mgpbuilders.com/wp-admin/maint/login/admin/login.php
208.91.199.159301 Moved Permanently 0 B URL HTTP/1.1 mgpbuilders.com/wp-admin/maint/login/admin/login.php
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /wp-admin/maint/login/admin/login.php HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 08 Sep 2022 15:39:54 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade
Location: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Content-Length: 0
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b9adda4796e3cda8d92753c46964621c
5f1eba1f6085b23dea088a91fe6f8947172f9f62
a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5655
Expires: Thu, 08 Sep 2022 17:14:09 GMT
Date: Thu, 08 Sep 2022 15:39:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 08 Sep 2022 15:05:18 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Dia_5ZxEdFJFiFJ2LAPtVLcRZo0fgqX0dRn2_2OJ4eLf6d-AyC5SYg==
Age: 2076
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5VnDsxC3ZWDC9xtSIJN-rPE3Hkk7fgsuVupup6VbinocXqmVV9DwLg==
age: 42800
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 15:39:54 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 08 Sep 2022 15:38:18 GMT
Expires: Thu, 08 Sep 2022 16:23:04 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9Qrw6twRzhk10nbGvBZHMcySOx1vKdehwcXtAy8R0GE_9f9B9JMKrg==
Age: 97
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6c30fc8687839e892524179fa9062aac
17607cecfecf8fe87c4b562135d601fca9454157
3375136d79a5375d53bcdc1ce6000853decd27a050e4cab5928d6f1ab2f7e1c5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3375136D79A5375D53BCDC1CE6000853DECD27A050E4CAB5928D6F1AB2F7E1C5"
Last-Modified: Wed, 07 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21582
Expires: Thu, 08 Sep 2022 21:39:37 GMT
Date: Thu, 08 Sep 2022 15:39:55 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 042105f89c8d64b470d84e052cd412d1
a26c7e2559b3760ea2765b16a3f8d1be27f5dcf4
fadb8cdd22f4d7773d5c20d576f6400ab25e20e1efe3e3fe50d2ae39ca6f2725
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6351
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 15:39:55 GMT
Last-Modified: Thu, 08 Sep 2022 13:54:04 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
mgpbuilders.com/wp-admin/maint/login/admin/login.php
208.91.199.159404 Not Found 12 kB URL HTTP/2 mgpbuilders.com/wp-admin/maint/login/admin/login.php
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2009)
Hash b06390ee120a72499844e19ed84eae55
2d58a8dbeba8c7ddbe206a5dee38f96c90983555
9813b601999a25e9a1ec184d7cab58e3fab724c39d6a5d7dd64d75ea2f89f13e
Analyzer Verdict Alert fortinet Phishing
GET /wp-admin/maint/login/admin/login.php HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://mgpbuilders.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
content-length: 11740
content-type: text/html; charset=UTF-8
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 54f9e2ed11c19f565afc5d45d2f1e499
5c933cf89e4be594a152d7b1aa7bed6ab42169df
1deae88857366dba09c5e498d9067529377741b3c51b711b4adb88d861f58718
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 15:39:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b63f97bc3dce37e8ee6a0c9fcae468fe
cc70326582c0016d7434d0553486734266e57e71
6b3b365123beead4021532b8f2578b3761bbd47af45ed2a461a0476d53aa637d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 15:39:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b63f97bc3dce37e8ee6a0c9fcae468fe
cc70326582c0016d7434d0553486734266e57e71
6b3b365123beead4021532b8f2578b3761bbd47af45ed2a461a0476d53aa637d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 15:39:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-VX42D3XJQ4
142.250.74.72200 OK 74 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-VX42D3XJQ4
IP 142.250.74.72:0
File type ASCII text, with very long lines (15517)
Hash c1ac888f4d3dda70fb7977513fbc5455
6bb1d852d99d4693119b70f737527d0b8871c500
1cedc58aad8a4da7423290d5b02cdc0517f944f8fcaeb4348a93633e3635ecb6
GET /gtag/js?id=G-VX42D3XJQ4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 08 Sep 2022 15:39:55 GMT
expires: Thu, 08 Sep 2022 15:39:55 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73980
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/css/animate.min.css
208.91.199.159200 OK 6.9 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/css/animate.min.css
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (460), with CRLF line terminators
Hash 2b86d37b9f8ad479dad98d08419a9dfc
e949e3912528f39e80c04871dd137c0e63272484
73a4b52ba5efd33c33e4a8934a416087c25dfbc2a516c043e39806814a23caac
GET /wp-content/themes/MGPNEW/css/animate.min.css HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:31:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6940
content-type: text/css
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/css/leaflet.css
208.91.199.159200 OK 3.0 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/css/leaflet.css
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash 99a4a7f4b70befeeaaeb9446d857a30e
c04bbbe458a572bf2929646eebfb4edbe0ac7655
02593f811dfde66cc9d64a1d5f692086a773ed8d1e5d41b9f2bb5054eae3efe0
GET /wp-content/themes/MGPNEW/css/leaflet.css HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:31:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2967
content-type: text/css
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/css/bootstrap-select.min.css
208.91.199.159200 OK 1.8 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/css/bootstrap-select.min.css
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (6433), with CRLF line terminators
Hash 01f64387db4cfeb72e982c4680a064bf
6402db9855845399ae892a8da200c45dd4ea04d3
246488df2078aa9427ab0b9d448c3e071f9953680446ab1c0b6b74f27edc936c
GET /wp-content/themes/MGPNEW/css/bootstrap-select.min.css HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:31:25 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1845
content-type: text/css
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/css/map.css
208.91.199.159200 OK 2.9 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/css/map.css
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash 850121086fd5d8912ae935afd603f363
b0460fff20be392e6290e4f2ddfc84eab963b252
184d6976d4e9d0d0ee622f26e2a19f7d701f35af6e5816dd50a7a1416f1d9886
GET /wp-content/themes/MGPNEW/css/map.css HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:31:25 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2864
content-type: text/css
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b63f97bc3dce37e8ee6a0c9fcae468fe
cc70326582c0016d7434d0553486734266e57e71
6b3b365123beead4021532b8f2578b3761bbd47af45ed2a461a0476d53aa637d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 15:39:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
unpkg.com/aos@2.3.1/dist/aos.js
104.16.125.175200 OK 4.9 kB URL HTTP/2 unpkg.com/aos@2.3.1/dist/aos.js
IP 104.16.125.175:0
File type ASCII text, with very long lines (14239), with no line terminators
Hash c47ec750d3d4899421d8d3f446df8228
8af0a38604cbabc9aafce8d478745ae8b05ab0d0
05e2df9ab621bb47b0671441967021a1a1e647f28917e751e72d438ff2d9008a
GET /aos@2.3.1/dist/aos.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 15:39:55 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Thu, 17 May 2018 22:11:13 GMT
etag: W/"379f-cNv9OKDx/DsafZ+tq1h4ZITDTxc"
via: 1.1 fly.io
fly-request-id: 01F3YGTK14BN7YR0KMC99B0BKK
cf-cache-status: HIT
age: 11962371
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7478c797cb7e0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.163.196.193101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.196.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xHaPPqZVUDLrtYyRW9X+Eg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: d27GZnNrmspzx1skv2kULWwiDOY=
mgpbuilders.com/wp-content/themes/MGPNEW/css/bootstrap-submenu.css
208.91.199.159200 OK 868 B URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/css/bootstrap-submenu.css
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash 8c3e707cf6cf3c349272dc47119b6cb6
d3d41714eff038cb915ba3299992d1bf9198d486
ce573472e7dad3ca038577356607c980bbf910962ef5201413eaaea278738765
GET /wp-content/themes/MGPNEW/css/bootstrap-submenu.css HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:31:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 868
content-type: text/css
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/fonts/font-awesome/css/font-awesome.min.css
208.91.199.159200 OK 7.1 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/fonts/font-awesome/css/font-awesome.min.css
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (30843), with CRLF line terminators
Hash f15cabf711181a85c8989d26097f5c3e
fb258c41832c30f3a628ccad9fa9ea7dcc0363e9
40c34c7fbe224a3bb17319b84f2f91049223f8ecccc7312ccc43dae7b3ffe401
GET /wp-content/themes/MGPNEW/fonts/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:32:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7119
content-type: text/css
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/fonts/flaticon/font/flaticon.css
208.91.199.159200 OK 703 B URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/fonts/flaticon/font/flaticon.css
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash 7a3dcf7be0f7e62537dda6fc8dfc8271
8f34c67069a845b8a4c79da3ea088856217c29d8
eec2076efe4fc93ddbf4c4530f1969eaa67d8f71ca90e8635f53b8f633e7bb58
GET /wp-content/themes/MGPNEW/fonts/flaticon/font/flaticon.css HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:32:19 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 703
content-type: text/css
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/fonts/linearicons/style.css
208.91.199.159200 OK 1.6 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/fonts/linearicons/style.css
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash b66a0e63ed5850d8c950322067d46348
0134fd5815efb118d855bb7b3fec09849a7a1931
ca44e3fa0fd61aef9ad22d8fd9aa70d4715d65a6957752061740ea1d4bbbe2f5
GET /wp-content/themes/MGPNEW/fonts/linearicons/style.css HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:32:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1640
content-type: text/css
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/css/ie10-viewport-bug-workaround.css
208.91.199.159200 OK 298 B URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/css/ie10-viewport-bug-workaround.css
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash e886190235dd7b7ce1aa452bbd549315
e096ffe6e67ed7e14a558e07775499a6342818d5
6096c37f41650837d6ee449257edb0c72fc5ebd72e0e854938bd3688e07f51ac
GET /wp-content/themes/MGPNEW/css/ie10-viewport-bug-workaround.css HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:31:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 298
content-type: text/css
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/css/magnific-popup.css
208.91.199.159200 OK 2.4 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/css/magnific-popup.css
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash c0bf89e75aabc78864dd21ff3f64bea4
ae861e0f20323b31fcb5f5238e8f7d07acbfcc03
d803458bb9bcd196beedead68729dfa2b1d281d7c8517637d00d6a178f4d9b85
GET /wp-content/themes/MGPNEW/css/magnific-popup.css HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:31:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2355
content-type: text/css
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/css/skins/default.css
208.91.199.159200 OK 2.4 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/css/skins/default.css
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash ed49ed8dfc4f78be74a6a823e25d504e
2d8b30cf4fa6a378fb781bfdfbf8bdee2240d396
917d33188ae11a6182f66863377581028bcb6ee2ad8c2eb11c1ae09e18aa3be8
GET /wp-content/themes/MGPNEW/css/skins/default.css HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 29 Jun 2020 10:41:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2360
content-type: text/css
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/css/dropzone.css
208.91.199.159200 OK 2.7 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/css/dropzone.css
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash 0127046481aa11dfa08c00c591ee9798
8ae2d75a857b6b55fe41ec2909720f04c85fe80b
ae17a135a83f7ab13159591f3511eea78d77e81a73ca0ed016eaf650e54c7778
GET /wp-content/themes/MGPNEW/css/dropzone.css HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:31:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2687
content-type: text/css
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/css/jquery.mCustomScrollbar.css
208.91.199.159200 OK 9.2 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/css/jquery.mCustomScrollbar.css
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash 7be6073426038b25dd689dc0f36fe2cf
b1fc187b71bbe486a0dd000147af9b44d9e412fc
7de754fa7ee7dd62af01d3a64b4883002ee46125da55e6ff251c7d170e8a1db2
GET /wp-content/themes/MGPNEW/css/jquery.mCustomScrollbar.css HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:31:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9214
content-type: text/css
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-includes/css/dist/block-library/theme.min.css?ver=5.4.2
208.91.199.159200 OK 685 B URL HTTP/2 mgpbuilders.com/wp-includes/css/dist/block-library/theme.min.css?ver=5.4.2
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1954), with no line terminators
Hash cded301513adbb753244c29b35330d94
f3828198518291f32086d4844bd4801c2cbd00f0
fe2d8f803c0e7e7a9a5822fbe7ce4c54ea01ebb3f2881308e52dcd0486082d28
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/theme.min.css?ver=5.4.2 HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 06 Feb 2020 21:03:31 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 685
content-type: text/css
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/js/ie-emulation-modes-warning.js
208.91.199.159200 OK 1.1 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/js/ie-emulation-modes-warning.js
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash 2b756391411336ea8a0c9174f0f20d3e
2843da3598542e5c7c9e5ea9a5c2716239e4da69
e1206385c236fd9ebdc54aaacc4bcb6e54c15b93029c44b1940e5eeb6f31e78a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/js/ie-emulation-modes-warning.js HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:33:23 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1097
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
208.91.199.159200 OK 4.4 kB URL HTTP/2 mgpbuilders.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (9959)
Hash 1e40dfe689f1e989e1a3de2e3c6e26bf
4196eddc5203fd18f63e90065d777f757088ca2f
b40b1ef07db6e093ad2df064e8cb582906eb2448e1caacc2f5b721cd5d0e3cb4
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 20 May 2016 06:11:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4444
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-includes/css/dist/block-library/style.min.css?ver=5.4.2
208.91.199.159200 OK 9.8 kB URL HTTP/2 mgpbuilders.com/wp-includes/css/dist/block-library/style.min.css?ver=5.4.2
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (28088)
Hash 0f01185d6a397a0956dfb4cd6819b507
1ef2787c65358e6bd69e2805e91bf144c244675a
ecfcaaf80c077263b5516c938803306fb2958367f6a2c63fb413d9d82d1c37a0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.4.2 HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 24 Apr 2020 15:32:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9824
content-type: text/css
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/assets/css/blocks.css?ver=20190105
208.91.199.159404 Not Found 12 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/assets/css/blocks.css?ver=20190105
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2009)
Hash b06390ee120a72499844e19ed84eae55
2d58a8dbeba8c7ddbe206a5dee38f96c90983555
9813b601999a25e9a1ec184d7cab58e3fab724c39d6a5d7dd64d75ea2f89f13e
GET /wp-content/themes/MGPNEW/assets/css/blocks.css?ver=20190105 HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://mgpbuilders.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
content-length: 11740
content-type: text/html; charset=UTF-8
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/img/MGPLogo-01.png
208.91.199.159200 OK 102 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/img/MGPLogo-01.png
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 1371 x 1011, 8-bit/color RGBA, non-interlaced\012- data
Size 102 kB (102476 bytes)
Hash 13a2cce9427978c22286a4ece326baa9
a0cc5f569365b2240ae30c9ee2695605fd2489ae
611de1b34451da310a01d3103d37dde168caca3c19ca8c0c6702757cf0b6eb38
GET /wp-content/themes/MGPNEW/img/MGPLogo-01.png HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 04 Sep 2020 12:54:36 GMT
accept-ranges: bytes
content-length: 102476
content-type: image/png
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/js/jquery.scrollUp.js
208.91.199.159200 OK 1.0 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/js/jquery.scrollUp.js
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2437), with no line terminators
Hash 9dfeaabb1770046b90464c6433199e8b
1eb16c98812838ebb8d837da6449dd49cde1aabe
e91f22bf4886dd9c109b058cb807c28ba99799100d1e470be9798231db765e3d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/js/jquery.scrollUp.js HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:33:19 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1010
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/js/ie10-viewport-bug-workaround.js
208.91.199.159200 OK 434 B URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/js/ie10-viewport-bug-workaround.js
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash d00db91a499d1b565bb5b562d50b5f34
5828ad3f46b734074ed52c0c8c70a5872de8e84a
9f16bade0e2e65a73de240a71e2cf1e88f88c3bdc785a6d1fd8e4dd0417596d7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/js/ie10-viewport-bug-workaround.js HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:33:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 434
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/js/bootstrap-submenu.js
208.91.199.159200 OK 979 B URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/js/bootstrap-submenu.js
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2610), with CRLF line terminators
Hash 90151baa65068133bf05f1529d1fac26
44dd133916c13951c1f7300cabc568a1d41106f2
37b981020d647e29dadcf7735686ccb2afc151257ffdf3dc569bf8d5176b8d1b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/js/bootstrap-submenu.js HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:33:19 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 979
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/js/maps.js
208.91.199.159200 OK 4.1 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/js/maps.js
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash 903f9a9366fe24f0cde041ed974cb481
eac0cdbaeaa1dc8f274879d9c6d258f1f0440120
01be3444da9b061a8de27e763494b62d7029adb3d18305a5e96e32b48ba7069f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/js/maps.js HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:33:25 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4051
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/js/leaflet-providers.js
208.91.199.159200 OK 4.6 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/js/leaflet-providers.js
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with CRLF line terminators
Hash fd0e309c76fd899a6fd23b236300bf74
1e9dc40dff116b391c8812d1bb6a1c292de8aecd
82020148c6593bff417cae296065461c0c338aad4e2fa3ef0ba1aaae254c8f22
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/js/leaflet-providers.js HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:33:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4581
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-button.js?ver=3.1.8
208.91.199.159200 OK 451 B URL HTTP/2 mgpbuilders.com/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-button.js?ver=3.1.8
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 2cbb2b431f51472b160ee5177f584f6a
0a7dc89f53c513fa63437a6d42e7612ef4072994
542ff8abd5797378bf66e504fbcd1ba9adb45e57369fe71ccc903d534ed13dc6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-whatsapp/assets/js/whatsapp-button.js?ver=3.1.8 HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Apr 2022 10:46:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 451
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/js/leaflet.markercluster.js
208.91.199.159200 OK 10 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/js/leaflet.markercluster.js
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (28482), with CRLF line terminators
Hash 44c83d53ee55689190f31f0501106ea2
44fa573168ab8699e707ee695e8656c5355297a7
0477b5ba904f981c24c42f427885e505d3fcb38cde27a25dbee1260021c74514
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/js/leaflet.markercluster.js HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:33:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10094
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/plugins/wp-whatsapp/assets/dist/js/njt-whatsapp.js?ver=3.1.8
208.91.199.159200 OK 14 kB URL HTTP/2 mgpbuilders.com/wp-content/plugins/wp-whatsapp/assets/dist/js/njt-whatsapp.js?ver=3.1.8
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32559), with no line terminators
Hash 79f0ec15fbd8c483994f1c1637115d78
2125d75adec8696ef22b856da8cb7660fb483455
8ab2276d5a2856941782e482014990c376b3e21b990959c5b78ca72048d074b8
GET /wp-content/plugins/wp-whatsapp/assets/dist/js/njt-whatsapp.js?ver=3.1.8 HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Apr 2022 10:46:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14132
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-popup.js?ver=5.4.2
208.91.199.159200 OK 291 B URL HTTP/2 mgpbuilders.com/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-popup.js?ver=5.4.2
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 00021be9910089c4ac4192ff08025905
b9056c380e58263a10319539d83cd7adadee5c69
dfaffd20072b35ac0f06f5ae7e3cba0e6c87346b46016b346f1f277ce9bf6042
GET /wp-content/plugins/wp-whatsapp/assets/js/whatsapp-popup.js?ver=5.4.2 HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Apr 2022 10:46:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 291
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/js/jquery.easing.1.3.js
208.91.199.159200 OK 819 B URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/js/jquery.easing.1.3.js
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (3338), with no line terminators
Hash d9d2aece3adf0394aa90a3ec3fc4a749
80a34934d0698e7ea2a198936476f055572bec2e
49a6bdd9d41d8e91075fdc5e199e7a7150781594b7a2de124f8a4eb58b4c7733
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/js/jquery.easing.1.3.js HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:33:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 819
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-includes/js/wp-embed.min.js?ver=5.4.2
208.91.199.159200 OK 782 B URL HTTP/2 mgpbuilders.com/wp-includes/js/wp-embed.min.js?ver=5.4.2
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1399)
Hash b60e8cae97efb439ba7a9d58d445a2e0
cf3cd501ab86efa14fc333e1dbb4ea9cddd7336e
f6ddc9a68d5f2eb280373579fff343df2b288c74036d54f8ad99d7d53fa33dea
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-embed.min.js?ver=5.4.2 HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 26 Oct 2019 00:17:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 782
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/js/custom.js
208.91.199.159200 OK 3.0 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/js/custom.js
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 0366732798d83886bebcdaed1e3fc70a
6fb552a03c5e000cfb3638d0dfc481d27665d38f
79066557bd854e3db69090f1111723bc18d50c0ab15f0ecfc809bc5ab36d07b6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/js/custom.js HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 24 Jul 2022 18:39:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2981
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/js/wow.min.js
208.91.199.159200 OK 3.2 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/js/wow.min.js
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (8386), with CRLF line terminators
Hash c69f3eb7eac741968bd341216f73f6e8
bb770f7ddc067313e85bfff3b29a44c754f74013
8c314003ce9ad6af3809acc98f7bae2d18980194cbbce7d8692ae9368b7299b7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/js/wow.min.js HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:33:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3205
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/js/rangeslider.js
208.91.199.159200 OK 8.5 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/js/rangeslider.js
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (23359), with no line terminators
Hash b87773eff0afa95986beae4872e7b0a7
652a4cab267fe61cb14c8f7abbd567d431be5a66
5f5292c7fa9de8cbe57e84cfe2a429efafd9b416b2c9b1005ff078acf4563351
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/js/rangeslider.js HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:33:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8512
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/js/jquery.magnific-popup.min.js
208.91.199.159200 OK 9.3 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/js/jquery.magnific-popup.min.js
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (20087), with CRLF line terminators
Hash 32c991ea0fca638249b14e6a2552b9bb
5497f0bbb23478c6c55a9f5c919747c778f30999
115d0f1fdfec882c0458c3463f894397d906de2f288f421fc6c9c33d312211f4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/js/jquery.magnific-popup.min.js HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:33:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9253
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/js/bootstrap-select.min.js
208.91.199.159200 OK 12 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/js/bootstrap-select.min.js
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32019), with CRLF line terminators
Hash 26d80b67538b8854cb22043f08f0b0ed
7ad1eb0fc9c67a0d59b4d9fe0cbf6a3c05bc41f9
9eb26aa10b59fe314adebfd4d88ae6ea179b0ca69e3534aeb811cd75b193904a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/js/bootstrap-select.min.js HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:33:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12536
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/js/jquery.filterizr.js
208.91.199.159200 OK 12 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/js/jquery.filterizr.js
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 29546a2c3a04a940c3b2c6b263dff240
16af5a46ac4f8ba69bc5ca15e939c1cd151ef4e0
9615e41ea70d254c2fbe0dc84ae4c7c90fac45a5d88ef0de1c7d98ac883280f5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/js/jquery.filterizr.js HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:33:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12191
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/js/bootstrap.min.js
208.91.199.159200 OK 14 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/js/bootstrap.min.js
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32007), with CRLF line terminators
Hash 65868daca24f938103589a820e45d722
1edb0b41f76999cfe05935492aa8a9a43d30bb20
13f5ac7dc2a74146d09d08780b4c4b9370be406bf215f923ebf321ff98a52b4f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/js/bootstrap.min.js HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:33:25 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14325
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/assets/js/skip-link-focus-fix.js?ver=20161114
208.91.199.159404 Not Found 12 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/assets/js/skip-link-focus-fix.js?ver=20161114
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2009)
Hash b06390ee120a72499844e19ed84eae55
2d58a8dbeba8c7ddbe206a5dee38f96c90983555
9813b601999a25e9a1ec184d7cab58e3fab724c39d6a5d7dd64d75ea2f89f13e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/assets/js/skip-link-focus-fix.js?ver=20161114 HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://mgpbuilders.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
content-length: 11740
content-type: text/html; charset=UTF-8
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/assets/js/jquery.scrollTo.js?ver=2.1.2
208.91.199.159404 Not Found 12 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/assets/js/jquery.scrollTo.js?ver=2.1.2
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2009)
Hash b06390ee120a72499844e19ed84eae55
2d58a8dbeba8c7ddbe206a5dee38f96c90983555
9813b601999a25e9a1ec184d7cab58e3fab724c39d6a5d7dd64d75ea2f89f13e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/assets/js/jquery.scrollTo.js?ver=2.1.2 HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://mgpbuilders.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
content-length: 11740
content-type: text/html; charset=UTF-8
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-includes/js/wp-emoji-release.min.js?ver=5.4.2
208.91.199.159200 OK 4.9 kB URL HTTP/2 mgpbuilders.com/wp-includes/js/wp-emoji-release.min.js?ver=5.4.2
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (10942)
Hash f9e3007b0e2f284f6edc87f0ed9cb093
7271d6ccaeb75cc5c4a63334731922924323c080
00245ecbcc69429cdd75245f6475b59cae3aa9601e7f3e19008946b6a40f1235
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.4.2 HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 05 Nov 2019 22:04:02 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4928
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:56 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/assets/css/blocks.css?ver=20190105
208.91.199.159404 Not Found 12 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/assets/css/blocks.css?ver=20190105
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2009)
Hash b06390ee120a72499844e19ed84eae55
2d58a8dbeba8c7ddbe206a5dee38f96c90983555
9813b601999a25e9a1ec184d7cab58e3fab724c39d6a5d7dd64d75ea2f89f13e
GET /wp-content/themes/MGPNEW/assets/css/blocks.css?ver=20190105 HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://mgpbuilders.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
content-length: 11740
content-type: text/html; charset=UTF-8
date: Thu, 08 Sep 2022 15:39:56 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 721eb245d022db7af3e30ad4e6b94226
4a53b4e9ad119295498594089826bddea4d0b9a6
6f350e89f4e7a0cea74c003493ea950c768ffcbea234bcf68a818b60842a2f3e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 15:39:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash db3d2d40f373a7ef445874e65d7f0397
087a4802f28647e830222fafc67bda30dec5fc31
4a7ff3bf120d9795d86e370be5fb2987edd4575e1ce0ab1f2f7a66ddf1e5b0d0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 15:39:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mgpbuilders.com/wp-content/themes/MGPNEW/js/jquery.mb.YTPlayer.js
208.91.199.159200 OK 25 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/js/jquery.mb.YTPlayer.js
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash bf5656e32519e9ff1c2537f9405a0564
058a27682dcd34db31c87974d2708d958de93889
3f65e33f51e42f9edee3e637e28b415c2b4908b5374aaef557d0b379d2dd5ae3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/js/jquery.mb.YTPlayer.js HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:33:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 61961ee76ab6c28f6e17eb7a1df4a3ea
ab4e8c9c284a0eed6b2fab77c9df432839158b3a
9e3bec23cc8ea49ab4e3a3a244a428c59e6c48c80359c473155584807ba0de41
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 15:39:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash db3d2d40f373a7ef445874e65d7f0397
087a4802f28647e830222fafc67bda30dec5fc31
4a7ff3bf120d9795d86e370be5fb2987edd4575e1ce0ab1f2f7a66ddf1e5b0d0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 15:39:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mgpbuilders.com/wp-content/themes/MGPNEW/assets/js/global.js?ver=20190121
208.91.199.159404 Not Found 27 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/assets/js/global.js?ver=20190121
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash cd83836443d658985c464d7021aa3e83
83a2915021f30c4ed54752b02e0c999e3c56798c
0c5b68b3ae23054815d89c5a2230ad7edf2d4b68732b4463d6be74cacb974055
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/assets/js/global.js?ver=20190121 HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://mgpbuilders.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
content-length: 11740
content-type: text/html; charset=UTF-8
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mgpbuilders.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 08:31:01 GMT
expires: Wed, 06 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 198535
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/js/leaflet.js
208.91.199.159200 OK 46 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/js/leaflet.js
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash cfc7f65b655a95a56ca512c4a88a9de7
ba2aca92b2a7cbda9f30441ad57a18c310db38ce
53dbe696a10006d23341472a3230f0b426eb978449b49fbfa4aa63080fb7f75a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/js/leaflet.js HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:33:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 721eb245d022db7af3e30ad4e6b94226
4a53b4e9ad119295498594089826bddea4d0b9a6
6f350e89f4e7a0cea74c003493ea950c768ffcbea234bcf68a818b60842a2f3e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 15:39:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/s/player/f96f6702/www-player.css
216.58.207.238200 OK 49 kB URL HTTP/2 www.youtube.com/s/player/f96f6702/www-player.css
IP 216.58.207.238:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 666388d9ac2c812d3d9b0e511b1cfea0
4dfa524e6558a4aaf676578dd3275f544cb36625
a1532094c979ab2823b5baf7e5843d731e1c64765a8b8495f89bb56b7f7df117
GET /s/player/f96f6702/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/5e0LxrLSzok
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49081
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 02:33:16 GMT
expires: Thu, 07 Sep 2023 02:33:16 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Sep 2022 00:58:40 GMT
content-type: text/css
age: 133600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/f96f6702/www-embed-player.vflset/www-embed-player.js
216.58.207.238200 OK 98 kB URL HTTP/2 www.youtube.com/s/player/f96f6702/www-embed-player.vflset/www-embed-player.js
IP 216.58.207.238:0
File type ASCII text, with very long lines (592)
Hash b53c09c40c493fdce3c7226bfbdea0c8
f47351c375bc4a585d6f7d4a9c95dea1321fffe3
a2968e101eb040349ba6a7f897fbad9f20f4a04cb35c3e1b575090edae6edf3d
GET /s/player/f96f6702/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/5e0LxrLSzok
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97690
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 02:33:16 GMT
expires: Thu, 07 Sep 2023 02:33:16 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Sep 2022 00:58:40 GMT
content-type: text/javascript
age: 133600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/f96f6702/fetch-polyfill.vflset/fetch-polyfill.js
216.58.207.238200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/f96f6702/fetch-polyfill.vflset/fetch-polyfill.js
IP 216.58.207.238:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/f96f6702/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/5e0LxrLSzok
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 02:33:16 GMT
expires: Thu, 07 Sep 2023 02:33:16 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Sep 2022 00:58:40 GMT
content-type: text/javascript
age: 133600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mgpbuilders.com/wp-admin/maint/login/admin/img/properties/properties-6.jpg
208.91.199.159404 Not Found 12 kB URL HTTP/2 mgpbuilders.com/wp-admin/maint/login/admin/img/properties/properties-6.jpg
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2009)
Hash b06390ee120a72499844e19ed84eae55
2d58a8dbeba8c7ddbe206a5dee38f96c90983555
9813b601999a25e9a1ec184d7cab58e3fab724c39d6a5d7dd64d75ea2f89f13e
GET /wp-admin/maint/login/admin/img/properties/properties-6.jpg HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Cookie: collect_chat_page_load=1; _ga_VX42D3XJQ4=GS1.1.1662651588.1.0.1662651588.0.0.0; _ga=GA1.1.1016690225.1662651589
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://mgpbuilders.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
content-length: 11740
content-type: text/html; charset=UTF-8
date: Thu, 08 Sep 2022 15:39:56 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/fonts/font-awesome/fonts/fontawesome-webfont3e6e.woff2?v=4.7.0
208.91.199.159200 OK 77 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/fonts/font-awesome/fonts/fontawesome-webfont3e6e.woff2?v=4.7.0
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/themes/MGPNEW/fonts/font-awesome/fonts/fontawesome-webfont3e6e.woff2?v=4.7.0 HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-content/themes/MGPNEW/fonts/font-awesome/css/font-awesome.min.css
Cookie: _ga_VX42D3XJQ4=GS1.1.1662651588.1.0.1662651588.0.0.0; _ga=GA1.1.1016690225.1662651589
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:32:55 GMT
accept-ranges: bytes
content-length: 77160
content-type: font/woff2
date: Thu, 08 Sep 2022 15:39:56 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10026
Expires: Thu, 08 Sep 2022 18:27:02 GMT
Date: Thu, 08 Sep 2022 15:39:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10026
Expires: Thu, 08 Sep 2022 18:27:02 GMT
Date: Thu, 08 Sep 2022 15:39:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10026
Expires: Thu, 08 Sep 2022 18:27:02 GMT
Date: Thu, 08 Sep 2022 15:39:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10026
Expires: Thu, 08 Sep 2022 18:27:02 GMT
Date: Thu, 08 Sep 2022 15:39:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F822fb287-f1f6-45a1-be54-4fa7385bb163.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F822fb287-f1f6-45a1-be54-4fa7385bb163.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6f73ee4e91b38eaa36cadd4c437785f8
6ceea057f5ae50b9cef505da0a358e3d3b7d6a38
778d28e14b28c154843403470136d0efdcdd5e93e4b5aab784c12d4344e7af6f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F822fb287-f1f6-45a1-be54-4fa7385bb163.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11365
x-amzn-requestid: d50039cd-381c-4221-997e-9231d40ecfbb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9V0EHEoAMFeag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f58-11cab61904bd14462cd13d0d;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Qhobt81rs5gqg8hcr1Su3J3MNFt4_gR2hLHkIl5xDDS1HF9g_3ecCg==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:40:35 GMT
age: 61161
etag: "6ceea057f5ae50b9cef505da0a358e3d3b7d6a38"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f922505178de0cea92eedcfda85a9f67
50f1459de01174e594e03e7df4dfaa8eb1798672
981cd58768d6ad841673add855ddcc7106fbc85de05db9a1bd2d6bc8928b4c2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6214
x-amzn-requestid: 46a44af0-e547-49e8-bc39-f6c49d94e375
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj_0HFKbIAMFRbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b134d-0297c83c305422fa51b86dcf;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 07:03:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _ZKcuRO8Z6wBMdm79iDZj5uRYk4YYpYJqOoG8hZqY81O0R7hfbe5bQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 05:29:44 GMT
age: 36612
etag: "50f1459de01174e594e03e7df4dfaa8eb1798672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
load.collect.chat/bots/5f4dfe8a260f47638dd3929a
54.230.111.37200 OK 2.2 kB URL HTTP/2 load.collect.chat/bots/5f4dfe8a260f47638dd3929a
IP 54.230.111.37:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (6383), with no line terminators
Hash 2090cb9fe9abb5c24b401208744d95bc
dcb5815b735c3293f0f34fe2c51182df5e69a17e
38b3b6c328d9bd6d16f9c8ebbe77f883b02b778edac31ea8ca51f27b7cbb749d
GET /bots/5f4dfe8a260f47638dd3929a HTTP/1.1
Host: load.collect.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mgpbuilders.com
Connection: keep-alive
Referer: https://mgpbuilders.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 2225
date: Thu, 08 Sep 2022 15:39:56 GMT
x-amzn-requestid: ca774241-eace-4011-bf63-2afe7cd65774
access-control-allow-origin: *
content-encoding: gzip
x-amz-apigw-id: YJbwBEM7oAMFVtA=
x-amzn-trace-id: Root=1-631a0ccc-78af17a9032a9cf526342189;Sampled=0
access-control-allow-credentials: true
x-cache: Miss from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WZ8LWl2SIM0gEk8EO3sFKE0f6zK8ZRNwV2Er0K2DB_yVeGrs3ERcUw==
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1574e23-3c8b-4ce2-95be-812a884e557e.webp
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1574e23-3c8b-4ce2-95be-812a884e557e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3aa46849d3bba47d63691883cf00056e
705bece0f3cca112c508c6e77bbb728e6e733905
5f6d0e6996967667c18b02385c896f1734efe530f10ff27d212bd216da91b3cd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1574e23-3c8b-4ce2-95be-812a884e557e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4320
x-amzn-requestid: cd37ae50-7ab0-48b6-8a30-caf4f941b65d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YE9u4EeXIAMFoRA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6318432b-6751e5fc30a2ecae0776fa74;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 07:07:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: j8HDRmAd1Pvds0Uw6nzTeY5jmYay8tT0raGl7I4yXEJV1EupiIl-Kw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 06:08:38 GMT
age: 34278
etag: "705bece0f3cca112c508c6e77bbb728e6e733905"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a07d553b6441514870ed7e9e989a29a7
98c145b9326d1e6036fa9089d87a25232dd45b0b
373a586b596016baeb8de98022207c25af24c099c06077edbdfd837cffc31a0e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7492
x-amzn-requestid: 2c5e9ff3-c7a4-4a8f-96bf-74f0ca5d9137
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9dOHguIAMFjGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f87-70dbe6532b1a241e6dbe729e;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:39:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lbCmv9fV9iBGOQvxRzleYwC5dBYeu1kRgSSkC2hycDmavyXj-KlFSw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:24:59 GMT
age: 62097
etag: "98c145b9326d1e6036fa9089d87a25232dd45b0b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ba17b3c-58f5-4458-8dc2-8e4a7cf8d782.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ba17b3c-58f5-4458-8dc2-8e4a7cf8d782.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1cd778a615e9a4ca3a25119790398434
d6daca74fc85d39274b3c7536f34528bef93ae97
e6b5a7a525e314e09c30985b22da7c34806df09cbe98ad52b00dcbf93a0dc054
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ba17b3c-58f5-4458-8dc2-8e4a7cf8d782.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7251
x-amzn-requestid: 26b2021a-4440-47ce-8dba-d971cae60cc1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9bmHcmoAMF3Fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f7d-5471edce7de2374c3b8af888;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:39:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: d3MrDEyDFDylQKyfxONQ12_7IBvRAg8o0rSZ64WNRGNvDHqQyDmqJA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:17:17 GMT
age: 62559
etag: "d6daca74fc85d39274b3c7536f34528bef93ae97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f1c2c921a6d2a5166ceeb2d2633fde78
c628772a725d7df4dac11e389fb6a0795f1063e0
084d3b713a6cdf58863b88e58b7253d7ad1dae200e996d3c349f85db8f3a79b8
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "084D3B713A6CDF58863B88E58B7253D7AD1DAE200E996D3C349F85DB8F3A79B8"
Last-Modified: Tue, 06 Sep 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12992
Expires: Thu, 08 Sep 2022 19:16:29 GMT
Date: Thu, 08 Sep 2022 15:39:57 GMT
Connection: keep-alive
api.collect.chat/details
104.21.42.191200 OK 36 B IP 104.21.42.191:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 6f805925944ef9fa79bd0a02e00e2e99
ceb834e8fd10d2f4c8f2b1e6d8800b9e845834df
3ef013039e6df373c7ef0730658c403527318c307c67145ac08c728492392800
GET /details HTTP/1.1
Host: api.collect.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mgpbuilders.com
Connection: keep-alive
Referer: https://mgpbuilders.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 15:39:57 GMT
content-type: application/json; charset=utf-8
content-length: 36
x-powered-by: Express
x-ratelimit-limit: 50
x-ratelimit-remaining: 49
x-ratelimit-reset: 1662651609
access-control-allow-origin: *
etag: W/"24-zrg06P0Q0vTI8rHm2IALnoRYNN8"
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TJH0n%2FlM3LZVYkstvPbedVMYY46uFWhYM6NKvN90eBpixmCAzXsHnxRoO4wk13ToMcOWoht90SxlATbKSxvmGt%2BqUiGZ02PS7absgFt9rITLTJsrRCB0CEyjosjjBTrRm1RI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7478c7a16c761c02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/assets/js/global.js?ver=20190121
208.91.199.159404 Not Found 12 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/assets/js/global.js?ver=20190121
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2009)
Hash b06390ee120a72499844e19ed84eae55
2d58a8dbeba8c7ddbe206a5dee38f96c90983555
9813b601999a25e9a1ec184d7cab58e3fab724c39d6a5d7dd64d75ea2f89f13e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/assets/js/global.js?ver=20190121 HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Cookie: _ga_VX42D3XJQ4=GS1.1.1662651588.1.0.1662651589.0.0.0; _ga=GA1.1.1016690225.1662651589
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://mgpbuilders.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
content-length: 11740
content-type: text/html; charset=UTF-8
date: Thu, 08 Sep 2022 15:39:56 GMT
server: Apache
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f1c2c921a6d2a5166ceeb2d2633fde78
c628772a725d7df4dac11e389fb6a0795f1063e0
084d3b713a6cdf58863b88e58b7253d7ad1dae200e996d3c349f85db8f3a79b8
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "084D3B713A6CDF58863B88E58B7253D7AD1DAE200E996D3C349F85DB8F3A79B8"
Last-Modified: Tue, 06 Sep 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12992
Expires: Thu, 08 Sep 2022 19:16:29 GMT
Date: Thu, 08 Sep 2022 15:39:57 GMT
Connection: keep-alive
region1.google-analytics.com/g/collect?v=2&tid=G-VX42D3XJQ4>m=2oe8v0&_p=716599352&cid=1016690225.1662651589&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662651588&sct=1&seg=0&dl=https%3A%2F%2Fmgpbuilders.com%2Fwp-admin%2Fmaint%2Flogin%2Fadmin%2Flogin.php&dt=MGP%20Builders&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-VX42D3XJQ4>m=2oe8v0&_p=716599352&cid=1016690225.1662651589&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662651588&sct=1&seg=0&dl=https%3A%2F%2Fmgpbuilders.com%2Fwp-admin%2Fmaint%2Flogin%2Fadmin%2Flogin.php&dt=MGP%20Builders&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-VX42D3XJQ4>m=2oe8v0&_p=716599352&cid=1016690225.1662651589&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662651588&sct=1&seg=0&dl=https%3A%2F%2Fmgpbuilders.com%2Fwp-admin%2Fmaint%2Flogin%2Fadmin%2Flogin.php&dt=MGP%20Builders&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mgpbuilders.com
Connection: keep-alive
Referer: https://mgpbuilders.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://mgpbuilders.com
date: Thu, 08 Sep 2022 15:39:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 745359d372160932e8030c0199354252
1590e053a17d05095a48538fc08ff06245bac4d6
e7f798120d5e587145e512941e7c090ec2720d30d216e241f5b6f96d5b2d1241
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 15:39:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b8ec2e11a56596305c41513787d64c44
43ff0eb9086c1967859b7dea4988964a5fadb2b3
b9372fff0bd34b172c917aaaf028e7c7d3d76c3bf0478c10c01f91166d9ae096
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 15:39:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mgpbuilders.com/wp-content/themes/MGPNEW/assets/js/jquery.scrollTo.js?ver=2.1.2
208.91.199.159404 Not Found 12 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/assets/js/jquery.scrollTo.js?ver=2.1.2
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2009)
Hash b06390ee120a72499844e19ed84eae55
2d58a8dbeba8c7ddbe206a5dee38f96c90983555
9813b601999a25e9a1ec184d7cab58e3fab724c39d6a5d7dd64d75ea2f89f13e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/assets/js/jquery.scrollTo.js?ver=2.1.2 HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Cookie: _ga_VX42D3XJQ4=GS1.1.1662651588.1.0.1662651589.0.0.0; _ga=GA1.1.1016690225.1662651589
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://mgpbuilders.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
content-length: 11740
content-type: text/html; charset=UTF-8
date: Thu, 08 Sep 2022 15:39:57 GMT
server: Apache
X-Firefox-Spdy: h2
static.doubleclick.net/instream/ad_status.js
216.58.207.230200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 216.58.207.230:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 15:29:23 GMT
expires: Thu, 08 Sep 2022 15:44:23 GMT
cache-control: public, max-age=900
age: 634
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.2302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Thu, 08 Sep 2022 15:39:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash dad8f08be4d6d5166c7f54004cb37c64
949b5738d5c880445510774f1da0e0af667308b3
398205f8248c3e00126eb21e6cb1d4e21a981a1b46d59ff4993e6023f33c6b9f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 15:39:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 09cd4a35767fb409963659229eaf672f
f5593747662cd2c08b83f186af133957bfd47911
27388cbcc6ac59310c6d64622658f85dbe5e67643e77d77ba1c60a9763106023
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 15:39:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mgpbuilders.com/wp-content/themes/MGPNEW/js/jquery-2.2.0.min.js
208.91.199.159200 OK 46 kB URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/js/jquery-2.2.0.min.js
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash f8f8499b1e8b5bff0984e853961232c9
3ced6d5f0a3fa52d3e4c6b132c007ce2574e3895
014f23f81062cd7d0159f163e962f48ffc213e397ea7806b6ad8e1c569d16186
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/js/jquery-2.2.0.min.js HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:33:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.youtube.com/s/player/f96f6702/player_ias.vflset/en_US/base.js
216.58.207.238200 OK 471 B URL HTTP/2 www.youtube.com/s/player/f96f6702/player_ias.vflset/en_US/base.js
IP 216.58.207.238:0
Hash db433121f8c8215d44bcd26aff290172
f96b386796e3589437cd57fac6782842c17ce746
455323a3f807014a498118929131b6aad4ec5283f95be23108b2afd329576098
GET /s/player/f96f6702/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/5e0LxrLSzok
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 587364
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 02:43:18 GMT
expires: Thu, 07 Sep 2023 02:43:18 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Sep 2022 00:58:40 GMT
content-type: text/javascript
age: 132998
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash db433121f8c8215d44bcd26aff290172
f96b386796e3589437cd57fac6782842c17ce746
455323a3f807014a498118929131b6aad4ec5283f95be23108b2afd329576098
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 15:39:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.106200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 08 Sep 2022 15:39:57 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 426dfe3ec82e0a77cbdfe9ff46ac9d89
486658615b3daeccb0e1f0431ef6583078d89785
653a398fdd1c3b7860432ff4d6e6828e034a70a4da82e9d8d27dbd90f0b88273
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 15:39:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 426dfe3ec82e0a77cbdfe9ff46ac9d89
486658615b3daeccb0e1f0431ef6583078d89785
653a398fdd1c3b7860432ff4d6e6828e034a70a4da82e9d8d27dbd90f0b88273
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 15:39:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.106200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.106:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 18bbd13946f5c7a6359ceee743aa429e
29ba173b9106b25d0717967c4839d6e86277cbe2
0c1dfa2cc97c8a17179253e8ef4cfb6865eb51275f173f384703785582794e08
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 08 Sep 2022 15:39:57 GMT
server: ESF
cache-control: private
content-length: 30818
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/js/th/9e5Q9JddguzAeYJyBJt7GsINCHbvQKKYaWDK5a7IWAA.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/9e5Q9JddguzAeYJyBJt7GsINCHbvQKKYaWDK5a7IWAA.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (35963)
Hash 0a10e1669fa5f54a96c02562d935783f
fb9c033841ed0848caeede748301a5c91de6c800
25215608c929fe6c434b08bdb327df9b9ca11355840c6408602b8612073f99f5
GET /js/th/9e5Q9JddguzAeYJyBJt7GsINCHbvQKKYaWDK5a7IWAA.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14185
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 05:03:42 GMT
expires: Thu, 07 Sep 2023 05:03:42 GMT
cache-control: public, max-age=31536000
age: 124575
last-modified: Mon, 29 Aug 2022 11:00:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash db433121f8c8215d44bcd26aff290172
f96b386796e3589437cd57fac6782842c17ce746
455323a3f807014a498118929131b6aad4ec5283f95be23108b2afd329576098
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 15:39:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/conversion_async.js
142.250.74.164200 OK 16 kB URL HTTP/2 www.google.com/pagead/conversion_async.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (1623)
Hash 4738d969770682feba80f04bf171d65b
be0e0ceb91bf5ed0c64b0f3f2cc2c99c6d4cd6b7
1daca97cf9e8078299f94c50346e45fead45bf908ca97ded912f26986c1c4e9a
GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 08 Sep 2022 15:39:57 GMT
expires: Thu, 08 Sep 2022 15:39:57 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 15579141248118922429
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15687
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f791e6440ce515569bb0194eda4d603b
8d8fa952205d85133136ac352d2732bc4c838c42
c32a6a6c9669d371e94d43f6e765a8e438096c6eb8b69d719ad365255d669417
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 15:39:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mgpbuilders.com/wp-content/uploads/2020/08/favicon.png
208.91.199.159200 OK 11 kB URL HTTP/2 mgpbuilders.com/wp-content/uploads/2020/08/favicon.png
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 2e086615fa02049abb3c2f4b5d124ad4
5b71bcef48ef111a128bf389856183736fceb0b0
873e158181342f7d42ac4b0bccacc683dc12caf7df3f2a2cd9591d5bec5ab493
GET /wp-content/uploads/2020/08/favicon.png HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Cookie: _ga_VX42D3XJQ4=GS1.1.1662651588.1.0.1662651589.0.0.0; _ga=GA1.1.1016690225.1662651589
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 15 Aug 2020 17:03:59 GMT
accept-ranges: bytes
content-length: 11120
content-type: image/png
date: Thu, 08 Sep 2022 15:39:57 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/uploads/2020/08/favicon-100x100.png
208.91.199.159200 OK 11 kB URL HTTP/2 mgpbuilders.com/wp-content/uploads/2020/08/favicon-100x100.png
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 394765f9d6a0ef2efadcca23b52eb493
1ea2812fe0f47ebc40739d3944b6e731a9b4d0c8
e3f62bcda55060e5fdac1000d38eabf645874e5b4b4faf673d2e26b1abf9862f
GET /wp-content/uploads/2020/08/favicon-100x100.png HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Cookie: _ga_VX42D3XJQ4=GS1.1.1662651588.1.0.1662651589.0.0.0; _ga=GA1.1.1016690225.1662651589
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 15 Aug 2020 17:03:59 GMT
accept-ranges: bytes
content-length: 11355
content-type: image/png
date: Thu, 08 Sep 2022 15:39:57 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b544c4d2427305f830d70cd40f2e5263
f8d3fbf9d368742f894816ea71d8cc9016078d1f
6f5bb81b798a2bb4ba854703b03d71c3cb1b0c0adb437f6ff863f1f7774c3005
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 15:39:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/https%3A/?random=1662651589876&cv=9&fst=1662649200000&num=1&label=%2Fmgpbuilders.com%2Fwp-admin%2Fmaint%2Flogin%2Fadmin%2Flogin.php&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg8v0&sendb=1&frm=0&url=https%3A%2F%2Fmgpbuilders.com%2Fwp-admin%2Fmaint%2Flogin%2Fadmin%2Flogin.php&tiba=MGP%20Builders&async=1&fmt=3&is_vtc=1&random=1521584707&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/https%3A/?random=1662651589876&cv=9&fst=1662649200000&num=1&label=%2Fmgpbuilders.com%2Fwp-admin%2Fmaint%2Flogin%2Fadmin%2Flogin.php&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg8v0&sendb=1&frm=0&url=https%3A%2F%2Fmgpbuilders.com%2Fwp-admin%2Fmaint%2Flogin%2Fadmin%2Flogin.php&tiba=MGP%20Builders&async=1&fmt=3&is_vtc=1&random=1521584707&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/https%3A/?random=1662651589876&cv=9&fst=1662649200000&num=1&label=%2Fmgpbuilders.com%2Fwp-admin%2Fmaint%2Flogin%2Fadmin%2Flogin.php&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg8v0&sendb=1&frm=0&url=https%3A%2F%2Fmgpbuilders.com%2Fwp-admin%2Fmaint%2Flogin%2Fadmin%2Flogin.php&tiba=MGP%20Builders&async=1&fmt=3&is_vtc=1&random=1521584707&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Sep 2022 15:39:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b544c4d2427305f830d70cd40f2e5263
f8d3fbf9d368742f894816ea71d8cc9016078d1f
6f5bb81b798a2bb4ba854703b03d71c3cb1b0c0adb437f6ff863f1f7774c3005
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 15:39:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.106200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 08 Sep 2022 15:39:57 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.106200 OK 720 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.106:0
Hash c9bf22dc131094e9a77fef0297b63450
71752935455e22c763edefac357502d748c1bccd
60e02c3bc7fe685a04bf2714a80562f793e57ef774724ce48d66ff506181a796
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 938
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 08 Sep 2022 15:39:57 GMT
server: ESF
cache-control: private
content-length: 118
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
collectcdn.com/launcher.js
104.21.21.78200 OK 0 B URL HTTP/2 collectcdn.com/launcher.js
IP 104.21.21.78:0
GET /launcher.js HTTP/1.1
Host: collectcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 15:39:56 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=93942
etag: W/"702e31f3dc77d79bad2fa28d10a11993"
last-modified: Sun, 21 Aug 2022 05:08:30 GMT
x-amz-id-2: 8Qn0PpR9K2PAWKvUCXO2ic1GA9k4rM8q0oYuO6YlhyMKfXXsd6x8QGxh7p+n6iWVnH8jTRPTQ+4=
x-amz-request-id: NBY7D3E8RWNGRJGG
x-amz-version-id: HourxxVpLYjefthnhaCGZAaeePKJP0A_
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4541
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rBkZIalJ34ZEl7srOSzVXNhKV%2BuXDikgo1kRiXc499iyBRj3bL%2FKJaiEV8rfe1ITSz%2FbBL%2BVcChlCw0w%2B3Bqe3oVHelMP8qoQ8Awq76YcTCO%2BeOFvoZ8l9YRWu30ralmmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7478c79c78fa0b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/js/dropzone.js
208.91.199.159200 OK 0 B URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/js/dropzone.js
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/js/dropzone.js HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:33:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-admin/maint/login/admin/img/properties/properties-6.jpg
208.91.199.159404 Not Found 0 B URL HTTP/2 mgpbuilders.com/wp-admin/maint/login/admin/img/properties/properties-6.jpg
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
GET /wp-admin/maint/login/admin/img/properties/properties-6.jpg HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://mgpbuilders.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
content-length: 11740
content-type: text/html; charset=UTF-8
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,300,600,700,800%7CPlayfair+Display:400,700%7CRoboto:100,300,400,400i,500,700
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,300,600,700,800%7CPlayfair+Display:400,700%7CRoboto:100,300,400,400i,500,700
IP 142.250.74.10:0
GET /css?family=Open+Sans:400,300,600,700,800%7CPlayfair+Display:400,700%7CRoboto:100,300,400,400i,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Sep 2022 15:39:55 GMT
date: Thu, 08 Sep 2022 15:39:55 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/css/bootstrap.min.css
208.91.199.159200 OK 0 B URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/css/bootstrap.min.css
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
GET /wp-content/themes/MGPNEW/css/bootstrap.min.css HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:31:27 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.youtube.com/embed/5e0LxrLSzok
216.58.207.238200 OK 0 B URL HTTP/2 www.youtube.com/embed/5e0LxrLSzok
IP 216.58.207.238:0
GET /embed/5e0LxrLSzok HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 08 Sep 2022 15:39:56 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=QadxtMjzR5Q; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=uz9C3Fzjia4; Domain=.youtube.com; Expires=Tue, 07-Mar-2023 15:39:56 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+991; expires=Sat, 07-Sep-2024 15:39:56 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
unpkg.com/aos@2.3.1/dist/aos.css
104.16.125.175200 OK 0 B URL HTTP/2 unpkg.com/aos@2.3.1/dist/aos.css
IP 104.16.125.175:0
GET /aos@2.3.1/dist/aos.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 15:39:55 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Thu, 17 May 2018 22:11:13 GMT
etag: W/"65c5-BVfTdFS2f0LyyxAeV+UHD7EZNXA"
via: 1.1 fly.io
fly-request-id: 01G754J040XBCARD93ACQA76A4-fra
cf-cache-status: HIT
age: 5695268
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7478c797ab5f0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Libre+Franklin%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C800%2C800i&subset=latin%2Clatin-ext&display=fallback
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Libre+Franklin%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C800%2C800i&subset=latin%2Clatin-ext&display=fallback
IP 142.250.74.10:0
GET /css?family=Libre+Franklin%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C800%2C800i&subset=latin%2Clatin-ext&display=fallback HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Sep 2022 15:39:55 GMT
date: Thu, 08 Sep 2022 15:39:55 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mgpbuilders.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
208.91.199.159200 OK 0 B URL HTTP/2 mgpbuilders.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 May 2019 04:25:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/plugins/wp-whatsapp/assets/dist/css/style.css?ver=5.4.2
208.91.199.159200 OK 0 B URL HTTP/2 mgpbuilders.com/wp-content/plugins/wp-whatsapp/assets/dist/css/style.css?ver=5.4.2
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-whatsapp/assets/dist/css/style.css?ver=5.4.2 HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Apr 2022 10:46:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/js/jquery.mCustomScrollbar.concat.min.js
208.91.199.159200 OK 0 B URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/js/jquery.mCustomScrollbar.concat.min.js
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/MGPNEW/js/jquery.mCustomScrollbar.concat.min.js HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 27 May 2020 10:33:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/css/style.css
208.91.199.159200 OK 0 B URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/css/style.css
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
GET /wp-content/themes/MGPNEW/css/style.css HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 24 Jul 2022 18:57:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2
mgpbuilders.com/wp-content/themes/MGPNEW/style.css?ver=20190507
208.91.199.159200 OK 0 B URL HTTP/2 mgpbuilders.com/wp-content/themes/MGPNEW/style.css?ver=20190507
IP 208.91.199.159:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
GET /wp-content/themes/MGPNEW/style.css?ver=20190507 HTTP/1.1
Host: mgpbuilders.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mgpbuilders.com/wp-admin/maint/login/admin/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Jul 2020 18:57:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Thu, 08 Sep 2022 15:39:55 GMT
server: Apache
X-Firefox-Spdy: h2