r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 150792cfc458af013998f4ef6bdf5f74
d5179b2dcb11d06f82606bf6eb6648319998d63e
72937c756d3feeae6d04a6f445398b0436bdf559f8c7437e3a3233263943900e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "72937C756D3FEEAE6D04A6F445398B0436BDF559F8C7437E3A3233263943900E"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8007
Expires: Mon, 28 Nov 2022 23:10:03 GMT
Date: Mon, 28 Nov 2022 20:56:36 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1099
Cache-Control: max-age=136384
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 20:56:36 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 10:49:40 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2223
Expires: Mon, 28 Nov 2022 21:33:39 GMT
Date: Mon, 28 Nov 2022 20:56:36 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 20:17:49 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2327
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 7FRiqsKDMVHZYj5ujQE57nyVNW1flda4znfuA78j4BK25lGKRVQ+madtfNpqQFPoUcIZDy8ca2wR7jcc0zah7Q==
x-amz-request-id: MKBR7BJVVENXRE5K
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 20:45:10 GMT
age: 686
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 20:56:36 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 20:08:55 GMT
cache-control: public,max-age=3600
age: 2862
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1868
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 20:56:37 GMT
Last-Modified: Mon, 28 Nov 2022 20:25:29 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
alemargroups.com/
301 Moved Permanently 0 B IP
ASN #55660 PT Master Web Network
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 28 Nov 2022 20:56:36 GMT
Server: Apache
X-Redirect-By: WordPress
Location: https://www.alemargroups.com/
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 7X5dBvJTLyfapQdN3YHarg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: swSVmTdVuQuGLX1NhmyhJ9GUBJQ=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4889
Expires: Mon, 28 Nov 2022 22:18:07 GMT
Date: Mon, 28 Nov 2022 20:56:38 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4889
Expires: Mon, 28 Nov 2022 22:18:07 GMT
Date: Mon, 28 Nov 2022 20:56:38 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4889
Expires: Mon, 28 Nov 2022 22:18:07 GMT
Date: Mon, 28 Nov 2022 20:56:38 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4889
Expires: Mon, 28 Nov 2022 22:18:07 GMT
Date: Mon, 28 Nov 2022 20:56:38 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6c93814-fbc2-4f60-a417-7cb6ff99a2ef.jpeg
200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6c93814-fbc2-4f60-a417-7cb6ff99a2ef.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b24e349e9d22fb30fbc80497b512cead
c033d1ecdb9e7640f3df044e39053bed8292fcbc
2d77e3c39c60a3563613b1ba97ec0b1a256f41ad09936ba49b23d8cf22f8a7a8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6c93814-fbc2-4f60-a417-7cb6ff99a2ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6263
x-amzn-requestid: 5c3da401-eb9e-4904-a7e9-5e74648b8b77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KFfWoAMF99A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-3110d65625e883502a5078a9;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EpU6HS6f0BpRceJVfwhBhOgKMTMvdMZj4ST9DMATiqfA10pNplyPtQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:04 GMT
age: 83134
etag: "c033d1ecdb9e7640f3df044e39053bed8292fcbc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg
200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78b1389f425425d0450c94d900404dc4
53b12a8702f7c5b7cc697e2a24da824d9434be65
0c1659ab3afc6e45f9e3acb12f8865bb99e4668f7df4501b1cc740e53f5b62ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6376
x-amzn-requestid: 25b82353-9c15-44c0-ada5-55f4697de935
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KGeaoAMFb_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-71711cca7c063030292c5e47;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: odmAWkNyUMevvXStu7zRJyckokhyBjUwu7-JSvj8by-JWJ9eAm9P5Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:26 GMT
age: 82512
etag: "53b12a8702f7c5b7cc697e2a24da824d9434be65"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ibLuLI6j9EWh0dgk51O7kiPBRyURZ0UdNtlgbBD-SXnDg_GT_tJm8Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:16 GMT
age: 82522
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg
200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3a1a4e00f1f15827cf651f373863c379
70c2a238f06ca7e56ef80c83738e081bf0de3330
3d936e1f0c96297f121faece12d6f8173e12eed5087165cd4eefc0fab368419f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8885
x-amzn-requestid: 71b8367f-f79f-42a7-bcb8-c441a154babf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGDTEFSeIAMF3rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f18e0-631b775d3430a8c30c3b4420;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:10:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jsmd6yxjJxLMEgv1jDa87iEoZXL2OuALsmUZ9Nxx1rUN-xOTdtN1-A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 08:11:39 GMT
age: 45899
etag: "70c2a238f06ca7e56ef80c83738e081bf0de3330"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2cd887044e91d7ed0f1a8d7119ff7dd0
ae8aa4ce6ddaccba771fe65446926b60fc5628da
bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CXOqm7bjsSV0aJBTkTI7LsMovjgPeISPt3sZotEc7CjZnUL_y4_OoQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:43 GMT
age: 83095
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F955ba04e-80cb-43a1-bc6a-3e502a79144e.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F955ba04e-80cb-43a1-bc6a-3e502a79144e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9a6e5f60b87d3879606a6707feb37a73
373c96c2e0006d70954d4b4ebd850f62f558e92c
1ae48f692f44d357e21eec708b46f22c36a3de21be8d0f1c2035d197e0aa89de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F955ba04e-80cb-43a1-bc6a-3e502a79144e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9546
x-amzn-requestid: 60e352b5-ab38-4975-bf26-500f0a639a2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFfulExwIAMFzQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637edff6-1364912f7fd292da6453a83e;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 03:07:34 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qtRAIXoswvTgNWZzaQE1WHZQXoJRtK9nKpusFtXH3pDRHH_DZtsLFw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 11:59:09 GMT
age: 32249
etag: "373c96c2e0006d70954d4b4ebd850f62f558e92c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 20:56:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.alemargroups.com/
200 OK 14 kB IP
ASN #55660 PT Master Web Network
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047)
Hash da53ea2f59404152fed63316907c964c
5121dfec83cecc5c8c3f28e0899629d46cb6e422
a19642100f70fcac1f5c7e23accb2cd136c75ce897446656ae674d7b9a3df08e
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:38 GMT
Server: Apache
Link: <https://www.alemargroups.com/wp-json/>; rel="https://api.w.org/", <https://www.alemargroups.com/wp-json/wp/v2/pages/7>; rel="alternate"; type="application/json", <https://www.alemargroups.com/>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 13743
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 20:56:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7207a5076b63fb5f39b9436ced9fb18f
cdd84ecfe85882601e81f11783d9f63b30084de3
6d4543402df8135d5860ecd47dd52d96d66d2e1ac6feec11accb5f43f2da7d0d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 20:56:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.google.com/maps/api/js
200 OK 53 kB URL HTTP/2 maps.google.com/maps/api/js
IP
File type ASCII text, with very long lines (2517)
Hash 12aaa09b6cc71fe0a60759017fc0a952
dd3bb2d31d6106583e5ac8c4c10132179be22e70
03c3718ecb7960af3505e31acdf3a7cf28f39306bb9a5d4c3f30190f39f21ed9
GET /maps/api/js HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Mon, 28 Nov 2022 20:56:40 GMT
expires: Mon, 28 Nov 2022 21:26:40 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53384
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=11
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7207a5076b63fb5f39b9436ced9fb18f
cdd84ecfe85882601e81f11783d9f63b30084de3
6d4543402df8135d5860ecd47dd52d96d66d2e1ac6feec11accb5f43f2da7d0d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 20:56:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.alemargroups.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
200 OK 11 kB URL HTTP/1.1 www.alemargroups.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (43771)
Hash e31f459d8be9f1ea5da11d67de41e0e9
441abf4f77a24e73d756c420a5ffb7758394f55e
531a923dfaa107491c8291e2df6bbf1fbb246124882df5ecdaf425948f7add0d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:39 GMT
Server: Apache
Last-Modified: Mon, 04 Jul 2022 10:40:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 10914
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-content/plugins/siteorigin-panels/css/front-flex.min.css?ver=2.11.5
200 OK 293 B URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/siteorigin-panels/css/front-flex.min.css?ver=2.11.5
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (971), with no line terminators
Hash bc8c976d069f1a7269a56591babd5a1b
9d13b923a2d6547242f48f6ea1936ccc079f1efb
729fbe778b9c0630e2fc0faaa3ec1f43b6078f0c4b66330ede984acbcb0e3269
GET /wp-content/plugins/siteorigin-panels/css/front-flex.min.css?ver=2.11.5 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:40 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 04:10:22 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 293
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=3.0.7
200 OK 8.3 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=3.0.7
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (7136)
Hash 240e50457531271a7d61051f935fdda5
948c44a86556a79995fe1ca68de2e06ad2864616
ceb5e1522e0e320f1c7ef11d82d46eec7ccd6c5a18ead42024787b26f1257c7b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=3.0.7 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:40 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 06:14:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 8303
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.2.2
200 OK 620 B URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.2.2
IP
ASN #55660 PT Master Web Network
Hash 9f99d02cd2ebab69c2ddb8aa94ad8088
38d7a42447667ea805a063cc3012cd34b9a975d4
456d79e339948bd957d7e8d6cf2ca4ac9fda277dfbfa13093a0502322e595c08
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.2.2 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:40 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 04:21:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 620
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.7
200 OK 2.1 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.7
IP
ASN #55660 PT Master Web Network
Hash a85d209fef9224fe16ec8cc6a5c6141d
8610912a07e6e49462dd7d52611d58b718bcd8c9
7cabfe1a57bd55ffabc6c8f1352405074243a362d29719ded5bad2ea6cd3def1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.7 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:40 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 06:14:41 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 2125
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-content/themes/buildpress/style.css?ver=5.6.2
200 OK 34 kB URL HTTP/1.1 www.alemargroups.com/wp-content/themes/buildpress/style.css?ver=5.6.2
IP
ASN #55660 PT Master Web Network
File type assembler source, ASCII text, with very long lines (1012)
Hash 26d808984655f60e5b1a95b6478d3967
53db920feb5f140ae81f27cdf7da2471a478307b
eb1fb40cd2000d5e1dfb15e95ebf608d9f13f6bba96871d3a4a0b51d83036cd7
GET /wp-content/themes/buildpress/style.css?ver=5.6.2 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:40 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 03:15:07 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 33506
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-content/plugins/simple-lightbox/client/css/app.css?ver=2.8.1
200 OK 82 B URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/simple-lightbox/client/css/app.css?ver=2.8.1
IP
ASN #55660 PT Master Web Network
File type ASCII text, with CRLF line terminators
Hash 111e98f6145b1e5c6c29b954ff7816f3
01df2332f02ed4c8976919a2f24007a644320196
9fe062e0c1a047a674c79ee62b5b8662f2872dcd349e50b44bc6f2630a0417cf
GET /wp-content/plugins/simple-lightbox/client/css/app.css?ver=2.8.1 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:41 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 04:18:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 82
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 4.0 kB URL HTTP/1.1 www.alemargroups.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (11126)
Hash 1fbb59519536e28eeb7ae7173973c39f
f6542c5d0f96f621eea4f3cb442021dfe33863fa
b1b54befd52c3605721bf8b5a6c0290c572929138358738826873751256b191c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:41 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 07:36:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 3998
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
200 OK 30 kB URL HTTP/1.1 www.alemargroups.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (65447)
Hash 6226ce9079030f16c5f9965a4f7d6a35
07a079b61c6adb929cddcd3c47d32bb90e3cde85
44a47e45f1967b0d0ce0a46c534cbb84969e23ce8508c6c5d8fd2a8f620efa63
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:41 GMT
Server: Apache
Last-Modified: Wed, 10 Mar 2021 13:37:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 30311
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/themes/buildpress/assets/js/modernizr.custom.24530.js
200 OK 1.6 kB URL HTTP/1.1 www.alemargroups.com/wp-content/themes/buildpress/assets/js/modernizr.custom.24530.js
IP
ASN #55660 PT Master Web Network
File type HTML document, ASCII text, with very long lines (3446)
Hash 72a4896150d0bf7b523b24785fe70ae8
3d98e6bde8c9da13e73f95e1336a0fb70da137ec
e55443f0eebb6b964f1e571f8541844cfe15c760baaeda6bcf260288d31489e7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/buildpress/assets/js/modernizr.custom.24530.js HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:41 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 03:15:42 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1625
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/themes/buildpress/bower_components/respimage/respimage.min.js?ver=1.2.0
200 OK 3.9 kB URL HTTP/1.1 www.alemargroups.com/wp-content/themes/buildpress/bower_components/respimage/respimage.min.js?ver=1.2.0
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (8789)
Hash 6eed344b300fcc73c2caf9b0de9b82cc
efd34e9e7f0f1ad6b44c4ece4add535afc43d26d
7abb9145aedb6b046283c4d5a78b69ee12e87eb996ffbc7c728aafbab7062499
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/buildpress/bower_components/respimage/respimage.min.js?ver=1.2.0 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:41 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 03:15:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 3942
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
200 OK 4.6 kB URL HTTP/1.1 www.alemargroups.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (15660)
Hash a0083d25b89ea80ecd2393db9f865d62
24eaf2df7c722fb13f2b5bf77ada5ee446720c25
f7533cb93f2efbb9e3bccfa9ff4036a2cafa7dd1bd4d66bea4833306b321e957
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:41 GMT
Server: Apache
Last-Modified: Tue, 12 Apr 2022 04:26:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 4614
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/font-awesome/css/font-awesome.min.css?ver=6.0.3
200 OK 6.7 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/font-awesome/css/font-awesome.min.css?ver=6.0.3
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (30837)
Hash 3bca42e5004726d89ebdea033d8ae93f
629b1195ec0fa24286d5d6a06fe319c139a4872f
1f3dde16a1674c2dcc2af76809687ed4ab30a42c4a3097fb6d53b6115fbd294b
GET /wp-content/plugins/grid-plus/assets/lib/font-awesome/css/font-awesome.min.css?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:41 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 6662
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/animate/animate.css?ver=6.0.3
200 OK 839 B URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/animate/animate.css?ver=6.0.3
IP
ASN #55660 PT Master Web Network
Hash 11023c8033155e8841848462681a4e32
1c23021dcff5c1691cfdb1a8c7ded685d803a9ab
74b127775d115a1eb12854618c0e8327e8fe0569d5783d699ac36be7bb9c9978
GET /wp-content/plugins/grid-plus/assets/lib/animate/animate.css?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:41 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 839
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 20:56:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash af25abbc1f9776cf78b07837dbea38a0
1883049bac2e92f8b3107f6435f00b83d8f4c117
663a6d77de7e3c835bcbb4b567eb28053755bf50ddab14b3f668367a85efdf17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4333
Cache-Control: max-age=142479
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 20:56:41 GMT
Etag: "6384992b-1d7"
Expires: Wed, 30 Nov 2022 12:31:20 GMT
Last-Modified: Mon, 28 Nov 2022 11:19:07 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Hash 0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.alemargroups.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:26:57 GMT
expires: Thu, 23 Nov 2023 19:26:57 GMT
cache-control: public, max-age=31536000
age: 437384
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.alemargroups.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 16:40:18 GMT
expires: Fri, 24 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 360983
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 12924, version 1.0\012- data
Hash 4610010f425c140b99c88b6819ce1c02
a7e839aa0452ceeb6228de7c15062fe82cc6d1c3
7348a2eb48c9a681d6178433394c7037144d85b57ee33a11339d3a33fa1001a4
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.alemargroups.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:26:57 GMT
expires: Thu, 23 Nov 2023 19:26:57 GMT
cache-control: public, max-age=31536000
age: 437384
last-modified: Wed, 27 Apr 2022 16:02:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 20:56:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/ladda/ladda.min.css?ver=6.0.3
200 OK 972 B URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/ladda/ladda.min.css?ver=6.0.3
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (7600)
Hash 136eb7ec6438a2129468a4c25e5a7312
7fca9898d3ba2d8f50661e0b0d17cbeccc1f69f2
1f8a6e7565408c87fad00e1d809ff4b932b1b5edcb8b4230ab7c2e9a1e7b1b93
GET /wp-content/plugins/grid-plus/assets/lib/ladda/ladda.min.css?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:41 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 972
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ocsp.digicert.com/
200 OK 471 B IP
Hash af25abbc1f9776cf78b07837dbea38a0
1883049bac2e92f8b3107f6435f00b83d8f4c117
663a6d77de7e3c835bcbb4b567eb28053755bf50ddab14b3f668367a85efdf17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4334
Cache-Control: max-age=142479
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 20:56:42 GMT
Etag: "6384992b-1d7"
Expires: Wed, 30 Nov 2022 12:31:21 GMT
Last-Modified: Mon, 28 Nov 2022 11:19:07 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack-extra.min.css?ver=6.0.3
200 OK 1.5 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack-extra.min.css?ver=6.0.3
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (25417), with no line terminators
Hash 0e2bded91feab38e87889404f667e19c
fab42aace712fccea9402c8c8f6e2ccdedb6c27c
6dd742f009e16bff7a3b366c7286a2b0d671ada7e3106d959c19871c811cd2bb
GET /wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack-extra.min.css?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:41 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1515
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/owl-carousel/grid.owl.carousel.min.css?ver=6.0.3
200 OK 829 B URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/owl-carousel/grid.owl.carousel.min.css?ver=6.0.3
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (3064)
Hash 6fda017f6f8859dd602ba2970aa54d65
3c18ab01a792a856f01da11d004275dc9f655778
7b7d3c430b34eefb8070d3f8a475e9a5d9e6f96227c69968c2b6f53c69c789c9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/grid-plus/assets/lib/owl-carousel/grid.owl.carousel.min.css?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:41 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 829
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack.min.css?ver=6.0.3
200 OK 2.1 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack.min.css?ver=6.0.3
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (8906), with no line terminators
Hash f403a2d6aa3d0dbebddb27c2e1f021b4
b8b7b50445b697312a4649d6abb685a88250ecea
80e133c8884488fad1b0409fd2ea50935206c385ffc97d3a2e1f1cddc72ddc18
GET /wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack.min.css?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:41 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 2050
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
static.xx.fbcdn.net/rsrc.php/v3/yK/l/0,cross/eaiix2H3Njt.css?_nc_x=Ij3Wp8lg5Kz
200 OK 5.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yK/l/0,cross/eaiix2H3Njt.css?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (4431)
Hash 56e5cd2fc08e47f6c5fd8a9961c286d9
79a7562209aad03954f45f235d4cc5a6c2ba2f3a
7684d571ba7ee7bc3011862bc7d42df41c4542b2c4564d6ca9d183e5bdf272cb
GET /rsrc.php/v3/yK/l/0,cross/eaiix2H3Njt.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 28 Nov 2023 17:56:05 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: VuXNL8COR/bF/YqZYcKG2Q==
x-fb-debug: 8FaI6hyEZdaP8urhc93QH9ua7e7i+IGByVIcGiTCLwEsHNNCVqlnFI18uPewLai9V6FDSQ+2VyAayTfVPeVovw==
content-length: 5378
x-fb-trip-id: 1904183273
date: Mon, 28 Nov 2022 20:56:42 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/light-gallery/css/lightgallery.min.css?ver=6.0.3
200 OK 3.0 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/light-gallery/css/lightgallery.min.css?ver=6.0.3
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (16537)
Hash 08a9ca6a206735613964c19b441b3142
cb06707b8e267b0a1d69dddfe7848a5820f6c8da
31a0b6262e0b415cc45228f1fe8f76e96d53d54f7e6ef68e267cd4ac1854385e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/grid-plus/assets/lib/light-gallery/css/lightgallery.min.css?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:41 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 3013
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-content/plugins/grid-plus/assets/css/fe_style.css?ver=6.0.3
200 OK 3.1 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/css/fe_style.css?ver=6.0.3
IP
ASN #55660 PT Master Web Network
Hash 80f492bbb5d5c36f35395a6cc92aefe6
5e5e64dc2c4049e100c519c9069030991a7c2d72
63c71f89b5183d213833a0e847a2d8e0650154ba51c4f0fc8d3410800676087a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/grid-plus/assets/css/fe_style.css?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:41 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 3121
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-includes/js/underscore.min.js?ver=1.13.3
200 OK 7.2 kB URL HTTP/1.1 www.alemargroups.com/wp-includes/js/underscore.min.js?ver=1.13.3
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (18876)
Hash f50c037d9600f4800b12c7c1887ce481
9dca5e090fdd523d92df2af5670ba510193c2acd
7e089b45b49183b8981f2ffa13ca9209599b91abb84c17c222fc15f75e644547
GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:42 GMT
Server: Apache
Last-Modified: Wed, 27 Apr 2022 13:09:22 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 7198
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/themes/buildpress/assets/js/main.min.js?ver=5.6.2
200 OK 8.7 kB URL HTTP/1.1 www.alemargroups.com/wp-content/themes/buildpress/assets/js/main.min.js?ver=5.6.2
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (28401), with no line terminators
Hash ccbee3832673b2b6d4574d30d91fccce
9fe9d9d1fb15335cd16024d550272925b297280e
074779b28f02b94e16d7b6ab256551f258f8e50b7ed784942972eac109bbc148
GET /wp-content/themes/buildpress/assets/js/main.min.js?ver=5.6.2 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:42 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 03:15:41 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 8738
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2.2
200 OK 3.7 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2.2
IP
ASN #55660 PT Master Web Network
Hash 0dda35cfb3d24663b1bd3c072540183d
1717c573205edc2d9186f668cdeb310a8394c491
2895b624b4cac02ff107ca50ba188c3024fa8816f19e3dc61060f324d73e4a97
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2.2 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:42 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 04:21:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 3658
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/ladda/spin.min.js?ver=6.0.3
200 OK 2.0 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/ladda/spin.min.js?ver=6.0.3
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (4360)
Hash 68e6c4562e0f6988a08c235cd19dd9eb
307238fd1fa3c54296c598df9821e00a14739c4f
68e22fe76bd4ec8ed11b5e9f81985644aa383c169af665acbb79aa0a1ba98068
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/grid-plus/assets/lib/ladda/spin.min.js?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:42 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 2023
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/plugins/siteorigin-panels/js/styling.min.js?ver=2.11.5
200 OK 353 B URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/siteorigin-panels/js/styling.min.js?ver=2.11.5
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (811), with no line terminators
Hash 7ca5dfed1d4f55e44f086a9eef55ece7
97cb9acbd4c9b71848bd59c82fa0ba6644231bd3
212e895d5d640ff18b6a681a8c36ec89823a112348e53c5e66079ef65e98eb2b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/siteorigin-panels/js/styling.min.js?ver=2.11.5 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:42 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 04:10:22 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 353
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/light-gallery/js/lightgallery-all.min.js?ver=1
200 OK 11 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/light-gallery/js/lightgallery-all.min.js?ver=1
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (1141)
Hash 7c152828ae66c7b17962099139600511
08afae573e0b1f9c1523e0c71934eea3549ab1e6
cac7f24b78b439c65f504b38e6727de753dccde010a98c89c35c0615b0f2607f
GET /wp-content/plugins/grid-plus/assets/lib/light-gallery/js/lightgallery-all.min.js?ver=1 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:42 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 11113
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/ladda/ladda.min.js?ver=6.0.3
200 OK 1.0 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/ladda/ladda.min.js?ver=6.0.3
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (2370)
Hash d2a3cfe7056b10e2df42feffb19ba106
2c5e39d4a9525167ef6ff3e59d0d2e0671042bc1
aae6a9b2aadd435699da13e7ed02f5d96bd4dad82cf6ff5770b092bf8dc2ebd4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/grid-plus/assets/lib/ladda/ladda.min.js?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:42 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1009
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack.min.js?ver=1
200 OK 8.1 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack.min.js?ver=1
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (33418), with no line terminators
Hash 236361227ddc0656cfbbe387a9a83bfb
72d6f2f6ab9427c4e5cf9f8c4b5d00db0c7e80af
95eda5df9e41ad26c1525e4e7375b247a5208cb9883f038c8fed81d1550beee4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack.min.js?ver=1 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:42 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 8093
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack.jQueryUI.min.js?ver=6.0.3
200 OK 821 B URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack.jQueryUI.min.js?ver=6.0.3
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (1094)
Hash 6dced4cd2108b47fa6496ff87d5c608f
4656beef6dfd7d8e546f56ca103e42f8b24cc0bb
a310d9b17645d234b17e52a54681428bb6cc02581b52cc5564eb59e87dce9a75
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack.jQueryUI.min.js?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:42 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 821
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/owl-carousel/grid.owl.carousel.min.js?ver=6.0.3
200 OK 11 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/owl-carousel/grid.owl.carousel.min.js?ver=6.0.3
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (32001)
Hash f68791b46205dad0dd704f6073567993
44238d342530fa6b01324fc044c24bec08292038
9fe13449184bc9081f9ce415da18590cbb8e47ce5dfce17ac1f0d017aea5f80f
GET /wp-content/plugins/grid-plus/assets/lib/owl-carousel/grid.owl.carousel.min.js?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:42 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 10566
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/matchmedia/matchmedia.js?ver=6.0.3
200 OK 591 B URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/matchmedia/matchmedia.js?ver=6.0.3
IP
ASN #55660 PT Master Web Network
Hash 86f05b750bdbe3c7b37bca3cea815249
3d1156e9482dfc8b5d457a67eb2477ced27332a3
d245c0b5b34fc53c1dd84924f791e2eab10487f88c570b01074bc68e05274f08
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/grid-plus/assets/lib/matchmedia/matchmedia.js?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:42 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 591
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/uploads/2016/05/IMG_5584-1-300x200.jpg
200 OK 16 kB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2016/05/IMG_5584-1-300x200.jpg
IP
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x200, components 3\012- data
Hash 3685bd42c99c553e9830f6d9c683baf2
0e1710172015b6d4293cf3872e02df16b6f5a438
f52a8cbdd23f7a6ef3d2e9fe6d6c3435299cf3f50c5c73e868a92d49fac120a0
GET /wp-content/uploads/2016/05/IMG_5584-1-300x200.jpg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:42 GMT
Server: Apache
Last-Modified: Wed, 12 Jul 2017 03:15:25 GMT
Accept-Ranges: bytes
Content-Length: 16379
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
www.alemargroups.com/wp-includes/js/wp-util.min.js?ver=6.0.3
200 OK 647 B URL HTTP/1.1 www.alemargroups.com/wp-includes/js/wp-util.min.js?ver=6.0.3
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (1305)
Hash 2a76be55e22646ae466bdf7f7b9547f3
9a36bc2691e2bd04a08858a234d017ac87e74745
38aa38eaeb3a904f34a2761068fddf3dc02cce608c7a07c3f45413bd6b378174
GET /wp-includes/js/wp-util.min.js?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:42 GMT
Server: Apache
Last-Modified: Fri, 25 Jun 2021 13:20:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 647
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/uploads/2016/05/IMG_5662-300x200.jpg
200 OK 15 kB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2016/05/IMG_5662-300x200.jpg
IP
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x200, components 3\012- data
Hash f5f5d5c874a278eddde0a16e71e9033a
6770dc7d0160d27b1d1f5a17d0d8582e58b1c854
793754d136629000f452805945a26eddd3e5c3c66a1f80b88c5790a8dfb0f455
GET /wp-content/uploads/2016/05/IMG_5662-300x200.jpg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:42 GMT
Server: Apache
Last-Modified: Wed, 12 Jul 2017 03:15:50 GMT
Accept-Ranges: bytes
Content-Length: 15017
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
www.alemargroups.com/wp-content/plugins/grid-plus/assets/js/frontend/grid.min.js?ver=1
200 OK 5.3 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/js/frontend/grid.min.js?ver=1
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (21026), with no line terminators
Hash b9713a8d2a625ca8b7a996771ef374bc
7f833514d4fc5162313bbd0eecfccd1c130c93fa
249d5798569a98e8fc23b2c09270e9a1df6c8df265f81142bc680cdda02cf3be
GET /wp-content/plugins/grid-plus/assets/js/frontend/grid.min.js?ver=1 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:42 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 5267
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/grid-stack/jquery-ui.js?ver=6.0.3
200 OK 105 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/grid-stack/jquery-ui.js?ver=6.0.3
IP
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (547)
Size 105 kB (105054 bytes)
Hash 2f502d2383e5cd4fa3c68b87551a8e77
44274256e37e16d5fd2500e62426709284a4bda1
b66489c0ca35fa4ea83e19aedf82a66dcb4d9f0c1c793c9ed449de3319a96a3d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/grid-plus/assets/lib/grid-stack/jquery-ui.js?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:42 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 105054
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/uploads/2022/10/alemar-logo-web.png
200 OK 13 kB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2022/10/alemar-logo-web.png
IP
ASN #55660 PT Master Web Network
File type PNG image data, 257 x 112, 8-bit/color RGBA, non-interlaced\012- data
Hash b6c768acbfa2498457f24ce449ae703a
590317159bdccbb76acd2bc62e975f7962102ad3
4d7f07d425f57b1f4e9aef9c6bbccec32ce1a13970898a059c66dcb9b5d4138d
GET /wp-content/uploads/2022/10/alemar-logo-web.png HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:42 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 06:02:00 GMT
Accept-Ranges: bytes
Content-Length: 13277
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
ASN #55660 PT Master Web Network
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/grid-plus/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/font-awesome/css/font-awesome.min.css?ver=6.0.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:42 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Content-Length: 77160
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: font/woff2
www.alemargroups.com/wp-content/themes/buildpress/bower_components/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL HTTP/1.1 www.alemargroups.com/wp-content/themes/buildpress/bower_components/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
ASN #55660 PT Master Web Network
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/themes/buildpress/bower_components/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.alemargroups.com/wp-content/themes/buildpress/style.css?ver=5.6.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:42 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 03:16:05 GMT
Accept-Ranges: bytes
Content-Length: 77160
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: font/woff2
www.alemargroups.com/wp-content/uploads/2016/05/pesantren-aytam1.jpg
200 OK 196 kB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2016/05/pesantren-aytam1.jpg
IP
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=15, manufacturer=Canon, model=Canon EOS 600D, orientation=upper-left, xresolution=216, yresolution=224, resolutionunit=2, datetime=2016:08:22 14:47:52], baseline, precision 8, 1140x760, components 3\012- data
Size 196 kB (195957 bytes)
Hash 79b990414b6191eeb85ac15d7e2a667e
654182721ed9ca7757877964908ede96940efea3
0637015899507cc726a3924f350bdced49770271c1f0dd619099c2aa992ee71e
GET /wp-content/uploads/2016/05/pesantren-aytam1.jpg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:42 GMT
Server: Apache
Last-Modified: Thu, 25 Aug 2016 02:22:20 GMT
Accept-Ranges: bytes
Content-Length: 195957
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
www.alemargroups.com/wp-content/uploads/2016/05/1.jpeg
200 OK 363 kB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2016/05/1.jpeg
IP
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6], baseline, precision 8, 1280x720, components 3\012- data
Size 363 kB (362733 bytes)
Hash bc638ef35e5626ca1aaf672cddbc715b
a13841f7ae90fb563060c375cfba61d13ea41f78
94085f27a1f0e1e89101fdf2b145f345773ad1d93ad47e046abadd2c67773d7a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2016/05/1.jpeg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:42 GMT
Server: Apache
Last-Modified: Wed, 11 Mar 2020 05:02:50 GMT
Accept-Ranges: bytes
Content-Length: 362733
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
www.alemargroups.com/wp-content/uploads/2022/05/banner22-a.jpg
200 OK 1.0 MB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2022/05/banner22-a.jpg
IP
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 1921x581, components 4\012- data
Size 1.0 MB (1025080 bytes)
Hash 20ef157210a705981536de9be189fa52
4b9f092c8e5c14943022605193da6255e94e23a9
12c60c7aafe751d78b7fb03bc8a798d4601f055c93372b8e225752ddf6ab3fc1
GET /wp-content/uploads/2022/05/banner22-a.jpg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:43 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 03:35:59 GMT
Accept-Ranges: bytes
Content-Length: 1025080
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.alemargroups.com/wp-content/uploads/2022/10/DJI_00092022-08-29-10-04-03-Copy.jpg
200 OK 518 kB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2022/10/DJI_00092022-08-29-10-04-03-Copy.jpg
IP
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 960x540, components 3\012- data
Size 518 kB (518346 bytes)
Hash 75e18cc6fcc92ac038a50dfe1ac7924b
173e58bf12800e2aba2b43fa2d526e020153375c
b55a2907906a5418f065f2b8df0f0765a3d79792e71e3412c901ccbe9aeee321
GET /wp-content/uploads/2022/10/DJI_00092022-08-29-10-04-03-Copy.jpg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:43 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 03:04:04 GMT
Accept-Ranges: bytes
Content-Length: 518346
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.alemargroups.com/wp-content/uploads/2021/12/Screenshot_1.jpg
200 OK 396 kB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2021/12/Screenshot_1.jpg
IP
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1878x1076, components 3\012- data
Size 396 kB (396404 bytes)
Hash 27eaf354eedcab1f4f86d84e5af7ed35
3957829aa55c1db9e3e29b025c9c843115178922
54489e1d163e55954ee6086dc719798e498ba34ff39ec5ab4c6039a520b4672f
GET /wp-content/uploads/2021/12/Screenshot_1.jpg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:43 GMT
Server: Apache
Last-Modified: Thu, 23 Dec 2021 02:34:52 GMT
Accept-Ranges: bytes
Content-Length: 396404
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
www.alemargroups.com/wp-content/uploads/2022/10/DJI_00862022-09-26-12-19-59-Copy.jpg
200 OK 562 kB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2022/10/DJI_00862022-09-26-12-19-59-Copy.jpg
IP
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 960x540, components 3\012- data
Size 562 kB (562330 bytes)
Hash 950fec2f2669bc861312c5557a947e0b
0b053bcae9b861f5ce7ff8d616c579cf71b2dd68
076c85540283f4b719855d5d4d0e91f840213ef86a4ee70387dbcec2b8e5e1e4
GET /wp-content/uploads/2022/10/DJI_00862022-09-26-12-19-59-Copy.jpg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:43 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 03:22:47 GMT
Accept-Ranges: bytes
Content-Length: 562330
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.alemargroups.com/wp-content/uploads/2022/10/DJI_00352022-09-05-09-11-05-Copy.jpg
200 OK 582 kB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2022/10/DJI_00352022-09-05-09-11-05-Copy.jpg
IP
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 960x540, components 3\012- data
Size 582 kB (581459 bytes)
Hash 44e7bfec1e656ee1d62151f7808c6a69
e6501d0e236dca3e84cfec20f9d90cb8ad0bc77b
4f308cb9d46f96eeb47e9c72c26e095242ac5693c8268a491c51f1dc9ae22f0a
GET /wp-content/uploads/2022/10/DJI_00352022-09-05-09-11-05-Copy.jpg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:43 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 02:58:33 GMT
Accept-Ranges: bytes
Content-Length: 581459
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
www.alemargroups.com/wp-content/uploads/2014/12/title-area-pattern.png
200 OK 128 B URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2014/12/title-area-pattern.png
IP
ASN #55660 PT Master Web Network
File type PNG image data, 8 x 8, 1-bit colormap, non-interlaced\012- data
Hash 53c5fda1e551716c64a36adf016e1d4f
18a156efadd869836bddd99ff10cbf4a8a335d24
da6baac7451afef63526b39498c44deeccfcb17ca6613cf878e2491f90e83828
GET /wp-content/uploads/2014/12/title-area-pattern.png HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:43 GMT
Server: Apache
Last-Modified: Thu, 26 May 2016 09:25:46 GMT
Accept-Ranges: bytes
Content-Length: 128
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
www.alemargroups.com/wp-content/uploads/2014/12/motivational-background1.jpg
200 OK 29 kB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2014/12/motivational-background1.jpg
IP
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x300, components 3\012- data
Hash 4b2e779cc5dad9847b7d77af77953c89
f5cc060ce60a362f3c777ad7e903aae33472ea22
da39b565322e9c4bd4b06dcad8dd555828914195d24e1fb91411ebecf588558c
GET /wp-content/uploads/2014/12/motivational-background1.jpg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:43 GMT
Server: Apache
Last-Modified: Thu, 26 May 2016 09:25:45 GMT
Accept-Ranges: bytes
Content-Length: 29082
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
www.alemargroups.com/wp-content/themes/buildpress/assets/images/title-area-pattern.png
200 OK 84 B URL HTTP/1.1 www.alemargroups.com/wp-content/themes/buildpress/assets/images/title-area-pattern.png
IP
ASN #55660 PT Master Web Network
File type PNG image data, 8 x 8, 8-bit grayscale, non-interlaced\012- data
Hash e5065d40e5692707dd035134ae21e619
a31c99b1ed932ceeb45a96a705445d03d26edee8
26944c2903b328352f2315ed3131315bfb18e8e25fee42adcca1bc4756a524ae
GET /wp-content/themes/buildpress/assets/images/title-area-pattern.png HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:43 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 03:15:36 GMT
Accept-Ranges: bytes
Content-Length: 84
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
www.alemargroups.com/wp-content/uploads/2022/01/Tambun-bekasi-sembako20jan2022-03-03-08-39-21.jpg
200 OK 924 kB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2022/01/Tambun-bekasi-sembako20jan2022-03-03-08-39-21.jpg
IP
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size 924 kB (923902 bytes)
Hash 579b34dc84abf0e93119b0d9f107ae27
3992bc577da43c2758160521510b00a9a494c309
1bc0e5f02da2478d2e5385fc23ee4928ea8fb55b32521fa42f1ab2fc5b8d77e5
GET /wp-content/uploads/2022/01/Tambun-bekasi-sembako20jan2022-03-03-08-39-21.jpg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:43 GMT
Server: Apache
Last-Modified: Thu, 03 Mar 2022 01:39:54 GMT
Accept-Ranges: bytes
Content-Length: 923902
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.alemargroups.com/wp-content/uploads/2017/01/bm2-100x75.jpg
200 OK 2.3 kB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2017/01/bm2-100x75.jpg
IP
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 100x75, components 3\012- data
Hash 7a2011d3d721ab7ea27f12c4d868f4d4
a239d11517b4ea250014a5ff2ca8f38bd5cde45a
fc064b08bb6e8ae24855f34ea9837e8fcc41687cf652832c6d52d31fa7ecd2b0
GET /wp-content/uploads/2017/01/bm2-100x75.jpg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:43 GMT
Server: Apache
Last-Modified: Fri, 27 Jan 2017 03:37:26 GMT
Accept-Ranges: bytes
Content-Length: 2295
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.alemargroups.com/wp-content/uploads/2022/05/banner22-b.jpg
200 OK 1.1 MB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2022/05/banner22-b.jpg
IP
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 1921x581, components 4\012- data
Size 1.1 MB (1063419 bytes)
Hash 396a58a19c5bfb7a7bf72e5dc682b2e0
4d3c136963c325b8bbc93f46da11deaeb2a9ce87
8379f420c8bf5ccead1c0e635ad17c1ccfa27ce90f86efa259299572ef3980cc
GET /wp-content/uploads/2022/05/banner22-b.jpg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:43 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 04:04:14 GMT
Accept-Ranges: bytes
Content-Length: 1063419
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.alemargroups.com
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 28 Nov 2022 20:56:44 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.alemargroups.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.alemargroups.com/wp-content/uploads/2021/01/favicon.ico
200 OK 273 B URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2021/01/favicon.ico
IP
ASN #55660 PT Master Web Network
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 3ad5b73ef44591d8d685368f30371adf
82fab3aa612b11a8cfd64ec3964ee671903ac480
cc1daa62ab6ef962be8dea6d74178fbc3df76d0f17b62ef43cab6cbc3736e36b
GET /wp-content/uploads/2021/01/favicon.ico HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:56:44 GMT
Server: Apache
Last-Modified: Mon, 11 Jan 2021 01:16:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 273
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/x-icon
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e5051d8c06f69e1842a9295ce256a36
1a542a53ba0b1cd0fb23257ebed8166555f16dfb
a7c0dbbb4d0d9138f5ca318cc2aa44e12dadf7ed6263ec204ba756da64b29c41
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7556
x-amzn-requestid: 1cda5313-2256-4830-bf84-2e6e15949d3e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR78KFTmoAMF4yg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9e7-452e36d718a298d12a2374a9;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OWVkuAw6-nRNU_CVOgvsSSenSXnfSYSmJiKa60JvSaiJgPuXjJByZw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:46:41 GMT
age: 83404
etag: "1a542a53ba0b1cd0fb23257ebed8166555f16dfb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.facebook.com/plugins/likebox.php?colorscheme=light&stream=false&show_border=false&header=false&show_faces=true&width=263&height=290&href=https%3A%2F%2Fwww.facebook.com%2Falemarwatanmiah%2F
200 OK 0 B URL HTTP/2 www.facebook.com/plugins/likebox.php?colorscheme=light&stream=false&show_border=false&header=false&show_faces=true&width=263&height=290&href=https%3A%2F%2Fwww.facebook.com%2Falemarwatanmiah%2F
IP
GET /plugins/likebox.php?colorscheme=light&stream=false&show_border=false&header=false&show_faces=true&width=263&height=290&href=https%3A%2F%2Fwww.facebook.com%2Falemarwatanmiah%2F HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: WybCMZM++uiMeIb+Rh3nBI/jRJ1XhPsiAFGB+aarknFuCuS48PSIXmzvDAnfrTQx4s1pACOo40NnWvurCB0rLA==
date: Mon, 28 Nov 2022 20:56:41 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Source+Sans+Pro%3A400%2C700%7CMontserrat%3A400%2C700&subset=latin
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Source+Sans+Pro%3A400%2C700%7CMontserrat%3A400%2C700&subset=latin
IP
GET /css?family=Source+Sans+Pro%3A400%2C700%7CMontserrat%3A400%2C700&subset=latin HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 28 Nov 2022 20:56:39 GMT
date: Mon, 28 Nov 2022 20:56:39 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
103.229.73.193
34.120.237.76
31.13.72.12
23.36.77.32
93.184.220.29