| dwfm.co.uk/ | 80.244.176.112 | 301 Moved Permanently | 162 B |
IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer | Verdict | Alert | fortinet | Malware | |
GET / HTTP/1.1
Host: dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 08 Dec 2022 04:01:34 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.dwfm.co.uk/
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash7181eff9c60e83eb0004ece591e47dca 0fd8cd0c9d10b0547938982e57d2c43e2d98679f 89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11558
Expires: Thu, 08 Dec 2022 07:14:12 GMT
Date: Thu, 08 Dec 2022 04:01:34 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash388f6fea5bafa378266622b72311a6ee 447f102dc12172ce1ba44c5e94e1d7bb49d43372 a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14126
Expires: Thu, 08 Dec 2022 07:57:00 GMT
Date: Thu, 08 Dec 2022 04:01:34 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash14cd9a0afb6ba9a763651d5112760d1e 75d7b104ab9ab11fbb73c3f348b43b0119b5adfa 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 08 Dec 2022 03:08:07 GMT
content-type: application/json
age: 3207
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashc3470f9f0a4df8c1496b577fa9435ff6 f83b0226bb57ed0f3e1acdad61b940414add135d f542579e3a3577a646babde862282c2afda6ed784360a915143216100f7a3d91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F542579E3A3577A646BABDE862282C2AFDA6ED784360A915143216100F7A3D91"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4706
Expires: Thu, 08 Dec 2022 05:20:00 GMT
Date: Thu, 08 Dec 2022 04:01:34 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash53341dea33f4f3d9b4966f80589f429a 20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: r6qh9TGMd3iN+Lh4DPY3CZXhTaKUW4Ae16yz3pRTxmt0zQQcMIwndIN7faLb6Gnv4Np+ct+JSMQ=
x-amz-request-id: WNXJH81JJ8ANSTMY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 03:49:37 GMT
age: 717
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash4f22c658fd0c8481e5a6130d4d508868 cf7461114d146ad6a4c5ece7e72c9a2bff815848 9ba367e536f3ed534df16058f7a97770734b1782ddca31b70b4ece0bd3d66aa9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BA367E536F3ED534DF16058F7A97770734B1782DDCA31B70B4ECE0BD3D66AA9"
Last-Modified: Thu, 08 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21549
Expires: Thu, 08 Dec 2022 10:00:43 GMT
Date: Thu, 08 Dec 2022 04:01:34 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash6ec5f6261a8262e9f94b29627f54cefe 7ac766cf2ac8c2d960ec033388a767ff8a7d45e2 5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 04:01:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash30aec170d58f580f2ed4da4b92d72cc7 3b11a98ba9563f7f266e7a935e3b78bd0c0712aa 7b25e66e4383cdb29228d0451a4810eeab7d194ca81045e066c00c9467f29312
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 04:01:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash9084a518c70ad57bb3226fb519b648fd 79348ebe6f5900a035d4d65e08a7409fd9708f15 f0c6b0f66c31aa7cb2d2808eb4c04c3681d48e731efc8cbba0f3fef1d218ce7b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 04:01:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 08 Dec 2022 03:07:55 GMT
age: 3219
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api.js?render=explicit&ver=3.8.0 | 216.58.207.228 | 200 OK | 554 B |
URL HTTP/2www.google.com/recaptcha/api.js?render=explicit&ver=3.8.0 IP216.58.207.228:0
File typeASCII text, with very long lines (852), with no line terminators Hash0a628b8a14a877262721824930709597 31bbb380c04a4229a099a1fb6dea09cf717bcb5f 6c63432c24b1f8eed67f792c68214710fd6444ede5c28f56202e966770d20121
GET /recaptcha/api.js?render=explicit&ver=3.8.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 08 Dec 2022 04:01:34 GMT
date: Thu, 08 Dec 2022 04:01:34 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 554
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=UA-237198524-1 | 142.250.74.40 | 200 OK | 44 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=UA-237198524-1 IP142.250.74.40:0
File typeASCII text, with very long lines (1921) Hash087a5c88e0b1554e47ccae0374aa3749 60e4db580bcdc771ea53cc96351755724c3af4c1 c83b9449551052195fd034546dcc81ef9150cce3152a1319d53d67093444f29c
GET /gtag/js?id=UA-237198524-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 08 Dec 2022 04:01:34 GMT
expires: Thu, 08 Dec 2022 04:01:34 GMT
cache-control: private, max-age=900
last-modified: Thu, 08 Dec 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43633
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/08/2.jpg | 80.244.176.112 | 200 OK | 70 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/08/2.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 505x674, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash837d5dac0330f4604e77bf5f39509bcd 174f13ff3b157672d770220c17f5df3540d95ad5 34dea97c7bc64a98116cd89e7544a2b9263167164cbe132433ee4c1caa659afd
GET /wp-content/uploads/2022/08/2.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: image/webp
content-length: 69970
last-modified: Wed, 07 Sep 2022 10:51:10 GMT
etag: "11152-5e81417371cc6"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:34 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/08/2-2.jpg | 80.244.176.112 | 200 OK | 37 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/08/2-2.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 439x329, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash5fed8b5e3c0c3577186d8fff84769cce 4d252a6df8b35ee613edf772ad20b0e6f22bda0a 9c10c295825248fa6b17abbf415ec6f729bdab7814970802553eaef82dfc31f2
GET /wp-content/uploads/2022/08/2-2.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: image/webp
content-length: 37240
last-modified: Wed, 07 Sep 2022 10:51:10 GMT
etag: "9178-5e8141738515f"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:34 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/08/1-3.jpg | 80.244.176.112 | 200 OK | 37 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/08/1-3.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 609x457, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash759aa6789176b956749fff297ead8c84 bee921f146ac437416d61bdea7c31f2d234db5be 56a6e8651c5e38216f0e8fad09ecf0fa145ccaa904cd176aace9f8685b6c7f61
GET /wp-content/uploads/2022/08/1-3.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: image/webp
content-length: 37286
last-modified: Wed, 07 Sep 2022 10:51:10 GMT
etag: "91a6-5e814173f5641"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:34 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/08/1.jpg | 80.244.176.112 | 200 OK | 60 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/08/1.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 502x670, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash79348988937f9aa0447bc89b1468faf4 1c74bd29e40659a8c1e410436f9fa7e192f5b645 6a62d9e25481a3dcf6c7040eae2e80a10ce879969a98afff780703258e0dc6ca
GET /wp-content/uploads/2022/08/1.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: image/webp
content-length: 60188
last-modified: Wed, 07 Sep 2022 10:51:10 GMT
etag: "eb1c-5e814173ec5b9"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:34 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/08/5.jpg | 80.244.176.112 | 200 OK | 46 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/08/5.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 580x435, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hashb55e3372c8897d7bf1ea78974d3d6c80 450e3d8d9f6ec98fec416629c87810b064ac3229 330eef15f6057e7f993750a9ab04b30dae0ec349343f18fdfa87877c505093fd
GET /wp-content/uploads/2022/08/5.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: image/webp
content-length: 46494
last-modified: Wed, 07 Sep 2022 10:51:08 GMT
etag: "b59e-5e8141722fc67"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:34 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/08/4-1.jpg | 80.244.176.112 | 200 OK | 67 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/08/4-1.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 527x395, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash6128602d379dfc66e377be4ccbc0ed40 1ad1591fb86bc14df10ac6bd5a29948f75b19af5 dcee4cafbe284402487660c2b7c757e832f90ff6a554435dda4fe5c4b9f18a20
GET /wp-content/uploads/2022/08/4-1.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: image/webp
content-length: 67332
last-modified: Wed, 07 Sep 2022 10:51:09 GMT
etag: "10704-5e814172a7e49"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:34 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/08/1-2.jpg | 80.244.176.112 | 200 OK | 41 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/08/1-2.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 551x413, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash0501c327c02c8e1c283851ef47b0376c 8a8120df43bfbfc0c696929ee0918aef2ac193ba ac7f2aee4e42ae807b3dd9cf0aa0d12a15314cfce613fbb10599d42335ea9120
GET /wp-content/uploads/2022/08/1-2.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: image/webp
content-length: 40758
last-modified: Wed, 07 Sep 2022 10:51:10 GMT
etag: "9f36-5e8141744ad73"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:34 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/08/3.jpg | 80.244.176.112 | 200 OK | 27 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/08/3.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 432x576, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash8b57e44ba8e6946e1f5a422488007d29 99ab7640f81ef509c003b3977f14cdfe415b5182 ec8f33f85d3b01c703de58e89c0882ec70a8e1b5a2a0827187fccc3fd118ba46
GET /wp-content/uploads/2022/08/3.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: image/webp
content-length: 27370
last-modified: Wed, 07 Sep 2022 10:51:09 GMT
etag: "6aea-5e814172fba23"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:34 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/08/3-3.jpg | 80.244.176.112 | 200 OK | 29 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/08/3-3.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 532x399, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash10683276be233c266b617c7b10a9cd87 b9c5bac33615405d0992d4799c79ba47ed27327c b66e6b1059142f52fa3a8baf2c030bc296d12063cd7eb7291f6a82e854a2f672
GET /wp-content/uploads/2022/08/3-3.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: image/webp
content-length: 28892
last-modified: Wed, 07 Sep 2022 10:51:09 GMT
etag: "70dc-5e81417302784"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:34 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/08/4.jpg | 80.244.176.112 | 200 OK | 32 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/08/4.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 428x571, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash708b96ff040c2c92eff8787056b158da fdc58f710b0f94e4307f73a224fafbd5d45bd825 bb182e583c19609c25c4fef6eeb73b03603d1fb1d6cea6bb126b9b440b73c21f
GET /wp-content/uploads/2022/08/4.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: image/webp
content-length: 32508
last-modified: Wed, 07 Sep 2022 10:51:09 GMT
etag: "7efc-5e81417292689"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:34 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/cache/autoptimize/css/autoptimize_12b01d2350e11a8f658f3e3331a06a59.css | 80.244.176.112 | 200 OK | 106 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/cache/autoptimize/css/autoptimize_12b01d2350e11a8f658f3e3331a06a59.css IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeASCII text, with very long lines (38375) Size106 kB (105638 bytes) Hash281c60a5cdb4c2dba695c404cee8b0ac c165d6625d2e90002fe6e80be5b4436e65c2ff08 1bf081205a41109c30713eb2a0369d7b50327a21d1511034d3cdf0f4685b8e43
GET /wp-content/cache/autoptimize/css/autoptimize_12b01d2350e11a8f658f3e3331a06a59.css HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 03:09:00 GMT
vary: Accept-Encoding
cache-control: max-age=30672000, public, immutable
expires: Tue, 28 Nov 2023 04:01:34 GMT
etag: W/"6374544c-fd2c1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/08/2-3.jpg | 80.244.176.112 | 200 OK | 32 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/08/2-3.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 539x404, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash82aac14f986caaf357b88a3bf8aa5746 e321f4fabea83a114b37a3929574142fdea574f3 f79981e09b0ab4993fcd23984eb170a89bbe2977e1ab060f475b5c6b0454e5c9
GET /wp-content/uploads/2022/08/2-3.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: image/webp
content-length: 32116
last-modified: Wed, 07 Sep 2022 10:51:10 GMT
etag: "7d74-5e814173791f6"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:34 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/08/3-2.jpg | 80.244.176.112 | 200 OK | 34 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/08/3-2.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 311x414, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hashc7b483b45ea786d97311edadba20de5c 5d1106dcbe397fca53bbe3698e841d52ca656555 3c3754b3eecd492b61c53049d84afb0924e09cd9e5520fc6fc1007c0fa3d7a51
GET /wp-content/uploads/2022/08/3-2.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: image/webp
content-length: 34188
last-modified: Wed, 07 Sep 2022 10:51:09 GMT
etag: "858c-5e8141730db34"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:34 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/08/8.jpg | 80.244.176.112 | 200 OK | 113 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/08/8.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 490x654, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size113 kB (113290 bytes) Hash2481d77ea7e0dda2eba2ef9e05a5134a 231937d02b5d372e26bbfd94b43a50afd81a4d5a 65fae5874eecfe79baaa9f52041be0ac067dbd6668664977f741c23d3782e5ac
GET /wp-content/uploads/2022/08/8.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: image/webp
content-length: 113290
last-modified: Wed, 07 Sep 2022 10:51:08 GMT
etag: "1ba8a-5e814171c16c4"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:34 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash3074a66f6d9b2e2af9b41ec0e2f4e2db 942e2c49b3848f11da966937f5914c62aed24bce 7c3b21b91aab06aff58cc56ce4b7273a7d320df8b0b4ad685c660e03ba0b72aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 04:01:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.dwfm.co.uk/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.3 | 80.244.176.112 | 200 OK | 4.3 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.3 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeASCII text, with very long lines (16935), with no line terminators Hash93089f4c9a3ebffd511429e0f1d55e17 6d20a744a1da01dfb4634190879ebf22c5e4801c 209f4d4e9aadef815fddbc443266572b217d28cf8539d6e106beffe45291a8e4
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.3 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/javascript
last-modified: Fri, 04 Nov 2022 12:07:23 GMT
vary: Accept-Encoding
etag: W/"6365007b-4227"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashcd6dabd083ee1c237c8ea3ba38cc48d5 bbe4420bf1c0fe0d5621336865563418d2f16f39 c9314cdac13bc2ea94505f473538ab4d5c0a940dfbc2f5447e6f22a5af580572
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 04:01:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash0e9eef4ed41ef94e9ea175ad243e294e b6f83e508270413dabe55e2884b5409ca7978e24 0e741ca8d92717128bca7aed937bca43519a8d20a9d3dd8670da656ad51a695e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 04:01:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashec6ece82a7cb8faa3ba171efae3a9eda 7ee75fba9a9d1078960f7834d71961c38f514b82 301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 04:01:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/lora/v26/0QIvMX1D_JOuMwr7Iw.woff2 | 216.58.207.227 | 200 OK | 36 kB |
URL HTTP/2fonts.gstatic.com/s/lora/v26/0QIvMX1D_JOuMwr7Iw.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 35660, version 1.0\012- data Hash0d0d3e5824e5e67a9e993960df2b67a9 328d67bb1d5899a7809df9f4385181863fd035f1 38da98e06ba18c4204f547d30572cd81a2dd3fd5438d306856d2617480ee8639
GET /s/lora/v26/0QIvMX1D_JOuMwr7Iw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dwfm.co.uk
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35660
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 08:31:54 GMT
expires: Fri, 01 Dec 2023 08:31:54 GMT
cache-control: public, max-age=31536000
age: 588581
last-modified: Mon, 15 Aug 2022 18:07:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dwfm.co.uk
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:33:54 GMT
expires: Thu, 07 Dec 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 30461
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2 | 216.58.207.227 | 200 OK | 39 kB |
URL HTTP/2fonts.gstatic.com/s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 39056, version 1.0\012- data Hashab20a3cbee44939ad33cb2d162484f23 f4df3e71cc8aebd85b6207d4ac35c76c602c2779 0a1dc89a4a29593bd35cc4811bfedd9765eeca4a9ef57323eec2cff14c9f9c5b
GET /s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dwfm.co.uk
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39056
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 19:30:54 GMT
expires: Tue, 05 Dec 2023 19:30:54 GMT
cache-control: public, max-age=31536000
age: 203441
last-modified: Mon, 15 Aug 2022 18:05:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/09/bef-aft.jpg | 80.244.176.112 | 200 OK | 1.8 MB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/09/bef-aft.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 3464x3464, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size1.8 MB (1790296 bytes) Hash1e1d2bda6fd323a17a1924b9e59c4123 e0a5f130b718d69b31dc7a9e12f33b48a7a3c97a ae0aaa32a474d0d35e53c6808dfe85e5b05c990946f249951703e24f08ffd2f0
GET /wp-content/uploads/2022/09/bef-aft.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: image/webp
content-length: 1790296
last-modified: Fri, 16 Sep 2022 11:32:50 GMT
etag: "1b5158-5e8c9b8d2b646"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:34 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/09/kitchen.jpg | 80.244.176.112 | 200 OK | 526 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/09/kitchen.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 3024x4032, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size526 kB (526120 bytes) Hash423f8365ec7737c142d07f0b39f99969 dd248afbe1b96c2d4990c946ba43f565b644d8fd dd3df7cc3405117e928ec37925a57c6c21cef51054ff438ccec4ddbc7e2ea15c
GET /wp-content/uploads/2022/09/kitchen.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: image/webp
content-length: 526120
last-modified: Fri, 16 Sep 2022 11:32:56 GMT
etag: "80728-5e8c9b92c24f0"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:34 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/cache/autoptimize/css/autoptimize_single_910c1ffb46ffb9b1d39bdce61af5cb26.css?ver=1667472997 | 80.244.176.112 | 200 OK | 16 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/cache/autoptimize/css/autoptimize_single_910c1ffb46ffb9b1d39bdce61af5cb26.css?ver=1667472997 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeASCII text, with very long lines (44299), with no line terminators Hash604cfb533df8972e1b4aac056bcf1c24 6abe6c81bea83a41d25a752050c0df8807521a65 a101333b0d4cfd7ec57389c9de72abe11511dbe80ed4458902ebd9c163168c05
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /wp-content/cache/autoptimize/css/autoptimize_single_910c1ffb46ffb9b1d39bdce61af5cb26.css?ver=1667472997 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: text/css
last-modified: Mon, 14 Nov 2022 14:05:59 GMT
vary: Accept-Encoding
cache-control: max-age=30672000, public, immutable
expires: Tue, 28 Nov 2023 04:01:34 GMT
etag: W/"63724b47-ad0b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash0e9eef4ed41ef94e9ea175ad243e294e b6f83e508270413dabe55e2884b5409ca7978e24 0e741ca8d92717128bca7aed937bca43519a8d20a9d3dd8670da656ad51a695e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 04:01:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| push.services.mozilla.com/ | 52.38.139.17 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.38.139.17:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VK2Wsdip2zDBV22gb+Zjaw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 9AuiHvmZOvkEXrQSpjHHrpDDeKs=
|
|
| www.dwfm.co.uk/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.0 | 80.244.176.112 | 200 OK | 105 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.0 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeASCII text, with very long lines (43101) Size105 kB (105336 bytes) Hashe91feeecf6884c36f8f46bbea6cf73a9 9f138d3e3c6c99ef3b04c5fe9dce6e940b96a1b7 aef18604008c6221b536d6a38c408c01afb30c37354640d5f6623bdd011caef9
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.0 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 10:05:29 GMT
vary: Accept-Encoding
etag: W/"63639269-a884"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/09/secretary.jpg | 80.244.176.112 | 200 OK | 951 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/09/secretary.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 3024x4032, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size951 kB (951436 bytes) Hash88b07bb6c47e4e3838d0b0e77584e0d7 56180d56598ba5094f03ce099486ecafb206d994 5dce1ac3047b75d1702f01fc5c18385c9f503affba485933c82651b61d973c13
GET /wp-content/uploads/2022/09/secretary.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: image/webp
content-length: 951436
last-modified: Fri, 16 Sep 2022 11:33:02 GMT
etag: "e848c-5e8c9b98bd914"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:34 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/08/stock-photo-low-angle-view-of-skyscrapers-in-shenzhen-china-526689706.jpg | 80.244.176.112 | 200 OK | 385 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/08/stock-photo-low-angle-view-of-skyscrapers-in-shenzhen-china-526689706.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1500x999, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size385 kB (384672 bytes) Hash28740ced7c4557167a571d6de93810cf 2aa0961edd442c7e30fbb6b05a6dd897a2146661 07e04cbc1d97ef2d873b468e82c85167e37aa3d48985c048bb01a47f5386733b
GET /wp-content/uploads/2022/08/stock-photo-low-angle-view-of-skyscrapers-in-shenzhen-china-526689706.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/wp-content/cache/autoptimize/css/autoptimize_single_a5cac1b0b7b5795ca7d34c678d3a5730.css?ver=1668434748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:35 GMT
content-type: image/webp
content-length: 384672
last-modified: Wed, 07 Sep 2022 10:50:58 GMT
etag: "5dea0-5e814168c2eb5"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:35 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/07/stock-photo-renovation-concept-apartment-before-and-after-restoration-or-refurbishment-1163474824.jpg | 80.244.176.112 | 200 OK | 190 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/07/stock-photo-renovation-concept-apartment-before-and-after-restoration-or-refurbishment-1163474824.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1500x943, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size190 kB (189778 bytes) Hashda08dc98c5ea908744f031218dec92f3 fa7661b4a944edb74414f64a990b9dc0e4bdb045 5069144161a319661e36894fc838626e0d1f5bf77d6a7301b0e47b7f35b8ed49
GET /wp-content/uploads/2022/07/stock-photo-renovation-concept-apartment-before-and-after-restoration-or-refurbishment-1163474824.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/wp-content/cache/autoptimize/css/autoptimize_single_a5cac1b0b7b5795ca7d34c678d3a5730.css?ver=1668434748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:35 GMT
content-type: image/webp
content-length: 189778
last-modified: Wed, 07 Sep 2022 10:51:27 GMT
etag: "2e552-5e814183af899"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:35 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/08/stock-photo-construction-workers-install-new-roofs-roofing-tools-and-fall-protection-devices-apply-to-new-1969671406.jpg | 80.244.176.112 | 200 OK | 195 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/08/stock-photo-construction-workers-install-new-roofs-roofing-tools-and-fall-protection-devices-apply-to-new-1969671406.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1500x999, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size195 kB (195114 bytes) Hash9c43c5cb37b11e510df84398b48dc8ad 8df4cc1170df526fad8b07e14d91be49091fd4af b0475682bf58a49aa3429953c9fb1fb89a855f8811dd42b109d267eb3729ffc7
GET /wp-content/uploads/2022/08/stock-photo-construction-workers-install-new-roofs-roofing-tools-and-fall-protection-devices-apply-to-new-1969671406.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/wp-content/cache/autoptimize/css/autoptimize_single_a5cac1b0b7b5795ca7d34c678d3a5730.css?ver=1668434748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:35 GMT
content-type: image/webp
content-length: 195114
last-modified: Wed, 07 Sep 2022 10:51:01 GMT
etag: "2fa2a-5e81416b1cf94"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:35 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/08/stock-photo-outdoor-maintenance-landscape-maintenance-1079466986.jpg | 80.244.176.112 | 200 OK | 369 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/08/stock-photo-outdoor-maintenance-landscape-maintenance-1079466986.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1500x999, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size369 kB (369128 bytes) Hash468846d63f3ab747792eb6bd72f3aef7 32f1d0eb88ef80b9f21fabd79a6ab187740ad9f2 9dbc62fbf976eb2d36952c0ccb7fbb72930150fd8ce3b1d84122f41ca06844a9
GET /wp-content/uploads/2022/08/stock-photo-outdoor-maintenance-landscape-maintenance-1079466986.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/wp-content/cache/autoptimize/css/autoptimize_single_a5cac1b0b7b5795ca7d34c678d3a5730.css?ver=1668434748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:35 GMT
content-type: image/webp
content-length: 369128
last-modified: Wed, 07 Sep 2022 10:50:55 GMT
etag: "5a1e8-5e814165c394b"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:35 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/08/stock-photo-commercial-residential-interior-design-services-serious-focused-professional-designers-team-688688722.jpg | 80.244.176.112 | 200 OK | 124 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/08/stock-photo-commercial-residential-interior-design-services-serious-focused-professional-designers-team-688688722.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1500x1000, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size124 kB (124080 bytes) Hashd005afc58ca975f832924f2fbe51922c 1d8785bc8dee36d2ebbab654087bb13c25060a3e eb533c4238450f6dfba3448f80e6b07cf062b7452d874c3fb60a1163d985a8e8
GET /wp-content/uploads/2022/08/stock-photo-commercial-residential-interior-design-services-serious-focused-professional-designers-team-688688722.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/wp-content/cache/autoptimize/css/autoptimize_single_a5cac1b0b7b5795ca7d34c678d3a5730.css?ver=1668434748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:35 GMT
content-type: image/webp
content-length: 124080
last-modified: Wed, 07 Sep 2022 10:51:02 GMT
etag: "1e4b0-5e81416c41f1b"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:35 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 | 80.244.176.112 | 200 OK | 78 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeWeb Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data Hashe8a427e15cc502bef99cfd722b37ea98 a9922842a120a7f1eaced667480c5e185a106d69 d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.dwfm.co.uk/wp-content/cache/autoptimize/css/autoptimize_12b01d2350e11a8f658f3e3331a06a59.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:35 GMT
content-type: font/woff2
content-length: 78196
last-modified: Thu, 03 Nov 2022 10:05:29 GMT
etag: "63639269-13174"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 | 80.244.176.112 | 200 OK | 77 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeWeb Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data Hashf7307680c7fe85959f3ecf122493ea7d fce0da592a3e536d6d5df5b50cb513398d8c5161 43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.dwfm.co.uk/wp-content/cache/autoptimize/css/autoptimize_12b01d2350e11a8f658f3e3331a06a59.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:35 GMT
content-type: font/woff2
content-length: 76764
last-modified: Thu, 03 Nov 2022 10:05:29 GMT
etag: "63639269-12bdc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.0 | 80.244.176.112 | 200 OK | 149 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.0 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeASCII text, with very long lines (3808) Size149 kB (148760 bytes) Hash4e6edb014ee79bb8cfa01babe8cb2307 a86378e66b7119f155fdf7c12099c1fe0a6ada50 01cb61c1114f166001a39dda57f8a98f6c720da0fe422d0b99aae556059c1e2e
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.0 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 10:05:33 GMT
vary: Accept-Encoding
etag: W/"6363926d-ee1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/08/stock-photo-cleaning-tools-cart-wait-for-maid-or-cleaner-in-the-airport-bucket-and-set-of-cleaning-equipment-1298837578.jpg | 80.244.176.112 | 200 OK | 162 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/08/stock-photo-cleaning-tools-cart-wait-for-maid-or-cleaner-in-the-airport-bucket-and-set-of-cleaning-equipment-1298837578.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1500x998, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size162 kB (162234 bytes) Hash0c4742516024b01ce2f7566a8ff205c4 95b0e34839a3f035079a9bc7d90f34c61812fc81 2f943c587e2d067d03acc42ba1684a305a37ab28ba06b2b1c19a3278898a7ad7
GET /wp-content/uploads/2022/08/stock-photo-cleaning-tools-cart-wait-for-maid-or-cleaner-in-the-airport-bucket-and-set-of-cleaning-equipment-1298837578.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/wp-content/cache/autoptimize/css/autoptimize_single_a5cac1b0b7b5795ca7d34c678d3a5730.css?ver=1668434748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:35 GMT
content-type: image/webp
content-length: 162234
last-modified: Wed, 07 Sep 2022 10:51:03 GMT
etag: "279ba-5e81416ce3cf6"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:35 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/07/stock-photo-silhouette-engineer-standing-orders-for-construction-crews-to-work-on-high-ground-heavy-industry-426500653-1.jpg | 80.244.176.112 | 200 OK | 144 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/07/stock-photo-silhouette-engineer-standing-orders-for-construction-crews-to-work-on-high-ground-heavy-industry-426500653-1.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1500x997, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size144 kB (144040 bytes) Hashd59360a3cef3edb811441e410100b16a 886dbedfb5d256bc52c803e6224f839aae44314c ba8bafda680a3e0bd4c5859d4b0091f40154809a00534de8d792a613c541e854
GET /wp-content/uploads/2022/07/stock-photo-silhouette-engineer-standing-orders-for-construction-crews-to-work-on-high-ground-heavy-industry-426500653-1.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/wp-content/cache/autoptimize/css/autoptimize_single_a5cac1b0b7b5795ca7d34c678d3a5730.css?ver=1668434748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:35 GMT
content-type: image/webp
content-length: 144040
last-modified: Wed, 07 Sep 2022 10:51:22 GMT
etag: "232a8-5e81417f2f6e5"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:35 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/07/DWFM-1.jpg | 80.244.176.112 | 200 OK | 13 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/07/DWFM-1.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1000x246, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash8d3a5d3aef577c184b412d190133e32e d20569520e7730cf7fc310e4a490ea0200e865d3 7e9c71a643d6040e7fe633725a5e9c2a0078d1b95dda4983c4ac53949a84de1d
GET /wp-content/uploads/2022/07/DWFM-1.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:35 GMT
content-type: image/webp
content-length: 12888
last-modified: Wed, 07 Sep 2022 10:52:16 GMT
etag: "3258-5e8141b33ac01"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:35 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/08/stock-photo-the-office-building-is-at-dusk-1032620992.jpg | 80.244.176.112 | 200 OK | 285 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/08/stock-photo-the-office-building-is-at-dusk-1032620992.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1500x1062, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size285 kB (285402 bytes) Hashe230adc2f7230ba7a2abca96432568a1 137e47bd127aa3d08c9cbb968ddc4734cf03c9eb 43d274a6292abb5dbb781289015f9950b4256da18316948fbd8f53109325a3a8
GET /wp-content/uploads/2022/08/stock-photo-the-office-building-is-at-dusk-1032620992.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/wp-content/cache/autoptimize/css/autoptimize_single_a5cac1b0b7b5795ca7d34c678d3a5730.css?ver=1668434748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:35 GMT
content-type: image/webp
content-length: 285402
last-modified: Wed, 07 Sep 2022 10:50:51 GMT
etag: "45ada-5e814161d578b"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:35 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/08/stock-photo-modern-lobby-hallway-plaza-of-the-luxury-building-center-hotel-shopping-mall-business-center-387415087.jpg | 80.244.176.112 | 200 OK | 226 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/08/stock-photo-modern-lobby-hallway-plaza-of-the-luxury-building-center-hotel-shopping-mall-business-center-387415087.jpg IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1500x1000, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size226 kB (225860 bytes) Hash4d9166224c5e5e34766bdea4afbfd925 8bc4a66c586905983e3677a0bb3eca7c90265f41 86d8950b6a951cf42246ad5d4d4be60650768274e4209cde8de1a858f75a5c4c
GET /wp-content/uploads/2022/08/stock-photo-modern-lobby-hallway-plaza-of-the-luxury-building-center-hotel-shopping-mall-business-center-387415087.jpg HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/wp-content/cache/autoptimize/css/autoptimize_single_a5cac1b0b7b5795ca7d34c678d3a5730.css?ver=1668434748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:35 GMT
content-type: image/webp
content-length: 225860
last-modified: Wed, 07 Sep 2022 10:50:57 GMT
etag: "37244-5e81416764165"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:35 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/uploads/2022/07/fav.png | 80.244.176.112 | 200 OK | 3.5 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/uploads/2022/07/fav.png IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeRIFF (little-endian) data, Web/P image\012- data Hashb19dff0b328f611ccc8a7b9499f20795 94eafdf94aa62cf23b89af7b74027ca48bdd6790 f2ea7387971edcec11835fd0b1ee5912a29b930379e5aa363450f1c825bcf405
GET /wp-content/uploads/2022/07/fav.png HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Cookie: _ga_RD76LHDYJ0=GS1.1.1670472094.1.0.1670472094.0.0.0; _ga=GA1.1.282597464.1670472095; _wsm_id_1_da03=6cf75eb36d32fb54.1670472095.1.1670472095.1670472095; _wsm_ses_1_da03=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:35 GMT
content-type: image/webp
content-length: 3462
last-modified: Wed, 07 Sep 2022 10:52:14 GMT
etag: "d86-5e8141b15df0e"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 08 Dec 2023 04:01:35 GMT
vary: Accept
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 | 80.244.176.112 | 200 OK | 6.1 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeASCII text, with very long lines (12198), with no line terminators Hash833d5ba9dbf69667827a49842cb951d9 2b9c5b702379e339cca513d0428cd7f82134f4db 17e1f3aa4cd86f581193c290f92069d9948315f8152c8cefc5172fbaf080a812
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 10:05:29 GMT
vary: Accept-Encoding
etag: W/"63639269-2fa6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashc7a5f887bbc7d30b9cfe15163c3d8ddb 21d65790a1d10a06d198b54218365aa474126e1c 2a2e7930f967d947cc5293c95221913e24596773577bbf56ff402db6236bbda1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 04:01:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js | 142.250.74.35 | 200 OK | 163 kB |
URL HTTP/2www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js IP142.250.74.35:0
File typeASCII text, with very long lines (730) Size163 kB (162976 bytes) Hash79d18cf4265108d7cecca1bf4ada6109 e51d0285a545381d4c39e9e0292a650ffeeecbb9 59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dwfm.co.uk
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 13:40:02 GMT
expires: Thu, 07 Dec 2023 13:40:02 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 51693
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 142.250.74.14 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.14:0
File typeASCII text, with very long lines (1325) Hash47e6f374ca946fddd5b59871b325736c baa9282efc8785e84d247c3bff518eaa45f101c4 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 08 Dec 2022 02:46:55 GMT
expires: Thu, 08 Dec 2022 04:46:55 GMT
cache-control: public, max-age=7200
age: 4480
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashc7a5f887bbc7d30b9cfe15163c3d8ddb 21d65790a1d10a06d198b54218365aa474126e1c 2a2e7930f967d947cc5293c95221913e24596773577bbf56ff402db6236bbda1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 04:01:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google-analytics.com/j/collect?v=1&_v=j98&aip=1&a=408839408&t=pageview&_s=1&dl=https%3A%2F%2Fwww.dwfm.co.uk%2F&ul=en-us&de=UTF-8&dt=Home%20-%20DWFM&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YCDACUABBAAAACAAI~&jid=1003140185&gjid=234782779&cid=282597464.1670472095&tid=UA-237198524-1&_gid=859002329.1670472095&_r=1>m=2oubu0&did=dZTNiMT&gdid=dZTNiMT&z=525975782 | 142.250.74.14 | 200 OK | 1 B |
URL HTTP/2www.google-analytics.com/j/collect?v=1&_v=j98&aip=1&a=408839408&t=pageview&_s=1&dl=https%3A%2F%2Fwww.dwfm.co.uk%2F&ul=en-us&de=UTF-8&dt=Home%20-%20DWFM&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YCDACUABBAAAACAAI~&jid=1003140185&gjid=234782779&cid=282597464.1670472095&tid=UA-237198524-1&_gid=859002329.1670472095&_r=1>m=2oubu0&did=dZTNiMT&gdid=dZTNiMT&z=525975782 IP142.250.74.14:0
File typevery short file (no magic) Hashc4ca4238a0b923820dcc509a6f75849b 356a192b7913b04c54574d18c28d46e6395428ab 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?v=1&_v=j98&aip=1&a=408839408&t=pageview&_s=1&dl=https%3A%2F%2Fwww.dwfm.co.uk%2F&ul=en-us&de=UTF-8&dt=Home%20-%20DWFM&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YCDACUABBAAAACAAI~&jid=1003140185&gjid=234782779&cid=282597464.1670472095&tid=UA-237198524-1&_gid=859002329.1670472095&_r=1>m=2oubu0&did=dZTNiMT&gdid=dZTNiMT&z=525975782 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.dwfm.co.uk
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.dwfm.co.uk
date: Thu, 08 Dec 2022 04:01:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| region1.google-analytics.com/g/collect?v=2&tid=G-RD76LHDYJ0>m=2oebu0&_p=408839408&gdid=dZTNiMT&cid=282597464.1670472095&ul=en-us&sr=1280x1024&_s=1&sid=1670472094&sct=1&seg=0&dl=https%3A%2F%2Fwww.dwfm.co.uk%2F&dt=Home%20-%20DWFM&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 | 216.239.34.36 | 204 No Content | 0 B |
URL HTTP/2region1.google-analytics.com/g/collect?v=2&tid=G-RD76LHDYJ0>m=2oebu0&_p=408839408&gdid=dZTNiMT&cid=282597464.1670472095&ul=en-us&sr=1280x1024&_s=1&sid=1670472094&sct=1&seg=0&dl=https%3A%2F%2Fwww.dwfm.co.uk%2F&dt=Home%20-%20DWFM&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 IP216.239.34.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-RD76LHDYJ0>m=2oebu0&_p=408839408&gdid=dZTNiMT&cid=282597464.1670472095&ul=en-us&sr=1280x1024&_s=1&sid=1670472094&sct=1&seg=0&dl=https%3A%2F%2Fwww.dwfm.co.uk%2F&dt=Home%20-%20DWFM&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dwfm.co.uk
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.dwfm.co.uk
date: Thu, 08 Dec 2022 04:01:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/cache/autoptimize/css/autoptimize_single_8bc80168d3f9305faaf38c05335cd44f.css?ver=1667472997 | 80.244.176.112 | 200 OK | 18 kB |
URL HTTP/2www.dwfm.co.uk/wp-content/cache/autoptimize/css/autoptimize_single_8bc80168d3f9305faaf38c05335cd44f.css?ver=1667472997 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
File typeASCII text, with very long lines (43211), with no line terminators Hash763b0614bc7a328e65f7bae161a717e9 020671a3664bed17b5efe3a347d63b99e0986014 ec4b91b6f3df0a7ccd7d7f7bf58ebedfb64a09ad8287458c8d2660805786e11c
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /wp-content/cache/autoptimize/css/autoptimize_single_8bc80168d3f9305faaf38c05335cd44f.css?ver=1667472997 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: text/css
last-modified: Mon, 14 Nov 2022 14:05:59 GMT
vary: Accept-Encoding
cache-control: max-age=30672000, public, immutable
expires: Tue, 28 Nov 2023 04:01:34 GMT
etag: W/"63724b47-a8cb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 16:40:43 GMT
expires: Fri, 01 Dec 2023 16:40:43 GMT
cache-control: public, max-age=31536000
age: 559253
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash7b8c1870f03a90aac6370fc69516f95f 1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10101
Expires: Thu, 08 Dec 2022 06:49:57 GMT
Date: Thu, 08 Dec 2022 04:01:36 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash7b8c1870f03a90aac6370fc69516f95f 1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10101
Expires: Thu, 08 Dec 2022 06:49:57 GMT
Date: Thu, 08 Dec 2022 04:01:36 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash7b8c1870f03a90aac6370fc69516f95f 1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10101
Expires: Thu, 08 Dec 2022 06:49:57 GMT
Date: Thu, 08 Dec 2022 04:01:36 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash7b8c1870f03a90aac6370fc69516f95f 1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10101
Expires: Thu, 08 Dec 2022 06:49:57 GMT
Date: Thu, 08 Dec 2022 04:01:36 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95d68d20-ce48-4bc4-a89b-d42a294520bc.jpeg | 34.120.237.76 | 200 OK | 6.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95d68d20-ce48-4bc4-a89b-d42a294520bc.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash077c8b656d9ac4ecba7aea40ecaa4e0c 84b9d58a1cf4174f1a55b1c3475a09d579094f19 abf13120589f3c11466a6b3f65874565a78b3a25b047b2089dafdae0cdf71c08
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95d68d20-ce48-4bc4-a89b-d42a294520bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6656
x-amzn-requestid: 623488c8-42b4-43d0-a274-f35f4e2695c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4AwH11IAMFfCw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639106d1-1226750c2e9dbe517b1211e3;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Wvq8PJEuXz7Yf5QE2phHXPYPCLWzIR1MXWiJKyN84yHINqK6H_ZQrQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:21:33 GMT
etag: "84b9d58a1cf4174f1a55b1c3475a09d579094f19"
content-type: image/jpeg
age: 20403
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6524c56-aea0-48f9-a1c0-2eb8b37618cc.jpeg | 34.120.237.76 | 200 OK | 8.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6524c56-aea0-48f9-a1c0-2eb8b37618cc.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash39ae12151067969e63a9064a2b273e03 9450229c82f195e4b62c0862650dbb3d159b46e8 7b462d7f52643ca683c18d789d2adc4475c64e655489513a2faa1edbd69eecd3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6524c56-aea0-48f9-a1c0-2eb8b37618cc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8401
x-amzn-requestid: f90a46ff-cf1f-4a27-a85c-088fdca3abb4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4BDF1zIAMF-EA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639106d3-7496cf2770c9b22924b2a11c;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: R6ftXKYEOemnZcKjNanVHiKnPEQw34DUyLPODM5DCcqIGU50qVvNIA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 21:51:32 GMT
age: 22204
etag: "9450229c82f195e4b62c0862650dbb3d159b46e8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F234796b8-a59e-4174-a03a-b127b03b60eb.jpeg | 34.120.237.76 | 200 OK | 14 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F234796b8-a59e-4174-a03a-b127b03b60eb.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash57a992ab666f21c6da0057fefb622ff2 c36381d6744ae44360b2a37ca7586028e980714b afe4050d9b07dcab509c95eb8d75ca410db74bd59f39561e5d190550cb61503e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F234796b8-a59e-4174-a03a-b127b03b60eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13556
x-amzn-requestid: 3e79e2da-80ea-404c-8d87-939c7682dbe8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4h8EuUIAMFkIQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639107a5-68318f164708882a43fb0f12;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:37:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7RZTh3iQHGp_XffXQQw13UUWqPNZQFJ_e4pIvNPgAaA1aGy_cXMueA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:18:20 GMT
age: 20596
etag: "c36381d6744ae44360b2a37ca7586028e980714b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg | 34.120.237.76 | 200 OK | 6.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash210b27f5f6310d8fad640acce3d9ae0e 08d241e56622cb900754d95bc5d58ed8826d9f32 64410e13759cdfa24976dcba0c64aca27edc3ee56358f344e55f60793422e3ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: 0232ddcd-8274-431e-a55e-8298fbfd6dfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcuMG6bIAMFUng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e5a-3cc17121425f87321ce7ae7e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: va_vly0iX6rzm_aTWrryPRjoTWlI-_0m6rpS6VrTx-nsd71dk1cSZw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 08:32:51 GMT
age: 70125
etag: "08d241e56622cb900754d95bc5d58ed8826d9f32"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash57be99ac898a37d73f2ba4a24f56248f 04e32eb45581201a6a1863200e4d139df48285e6 a20081b64fc019372843360b15aa3461ec9dd3deb50ab398bca0a5e74d5468c2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12534
x-amzn-requestid: 2a01f2ba-cf3a-4f59-8339-214c66bcc0d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czDbyGTcoAMF_TQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911918-5d3eba8d01e4175a71acc6cd;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 22:52:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NoZlZ8WFfOuIbkWaC2pJPJQrWtjzz2gCHJWr-u-nMNYmu8MkTf6_PA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:03:58 GMT
age: 17858
etag: "04e32eb45581201a6a1863200e4d139df48285e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F525e2750-67bb-410b-9408-34845ca67f18.jpeg | 34.120.237.76 | 200 OK | 6.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F525e2750-67bb-410b-9408-34845ca67f18.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash1cfd2bbdab3f88f525c53c375a0e0439 b0a5af508496c98460212497f6e75a0ddfc7f2de 9fd863a6e673c348b4e5cbc3e4747d48e87b4699e9fed7ae9590e36ae72ad9c9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F525e2750-67bb-410b-9408-34845ca67f18.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6746
x-amzn-requestid: 50f40893-5343-473d-96ff-e59b0c7ec77e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy3_pFx6oAMF1cA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639106ca-79cff8fe348074d505426909;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: s4Zf3VmA9ybuz7NQdvaolSHSFvGyZ0niRgZtogYnTNWEatHRouG3Sw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 21:47:29 GMT
age: 22447
etag: "b0a5af508496c98460212497f6e75a0ddfc7f2de"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 | 80.244.176.112 | 200 OK | 0 B |
URL HTTP/2www.dwfm.co.uk/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 10:05:29 GMT
vary: Accept-Encoding
etag: W/"63639269-21f91"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Lora%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Lora%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 IP142.250.74.106:0
GET /css?family=Lora%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Dec 2022 04:01:34 GMT
date: Thu, 08 Dec 2022 04:01:34 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 | 80.244.176.112 | 200 OK | 0 B |
URL HTTP/2www.dwfm.co.uk/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
vary: Accept-Encoding
etag: W/"5fb4e3fe-2bd8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae | 80.244.176.112 | 200 OK | 0 B |
URL HTTP/2www.dwfm.co.uk/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 01:35:00 GMT
vary: Accept-Encoding
etag: W/"6361c944-27f6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.2 | 80.244.176.112 | 200 OK | 0 B |
URL HTTP/2www.dwfm.co.uk/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.2 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.2 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 10:05:25 GMT
vary: Accept-Encoding
etag: W/"63639265-222e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 | 80.244.176.112 | 200 OK | 0 B |
URL HTTP/2www.dwfm.co.uk/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 01:35:00 GMT
vary: Accept-Encoding
etag: W/"6361c944-53c0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.0 | 80.244.176.112 | 200 OK | 0 B |
URL HTTP/2www.dwfm.co.uk/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.0 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.0 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 10:05:29 GMT
vary: Accept-Encoding
etag: W/"63639269-a3c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/?wmcAction=wmcTrack&action_name=Home%20-%20DWFM&siteId=1&rec=1&rand=009523&h=4&m=1&s=35&url=https%3A%2F%2Fwww.dwfm.co.uk%2F&uid=0&pid=13&visitorId=6cf75eb36d32fb54&fvts=1670472095&vc=1&idn=0&refts=0&lvts=1670472095&fullRef=dwfm.co.uk&send_image=1&cookie=1&res=1280x1024>ms=86&pvId=8ItAgZ&browser=Firefox_105&os=Windows_10&device=Desktop | 80.244.176.112 | 200 OK | 0 B |
URL HTTP/2www.dwfm.co.uk/?wmcAction=wmcTrack&action_name=Home%20-%20DWFM&siteId=1&rec=1&rand=009523&h=4&m=1&s=35&url=https%3A%2F%2Fwww.dwfm.co.uk%2F&uid=0&pid=13&visitorId=6cf75eb36d32fb54&fvts=1670472095&vc=1&idn=0&refts=0&lvts=1670472095&fullRef=dwfm.co.uk&send_image=1&cookie=1&res=1280x1024>ms=86&pvId=8ItAgZ&browser=Firefox_105&os=Windows_10&device=Desktop IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
GET /?wmcAction=wmcTrack&action_name=Home%20-%20DWFM&siteId=1&rec=1&rand=009523&h=4&m=1&s=35&url=https%3A%2F%2Fwww.dwfm.co.uk%2F&uid=0&pid=13&visitorId=6cf75eb36d32fb54&fvts=1670472095&vc=1&idn=0&refts=0&lvts=1670472095&fullRef=dwfm.co.uk&send_image=1&cookie=1&res=1280x1024>ms=86&pvId=8ItAgZ&browser=Firefox_105&os=Windows_10&device=Desktop HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Cookie: _ga_RD76LHDYJ0=GS1.1.1670472094.1.0.1670472094.0.0.0; _ga=GA1.1.282597464.1670472095; _wsm_id_1_da03=6cf75eb36d32fb54.1670472095.1.1670472095.1670472095; _wsm_ses_1_da03=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:36 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding,Cookie
x-powered-by: PHP/7.4.33, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 | 80.244.176.112 | 200 OK | 0 B |
URL HTTP/2www.dwfm.co.uk/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/javascript
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
vary: Accept-Encoding
etag: W/"6254194e-194b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 | 80.244.176.112 | 200 OK | 0 B |
URL HTTP/2www.dwfm.co.uk/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/javascript
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
vary: Accept-Encoding
etag: W/"6254194e-132e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.0 | 80.244.176.112 | 200 OK | 0 B |
URL HTTP/2www.dwfm.co.uk/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.0 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.0 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 10:05:29 GMT
vary: Accept-Encoding
etag: W/"63639269-9e41"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.0 | 80.244.176.112 | 200 OK | 0 B |
URL HTTP/2www.dwfm.co.uk/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.0 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.0 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 10:05:33 GMT
vary: Accept-Encoding
etag: W/"6363926d-54a3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/ | 80.244.176.112 | 200 OK | 0 B |
IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
Analyzer | Verdict | Alert | fortinet | Malware | |
GET / HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding,Cookie
cache-control: max-age=3, must-revalidate
x-powered-by: PHP/7.4.33, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 | 80.244.176.112 | 200 OK | 0 B |
URL HTTP/2www.dwfm.co.uk/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 01:35:00 GMT
vary: Accept-Encoding
etag: W/"6361c944-15e54"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 | 80.244.176.112 | 200 OK | 0 B |
URL HTTP/2www.dwfm.co.uk/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 01:35:00 GMT
vary: Accept-Encoding
etag: W/"6361c944-459f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 | 80.244.176.112 | 200 OK | 0 B |
URL HTTP/2www.dwfm.co.uk/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 10:05:29 GMT
vary: Accept-Encoding
etag: W/"63639269-29ba"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/cache/autoptimize/css/autoptimize_single_a5cac1b0b7b5795ca7d34c678d3a5730.css?ver=1668434748 | 80.244.176.112 | 200 OK | 0 B |
URL HTTP/2www.dwfm.co.uk/wp-content/cache/autoptimize/css/autoptimize_single_a5cac1b0b7b5795ca7d34c678d3a5730.css?ver=1668434748 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /wp-content/cache/autoptimize/css/autoptimize_single_a5cac1b0b7b5795ca7d34c678d3a5730.css?ver=1668434748 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: text/css
last-modified: Mon, 14 Nov 2022 14:06:24 GMT
vary: Accept-Encoding
cache-control: max-age=30672000, public, immutable
expires: Tue, 28 Nov 2023 04:01:34 GMT
etag: W/"63724b60-cabc"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/cache/autoptimize/css/autoptimize_single_670cadfb9a7df039afccbf10ec0b823a.css?ver=1669042117 | 80.244.176.112 | 200 OK | 0 B |
URL HTTP/2www.dwfm.co.uk/wp-content/cache/autoptimize/css/autoptimize_single_670cadfb9a7df039afccbf10ec0b823a.css?ver=1669042117 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /wp-content/cache/autoptimize/css/autoptimize_single_670cadfb9a7df039afccbf10ec0b823a.css?ver=1669042117 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: text/css
last-modified: Mon, 21 Nov 2022 14:48:37 GMT
vary: Accept-Encoding
cache-control: max-age=30672000, public, immutable
expires: Tue, 28 Nov 2023 04:01:34 GMT
etag: W/"637b8fc5-52d2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.0 | 80.244.176.112 | 200 OK | 0 B |
URL HTTP/2www.dwfm.co.uk/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.0 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.0 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 10:05:33 GMT
vary: Accept-Encoding
etag: W/"6363926d-1472"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.0 | 80.244.176.112 | 200 OK | 0 B |
URL HTTP/2www.dwfm.co.uk/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.0 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.0 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 10:05:29 GMT
vary: Accept-Encoding
etag: W/"63639269-80b3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-includes/js/imagesloaded.min.js?ver=4.1.4 | 80.244.176.112 | 200 OK | 0 B |
URL HTTP/2www.dwfm.co.uk/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/javascript
last-modified: Sat, 13 Jun 2020 18:53:27 GMT
vary: Accept-Encoding
etag: W/"5ee520a7-15fd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 | 80.244.176.112 | 200 OK | 0 B |
URL HTTP/2www.dwfm.co.uk/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 10:05:33 GMT
vary: Accept-Encoding
etag: W/"6363926d-6272"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.0 | 80.244.176.112 | 200 OK | 0 B |
URL HTTP/2www.dwfm.co.uk/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.0 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.0 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 10:05:29 GMT
vary: Accept-Encoding
etag: W/"63639269-135d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.8.0 | 80.244.176.112 | 200 OK | 0 B |
URL HTTP/2www.dwfm.co.uk/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.8.0 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
GET /wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.8.0 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:34 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 10:05:33 GMT
vary: Accept-Encoding
etag: W/"6363926d-21fe5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.dwfm.co.uk/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 | 80.244.176.112 | 200 OK | 0 B |
URL HTTP/2www.dwfm.co.uk/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP80.244.176.112:0 ASN#61323 Ukfast.net Limited
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: www.dwfm.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dwfm.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 04:01:35 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 05:56:23 GMT
vary: Accept-Encoding
etag: W/"62551487-48b9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|