d7c38a3d6a1fdbc077e a87b0f8fec43ff6a58e351928cabde6f3582b87eaef06da473871ca84d798435
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/js/image-carousel.e02695895b33b77d89de.bundle.min.js HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Cookie: _ga_QQ3BW4Z090=GS1.1.1670617585.1.0.1670617585.60.0.0; _ga=GA1.1.93429029.1670617585
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:27 GMT
content-type: application/javascript
last-modified: Thu, 06 Oct 2022 18:32:19 GMT
etag: W/"633f1f33-1969"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/elementor/css/post-1032.css?ver=1665081312 | 72.167.48.161 | 200 OK | 112 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/elementor/css/post-1032.css?ver=1665081312 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeASCII text, with very long lines (14430), with no line terminators Size112 kB (111798 bytes) Hash3512e071d0ac8d8390d4d63499e030b3 389f91d234f430a3d0a12ee6aa8776bd35ea817f ea4ec45031bf54e0231676028e08f4b67f58306c440be45e11dc7cf9788342e5
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/uploads/elementor/css/post-1032.css?ver=1665081312 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Thu, 06 Oct 2022 18:35:12 GMT
etag: W/"633f1fe0-385e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/elementor-pro/assets/js/animated-headline.ffb4bb4ce1b16b11446d.bundle.min.js | 72.167.48.161 | 200 OK | 164 kB |
URL HTTP/2www.planprophet.com/wp-content/plugins/elementor-pro/assets/js/animated-headline.ffb4bb4ce1b16b11446d.bundle.min.js IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeASCII text, with very long lines (7850) Size164 kB (163828 bytes) Hash1c21348b9f7905c7993fd2f4bdcf8581 5288c35454afdee50eb557d7feaa1b04ad7b6263 09d1ca07a8506ce9e9a02c33d0e342ea96bb744a7bfbadddd33ed9f05c9b574e
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor-pro/assets/js/animated-headline.ffb4bb4ce1b16b11446d.bundle.min.js HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Cookie: _ga_QQ3BW4Z090=GS1.1.1670617585.1.0.1670617585.60.0.0; _ga=GA1.1.93429029.1670617585
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:27 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 18:47:50 GMT
etag: W/"632a0ad6-2d4f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/elementor/css/post-13.css?ver=1665081312 | 72.167.48.161 | 200 OK | 14 kB |
URL HTTP/2www.planprophet.com/wp-content/uploads/elementor/css/post-13.css?ver=1665081312 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
File typeASCII text, with very long lines (65536), with no line terminators Hashf4e567326e617a9839b78a164026d27b da32b9f3ca6843e929ee3bbe7fc02b1234123c7a 37099ecbde6215b34ce833115b1da15dfc2a3f4723af0de733da52a44dac9fdd
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/uploads/elementor/css/post-13.css?ver=1665081312 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Thu, 06 Oct 2022 18:35:12 GMT
etag: W/"633f1fe0-1293d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-includes/css/classic-themes.min.css?ver=1 | 72.167.48.161 | 200 OK | 5.3 kB |
URL HTTP/2www.planprophet.com/wp-includes/css/classic-themes.min.css?ver=1 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
Hashbec810fb7d0816289fe652d1b5b9513f 22f7c8ad9fb18565ae5ed00f224ebb151efb4c78 4702a52fa8ea8f14b2e0a3201a65047d5ce75c0df1a67d45e50fe21acca1b4ad
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Wed, 02 Nov 2022 03:18:41 GMT
etag: W/"d9-5ec744c2d0ee9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/themes/phox/assets/js/jquery.countdown.js?ver=2.1.7 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/themes/phox/assets/js/jquery.countdown.js?ver=2.1.7 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/themes/phox/assets/js/jquery.countdown.js?ver=2.1.7 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Thu, 14 Jul 2022 19:41:55 GMT
etag: W/"62d07183-9aa9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/hide-admin-bar-based-on-user-roles/public/js/hide-admin-bar-based-on-user-roles-public.js?ver=3.4.1 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/hide-admin-bar-based-on-user-roles/public/js/hide-admin-bar-based-on-user-roles-public.js?ver=3.4.1 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-content/plugins/hide-admin-bar-based-on-user-roles/public/js/hide-admin-bar-based-on-user-roles-public.js?ver=3.4.1 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Thu, 06 Oct 2022 18:56:44 GMT
etag: W/"633f24ec-11d6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/themes/phox/assets/css/style.css?ver=2.1.7 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/themes/phox/assets/css/style.css?ver=2.1.7 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/themes/phox/assets/css/style.css?ver=2.1.7 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Thu, 14 Jul 2022 19:41:55 GMT
etag: W/"62d07183-1ae88"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/themes/phox-child/assets/css/smart_wizard_all.css?ver=6.1.1 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/themes/phox-child/assets/css/smart_wizard_all.css?ver=6.1.1 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-content/themes/phox-child/assets/css/smart_wizard_all.css?ver=6.1.1 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Tue, 19 Jul 2022 21:47:40 GMT
etag: W/"62d7267c-5d5a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 03:18:41 GMT
etag: W/"6361e191-16ce4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/phox-host//assets/css/wp-widgets.css?ver=6.1.1 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/phox-host//assets/css/wp-widgets.css?ver=6.1.1 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/phox-host//assets/css/wp-widgets.css?ver=6.1.1 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Thu, 14 Jul 2022 19:47:34 GMT
etag: W/"62d072d6-c43"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 03:18:23 GMT
etag: W/"628d9fff-27db"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/themes/phox/assets/js/bootstrap.min.js?ver=2.1.7 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/themes/phox/assets/js/bootstrap.min.js?ver=2.1.7 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/themes/phox/assets/js/bootstrap.min.js?ver=2.1.7 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Thu, 14 Jul 2022 19:41:55 GMT
etag: W/"62d07183-e86f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CKarla%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CKarla%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 IP142.250.74.106:0
GET /css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CKarla%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Dec 2022 20:26:26 GMT
date: Fri, 09 Dec 2022 20:26:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/ultimate-carousel-for-elementor/js/custom-tm.js?ver=6.1.1 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/ultimate-carousel-for-elementor/js/custom-tm.js?ver=6.1.1 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-content/plugins/ultimate-carousel-for-elementor/js/custom-tm.js?ver=6.1.1 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Thu, 28 Apr 2022 18:29:47 GMT
etag: W/"626add1b-143d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 14:23:23 GMT
etag: W/"637cdb5b-1182"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/phox-host//assets/js/libs/owl.carousel.min.js?ver=2.3.4 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/phox-host//assets/js/libs/owl.carousel.min.js?ver=2.3.4 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/phox-host//assets/js/libs/owl.carousel.min.js?ver=2.3.4 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Thu, 14 Jul 2022 19:47:34 GMT
etag: W/"62d072d6-bbc6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/themes/phox/assets/js/ammap.js?ver=2.1.7 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/themes/phox/assets/js/ammap.js?ver=2.1.7 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/themes/phox/assets/js/ammap.js?ver=2.1.7 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Thu, 14 Jul 2022 19:41:55 GMT
etag: W/"62d07183-35b5c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=6.1.1 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=6.1.1 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=6.1.1 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Thu, 06 Oct 2022 18:32:20 GMT
etag: W/"29d-5ea61e9df6403"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Open%20Sans:wght@300;400;600;700&family=Poppins:wght@200;400;600;700&family=Tajawal:wght@200;400;500;700;800;900&family=Montserrat:wght@600&family=Montserrat:wght@400&family=Poppins:wght@600&family=Poppins:wght@700&family=Roboto:wght@400&family=Roboto:wght@600&display=swap | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css2?family=Open%20Sans:wght@300;400;600;700&family=Poppins:wght@200;400;600;700&family=Tajawal:wght@200;400;500;700;800;900&family=Montserrat:wght@600&family=Montserrat:wght@400&family=Poppins:wght@600&family=Poppins:wght@700&family=Roboto:wght@400&family=Roboto:wght@600&display=swap IP142.250.74.106:0
GET /css2?family=Open%20Sans:wght@300;400;600;700&family=Poppins:wght@200;400;600;700&family=Tajawal:wght@200;400;500;700;800;900&family=Montserrat:wght@600&family=Montserrat:wght@400&family=Poppins:wght@600&family=Poppins:wght@700&family=Roboto:wght@400&family=Roboto:wght@600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Dec 2022 20:26:26 GMT
date: Fri, 09 Dec 2022 20:26:26 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/timeline-block/includes/gutenberg-block/build/blocks.style.build.css?ver=6.1.1 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/timeline-block/includes/gutenberg-block/build/blocks.style.build.css?ver=6.1.1 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-content/plugins/timeline-block/includes/gutenberg-block/build/blocks.style.build.css?ver=6.1.1 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Thu, 06 Oct 2022 18:28:26 GMT
etag: W/"633f1e4a-33f3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/phox-host//assets/css/elementor-widgets.css?ver=6.1.1 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/phox-host//assets/css/elementor-widgets.css?ver=6.1.1 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/phox-host//assets/css/elementor-widgets.css?ver=6.1.1 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Thu, 14 Jul 2022 19:47:34 GMT
etag: W/"62d072d6-20dd5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.7 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.7 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.7 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 18:47:50 GMT
etag: W/"632a0ad6-6dce"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-includes/js/underscore.min.js?ver=1.13.4 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-includes/js/underscore.min.js?ver=1.13.4 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 03:18:42 GMT
etag: W/"6361e192-5821"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.25 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.25 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.25 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Wed, 13 Jul 2022 14:47:29 GMT
etag: W/"62cedb01-e87c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/elementor/css/post-7.css?ver=1665081311 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/uploads/elementor/css/post-7.css?ver=1665081311 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/uploads/elementor/css/post-7.css?ver=1665081311 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Thu, 06 Oct 2022 18:35:11 GMT
etag: W/"633f1fdf-71a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Thu, 06 Oct 2022 18:32:19 GMT
etag: W/"633f1f33-1a78c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/ultimate-carousel-for-elementor/css/font-awesome/css/all.css?ver=6.1.1 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/ultimate-carousel-for-elementor/css/font-awesome/css/all.css?ver=6.1.1 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/ultimate-carousel-for-elementor/css/font-awesome/css/all.css?ver=6.1.1 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Thu, 28 Apr 2022 18:29:47 GMT
etag: W/"626add1b-655"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.11 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.11 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.11 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 14:22:27 GMT
etag: W/"637cdb23-26d2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Thu, 06 Oct 2022 18:32:20 GMT
etag: W/"633f1f34-1599"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Cookie: _ga_QQ3BW4Z090=GS1.1.1670617585.1.0.1670617585.60.0.0; _ga=GA1.1.93429029.1670617585
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:28 GMT
content-type: application/javascript
last-modified: Thu, 06 Oct 2022 18:32:19 GMT
etag: W/"633f1f33-384a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Thu, 06 Oct 2022 18:32:19 GMT
etag: W/"633f1f33-4b4f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.1 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.1 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.1 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 13:33:44 GMT
etag: W/"636cfdb8-3d0a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/themes/phox/assets/js/plugins.js?ver=2.1.7 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/themes/phox/assets/js/plugins.js?ver=2.1.7 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/themes/phox/assets/js/plugins.js?ver=2.1.7 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Thu, 14 Jul 2022 19:41:55 GMT
etag: W/"62d07183-1e48"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/phox-host//assets/js/elementor-widgets.js?ver=1.7.9 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/phox-host//assets/js/elementor-widgets.js?ver=1.7.9 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-content/plugins/phox-host//assets/js/elementor-widgets.js?ver=1.7.9 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Thu, 14 Jul 2022 19:47:34 GMT
etag: W/"62d072d6-c186"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Thu, 06 Oct 2022 18:32:19 GMT
etag: W/"633f1f33-2dff"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/elementor/css/global.css?ver=1665081312 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/uploads/elementor/css/global.css?ver=1665081312 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/uploads/elementor/css/global.css?ver=1665081312 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Thu, 06 Oct 2022 18:35:12 GMT
etag: W/"633f1fe0-2f69c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/themes/phox/assets/css/responsive.css?ver=2.1.7 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/themes/phox/assets/css/responsive.css?ver=2.1.7 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-content/themes/phox/assets/css/responsive.css?ver=2.1.7 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Thu, 14 Jul 2022 19:41:55 GMT
etag: W/"62d07183-4f69"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/themes/phox/assets/css/all.min.css?ver=2.1.7 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/themes/phox/assets/css/all.min.css?ver=2.1.7 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-content/themes/phox/assets/css/all.min.css?ver=2.1.7 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Thu, 14 Jul 2022 19:41:55 GMT
etag: W/"62d07183-e7d0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.1 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.1 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.1 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 13:00:10 GMT
etag: W/"635a80da-2de0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/themes/phox/assets/css/pages/dist/cf7.css?ver=2.1.7 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/themes/phox/assets/css/pages/dist/cf7.css?ver=2.1.7 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/themes/phox/assets/css/pages/dist/cf7.css?ver=2.1.7 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Thu, 14 Jul 2022 19:41:55 GMT
etag: W/"62d07183-d6d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Thu, 06 Oct 2022 18:32:20 GMT
etag: W/"633f1f34-3e36"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Wed, 13 Jul 2022 14:47:29 GMT
etag: W/"62cedb01-205b5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Thu, 06 Oct 2022 18:32:20 GMT
etag: W/"2a5-5ea61e9df601b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/ultimate-carousel-for-elementor/js/slick.js?ver=6.1.1 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/ultimate-carousel-for-elementor/js/slick.js?ver=6.1.1 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/ultimate-carousel-for-elementor/js/slick.js?ver=6.1.1 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Thu, 28 Apr 2022 18:29:47 GMT
etag: W/"626add1b-16e0d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/themes/phox/assets/js/worldLow.js?ver=2.1.7 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/themes/phox/assets/js/worldLow.js?ver=2.1.7 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/themes/phox/assets/js/worldLow.js?ver=2.1.7 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Thu, 14 Jul 2022 19:41:55 GMT
etag: W/"62d07183-20d74"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 03:18:23 GMT
etag: W/"628d9fff-21be"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 03:18:41 GMT
etag: W/"6361e191-542f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
etag: W/"5fb4e3fe-3a68"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/themes/phox-child/assets/js/jquery.smartWizard.js?ver=6.1.1 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/themes/phox-child/assets/js/jquery.smartWizard.js?ver=6.1.1 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-content/themes/phox-child/assets/js/jquery.smartWizard.js?ver=6.1.1 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Tue, 19 Jul 2022 21:37:36 GMT
etag: W/"62d72420-911d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.25 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.25 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.25 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Wed, 13 Jul 2022 14:47:29 GMT
etag: W/"62cedb01-607d8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/hide-admin-bar-based-on-user-roles/public/css/hide-admin-bar-based-on-user-roles-public.css?ver=3.4.1 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/hide-admin-bar-based-on-user-roles/public/css/hide-admin-bar-based-on-user-roles-public.css?ver=3.4.1 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/hide-admin-bar-based-on-user-roles/public/css/hide-admin-bar-based-on-user-roles-public.css?ver=3.4.1 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Thu, 06 Oct 2022 18:56:44 GMT
etag: W/"63-5ea6241255e14"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/themes/phox/assets/css/bootstrap.min.css?ver=2.1.7 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/themes/phox/assets/css/bootstrap.min.css?ver=2.1.7 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-content/themes/phox/assets/css/bootstrap.min.css?ver=2.1.7 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Thu, 14 Jul 2022 19:41:55 GMT
etag: W/"62d07183-2565e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Thu, 06 Oct 2022 18:32:19 GMT
etag: W/"633f1f33-acd1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/timeline-block/includes/cool-timeline-block/dist/blocks.style.build.css | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/timeline-block/includes/cool-timeline-block/dist/blocks.style.build.css IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-content/plugins/timeline-block/includes/cool-timeline-block/dist/blocks.style.build.css HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Thu, 06 Oct 2022 18:28:26 GMT
etag: W/"633f1e4a-55b8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Thu, 06 Oct 2022 18:32:19 GMT
etag: W/"633f1f33-21ed"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.7 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.7 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.7 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 18:47:50 GMT
etag: W/"632a0ad6-22d0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Fri, 21 Oct 2022 02:01:40 GMT
etag: W/"6351fd84-3561"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/ultimate-carousel-for-elementor/css/slick-carousal.css?ver=6.1.1 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/ultimate-carousel-for-elementor/css/slick-carousal.css?ver=6.1.1 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/ultimate-carousel-for-elementor/css/slick-carousal.css?ver=6.1.1 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Thu, 28 Apr 2022 18:29:47 GMT
etag: W/"626add1b-1fc1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 03:18:23 GMT
etag: W/"628d9fff-5749"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 03:18:41 GMT
etag: W/"6361e191-3686"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Thu, 06 Oct 2022 18:32:19 GMT
etag: W/"633f1f33-8f31"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.1 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.1 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.1 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Thu, 27 Oct 2022 13:00:10 GMT
etag: W/"635a80da-d69"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Thu, 06 Oct 2022 18:32:20 GMT
etag: W/"29d-5ea61e9df6403"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/ | 72.167.48.161 | 200 OK | 0 B |
IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET / HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:25 GMT
content-type: text/html; charset=UTF-8
link: <https://www.planprophet.com/wp-json/>; rel="https://api.w.org/", <https://www.planprophet.com/wp-json/wp/v2/pages/13>; rel="alternate"; type="application/json", <https://www.planprophet.com/>; rel=shortlink
x-powered-by: PHP/7.4.33, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Fri, 21 Oct 2022 02:01:40 GMT
etag: W/"6351fd84-aab"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/elementor/assets/js/counter.02cef29c589e742d4c8c.bundle.min.js | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/elementor/assets/js/counter.02cef29c589e742d4c8c.bundle.min.js IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/js/counter.02cef29c589e742d4c8c.bundle.min.js HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Cookie: _ga_QQ3BW4Z090=GS1.1.1670617585.1.0.1670617585.60.0.0; _ga=GA1.1.93429029.1670617585
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:27 GMT
content-type: application/javascript
last-modified: Thu, 06 Oct 2022 18:32:19 GMT
etag: W/"633f1f33-121f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/uploads/elementor/css/post-3424.css?ver=1665081312 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/uploads/elementor/css/post-3424.css?ver=1665081312 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/uploads/elementor/css/post-3424.css?ver=1665081312 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Thu, 06 Oct 2022 18:35:12 GMT
etag: W/"633f1fe0-1041"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-includes/js/wp-util.min.js?ver=6.1.1 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-includes/js/wp-util.min.js?ver=6.1.1 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-includes/js/wp-util.min.js?ver=6.1.1 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 03:18:42 GMT
etag: W/"6361e192-1422"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.7 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.7 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.7 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 18:47:50 GMT
etag: W/"632a0ad6-6239"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/phox-host/assets/css/libs/owl-carousel/owl.theme.default.min.css?ver=2.2.3 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/phox-host/assets/css/libs/owl-carousel/owl.theme.default.min.css?ver=2.2.3 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/phox-host/assets/css/libs/owl-carousel/owl.theme.default.min.css?ver=2.2.3 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Thu, 14 Jul 2022 19:47:34 GMT
etag: W/"3f5-5e3c92c422187"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/themes/phox/assets/css/elementor-custom.css?ver=2.1.7 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/themes/phox/assets/css/elementor-custom.css?ver=2.1.7 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-content/themes/phox/assets/css/elementor-custom.css?ver=2.1.7 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Thu, 14 Jul 2022 19:41:55 GMT
etag: W/"26c-5e3c9180ec720"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 03:18:41 GMT
etag: W/"6361e191-6250"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.7 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.7 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.7 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 18:47:50 GMT
etag: W/"632a0ad6-2d0a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/themes/phox-child/style.css?ver=6.1.1 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/themes/phox-child/style.css?ver=6.1.1 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/themes/phox-child/style.css?ver=6.1.1 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 15:50:24 GMT
etag: W/"6331ca40-183d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.planprophet.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6 | 72.167.48.161 | 200 OK | 0 B |
URL HTTP/2www.planprophet.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6 IP72.167.48.161:0 ASN#398101 GO-DADDY-COM-LLC
GET /wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6 HTTP/1.1
Host: www.planprophet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.planprophet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:26:26 GMT
content-type: application/javascript
last-modified: Tue, 25 Oct 2022 20:19:07 GMT
etag: W/"635844bb-6f2e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|