Overview

URL www.rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
IP5.101.153.136
ASNBeget LLC
Location Russia
Report completed2022-09-07 15:05:27 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-07 2 www.rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7 (...) Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06 (...) Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/wp-recall/assets/rcl-awesome/rcl-awesome.min.cs (...) Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/wp-recall/assets/css/animate-css/animate.min.cs (...) Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/wp-recall/assets/css/users.css?ver=16.26.5 Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/wp-recall/assets/css/regform.css?ver=16.26.5 Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/wp-recall/assets/css/core.css?ver=16.26.5 Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/wp-recall/add-on/theme-sunshine/style.css?ver=1 (...) Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/wp-recall/add-on/rcl-chat/style.css?ver=16.26.5 Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/tablepress/css/default.min.css?ver=1.14 Phishing
2022-09-07 2 rec39.ru/wp-content/themes/woodmart/css/bootstrap.min.css?ver=6.5.4 Phishing
2022-09-07 2 rec39.ru/wp-content/themes/woodmart/css/parts/base.min.css?ver=6.5.4 Phishing
2022-09-07 2 rec39.ru/wp-content/themes/woodmart/css/parts/widget-recent-post-comments.m (...) Phishing
2022-09-07 2 rec39.ru/wp-content/themes/woodmart/css/parts/wp-gutenberg.min.css?ver=6.5.4 Phishing
2022-09-07 2 rec39.ru/wp-content/themes/woodmart/css/parts/base-deprecated.min.css?ver=6.5.4 Phishing
2022-09-07 2 rec39.ru/wp-content/themes/woodmart/css/parts/int-wpb-base.min.css?ver=6.5.4 Phishing
2022-09-07 2 rec39.ru/wp-content/themes/woodmart/css/parts/woo-opt-sticky-notices.min.cs (...) Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/content-views-query-and-display-post-page/publi (...) Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.9.0 Phishing
2022-09-07 2 rec39.ru/wp-content/themes/woodmart/css/parts/mod-tools.min.css?ver=6.5.4 Phishing
2022-09-07 2 rec39.ru/wp-content/themes/woodmart/css/parts/el-list.min.css?ver=6.5.4 Phishing
2022-09-07 2 rec39.ru/wp-content/themes/woodmart/css/parts/header-el-search.min.css?ver=6.5.4 Phishing
2022-09-07 2 rec39.ru/wp-content/themes/woodmart/css/parts/lib-magnific-popup.min.css?ve (...) Phishing
2022-09-07 2 rec39.ru/wp-content/themes/woodmart/css/parts/page-title.min.css?ver=6.5.4 Phishing
2022-09-07 2 rec39.ru/wp-content/themes/woodmart/css/parts/opt-scrolltotop.min.css?ver=6.5.4 Phishing
2022-09-07 2 rec39.ru/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/wp-recall/assets/js/core.js?ver=16.26.5 Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/wp-recall/assets/js/scripts.js?ver=16.26.5 Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/wp-recall/add-on/rcl-chat/js/scripts.js?ver=16.26.5 Phishing
2022-09-07 2 rec39.ru/wp-content/wp-recall/add-on/types-profile/js/scripts.js?ver=16.26.5 Phishing
2022-09-07 2 rec39.ru/wp-content/themes/woodmart/js/libs/device.min.js?ver=6.5.4 Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v (...) Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/a (...) Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/super-forms/assets/css/fonts/css/all.min.css?ve (...) Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.15 Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/super-forms/assets/css/frontend/elements.css?ve (...) Phishing
2022-09-07 2 rec39.ru/wp-content/themes/woodmart/js/libs/cookie.min.js?ver=6.5.4 Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.mi (...) Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/pt-content-views-pro/public/assets/js/cvpro.min (...) Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.15 Phishing
2022-09-07 2 rec39.ru/wp-content/themes/woodmart/js/scripts/global/scrollBar.min.js?ver=6.5.4 Phishing
2022-09-07 2 rec39.ru/wp-content/themes/woodmart/js/scripts/wc/woocommerceNotices.min.js (...) Phishing
2022-09-07 2 rec39.ru/wp-content/themes/woodmart/js/scripts/menu/menuOffsets.min.js?ver=6.5.4 Phishing
2022-09-07 2 rec39.ru/wp-content/themes/woodmart/js/scripts/elements/contentPopup.min.js (...) Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/super-forms/assets/js/frontend/elements.js?ver= (...) Phishing
2022-09-07 2 rec39.ru/wp-content/themes/woodmart/js/scripts/global/scrollTop.min.js?ver=6.5.4 Phishing
2022-09-07 2 rec39.ru/wp-content/themes/woodmart/js/scripts/menu/mobileNavigation.min.js (...) Phishing
2022-09-07 2 rec39.ru/wp-content/plugins/super-forms/assets/css/fonts/webfonts/fa-solid- (...) Phishing
2022-09-07 2 rec39.ru/wp-content/themes/woodmart/fonts/woodmart-font.woff2?v=6.5.4 Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (12)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-07 12:26:36 UTC 93.184.220.29
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-07 05:08:41 UTC 34.213.92.18
mnemonic passive DNS fonts.googleapis.com (1) 8877 2014-07-21 13:19:55 UTC 2022-09-07 12:27:44 UTC 142.250.74.10
mnemonic passive DNS www.rec39.ru (1) 0 2017-01-28 06:41:12 UTC 2022-09-07 05:56:59 UTC 5.101.153.136 Unknown ranking
mnemonic passive DNS rec39.ru (75) 0 2017-09-01 11:53:39 UTC 2022-09-07 05:57:10 UTC 5.101.153.136 Unknown ranking
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-07 05:03:48 UTC 143.204.55.110
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-07 04:49:50 UTC 34.117.237.239
mnemonic passive DNS ocsp.pki.goog (5) 175 2017-06-14 07:23:31 UTC 2022-09-07 04:49:42 UTC 142.250.74.3
mnemonic passive DNS fonts.gstatic.com (5) 0 2014-08-29 13:43:22 UTC 2022-09-07 04:49:31 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-07 12:21:16 UTC 34.120.237.76
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-07 05:49:58 UTC 143.204.55.27
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-07 04:50:01 UTC 23.36.77.32


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 5.101.153.136

Date UQ / IDS / BL URL IP
2022-11-26 16:50:58 +0000
0 - 0 - 49 www.rec39.ru/wp-content/plugins/super-forms/u (...) 5.101.153.136
2022-11-22 16:35:23 +0000
0 - 0 - 50 www.rec39.ru/wp-content/plugins/super-forms/u (...) 5.101.153.136
2022-11-17 17:49:54 +0000
0 - 0 - 49 www.rec39.ru/wp-content/plugins/super-forms/u (...) 5.101.153.136
2022-10-23 17:24:51 +0000
0 - 0 - 49 www.rec39.ru/wp-content/plugins/super-forms/u (...) 5.101.153.136
2022-09-18 15:53:25 +0000
0 - 0 - 1 apsara.ru/userfiles/file/96021867912.pdf 5.101.153.136

Last 5 reports on ASN: Beget LLC

Date UQ / IDS / BL URL IP
2022-11-30 03:46:14 +0000
0 - 0 - 31 expresselectro.ru/uslugi-inzheneriya/slabotoc (...) 5.101.153.188
2022-11-30 02:48:45 +0000
0 - 0 - 30 expresselectro.ru/uslugi-inzheneriya/elektric (...) 5.101.153.188
2022-11-30 02:20:14 +0000
0 - 0 - 1 black-base.ru/1ca9a6e53cecbcd0a154811be8e5a39 (...) 87.236.16.213
2022-11-30 01:30:23 +0000
0 - 0 - 1 a918639t.beget.tech/ 185.50.25.50
2022-11-30 01:30:19 +0000
0 - 0 - 1 a918639t.beget.tech/ 185.50.25.50

Last 5 reports on domain: rec39.ru

Date UQ / IDS / BL URL IP
2022-11-26 16:50:58 +0000
0 - 0 - 49 www.rec39.ru/wp-content/plugins/super-forms/u (...) 5.101.153.136
2022-11-22 16:35:23 +0000
0 - 0 - 50 www.rec39.ru/wp-content/plugins/super-forms/u (...) 5.101.153.136
2022-11-17 17:49:54 +0000
0 - 0 - 49 www.rec39.ru/wp-content/plugins/super-forms/u (...) 5.101.153.136
2022-10-23 17:24:51 +0000
0 - 0 - 49 www.rec39.ru/wp-content/plugins/super-forms/u (...) 5.101.153.136
2022-09-07 15:05:27 +0000
0 - 0 - 49 www.rec39.ru/wp-content/plugins/super-forms/u (...) 5.101.153.136

No other reports with similar screenshot



JavaScript

Executed Scripts (38)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (105)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 07 Sep 2022 14:39:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DTyijpffXLkoKyiRngRCFyr1EXLKnCtM7AqWCvoOW-K1juj4Es75vw==
Age: 1530


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12340
Expires: Wed, 07 Sep 2022 18:30:56 GMT
Date: Wed, 07 Sep 2022 15:05:16 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.110
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ca7or2736wx6nyP7Q7lQJ5xY05AXCU16k1JnOXDnZgsBkFGBMGCbsg==
age: 40722
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf HTTP/1.1 
Host: www.rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         5.101.153.136
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:16 GMT
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=30
X-Powered-By: PHP/7.3.31
Set-Cookie: _sfs_id=2ce15bca96d90381ba9c617a2e294edf0ff5c12ea05bcae8f7e7355c42b76ab61662563116; expires=Wed, 07-Sep-2022 16:05:16 GMT; Max-Age=3600; path=/; HttpOnly
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 07 Sep 2022 15:05:16 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 07 Sep 2022 14:38:18 GMT
Expires: Wed, 07 Sep 2022 15:02:52 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ErQbetcHLeaJxSdkrqOuR38jtUdKjVXOt95rslRzkf5sz7vEX1jusA==
Age: 1619


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         5.101.153.136
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
X-Powered-By: PHP/7.3.31
Set-Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117; expires=Wed, 07-Sep-2022 16:05:17 GMT; Max-Age=3600; path=/; HttpOnly
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://rec39.ru/wp-json/>; rel="https://api.w.org/"


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6044), with CRLF, LF line terminators
Size:   131493
Md5:    60b7ed68c416602693a8651ade6554e0
Sha1:   750a5bacce7a85653d10a29d56a334b0d0b6dabd
Sha256: 0268650ab6b91d458024c312f7d95c09c29ed637ea940970e2926d4b7abf05ea

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/woodmart/css/parts/int-wpb-base-deprecated.min.css?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d0f-342"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (833)
Size:   363
Md5:    d4f39220b8693432fe4bf3ee79fd2ab9
Sha1:   e481f523516c585d4ef1a0204be01d8fde52a4db
Sha256: ef17e038be6ef9a4ecdc1ecb615ef39fcc9d2a45c487d69308aeff012fb90905
                                        
                                            GET /wp-content/plugins/wp-recall/assets/rcl-awesome/rcl-awesome.min.css?ver=16.26.5 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:54:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74e68-8668"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (34408), with no line terminators
Size:   6994
Md5:    e865107d12b20969d461a3638a0e3ace
Sha1:   5b9e1a31c61954817233aebf72e0f0ce5f9b66bd
Sha256: fa8f14bb7bedb7403706f8fa714db317e4a43c57310d5c77a322ceb35c5fb951

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/wp-recall/assets/css/animate-css/animate.min.css?ver=16.26.5 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:54:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74e68-4242"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (16755), with CRLF line terminators
Size:   2626
Md5:    9484a16ba12551f6a3ea9952f5be8a12
Sha1:   8bf8d3eaa85602d6bfc4f73151803ab1c89d1bd5
Sha256: f4d041677373077f6254407b6258ee17290c5042269eae3c1d8ac9f5c267cafe

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/wp-recall/assets/css/users.css?ver=16.26.5 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:54:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74e68-1ee8"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   1945
Md5:    c97d528edf3421acbb3b0fce5545c865
Sha1:   85284b37c748e17d5db0d77932119102f97ba431
Sha256: 809c0160e0bf910176700a709e74576e4efe7f0313ce84c261d7cf218e9ff22f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/wp-recall/assets/css/regform.css?ver=16.26.5 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:54:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74e68-1cf2"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   1794
Md5:    10ac5826b672234fdcd12c153dfb7681
Sha1:   03113a472d1f7ba71f28fe15a85ff26fbb20e8ee
Sha256: 8bded06a6eec4bc5492180aab9bdc349a12da32dc873ce02e076dd01e216ee99

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/wp-recall/assets/css/core.css?ver=16.26.5 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:54:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74e68-ce5c"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (330), with CRLF line terminators
Size:   9663
Md5:    50b0306a15115cf70b5d61645d767d42
Sha1:   dab7d58c6ce8a90f600900bc53c666c4ca216bba
Sha256: 14479a5de9b8e95169e30a70538f41aa740c0153af0104cb31086a68910b675f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/wp-recall/add-on/theme-sunshine/style.css?ver=16.26.5 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:54:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74e68-262e"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   2290
Md5:    071d89858444875261d29788af729874
Sha1:   4c6bc3566ab075e00cdb082055d5b51ba19c354a
Sha256: feb335232cf85ba17abd4303f1bb01afa578e61ce6f3723239941766f13b6f40

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/wp-recall/add-on/rcl-chat/style.css?ver=16.26.5 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:54:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74e68-342c"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   2408
Md5:    cee3cb178bf2a07a579626528031fa3f
Sha1:   2481a8b0cf3b3a5ed63dcd9ddea5655f2cfabc84
Sha256: d8200f4662f27dcb28d7873548e3f0e59bc539e4a9c8d1743a2c7926ed63cd22

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/wp-recall/add-on/rcl-meter/style.css?ver=16.26.5 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Fri, 13 Aug 2021 13:24:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"61167276-231"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   243
Md5:    b5fdd2a7bd4b7e5ca412e56df4e3e6f6
Sha1:   a1aa450315c10229f6edc4577d8cee8b54ae12dc
Sha256: 885118916aa3d1a7e3c129b7355d8433b459f6387890a0c82f6d73721852f5ad
                                        
                                            GET /wp-content/plugins/tablepress/css/default.min.css?ver=1.14 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Sat, 14 Aug 2021 11:00:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"6117a24c-13e4"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (5092), with no line terminators
Size:   2244
Md5:    fadb046ad02dc98892f8a102040a18ee
Sha1:   6fc3072fcbd94c7722145447bd3dc00f2458f8a6
Sha256: 926ee0e9d5a4ec3f859d7d49cf490a6a8f1694fef7df4bcc8de128123cf3eb9b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/woodmart/css/bootstrap.min.css?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d0d-4ee6"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (19981)
Size:   3008
Md5:    37249fb8056f2b9e89a081a7d14e9183
Sha1:   cc60c8dd4b3dd6401b7da5ef3b7089c985120464
Sha256: 7f657e60ef04658517937b1f32bdab9e2d52d344059a984dd231b37efefc0dd9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/woodmart/css/parts/base.min.css?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d0d-ba3d"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (47676)
Size:   10112
Md5:    5d584f5641b2b3b7ff1184130fe1e823
Sha1:   025c63373f88ed865a51feaefd12103b1569563f
Sha256: 100de050177a2fd6ba95b98d5212be9e478d74bf187cd7d9abcc101511b1c41a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/woodmart/css/parts/widget-recent-post-comments.min.css?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d0f-364"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (867)
Size:   320
Md5:    afa24615e7ca028d1ad59136be587b84
Sha1:   3d2d33c09db9d51fd6ab119c7a56815a63638db3
Sha256: 0b5b40ffa3915e72243f9a3c245995b9c42d01eb71e9333d03be54a7a13fc96f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/woodmart/css/parts/page-404.min.css?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d0f-2ad"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (684)
Size:   350
Md5:    557ec2624fb294a93aed9c4271f4117c
Sha1:   c7cfa3b4d71d205185580ce25e5d8c5249c10911
Sha256: 44476c6cc0949ebd910b9686de78783eeeb5b9c9715ec248ab6bd2f2fd2aa418
                                        
                                            GET /wp-content/themes/woodmart/css/parts/wp-gutenberg.min.css?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d10-238c"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (9099)
Size:   2070
Md5:    3da90474edf26556944dd41d1f1e5431
Sha1:   104c924e7857f619aa7d2f07e1eb3151bd1d981f
Sha256: f2531a5d0cf6700bd2a242e7934ef880a14f4e81d6be4d53d0e9ec7a2de4ca7c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/woodmart/css/parts/int-rev-slider.min.css?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d0f-11d"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   190
Md5:    017e12c7003e08aa14fb09e800d6f316
Sha1:   ecdab606f0fc3fb0b878536bc83e5d3ab4de80cf
Sha256: ce38d29c0ff8ef74f6ad4ad5a30126996d77383d667184d72281acec9157d1ba
                                        
                                            GET /wp-content/themes/woodmart/css/parts/base-deprecated.min.css?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d0d-4bd"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (1212)
Size:   454
Md5:    7be1c48ec4ce07816195d1c04e076328
Sha1:   d9a1e1b5fafb1e12ad39765a037e1019586cf93a
Sha256: e8233e5ffdf9b2c298c5570925590a03d3e2a8a9c6feebef1ef08d5940dc779f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/woodmart/css/parts/int-wpb-base.min.css?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d0f-39e9"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (14824)
Size:   2703
Md5:    feafa05a6ad897cc3b5ab49b119864cb
Sha1:   99e1c9a5c61d56cd13bcc679aa9f8566bcd2a846
Sha256: ccf7daaf602b24145e49fe36e7b15785f2d06625f1b8ec70215cf49285157883

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/woodmart/css/parts/woo-opt-sticky-notices.min.css?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d10-c7c"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (3195)
Size:   790
Md5:    d8901aeaa3cdc1a044b15ef45b51496a
Sha1:   5990cd67d86b05ae6d9ed48d689ce63e5bea5e8f
Sha256: 805d3fb784953917db21205306438498b9fa717fe90596a272806779c121a46d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/content-views-query-and-display-post-page/public/assets/css/cv.css?ver=2.4.0.7 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:53:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74e53-130fd"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (65371)
Size:   11775
Md5:    8aa6d8325b5ce94322bb3fd921f056ed
Sha1:   180cdfa6c966171ce9b34cbdb1d624498da56c47
Sha256: 5a9f23f67e30f17ef3b392bbe6cec645e3bbebf2014e0e09f297798771510f05

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.9.0 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:50:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d95-76891"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (65358)
Size:   45744
Md5:    52000e7e83255c0af07f7c6d60550e82
Sha1:   988ec420d08f9846f95b2656c019a957edc7837f
Sha256: 202d2d7facdf835dbfab68db43575ead0daa8bd83f5aede410610ba72797ad9d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2565
Cache-Control: 'max-age=158059'
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Wed, 07 Sep 2022 14:22:32 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /wp-content/themes/woodmart/css/parts/header-base.min.css?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d0d-26e0"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (9951)
Size:   2479
Md5:    4585434c3d2e440e9ac1b7017ed3c0c7
Sha1:   c2f271bb4ea9a720ef47ab19613d555d6fd277a8
Sha256: 965351dd3ec4bacc9e4b58b24bfc9dc97862f7e85df166a23768ff0cd21d8cd1
                                        
                                            GET /wp-content/themes/woodmart/css/parts/mod-tools.min.css?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d0f-e5f"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (3678)
Size:   842
Md5:    9cf576b30cfc071bfc5709d366dde07d
Sha1:   7c6b6f375a98b1e73d91fce665559f8d3e5417f9
Sha256: 145fe5d948315df02d52c08769d6af622ffc10b03ea2c93ecfb5f42319348af1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/woodmart/css/parts/header-el-base.min.css?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d0e-993"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (2450)
Size:   813
Md5:    82752f632708c893991daae012303fed
Sha1:   59e26ae20b3f1fd3933f0cd033338f495888dd73
Sha256: 8ea466e544b9b2bdf682164468fb68df2a67b3729f6c3f5a05bf757dc362698f
                                        
                                            GET /wp-content/plugins/pt-content-views-pro/public/assets/css/cvpro.min.css?ver=5.7.1 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Fri, 13 Aug 2021 13:24:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"61167276-11a48"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (42477)
Size:   20436
Md5:    c62c050d3ae6b57c6a5579a8e948048b
Sha1:   471f7b6e2af693f8db999798370d67cbba888881
Sha256: 6baa518f7c4588999bbc7b5f8d4400e1e3055e24afdd8cc05b437155456c7d59
                                        
                                            GET /wp-content/themes/woodmart/css/parts/el-list.min.css?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d0d-40e"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (1037)
Size:   450
Md5:    612d97899d9ff457fb6d11b2dbf144b5
Sha1:   130777b4e2bea02cda9bd6c392c7767405c288e6
Sha256: 66584d65cdf2600ef23decb0a05b58ea9bff675340ea627e8d78064c3bdca264

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/woodmart/css/parts/header-el-search.min.css?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d0f-374"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (883)
Size:   349
Md5:    b279aa85d965830a62b8301d0c825e6d
Sha1:   f1091bce365878e2974ae55bc5bce25e1ad21302
Sha256: a47756b0bea5ff623ce24ca15032a87737aecb3240bd496a2907476c9690889b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/woodmart/css/parts/wd-search-form.min.css?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d0f-4f1"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (1264)
Size:   516
Md5:    16c89a1b9b117dc4e6145d01b11a6835
Sha1:   a04737eccc7e0b8c72d629b34f1667f2fae01308
Sha256: 31fa67b763839b39db7bfce9701f5684b1d7676f59e878dc94e3a699bdb159d2
                                        
                                            GET /wp-content/themes/woodmart/css/parts/lib-magnific-popup.min.css?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d0f-ada"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (2777)
Size:   933
Md5:    176717d401bdcb536e82cce66f1520a6
Sha1:   cd95d013fc19bee225266649b43f5c80d58644ee
Sha256: 00902b70b2e48162854e680b781d0cc7a816054c95ec833953db770ed2ef69ef

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/woodmart/css/parts/el-info-box.min.css?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d0d-15d7"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (5590)
Size:   1374
Md5:    00be5d8e04c79e92e6c8fb8bde87aa8a
Sha1:   31eb412e71c5d0d283ff68889d6d90ce105d81e2
Sha256: 127d2ae6312baf7eb076054d1c8414e6e496aea843b067b0d6846e7dbeb0af3d
                                        
                                            GET /wp-content/themes/woodmart/css/parts/page-title.min.css?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d0f-235"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (564)
Size:   263
Md5:    bc72f475ef050efd38ba9e805efce46e
Sha1:   882282ba646fd8de832ebe7c4a9da224dfa47fbf
Sha256: 3338ea75efd6f61c160ac7c923695d7f288304b44cdbd3bf31092fb385600766

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/woodmart/css/parts/footer-base.min.css?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d0d-472"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (1137)
Size:   445
Md5:    68649c8e64deb38f29c07a9a04a3af19
Sha1:   7bad5f9f70e73dd5a24b3915a7eaf488f802f933
Sha256: 0ff737f0d1a7d4acbcd4a9f7a50ba659b765f06ddfb4c9778a9851d9e48e5678
                                        
                                            GET /wp-content/themes/woodmart/css/parts/opt-scrolltotop.min.css?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d0f-306"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (773)
Size:   434
Md5:    0b710f6af5c860da06fcbe46424dc9f3
Sha1:   da587ca05a10813d23be662820c4aaf98e019c8d
Sha256: 9f8b23eb27ad512992f73eb5cde8604f52adb4076dd3c940fd8026b527cefd15

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Sat, 14 Aug 2021 10:59:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"6117a208-15db1"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   30953
Md5:    7a6e4a1e4a67fac0cd39ca1dd1982f47
Sha1:   a8bf880e5db17a703293d5a3c92623a97d5a1df1
Sha256: daf4bcb15594deb268cc05f030ccaf8dfe4acab417758dd16a6f3b2d86d2908f
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Sat, 14 Aug 2021 10:59:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"6117a208-2bd8"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   4169
Md5:    5629711d7fdd5b28441bac39b851299f
Sha1:   4e0bf2b7383097f7c352023a1b1b1b48a50356b6
Sha256: 44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/wp-recall/assets/js/core.js?ver=16.26.5 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:54:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74e68-c285"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   10750
Md5:    a13586477b6512367a26846d91b38241
Sha1:   22515a5c6cc63390d1b451b0564d6f1ee2f01992
Sha256: b04284f21fd28c0830c74cf96c13105c53d2e9b16691c670ddef555cf64ca650

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/wp-recall/assets/js/scripts.js?ver=16.26.5 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:54:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74e68-41f6"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   3539
Md5:    e86d348c1f7b6ac51dd25242c0ec84b9
Sha1:   07a3ad28ade22161908de1cde8def51d2853052e
Sha256: 2f4bf97811488105ba6f7fad4fafa79d73d5e614eb0220bc9dd9f220211ebfda

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/wp-recall/add-on/rcl-chat/js/scripts.js?ver=16.26.5 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:54:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74e68-3b3a"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   3234
Md5:    171f19851ef89505a28e02647a809af7
Sha1:   a45911f72fc992c10f67a15a2a5f3b40acd97829
Sha256: b0817c990af22558fab8f1509f0ccf879842a20bf52bbebda777b73f3f3f6146

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/wp-recall/add-on/types-profile/js/scripts.js?ver=16.26.5 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Fri, 13 Aug 2021 13:24:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"61167276-4a4"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   375
Md5:    a0e63e379a709fa19a8b7856c8aa90ad
Sha1:   b7d3d86af78fb18ba36a98fa415a6b57af66c938
Sha256: 1e088b75082bd0d7fbecd4bc49a697bfed84ee7046906802c9e6f8a336079601

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/woodmart/js/libs/device.min.js?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d12-c4f"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (3151), with no line terminators
Size:   1238
Md5:    2267d8acacaecf7867f8d38b1949d93e
Sha1:   1b94638a5917b6608384be96c1dc78d5060557af
Sha256: 97cba6ce5e73962896583d51887a3b54d6efeebe04f8d402a593e451989e49de

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.9.0 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:50:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d96-865f"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (34217)
Size:   4260
Md5:    d1d42379d4a36c5f8a9bc16a89820fc5
Sha1:   ce05f997d3d48167bf92c5f5b3b47b8fe91a792c
Sha256: 2dbed6fc600b202f49ffcd8b3365b596b82572c4cd3919ed12c35d53b2a7928f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.9.0 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:50:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d96-dc69"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (56243)
Size:   12251
Md5:    f771dbdd9681b64d656183eb350dc09e
Sha1:   efc6709e6cec4368c4988d4c620b0dc48803c21c
Sha256: aafcb9e5e135f0f640629553d25afa9fc37720fa56aa4500806a0371bf3f513d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/super-forms/assets/css/fonts/css/all.min.css?ver=6.3.303 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:39:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74ae2-15c89"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (65312), with CRLF line terminators
Size:   18389
Md5:    804359452a1ef91474c2d089a008ab96
Sha1:   1c72950f5891764b3df11d0081ce8a8340995549
Sha256: 0382ac6e311b26effef2fa8e8bd3b90cc3dd328c10637f2d8ec7f18aaa5e2bfa

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.15 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Thu, 03 Feb 2022 11:13:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"61fbb8d5-e168"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (12602)
Size:   12294
Md5:    962158aabd558aac1a1baf0d7f3f477c
Sha1:   94347e9ff810c42a7c177655dd7f4b3dd0017f38
Sha256: 750e1901fd9ee9fe3a2093a7911d1119c552f151dbfd4db6b2836e9eebb8c273

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/content-views-query-and-display-post-page/public/assets/js/cv.js?ver=2.4.0.7 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:53:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74e53-5b20"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (12198), with CRLF line terminators
Size:   6724
Md5:    10d768f8f12adcdeceddb54303dd283b
Sha1:   8d23a348de31d7338d6b22951a33ffb64c90f537
Sha256: 11d69f24d8cc25e88c432214dee653a3ccecacc23f6702cfa9c5654f3922ae80
                                        
                                            GET /wp-content/plugins/super-forms/assets/css/frontend/elements.css?ver=6.3.303 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:39:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74ae2-37d7d"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (367), with CRLF line terminators
Size:   21831
Md5:    e3bfcafd207fcd38b40d69d60fd87d63
Sha1:   9721212911513976032cd0533d7ab3eae6f2990c
Sha256: e5f364019e471e3ffac845986e0190fec9ec061cf8b9d69341e5b6f475179ea6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Sep 2022 15:05:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/woodmart/js/libs/cookie.min.js?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d12-684"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (1668), with no line terminators
Size:   865
Md5:    07f8234563435e91169452af4ef95f6f
Sha1:   6dbda7ef1cc42022a4b09fd091ddfe4bdaccb3e2
Sha256: 5df04af23b2ffce7e96a5421f58f3b974f7113f16547ba4849f3ff6d3d855eb4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.9.0 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:50:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d95-4f5b"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (20096)
Size:   5723
Md5:    6a46964d8aaeced5805cfb291866d890
Sha1:   4111db3ee9237bc00bfbc3226c5e1c159797f745
Sha256: 3113f8b9c24fbe5a7d312fe8dade72688778ff4d5c2a71cda8e22381938d3493

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/woodmart/js/scripts/global/helpers.min.js?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d13-1422"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (5154), with no line terminators
Size:   1653
Md5:    87a559e00f65e8b2eaba6eae9fe5a683
Sha1:   4d44420a21fe58e4a2f6e36c90355793b8fba763
Sha256: de65ccaf693a96cbbdbac13f99c4c051483a04ac1c5dd999ea7bec7f11978846
                                        
                                            GET /wp-content/plugins/pt-content-views-pro/public/assets/js/cvpro.min.js?ver=5.7.1 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Fri, 13 Aug 2021 13:24:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"61167276-2748c"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (32126), with CRLF line terminators
Size:   45932
Md5:    63bcc734ebbff5d2e86b7a1b1b08c016
Sha1:   bfa28d4546ce5b3f520dd3bcd7555dd469294286
Sha256: 4f73e8b1819cc652dc8600eea8c440eaae2b9b0a8912f9a19f1184b407100c2b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.15 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Thu, 03 Feb 2022 11:13:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"61fbb8d5-1f69c"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (45108)
Size:   48758
Md5:    76cc5ab7ff972e06e1796a9f458fb772
Sha1:   ef6d2420735a5587cee8957589bb2c6848ea8610
Sha256: 9144d244895706574d3e0755ec970ae01e80a7157c5a13dd4465591b0d2b883c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/woodmart/js/scripts/global/scrollBar.min.js?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d13-d7"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   154
Md5:    706e2eb2b3f3065ac1ed5f3e1ae93edb
Sha1:   94ce3a8b8db5167e14dfaf2319379e4f509f7f9a
Sha256: f571fab264a01990e84844c89557463d04746a2e05de7d8801ff0295b9700216

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: y3adu3fqEV4nmvtsHB5DBg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         34.213.92.18
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Z8PPMe/M1iwxmTb3zl80MC8bYzg=

                                        
                                            GET /wp-content/themes/woodmart/js/scripts/wc/woocommerceNotices.min.js?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d13-1e5"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (485), with no line terminators
Size:   286
Md5:    1391fd419273db97dd4c0cfc30f2ec42
Sha1:   4803b49c9e834c1aecd0633fd72157c9cd9d746c
Sha256: ba55588fa2cbb96ff100f4087951954ac36dc472a1a2508c1eb4afec18c0d67f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/woodmart/js/scripts/menu/menuOffsets.min.js?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d13-a10"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (2576), with no line terminators
Size:   895
Md5:    2a59a5c970960ed7ac64e413d3a79a1e
Sha1:   bd2ff72e9039886a5858938752551101d90a6565
Sha256: d34a21265012f42ce9d8f7896e99614b1a220f563be5d56929da6da4406e088c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/woodmart/js/scripts/header/headerBuilder.min.js?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d13-91b"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (2331), with no line terminators
Size:   930
Md5:    c07ac6394547a5ed0c56b3d6071e2d94
Sha1:   7a0b66028034d29b3002acc0e9eaebd5fb4f648c
Sha256: c022cfabebf0677f99dec0882047b085b390ebd0a5f36a04b3b575739045101e
                                        
                                            GET /wp-content/themes/woodmart/js/scripts/menu/menuSetUp.min.js?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d13-54d"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (1357), with no line terminators
Size:   545
Md5:    f64bf403c598eced3b1464cc523d63bc
Sha1:   8e59d3285e7b4a95ac0dd822d470691fba4d30f9
Sha256: 08798c3dc01aadb78662c8fdeb12763d44d8da8bff217db5fe1208c7201d493b
                                        
                                            GET /wp-content/themes/woodmart/js/scripts/elements/contentPopup.min.js?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d13-2d6"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (726), with no line terminators
Size:   367
Md5:    69072a9579bd572db2a2e1e70b159e38
Sha1:   c45437dabaa3e182a3d0da669707d42e8e5950d8
Sha256: a2e852c20a3fb64f3562c8e3ff350c83a05a98465833057bfa5e65741344d8c7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/woodmart/js/libs/magnific-popup.min.js?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d13-509c"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (20636), with no line terminators
Size:   7484
Md5:    9aa529ee4e656d1ac9e64e0a02bfcb52
Sha1:   f1ff04af4984fda176a0afdd0e5c6104d22cf512
Sha256: bd606ea8d6d691e495a4df98ba6016904fb1a919bbf43ceef88f0698f35dd45e
                                        
                                            GET /wp-content/plugins/super-forms/assets/js/frontend/elements.js?ver=6.3.303 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:39:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74ae2-29566"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   28123
Md5:    0e93c87f09d13d1a4219d32a8d2026dc
Sha1:   4952fd505fd599a1d3d23be05be983c2d4be7425
Sha256: b2bc7a1af42e899e2ca811e131ce3cb67b45ea210df7d3b623153c273a1a5d5c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Sep 2022 15:05:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/super-forms/assets/js/frontend/common.js?ver=6.3.303 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:39:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74ae2-58f"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   554
Md5:    5c593abb9eaef07b4f692aab953d4434
Sha1:   776579be348bffa6420d49dde25edddeadce4f4c
Sha256: c60a0f696d7f27ac630a26ad3d182fee6f4126eb223a71268c2eedb4199dfe14
                                        
                                            GET /wp-content/themes/woodmart/js/scripts/global/scrollTop.min.js?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d13-16a"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (362), with no line terminators
Size:   225
Md5:    e15343da35239fcd1f62cc3c40515eef
Sha1:   d30820c10f45ad0010ab1901cb5e39e0a5ca1433
Sha256: 02752e1054c42247e562320beba57f584deb5a7b88bef3a34a73169e8e4aa189

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/woodmart/js/scripts/menu/mobileNavigation.min.js?ver=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:48:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74d13-823"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (2083), with no line terminators
Size:   622
Md5:    c93b07255b1dd5668804a10bb897108f
Sha1:   72f9f0826003d6565bd326944ef263e02b7e86fc
Sha256: da762e24ab36db97891031f37de00346d0917def1688b9cf905e6d755c030772

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2020/05/rjek-logo1.jpg HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Content-Length: 47010
Last-Modified: Fri, 13 Aug 2021 13:24:07 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "61167277-b7a2"
Expires: Fri, 07 Oct 2022 15:05:17 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=15, height=2557, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2045], baseline, precision 8, 350x128, components 3\012- data
Size:   47010
Md5:    582b910477d5a94e7894b12ca0c7f798
Sha1:   ed2c1be4e5c82215971621116d824f733e72e835
Sha256: f47c2beacfbf3206e19303157693ce4083dd98cb45c032bee120bc006c0c0f1c
                                        
                                            GET /wp-content/uploads/2020/03/logo-1.png HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Content-Length: 26427
Last-Modified: Fri, 13 Aug 2021 13:24:07 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "61167277-673b"
Expires: Fri, 07 Oct 2022 15:05:17 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 91 x 113, 8-bit/color RGBA, non-interlaced\012- data
Size:   26427
Md5:    ff17c742867a6408d5f651879dfc2615
Sha1:   b76233e9129154a3cf710d8dcce5c7628b5f2641
Sha256: 6e54ebc68da5549befe9c7debeb0758d865a89bf257b6f931816aa66784636c0
                                        
                                            GET /wp-content/plugins/super-forms/assets/js/common.js?ver=6.3.303 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Mon, 01 Aug 2022 03:39:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"62e74ae2-6dba6"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (6498), with CRLF line terminators
Size:   78220
Md5:    2c083603b666642dc0522e0f4f95ca6b
Sha1:   71d5ebf0de24490543546696a14b3c5d6898f1b7
Sha256: 30f6089acea43725e75ee8b88869925d0bec86a257928ee8570b61f54e7759b7
                                        
                                            GET /wp-content/uploads/2020/03/icon22-50x52.png HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Content-Length: 2509
Last-Modified: Fri, 13 Aug 2021 13:24:07 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "61167277-9cd"
Expires: Fri, 07 Oct 2022 15:05:17 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 50 x 52, 8-bit colormap, non-interlaced\012- data
Size:   2509
Md5:    da9f48b38b6f640c1e9e9cfb53341d21
Sha1:   b60416a414394292ef73a7eb0581e2d561561781
Sha256: d4aac32d52d0c466480dd57d30aee3d0817bac6ee39cc2491b6b5e2ae8313a76
                                        
                                            GET /wp-content/uploads/2020/03/icon21-50x58.png HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Content-Length: 2364
Last-Modified: Fri, 13 Aug 2021 13:24:07 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "61167277-93c"
Expires: Fri, 07 Oct 2022 15:05:17 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 50 x 58, 8-bit colormap, non-interlaced\012- data
Size:   2364
Md5:    a499f4f0cfbd7bb0178ecec44356717d
Sha1:   d08feb0bafc9c00640666c8042a7a01ea02e5e77
Sha256: 5e15d2035ac574354bfe27440472e417cba1eb067cd0a394ad80d31addc3f5b7
                                        
                                            GET /wp-content/uploads/2020/03/icon24-50x52.png HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Content-Length: 1996
Last-Modified: Fri, 13 Aug 2021 13:24:07 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "61167277-7cc"
Expires: Fri, 07 Oct 2022 15:05:17 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 50 x 52, 8-bit colormap, non-interlaced\012- data
Size:   1996
Md5:    09cdb0e033207ce63027cdfbaba79482
Sha1:   fe21bde299fb6cb9265274950c1b78d670c9cd70
Sha256: e1cdd0abaac360b84fda01b26c96cee40c7041944d93e3589441df708a3d48e9
                                        
                                            GET /wp-content/plugins/super-forms/assets/css/fonts/webfonts/fa-solid-900.woff2 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/assets/css/fonts/css/all.min.css?ver=6.3.303
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/font-woff2
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:18 GMT
Content-Length: 126828
Last-Modified: Mon, 01 Aug 2022 03:39:14 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "62e74ae2-1ef6c"
Expires: Fri, 07 Oct 2022 15:05:18 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 126828, version 768.256\012- data
Size:   126828
Md5:    297973a488f688271dd223d542ba2697
Sha1:   ed99d812e4c88826335f93acede3fad85c90fb54
Sha256: 1b099f88c06ed0869872561c157f0ec9cbe133a0939d9ece4ee1e1f54bd4683d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Sep 2022 15:05:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/woodmart/fonts/woodmart-font.woff2?v=6.5.4 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/font-woff2
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:18 GMT
Content-Length: 11396
Last-Modified: Mon, 01 Aug 2022 03:48:32 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "62e74d10-2c84"
Expires: Fri, 07 Oct 2022 15:05:18 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11396, version 1.0\012- data
Size:   11396
Md5:    37505bf12902a69617491988202195e8
Sha1:   de14a255eec4a0f8a7bcb5f147f034717fd5100c
Sha256: f98a41cc9cdb7fd6f0881d22c6c94affe2c56ebb88b6da8cbda057e6dc87160a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rec39.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26240
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 19:01:39 GMT
expires: Tue, 05 Sep 2023 19:01:39 GMT
cache-control: public, max-age=31536000
age: 158619
last-modified: Mon, 15 Aug 2022 18:14:37 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 26240, version 1.0\012- data
Size:   26240
Md5:    4a90976686fcbd8296c7d7fccc04c273
Sha1:   bcb82e93ac7ad1fa2af6a37009a200f79f4cb4e5
Sha256: 59bd288e64c57e034672999e33ebda6eb5ad1575945eb563dbfb5b44f226e1e1
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Sep 2022 15:05:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rec39.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47048
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:27:54 GMT
expires: Thu, 31 Aug 2023 19:27:54 GMT
cache-control: public, max-age=31536000
age: 589044
last-modified: Wed, 27 Apr 2022 16:55:54 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 47048, version 1.0\012- data
Size:   47048
Md5:    87a1556b696ae2cb1a726bd8c4584a2f
Sha1:   1be0f6f39e0cf316f9827f945eeeaef8294cc37b
Sha256: 141f0c53e457585d4ac7426eb3d757666d250ee6fbf0e9c0878128e4c627f0b1
                                        
                                            GET /s/ptsans/v17/jizfRExUiTo99u79B_mh0OqtLQ0Z.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rec39.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:39:25 GMT
expires: Thu, 31 Aug 2023 19:39:25 GMT
cache-control: public, max-age=31536000
age: 588353
last-modified: Wed, 27 Apr 2022 16:55:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 29928, version 1.0\012- data
Size:   29928
Md5:    609bea65e2bf8ee9b728a85a8f1b282c
Sha1:   a0d2fbcf012e6554fb8cb182994ec8eb744ab65d
Sha256: 1a045fdc088409e4e87d57617de7a9b613bf251c12997180910faeed8fa7aba1
                                        
                                            GET /s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rec39.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 45300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:27:53 GMT
expires: Thu, 31 Aug 2023 19:27:53 GMT
cache-control: public, max-age=31536000
age: 589045
last-modified: Wed, 27 Apr 2022 16:11:08 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 45300, version 1.0\012- data
Size:   45300
Md5:    5fe660c3a23b871807b0e1d3ee973d23
Sha1:   62a9dd423b30b6ee3ab3dd40d573545d579af10a
Sha256: e13ffa988be59cbf299d7ff68f019f902b60848203ac4990819eb7e4624ee52d
                                        
                                            GET /wp-content/plugins/wp-recall/assets/rcl-awesome/fonts/rcl-awesome.woff2?7jdlrg HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/wp-recall/assets/rcl-awesome/rcl-awesome.min.css?ver=16.26.5
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/font-woff2
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:18 GMT
Content-Length: 81956
Last-Modified: Mon, 01 Aug 2022 03:54:16 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "62e74e68-14024"
Expires: Fri, 07 Oct 2022 15:05:18 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 81956, version 1.0\012- data
Size:   81956
Md5:    13e75de776e38401894a7cf7e3023e6e
Sha1:   8783423a4e01c58625e02747d7b1f08f576cf378
Sha256: bc5c1ffb80e8c6b709daf7cd8f06a977335f3a35f90332e9bd9a5e605717ccfe
                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rec39.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 08:31:01 GMT
expires: Wed, 06 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
age: 110057
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size:   44856
Md5:    565ce506190ad3af920b40baf1794cec
Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d
Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Sep 2022 15:05:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/uploads/2020/03/icon231.png HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:18 GMT
Content-Length: 3703
Last-Modified: Fri, 13 Aug 2021 13:24:07 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "61167277-e77"
Expires: Fri, 07 Oct 2022 15:05:18 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 54 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size:   3703
Md5:    8bea507841c6d9073757b7ebd200e1c7
Sha1:   31d13e2fea7452b028e941bd075b69b39f91d20e
Sha256: 8009a0f04c3dca8e8f0a510286122c8add0400ef8151b4fe8a518910e18a881d
                                        
                                            GET /wp-content/uploads/2021/08/re.png HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:18 GMT
Content-Length: 9740
Last-Modified: Sun, 15 Aug 2021 08:05:39 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "6118cad3-260c"
Expires: Fri, 07 Oct 2022 15:05:18 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size:   9740
Md5:    515ca37ae87342ad9da9b474fa737854
Sha1:   6962330afa1e914a074e2ec3583e6c2f02bb4a79
Sha256: fc4c09022e18286a3575a8ab00cba38417a1af883304ac1bffe99c8654345db2
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13142
Expires: Wed, 07 Sep 2022 18:44:20 GMT
Date: Wed, 07 Sep 2022 15:05:18 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13142
Expires: Wed, 07 Sep 2022 18:44:20 GMT
Date: Wed, 07 Sep 2022 15:05:18 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13142
Expires: Wed, 07 Sep 2022 18:44:20 GMT
Date: Wed, 07 Sep 2022 15:05:18 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13142
Expires: Wed, 07 Sep 2022 18:44:20 GMT
Date: Wed, 07 Sep 2022 15:05:18 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13142
Expires: Wed, 07 Sep 2022 18:44:20 GMT
Date: Wed, 07 Sep 2022 15:05:18 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b220c7c-ed68-4f56-82a7-5748d044635a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8462
x-amzn-requestid: d75d69c1-87be-47e2-8684-3c9a25edee2f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDqYpFL-IAMFukQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317bdd0-1c6d025672cc490734bb54e4;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:38:24 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yzw88Z7aubNEll7UXkvaIWbftL95Y0UDTMnOEh_uhKqWgNycBA9Adw==
via: 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:41:22 GMT
age: 62636
etag: "cde85fbe83c9e29618edf4e05002bd623e3ab965"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8462
Md5:    70c964498818242b742575cfa1769b67
Sha1:   cde85fbe83c9e29618edf4e05002bd623e3ab965
Sha256: bdb0e76fe216f742789ba5a77645c640fe0c7f207707181e618fa31d4cf58605
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba86944-df9f-4d50-9b10-d50644b978e3.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4805
x-amzn-requestid: 6db42fa4-5a04-4368-b5cb-ea8f70d83ead
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XmxSRFp7oAMFb3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630c2f41-1df42bd2265554de5f47932e;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 03:15:13 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KQ1yb69_uETJJlEIcwsR165zqZuiklGuj3Nn-tyta0e_q8BGqs3cXg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:51:24 GMT
age: 62034
etag: "5200b601017ce86614783b76fd2a775c1c48d4e9"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4805
Md5:    4f29d8aaae2d67c27c58001e7553dea7
Sha1:   5200b601017ce86614783b76fd2a775c1c48d4e9
Sha256: 6b55c4d692cf584e0319b07251d9845749fe8954062dab66e003dd2706451504
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ee600c8-d25e-4cb3-93cb-f1970d300d9c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8643
x-amzn-requestid: 8398144d-7a42-452b-88e5-0e6cb9f4bc02
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XqbSpEt7IAMFfEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630da5aa-5369099439689d5270e0a044;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 05:52:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MnvZGT9Q3ZSCf7nLpks2IXXNyg7jaNX6r4bnebHekesqfWlMY_bh5A==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 22:05:39 GMT
age: 61179
etag: "1fbcbd73de88723e5a42ec1ecb131b94deb1c88e"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8643
Md5:    c316fd8a538a8c998ef49d399e9b0692
Sha1:   1fbcbd73de88723e5a42ec1ecb131b94deb1c88e
Sha256: 1a34abee1bf6b76733ba2ca97a5c053b67bd6cd48f6953fc53798c77385cd781
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8510bf06-7808-4fda-a5d9-b75fc73021c9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12661
x-amzn-requestid: 71ef9e09-ccf1-4930-865d-665ece4bf3a6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X3hXnFnXIAMFqKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312e296-627daf7c7ad3e23a60b183cd;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 05:13:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: xwunW741LulZXvM0har5nqrcCiyYoUwvhCWiPsEvs5P2VKSe476_Cw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 22:38:56 GMT
etag: "dd9cd9b711d7112efa85eff8a798346dbd7d5f5f"
age: 59182
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12661
Md5:    79f4356c488498012cc7fc03be21e3df
Sha1:   dd9cd9b711d7112efa85eff8a798346dbd7d5f5f
Sha256: ebd84bf1db6b39b92be1020c7ea5c32eaa23dfb347ec83941d5bc56e80855ebc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fc5baf3-df02-4e98-9312-7ed0ef0b8638.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3604
x-amzn-requestid: 31a6c427-a073-4c25-88b1-6ba40a48c359
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDrvyGg6oAMFhDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317bffe-36dd49416c62f3811167173d;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:47:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: hNtG651fpAOKjZluawZlbXYFfBUojeSyqB9UMRsAg1Ooxc95mudq7A==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:51:27 GMT
etag: "b95ee99dafca1695d6b86763fce0ceb058f40ef3"
age: 62031
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3604
Md5:    932f4d99fb1927aae3010e00472b38c3
Sha1:   b95ee99dafca1695d6b86763fce0ceb058f40ef3
Sha256: da9dbade65f50c1f9ca10956dc863759dd1e0cdf7e28721c79831c288d3ae24e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0766520-2dbc-4f52-b0e2-1a908af4cd29.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11778
x-amzn-requestid: 2956f23c-8907-48de-b82a-73da9ae1d75e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDqYVHnLoAMFo5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317bdce-5d76bbe82dc2823407fe67f3;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:38:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6tTqfG7yRrMw0cMwiQFlu9XuRzxlK7uzTXL-cAMFmrrDrKL9Rd3zqA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:41:20 GMT
age: 62638
etag: "55154c3878e9650f463805c3829f03a1603f14c1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11778
Md5:    1462b0c8fff091f29c7c5145031c08aa
Sha1:   55154c3878e9650f463805c3829f03a1603f14c1
Sha256: 62f913a6498b21da33451e7cf0e37c5fdef565324bcd35d93cb536527394a3d5
                                        
                                            GET /wp-content/wp-recall/add-on/rcl-meter/script.js?ver=16.26.5 HTTP/1.1 
Host: rec39.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rec39.ru/wp-content/plugins/super-forms/uploads/php/files/7ae6a9f37a2a7bf06688c21769f6002d/49061148580.pdf
Cookie: _sfs_id=e138d13df4e741f6863ae7c886911cd403fb5d76d0191dc8531a9d0463d968e81662563117

                                         
                                         5.101.153.136
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx-reuseport/1.21.1
Date: Wed, 07 Sep 2022 15:05:17 GMT
Last-Modified: Fri, 13 Aug 2021 13:24:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"61167276-85c"
Expires: Wed, 14 Sep 2022 15:05:17 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip


--- Additional Info ---
                                        
                                            GET /css?family=Open+Sans%3A400%2C600%7CPT+Sans%3A400%2C700&ver=6.5.4 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rec39.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Sep 2022 15:05:17 GMT
date: Wed, 07 Sep 2022 15:05:17 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---