r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5fe582397f3003b225cb9058e02c2190
68174a54a8f6c4de9247ccea2dcae3c9b76bdb9f
238a2ef5b61d56353d0a5e97ec3092b8f2792cde7cecf40e1a858f8c129d3a9d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "238A2EF5B61D56353D0A5E97EC3092B8F2792CDE7CECF40E1A858F8C129D3A9D"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19933
Expires: Fri, 27 Jan 2023 03:35:15 GMT
Date: Thu, 26 Jan 2023 22:03:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2405562765b49b2782ebd2e2994851d5
be7ac8e558f7875bb1fb86ab5ec674424a5ff269
422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10414
Expires: Fri, 27 Jan 2023 00:56:36 GMT
Date: Thu, 26 Jan 2023 22:03:02 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 26 Jan 2023 21:35:16 GMT
content-type: application/json
age: 1666
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12520
Expires: Fri, 27 Jan 2023 01:31:42 GMT
Date: Thu, 26 Jan 2023 22:03:02 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: X16nAmNSsFZvIQctvBnetoGRixjuDUO00JKLk6lz1nJVaqm+uqd0HSjBd/0ewtcpED/TZdI//6c=
x-amz-request-id: NSJZVN9YY0B8CJ9S
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 26 Jan 2023 21:49:09 GMT
age: 833
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 22:03:02 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.spectre.aero/
199.250.212.228301 Moved Permanently 2.4 kB IP 199.250.212.228:0
File type HTML document, ASCII text, with very long lines (58088), with no line terminators
Hash 69239d82d889953e96f61d8a6956100c
987d7765a8a6f9668e33e2679bdcb9315a44fc57
04918407287629fbce221930248965882f33961f8c0b4801ffc11bd37b673d86
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 26 Jan 2023 22:03:02 GMT
Server: Apache
X-Redirect-By: WordPress
Content-Encoding: gzip
Vary: Accept-Encoding
Location: https://spectre.aero/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 26 Jan 2023 21:41:40 GMT
age: 1283
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1e2970e1480a4759282d63bb213051e4
ed5194d4d25dfc199821129be5d74be0ce49197d
18e19ea4c9c262cb9a94f89172eef2604222e779346589d470bf2e95ea295563
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18E19EA4C9C262CB9A94F89172EEF2604222E779346589D470BF2E95EA295563"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18937
Expires: Fri, 27 Jan 2023 03:18:40 GMT
Date: Thu, 26 Jan 2023 22:03:03 GMT
Connection: keep-alive
push.services.mozilla.com/
52.35.143.109101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.143.109:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: rq2q0Lqm+mqz0hQI3/OPdw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tdNuDVWGoUlx9QHkTwpxv0B3fTk=
spectre.aero/
199.250.212.228200 OK 26 kB IP 199.250.212.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (14373), with CRLF, LF line terminators
Hash df9c900a6c2b12ad4d61f424c14e61f8
b9c0b0a950550bec494270ac75eb3e9dc2528799
ac39a0a579d2b6feccf6fb0ef7af9b99de09b9fce19a8d883a0ddfa40cddac82
Analyzer Verdict Alert urlquery suspicious Suspicious - Suspicious JS code
fortinet Malware
GET / HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:03 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Last-Modified: Thu, 26 Jan 2023 22:03:03 GMT
ETag: "87c173f16ee5e5024378e172e234c331"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
spectre.aero/wp-content/plugins/cleantalk-spam-protect/css/cleantalk-public.min.css?ver=6.1
199.250.212.228200 OK 1.3 kB URL HTTP/1.1 spectre.aero/wp-content/plugins/cleantalk-spam-protect/css/cleantalk-public.min.css?ver=6.1
IP 199.250.212.228:0
File type ASCII text, with very long lines (1268), with no line terminators
Hash 37bb2e18fecad211b75d4f07d0c376d1
9a7fd572677362037cbcf7e50b99eb7afd47a703
732ed50433ac0b64ff46aac809ec7c4c42214ab43bbfa27bde87ae2bfaa48678
GET /wp-content/plugins/cleantalk-spam-protect/css/cleantalk-public.min.css?ver=6.1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:04 GMT
Server: Apache
Last-Modified: Fri, 30 Dec 2022 06:10:30 GMT
Accept-Ranges: bytes
Content-Length: 1268
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
spectre.aero/wp-content/plugins/google-language-translator/css/toolbar.css?ver=6.0.16
199.250.212.228200 OK 5.7 kB URL HTTP/1.1 spectre.aero/wp-content/plugins/google-language-translator/css/toolbar.css?ver=6.0.16
IP 199.250.212.228:0
File type ASCII text, with very long lines (681)
Hash 00e7963b92387d2483ebe810f453d32e
bdcde0805e6a1dbc1513e1365486ad7ead26de38
306a340d77c015bebd34348e2df7636595f40e1fc50273d1a4cba9321d5e82ce
GET /wp-content/plugins/google-language-translator/css/toolbar.css?ver=6.0.16 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:04 GMT
Server: Apache
Last-Modified: Fri, 30 Dec 2022 06:10:34 GMT
Accept-Ranges: bytes
Content-Length: 5732
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
spectre.aero/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
199.250.212.228200 OK 11 kB URL HTTP/1.1 spectre.aero/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 199.250.212.228:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:04 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 17:06:06 GMT
Accept-Ranges: bytes
Content-Length: 11224
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/plugins/cleantalk-spam-protect/js/apbct-public-bundle.min.js?ver=6.1
199.250.212.228200 OK 48 kB URL HTTP/1.1 spectre.aero/wp-content/plugins/cleantalk-spam-protect/js/apbct-public-bundle.min.js?ver=6.1
IP 199.250.212.228:0
File type ASCII text, with very long lines (47841), with no line terminators
Hash 4396628cf9f17fb3f805f762e5101ce4
747732c16a90da395f187a789879e9d42114b1de
1e147a010988cdba7187834f5466eda2fc29db2fee5181475c3eecdfefccb29f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/cleantalk-spam-protect/js/apbct-public-bundle.min.js?ver=6.1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:04 GMT
Server: Apache
Last-Modified: Fri, 30 Dec 2022 06:10:30 GMT
Accept-Ranges: bytes
Content-Length: 47841
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 97ccaa279f6ade845b71b57615d40388
5186089108dca0136feab418da66a9e027c7e427
515128c713e98c9a0546c35d9a1e0719057136509b5b2312e4af56a9acc80ec2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 22:03:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
spectre.aero/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
199.250.212.228200 OK 9.7 kB URL HTTP/1.1 spectre.aero/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP 199.250.212.228:0
File type ASCII text, with very long lines (9680), with no line terminators
Hash 490c29d6776fc430c23403fd845b34b0
817129906b7fef1011895a76f047c7693a852e21
29e8de26576208c07ba0845f604e65c9273b93f9f4d1d66214eb4c586f9938c4
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:04 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 05:43:22 GMT
Accept-Ranges: bytes
Content-Length: 9680
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
199.250.212.228200 OK 12 kB URL HTTP/1.1 spectre.aero/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 199.250.212.228:0
File type HTML document, ASCII text, with very long lines (12211), with no line terminators
Hash 3f3fc23f477a3849aa5677c585b2a2b4
ccf0865ebd37f76c450c7a377a86ff2448288db3
985fdd42398281348ca133a44750a56fe4909a806b9c075c9443a5d0bd6d2e51
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:04 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 05:43:22 GMT
Accept-Ranges: bytes
Content-Length: 12211
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
translate.google.com/translate_a/element.js?cb=GoogleLanguageTranslatorInit
142.250.74.110200 OK 27 kB URL HTTP/2 translate.google.com/translate_a/element.js?cb=GoogleLanguageTranslatorInit
IP 142.250.74.110:0
Hash 80a6d81586b07e29e19a096172d0b851
2ff46efdc330e2c9ef3390b23fd26c3f293e7b17
13d3c70c25ff99e5683dc80d4893a6707c92f248a866d0f009ad0bf046b3b62c
GET /translate_a/element.js?cb=GoogleLanguageTranslatorInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 26 Jan 2023 22:03:04 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+591; expires=Sat, 25-Jan-2025 22:03:04 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9011
Expires: Fri, 27 Jan 2023 00:33:15 GMT
Date: Thu, 26 Jan 2023 22:03:04 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91a77b6d-ccc1-422b-8493-221c615accaf.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91a77b6d-ccc1-422b-8493-221c615accaf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e0fe44d9606e6a149a253423f312dfc5
78e442e8a9142311c25dafd01823a240f4acb0d6
9aad8938c1fda9641f95a4369f57ea57303a28e05f56e3bb1961e17cfbb123f4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91a77b6d-ccc1-422b-8493-221c615accaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 13175
x-amzn-requestid: 14ccf28a-a84a-4903-9edc-7659096cb3ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRxOCFrkIAMFt8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0958c-6a67f1aa65038439793808fd;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 02:35:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6Af7rqnIDAKAw6O0CYUv1epQ8VxFyXBjtAtpovQZJ72aKEymQu_O8Q==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:43:29 GMT
age: 51575
etag: "78e442e8a9142311c25dafd01823a240f4acb0d6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59e67210-efa8-4704-9931-e876d7c8922b.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59e67210-efa8-4704-9931-e876d7c8922b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 262b43386e404cb3d320c47c4cf792c1
87f304f8583fe6b6e942a9dbcb5efb5ee94987f2
ca0f72005920b2b2f49c387314540f3cd2f3d7808f0365dfb1c491500e8a8714
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59e67210-efa8-4704-9931-e876d7c8922b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8065
x-amzn-requestid: 4a4a6d4c-9c4b-418d-be96-8a0d1de4828a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fBYVuHZsoAMFmWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ca0757-74c21aa22d11c4240019a4b3;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 03:15:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TXXkkbJHyvwrly_-5FH0EIkRm4EwlDJxGWBHcbwax2H_ccfMfs-5PQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:47:08 GMT
age: 956
etag: "87f304f8583fe6b6e942a9dbcb5efb5ee94987f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9011
Expires: Fri, 27 Jan 2023 00:33:15 GMT
Date: Thu, 26 Jan 2023 22:03:04 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:59:56 GMT
age: 188
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f238e33-a6e3-479a-920f-92a9c7bf1a06.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f238e33-a6e3-479a-920f-92a9c7bf1a06.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a3d856f57bcfd0bb18253cd77dd6541b
9d9680fb1a9232bb2b42b824dc11633666bfa31a
f2a03384e72a4d3350ee6addc49d6a507837eb195647016ea001e846eaccb0e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f238e33-a6e3-479a-920f-92a9c7bf1a06.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6055
x-amzn-requestid: dd44b3ab-6248-419a-995a-f3aaf59dae77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLRhMFPYIAMF91g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cdfc6d-4df410b022dbbb55297e6ac7;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 03:18:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: b0NnMvzF8QzmCB6erAH6gTky4A2vBwI6huYmgX8hLTatYq_NHhQl1A==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 15:23:32 GMT
age: 23972
etag: "9d9680fb1a9232bb2b42b824dc11633666bfa31a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9011
Expires: Fri, 27 Jan 2023 00:33:15 GMT
Date: Thu, 26 Jan 2023 22:03:04 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7a0759c043594fbe85af422b59b8227
a05cfaad16078f42218dae233da38f6f5dff8487
e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11568
x-amzn-requestid: 2e85f75e-ab9d-4d45-adad-7313950a9647
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSWbxGwnoAMFejw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d117-68f1a9e71a07a0453311fd32;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 06:49:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dbz3wXGNaetf6xvRE98rshyHy-FVfDo8co-4VDL0a4Qe3E4U8A82Og==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 22:59:28 GMT
age: 83016
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9011
Expires: Fri, 27 Jan 2023 00:33:15 GMT
Date: Thu, 26 Jan 2023 22:03:04 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81aa4520-e26c-4be4-877f-1d3af6c27241.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81aa4520-e26c-4be4-877f-1d3af6c27241.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ed3df3868d4a13270faf944f911637a7
1b69b2433956c79510bc4a013648a5fb12882884
e13e2ca5d6552a96eb972936f553937a5aff566eb37f39b0928f15d3eeab617f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81aa4520-e26c-4be4-877f-1d3af6c27241.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11372
x-amzn-requestid: d50f0c0e-a383-419a-a3ca-630d5fd32821
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPAw_E_rIAMF0hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf7b39-64abe6b72176db7d7b67f315;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 06:31:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: P--KVawXg_IYJa8S3gcxIL5XZZGwRbhclRRRMUFlWmMAqzVus7RdnA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:47:08 GMT
age: 956
etag: "1b69b2433956c79510bc4a013648a5fb12882884"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
spectre.aero/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
199.250.212.228200 OK 90 kB URL HTTP/1.1 spectre.aero/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 199.250.212.228:0
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:04 GMT
Server: Apache
Last-Modified: Wed, 10 Mar 2021 23:07:24 GMT
Accept-Ranges: bytes
Content-Length: 89521
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.16
199.250.212.228200 OK 14 kB URL HTTP/1.1 spectre.aero/wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.16
IP 199.250.212.228:0
Hash 9ce2ef9c51d872136c9bd85bd5428ea8
4b4f270db4ec228296f5127f22df9a0b502cec84
37b945e5fe609563e83b37edcbfe3d18aac072a55fc8962978afdf597a3c4aa8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.16 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:04 GMT
Server: Apache
Last-Modified: Fri, 30 Dec 2022 06:10:34 GMT
Accept-Ranges: bytes
Content-Length: 13797
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1
199.250.212.228200 OK 13 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1
IP 199.250.212.228:0
File type ASCII text, with very long lines (12991), with no line terminators
Hash 5c6f8c2d5542d6fa991c13b497d05b42
4136a4ad9c4514563be497f968ce56d11539c8a8
45489ffcf01ef61169bda340908095cfc2c0ddcfa78a6cad71a2d1b636feccdf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:04 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:44 GMT
Accept-Ranges: bytes
Content-Length: 12991
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.16
199.250.212.228200 OK 129 kB URL HTTP/1.1 spectre.aero/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.16
IP 199.250.212.228:0
Size 129 kB (128983 bytes)
Hash f3bd90ed9190418715605b8aaa05debd
5ef128434040cdc17b99048da8c56287894ed542
e2fb63ea3b3d832a17e88ce1bdc0ec080117e17f1c9331697c822015e501cb13
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/google-language-translator/css/style.css?ver=6.0.16 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:04 GMT
Server: Apache
Last-Modified: Fri, 30 Dec 2022 06:10:34 GMT
Accept-Ranges: bytes
Content-Length: 128983
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
spectre.aero/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
199.250.212.228200 OK 89 kB URL HTTP/1.1 spectre.aero/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP 199.250.212.228:0
File type ASCII text, with very long lines (43771)
Hash b7915926fe42d76e9c802353ab01dae4
3a8192a4312f25f53de25b100d62829c0f14d67c
d7705700d24d5919255576642ad2c28bfc790390b7183a369038ff5c1e814d51
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:04 GMT
Server: Apache
Last-Modified: Mon, 04 Jul 2022 19:10:38 GMT
Accept-Ranges: bytes
Content-Length: 88932
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
spectre.aero/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1
199.250.212.228200 OK 2.2 kB URL HTTP/1.1 spectre.aero/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (2221), with no line terminators
Hash fc9b1640d7f572a35a3b65c91f2c14f1
2fa04152acda6172982885891ed8c1cf8ea3d6c4
f8d19fd38583648406d9d038f210166f267ed793e2bdf10b19030d19254a5b26
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:04 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:33:32 GMT
Accept-Ranges: bytes
Content-Length: 2221
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-title.js?ver=1
199.250.212.228200 OK 3.9 kB URL HTTP/1.1 spectre.aero/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-title.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (3879), with no line terminators
Hash b38588bd5fb9399201576ee9acb226eb
4718a10a415199825fdaf2e6947b932f1381ad40
4415e8e84111db8ca627846efbdd28bd519234f32a34e161dc30fc7de5519889
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-title.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:04 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:33:32 GMT
Accept-Ranges: bytes
Content-Length: 3879
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countTo.js?ver=1
199.250.212.228200 OK 945 B URL HTTP/1.1 spectre.aero/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countTo.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (945), with no line terminators
Hash ace284c9f9ae7f03fc86f8985f734d35
3b01bc639acab6f7d169e443a7e4c28d418775be
cf2dae24d93b89d66c28b7f8f9baa0078c4a1fd0058df16c1d01885b54c03234
GET /wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countTo.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:04 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:33:31 GMT
Accept-Ranges: bytes
Content-Length: 945
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28
199.250.212.228200 OK 3.3 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28
IP 199.250.212.228:0
File type ASCII text, with very long lines (3344), with no line terminators
Hash 6ee34d5acab69cb428cb2d5f4eb00d17
3b7ba1fea4b197f7363d0631ebb70ff1247594d5
daf181ab9ead5372eefb6fe5d87704d7abdbfa6c09e4c79a2a2f688c6fac5ada
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:04 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 3344
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion.js?ver=3.2.1
199.250.212.228200 OK 3.5 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion.js?ver=3.2.1
IP 199.250.212.228:0
File type ASCII text, with very long lines (3506), with no line terminators
Hash 12da06b0d5ca6fab5f617f11a5170d4f
729d49ff9ab96d4f6ae6b68f77464bad11a5c3a8
a7084d13af0b3a8cab0f09d474cd52024e79df417db3248ff0bdc846ae451fa9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion.js?ver=3.2.1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 3506
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5
199.250.212.228200 OK 11 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5
IP 199.250.212.228:0
File type ASCII text, with very long lines (10862), with no line terminators
Hash bbd737e5303f22d6b2bbd4c4e9bfd2c6
f7f3712290245cc6f76dca570a3117681cd86546
23263a19c0dc4b29036a56f858a2b6f915ea0e415ed7c46071a071f170626c88
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 10862
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3
199.250.212.228200 OK 8.8 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3
IP 199.250.212.228:0
File type ASCII text, with very long lines (8833), with no line terminators
Hash c05b53928b00139c8e91f8486564e314
99f7ed822210b60736949fa700ed2bdc2c815270
5f4a78ccf9ce5efdc593c0350e8974fcb040b3c95c7763cee02ccf40e52b26b6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 8833
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.requestAnimationFrame.js?ver=1
199.250.212.228200 OK 695 B URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.requestAnimationFrame.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (695), with no line terminators
Hash d25eff9e991743b92eed74cafed3ba56
0e0d8ec68184fd6f6eb44eb79b024812c29dd094
980aba21181e373e49d5e2602223454f0bb78ccb263eabcfb850abb14ad8c904
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.requestAnimationFrame.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 695
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.appear.js?ver=1
199.250.212.228200 OK 3.0 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.appear.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (2985), with no line terminators
Hash 6cf842b08dffbc10e95807c46f7d0573
cc654b95bdc330edf20372e8db8e5d822ecc013e
fa80baec432350a1a335a421479336b65432f358727c89f0e414fe11fa39cd10
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.appear.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 2985
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3
199.250.212.228200 OK 2.3 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3
IP 199.250.212.228:0
File type ASCII text, with very long lines (2283), with no line terminators
Hash f04e95c229f0934515e1f800227f92a0
77f55dfe4505c3f241ae0845ad5dcdc8b807b8ba
c8c066c331d08eaf858338789a0499c5ad85cfc6325d7685ea8a9463750d8684
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 2283
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1
199.250.212.228200 OK 1.8 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1
IP 199.250.212.228:0
File type HTML document, ASCII text, with very long lines (1767), with no line terminators
Hash 882a4f6998e5d6878f6f53f15008e525
2f73282313194a5ea50186b3d94842b47f941274
233cb2b905dec5df68df039e52e26980f674880fee51a8f6b7f75486760f1f3e
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 1767
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.7.2
199.250.212.228200 OK 22 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.7.2
IP 199.250.212.228:0
File type ASCII text, with very long lines (22335), with no line terminators
Hash a4132e8b1d71cbbba68aa230c6231d17
12107c0dff73e19a4b7151adf66626a6ade6aa15
516da66dd988db6acdb7818facb98a25a06a10cf33a1ff33cfe61a150d8ac02d
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.7.2 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 22335
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverflow.js?ver=1
199.250.212.228200 OK 647 B URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverflow.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (647), with no line terminators
Hash 57428f29889a02d4eb32152ce7127fbc
52726e30f5a6c7eee648a8372e9895521d38a6ad
5ca946de5ba3710a3293fa8d6eb9215dc418f05330648553a75decc827844fe7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverflow.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 647
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1
199.250.212.228200 OK 1.1 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (1098), with no line terminators
Hash 3430261b0500bb2d00a6c002c4ffcc30
839ae2f86ab55112649406d8884524c2d66cc297
34e014c7d41ab0ae2996907824eda3bde337242ebd9dc29aeccd9d67078246ab
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 1098
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/uploads/fusion-styles/01ba0a4b3bb344d28623a43f2c6471a5.min.css?ver=3.2.1
199.250.212.228200 OK 1.2 MB URL HTTP/1.1 spectre.aero/wp-content/uploads/fusion-styles/01ba0a4b3bb344d28623a43f2c6471a5.min.css?ver=3.2.1
IP 199.250.212.228:0
File type ASCII text, with very long lines (44873)
Size 1.2 MB (1234578 bytes)
Hash 01ba0a4b3bb344d28623a43f2c6471a5
327f34459d17660c90178b06f11f3ca24644ef78
89e7eb98f0a220a6c0f261c88e7d2dd304b3a681cb1c54e61b049dcda0fdad2e
GET /wp-content/uploads/fusion-styles/01ba0a4b3bb344d28623a43f2c6471a5.min.css?ver=3.2.1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:04 GMT
Server: Apache
Last-Modified: Thu, 19 Jan 2023 14:12:00 GMT
Accept-Ranges: bytes
Content-Length: 1234578
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fade.js?ver=1
199.250.212.228200 OK 1.2 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fade.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (1162), with no line terminators
Hash eef83ebcbba649dcd3d4939d9221df41
cb1d24ed2c6d23e3b41023935aa50177829033d0
836e98f92408ccb7250927acef9b494fbacc18678ef18888f835101557bddd37
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fade.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 1162
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6
199.250.212.228200 OK 2.6 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6
IP 199.250.212.228:0
File type ASCII text, with very long lines (2604), with no line terminators
Hash 5118a4965e81da6dcb7def1ca48b189b
f67279ea1c87e5605f9930c9eedfc4cb54c6adf5
136859a04a16d051a3d15752d0b415a6c2c837f1278a56dbb87a0e93ba8b9601
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 2604
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.placeholder.js?ver=2.0.7
199.250.212.228200 OK 2.2 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.placeholder.js?ver=2.0.7
IP 199.250.212.228:0
File type ASCII text, with very long lines (2176), with no line terminators
Hash e9256563e9658d30f484407ffb8baf3a
ef00b51debbc367d6039482ef311c115496d5d7d
fa34de993dea91eb0120c3745378192fa1177ba8ec5772e08632318d1d5e1267
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.placeholder.js?ver=2.0.7 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 2176
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-equal-heights.js?ver=1
199.250.212.228200 OK 1.4 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-equal-heights.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (1417), with no line terminators
Hash 044f04f1b997661773e5fb7a98f0283e
0e6a82d2e4e086f07b3a2f4043d444d44ae45a14
18d6442774348bade3c7053b5775acde74021892a547b57511e8f0c9842f74da
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-equal-heights.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 1417
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3
199.250.212.228200 OK 82 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3
IP 199.250.212.228:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4daf19848baddf642da2f08511268fc6
f48c2463926278133e863a6fc3916a1f3dc3aaa9
cfd46793deac1e98bf1c0ce884644d7b1e3d48dd358387eebe736c05607257f4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 82293
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1
199.250.212.228200 OK 6.8 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (6803), with no line terminators
Hash c47fc57967c35a064f5d1918f173f9d0
96b06b5db2ef750abc8f6232771d7c52879a06d3
dcefc5cafed5481f31bf826c91496e5368751599dd37c4e8d39af82711b439fd
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 6803
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-parallax.js?ver=1
199.250.212.228200 OK 12 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-parallax.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (12004), with no line terminators
Hash e985c6ff520271e147f180d04a411ec3
57fe22916ef0180d5226f5d157497da54d7dcadf
cc4b131c9e9bc64d98932c96c3c65bc4106c8891a3b3fdc2ecd68a70b9051ff6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-parallax.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 12004
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1
199.250.212.228200 OK 503 B URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (503), with no line terminators
Hash 10a8a917767f891af001eca3902673bd
392e498d112f81c64c1fddcb8916608f640d797a
7e46e14f8fcbf2c58f5b600391d9a6231895f7a550f9d42b0d7cbe22d3e42539
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 503
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-bg.js?ver=1
199.250.212.228200 OK 5.5 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-bg.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (5453), with no line terminators
Hash 177ea7ad13a0c8e9c47d1fd726e60295
9904dd3a67a115afdbe0258444e9b41574cfeb56
cc2dcfdec57c8614ed31dc4a0e7e8a4c651c276d2a2e1c04d28ccddb39f160a0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-bg.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 5453
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1
199.250.212.228200 OK 7.3 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (7279), with no line terminators
Hash c05b6f066572c1530a1bde74ec9be1b1
7d4f368a3813e43e1034c6f5a49bb620b44f8219
19d1c953b71be53df3251d6a01df33a55c49c7e5f933cdcd0fd98498ae86d4f1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 7279
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d9bf2793558044193d7e5d27708a9144
5a8f73462cfda6544cc3efe488854c3cd80bb0a7
e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 22:03:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-tooltip.js?ver=1
199.250.212.228200 OK 1.7 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-tooltip.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (1707), with no line terminators
Hash 6d4fa80597ec147497f4168e255864bc
73e8dd9a63e71d3d00a0747f53caa43f6c4be09f
04ffc69e6bdae64435d6ec1e0ec347979cec8bb40fd0cfcc22c959988b08745e
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-tooltip.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 1707
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVQUwaEQXjM.woff
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVQUwaEQXjM.woff
IP 216.58.207.227:0
File type Web Open Font Format, TrueType, length 15088, version 1.1\012- data
Hash e4ad92e1aadc65135d0165f0ed4a7411
4f3b862a60d24e4038937871b4c536db58ba8521
8030191fd7607b2f92fed97d2a7ad89f0f21a2e308734c0e12e5d1147ae8ff56
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVQUwaEQXjM.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://spectre.aero
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15088
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 22 Jan 2023 10:53:33 GMT
expires: Mon, 22 Jan 2024 10:53:33 GMT
cache-control: public, max-age=31536000
age: 385772
last-modified: Mon, 15 Aug 2022 18:15:34 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d9bf2793558044193d7e5d27708a9144
5a8f73462cfda6544cc3efe488854c3cd80bb0a7
e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 22:03:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1
199.250.212.228200 OK 920 B URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (920), with no line terminators
Hash 41262f4ac214abbbb84fae07e533028d
c8cbec490e1759b559957c8ca2d8bc8d4f1bd214
eb08d2dc6b6583d3c1ba02daaa0d5b5d4abf4ffe87a8d4159fc41bd88487bd9a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 920
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/raleway/v28/1Pt_g8zYS_SKggPNyCgSQamb1W0lwk4S4VrMDrMfJh1Zyc6FYw.woff
216.58.207.227200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Pt_g8zYS_SKggPNyCgSQamb1W0lwk4S4VrMDrMfJh1Zyc6FYw.woff
IP 216.58.207.227:0
File type Web Open Font Format, TrueType, length 20572, version 1.1\012- data
Hash ad3b5052f0328e9a659838eb35c343cd
dbdf961c92640c5085dfdd9da7e099000e2dc88f
43117ddb288d6283c9355621b81bc5ed6671543bd2cec5a572e448751df3795e
GET /s/raleway/v28/1Pt_g8zYS_SKggPNyCgSQamb1W0lwk4S4VrMDrMfJh1Zyc6FYw.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://spectre.aero
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20572
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 19:42:47 GMT
expires: Tue, 23 Jan 2024 19:42:47 GMT
cache-control: public, max-age=31536000
age: 267618
last-modified: Mon, 18 Jul 2022 19:27:56 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.sticky-kit.js?ver=1.1.2
199.250.212.228200 OK 5.8 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.sticky-kit.js?ver=1.1.2
IP 199.250.212.228:0
File type ASCII text, with very long lines (5806), with no line terminators
Hash f4e217d877dc93b566610710e0bb279b
e8ab123ba03f8d51f60e0d42323649f243c88616
32fae0d35a57cea728c1c253c88bb19ee38ef5fb3cc631d221bd6f80dcd6b414
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.sticky-kit.js?ver=1.1.2 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 5806
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2
199.250.212.228200 OK 2.7 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2
IP 199.250.212.228:0
File type ASCII text, with very long lines (2709), with no line terminators
Hash c0301c37f4ea43e2c709f5276fe9135a
88f1b1df034fd9d822e684b59c72e660300051d9
0f6cc9b91ac2a1aaffef58c4dbf37ed5fc3c42478416fa0b1c49bdf23cc27207
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:28 GMT
Accept-Ranges: bytes
Content-Length: 2709
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-skip-link-focus-fix.js?ver=7.2.1
199.250.212.228200 OK 325 B URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-skip-link-focus-fix.js?ver=7.2.1
IP 199.250.212.228:0
File type ASCII text, with very long lines (325), with no line terminators
Hash 06f019a6ff09db6b297570940eec1d5d
872efe186950ce534aad341e7030fe24f7c672dc
53f829ae556bf7011727483015d83a98bcdb4b5796eecb728827c1282c971536
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/assets/min/js/general/avada-skip-link-focus-fix.js?ver=7.2.1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:28 GMT
Accept-Ranges: bytes
Content-Length: 325
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d9bf2793558044193d7e5d27708a9144
5a8f73462cfda6544cc3efe488854c3cd80bb0a7
e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 22:03:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 44adf8a39c4678db9cda4bc1f44326ef
68cd22f7dcd9ab779cd22a69ca3be8577f9b2ba9
2c1967dcd6247c73f316f3b5494ff89ea11f62b2cbb0a7755e3f5ea5e1d5d75f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4642
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 22:03:05 GMT
Last-Modified: Thu, 26 Jan 2023 20:45:43 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 44adf8a39c4678db9cda4bc1f44326ef
68cd22f7dcd9ab779cd22a69ca3be8577f9b2ba9
2c1967dcd6247c73f316f3b5494ff89ea11f62b2cbb0a7755e3f5ea5e1d5d75f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2588
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 22:03:05 GMT
Last-Modified: Thu, 26 Jan 2023 21:19:57 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d9bf2793558044193d7e5d27708a9144
5a8f73462cfda6544cc3efe488854c3cd80bb0a7
e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 22:03:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-general-footer.js?ver=7.2.1
199.250.212.228200 OK 413 B URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-general-footer.js?ver=7.2.1
IP 199.250.212.228:0
File type ASCII text, with very long lines (413), with no line terminators
Hash 28e70f0d9979566a7bbdf0e4ebf349f4
cd277b7405ea21d86690136fdfc7d0860a22f4ec
61e7bb6d0210c308eb1f6153f18b4063eb715fde885b7d20b4d209d3fcb5a217
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/assets/min/js/general/avada-general-footer.js?ver=7.2.1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:28 GMT
Accept-Ranges: bytes
Content-Length: 413
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvoorCIPrcVIT9d4cw.woff
216.58.207.227200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvoorCIPrcVIT9d4cw.woff
IP 216.58.207.227:0
File type Web Open Font Format, TrueType, length 20472, version 1.1\012- data
Hash 36d14ebd6a4682f9d5fb5b3a94a46383
a3ade771525a528d1117b2e7640bd5caa9827454
6e90a9c4937411ab7c1625fcc3226046f0481211c9981a4d87a0fb59b47e00ff
GET /s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvoorCIPrcVIT9d4cw.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://spectre.aero
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20472
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 10:09:58 GMT
expires: Fri, 26 Jan 2024 10:09:58 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 18 Jul 2022 19:45:38 GMT
content-type: font/woff
age: 42787
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2ebcc7cd4c50e87a984668828c1e612e
f693d36335f333e3647f9fb2460e34dd73e17421
27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 22:03:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
translate.googleapis.com/translate_static/css/translateelement.css
142.250.74.106200 OK 3.6 kB URL HTTP/2 translate.googleapis.com/translate_static/css/translateelement.css
IP 142.250.74.106:0
File type ASCII text, with very long lines (22967)
Hash f7bf2121608909b56672e6398ac2335c
864ef3bac46b08ab6609fad23f00d5f09815647d
b9d3a8600d9b6edf9c71b793c42782282ecfb01e2026e0128608b949e91e152c
GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3632
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 21:15:31 GMT
expires: Thu, 26 Jan 2023 22:15:31 GMT
cache-control: public, max-age=3600
age: 2854
last-modified: Mon, 09 Jan 2023 20:58:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-quantity.js?ver=7.2.1
199.250.212.228200 OK 1.8 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-quantity.js?ver=7.2.1
IP 199.250.212.228:0
File type ASCII text, with very long lines (1848), with no line terminators
Hash 7e1dd40e2afc95e372c0fe55c58a68d4
7e415fc3826ea7a7321f5cdb4b9e1c168fb57abf
edfc046247c4f583e4d30feacc987ff1eedb5eabd246657385f018c74d418550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/assets/min/js/general/avada-quantity.js?ver=7.2.1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:28 GMT
Accept-Ranges: bytes
Content-Length: 1848
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2ebcc7cd4c50e87a984668828c1e612e
f693d36335f333e3647f9fb2460e34dd73e17421
27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 22:03:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-select.js?ver=7.2.1
199.250.212.228200 OK 682 B URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-select.js?ver=7.2.1
IP 199.250.212.228:0
File type ASCII text, with very long lines (682), with no line terminators
Hash 8378f9a72efd81558c5e8ee414fa698d
36f8b7477054f81788eee8113117842829897b96
9a32508666dfda50c967cf03f6690884c4960f9e1afa41e306c6405a0e0270dc
GET /wp-content/themes/Avada/assets/min/js/general/avada-select.js?ver=7.2.1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:28 GMT
Accept-Ranges: bytes
Content-Length: 682
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-tabs-widget.js?ver=7.2.1
199.250.212.228200 OK 498 B URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-tabs-widget.js?ver=7.2.1
IP 199.250.212.228:0
File type ASCII text, with very long lines (498), with no line terminators
Hash fc27dc2b776998199744d9364b8e7171
5eb2760eb9cf67cdb47a18e71d5b649361b3081c
24e5eff6a919b4b6e09596c07eb968db4108a6f9b71ec37d8139791f444826ea
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/assets/min/js/general/avada-tabs-widget.js?ver=7.2.1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:28 GMT
Accept-Ranges: bytes
Content-Length: 498
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-contact-form-7.js?ver=7.2.1
199.250.212.228200 OK 1.7 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-contact-form-7.js?ver=7.2.1
IP 199.250.212.228:0
File type ASCII text, with very long lines (1707), with no line terminators
Hash dac2f452c658fac26303462192ce9b43
6602904ef33067e35d4697be931ab6c6ecc5eee2
81b1c7f3270564ed636ee9661c591d06ef0a2536abd636280d322834c89879fa
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/assets/min/js/general/avada-contact-form-7.js?ver=7.2.1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:28 GMT
Accept-Ranges: bytes
Content-Length: 1707
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-live-search.js?ver=7.2.1
199.250.212.228200 OK 3.1 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-live-search.js?ver=7.2.1
IP 199.250.212.228:0
File type ASCII text, with very long lines (3062), with no line terminators
Hash c7deec7529c70b4b3e3fda460d4e1e5c
538b30239a4f723f3f3698f3a54f87ec412caaac
e69fbf8aa90375f096cb7ac047650ccee81dcec38374bce61c01d64d0c610461
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/assets/min/js/general/avada-live-search.js?ver=7.2.1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:28 GMT
Accept-Ranges: bytes
Content-Length: 3062
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-alert.js?ver=6.0.3
199.250.212.228200 OK 260 B URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-alert.js?ver=6.0.3
IP 199.250.212.228:0
File type ASCII text, with no line terminators
Hash 00db1636af5b159f0aaab9600ae7ebfb
5dfdf5da42d2b1a87eaa5fb24bb430d8d0a1aae6
eb6481e44617b3e40d345b2df5e20965503b4ab87c9346a43894f93a601ccde7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-alert.js?ver=6.0.3 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:05 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 260
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
pro.fontawesome.com/releases/v5.15.0/webfonts/fa-regular-400.woff2
104.18.23.52200 OK 174 kB URL HTTP/2 pro.fontawesome.com/releases/v5.15.0/webfonts/fa-regular-400.woff2
IP 104.18.23.52:0
File type Web Open Font Format (Version 2), TrueType, length 173528, version 331.-31458\012- data
Size 174 kB (173528 bytes)
Hash 68790d777b27bd80f36997f36e06a1b6
789b5df7a1d0957e466eff37aecfe48d07b0c076
3f0558f4c3a401aaed3a3666bb127323fe4c79a29b6c422021b08166a5b81db5
GET /releases/v5.15.0/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: pro.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://spectre.aero
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 22:03:06 GMT
content-type: font/woff2
content-length: 173528
x-amz-id-2: 6Lmr2BUWpt03R6kZ1ArxgA0apXndntwq3HUzwp83aJwiYY9QRsTj+E1SR1LsI8Y4kjMhd/jc3YlF0ewHOQXV6w==
x-amz-request-id: 9148WG5ZP318FS7G
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 28 Jun 2021 17:18:07 GMT
etag: "68790d777b27bd80f36997f36e06a1b6"
cache-control: max-age=31556926
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 78fc8961cfcfb515-OSL
X-Firefox-Spdy: h2
pro.fontawesome.com/releases/v5.15.0/webfonts/fa-solid-900.woff2
104.18.23.52200 OK 141 kB URL HTTP/2 pro.fontawesome.com/releases/v5.15.0/webfonts/fa-solid-900.woff2
IP 104.18.23.52:0
File type Web Open Font Format (Version 2), TrueType, length 141036, version 331.-31458\012- data
Size 141 kB (141036 bytes)
Hash c56adeae94c455cb58c9b1e09d55a993
2c027afa09b59ede71968884034db8c5e0094825
de64c5d9bc64ed989fe8ba1314eafa430d239579f730b4bdd2c7dc85c4f7fb0b
GET /releases/v5.15.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: pro.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://spectre.aero
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 22:03:06 GMT
content-type: font/woff2
content-length: 141036
x-amz-id-2: unIP2BUDW7R+aQv8/SohTGap1GPTqeRuQPTUpx9udIeArAawaJ3KS3LXYMtqer0dv852n2RY9Tv3XspMT3X1jA==
x-amz-request-id: 9148NQHW4C3MA65J
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 28 Jun 2021 17:18:07 GMT
etag: "c56adeae94c455cb58c9b1e09d55a993"
cache-control: max-age=31556926
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 78fc8961cfd2b515-OSL
X-Firefox-Spdy: h2
spectre.aero/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.textillate.js?ver=2.0
199.250.212.228200 OK 5.9 kB URL HTTP/1.1 spectre.aero/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.textillate.js?ver=2.0
IP 199.250.212.228:0
File type ASCII text, with very long lines (5946), with no line terminators
Hash b67eef9f13c854d28043f75004b64edb
c64ee1539e7250023bf6e20149e9e1a5ca00138f
4282cf51cab658faa9bb9a9c2094a348a318318a4009456b1b448aef3d461b80
GET /wp-content/plugins/fusion-builder/assets/js/min/library/jquery.textillate.js?ver=2.0 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:33:31 GMT
Accept-Ranges: bytes
Content-Length: 5946
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=6.0.3
199.250.212.228200 OK 5.8 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=6.0.3
IP 199.250.212.228:0
File type ASCII text, with very long lines (5834), with no line terminators
Hash 9704ad233b034f40f1be2c6d712574b7
d1540c70ece508cf9fa36c82e70e275f9945a768
8efc0c4630ac1598e2f54812ac69ec7b8af77c15c8dabe6da8d6bec06ad61248
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=6.0.3 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 5834
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=6.0.3
199.250.212.228200 OK 1.6 kB URL HTTP/1.1 spectre.aero/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=6.0.3
IP 199.250.212.228:0
File type ASCII text, with very long lines (1642), with no line terminators
Hash 31070c9c6bb7cce1141379f5341d63be
ff25be4c090dd58ce788388fa0776eba27976405
90ba13966c61f7ed9e4dfba7932afb7c4e8909d3b94c9a4155da726ae73eb367
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=6.0.3 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:33:32 GMT
Accept-Ranges: bytes
Content-Length: 1642
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-box.js?ver=1
199.250.212.228200 OK 1.3 kB URL HTTP/1.1 spectre.aero/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-box.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (1269), with no line terminators
Hash 1c29b361f19f693a6d3c0a9964f25b61
3613640a13e4113fcb7533a639aa4ba08e0dae01
2e6b4860a16e034027e89b9ad60f681de2e0c293b24de4dd3352d4cf7a4db2b3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-box.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:33:32 GMT
Accept-Ranges: bytes
Content-Length: 1269
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-content-boxes.js?ver=1
199.250.212.228200 OK 4.3 kB URL HTTP/1.1 spectre.aero/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-content-boxes.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (4261), with no line terminators
Hash cc8d6f6a74e2f9778814feb9d850c3e8
e2b50091ddf5df922eb0af8b782abd59396dbfb5
85fa900a8b89048bdaf3f8b9b5876efba67675b908048fcd7ca28da67194ac71
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-content-boxes.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:33:32 GMT
Accept-Ranges: bytes
Content-Length: 4261
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-container.js?ver=1
199.250.212.228200 OK 16 kB URL HTTP/1.1 spectre.aero/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-container.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (15833), with no line terminators
Hash 34e2e1df42489d2aafaee52e5729370e
eee2f654fa58557b6f14988e9301fc689c7bd839
6ea76441689e3a781be2c9257025ee1d4d74a8ca77edeea49d99004c2bb74614
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-container.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:33:32 GMT
Accept-Ranges: bytes
Content-Length: 15833
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-header.js?ver=7.2.1
199.250.212.228200 OK 33 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-header.js?ver=7.2.1
IP 199.250.212.228:0
File type ASCII text, with very long lines (33211), with no line terminators
Hash 86ddac9936f856cb960f040f08f7a3bf
14b6a198459d43857aed378f2e2593d9e16951d1
cbc6d8fdde89d74ea73e5cea2b5a97e09e2fc910d8ba9ccd50ef486a041dd5b2
GET /wp-content/themes/Avada/assets/min/js/general/avada-header.js?ver=7.2.1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:28 GMT
Accept-Ranges: bytes
Content-Length: 33211
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1
199.250.212.228200 OK 3.6 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (3575), with no line terminators
Hash 7480eacd991c91b5a1afae374975f43d
467171ddc9cac8ceec20f088012a73d9bf46b2f3
d8821c5035a54ac174ed82f68e6d7ce4beb77d1d7c884fcf18d67f8cfb4a6eab
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 3575
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/plugins/fusion-core/js/min/avada-fusion-slider.js?ver=5.2.1
199.250.212.228200 OK 16 kB URL HTTP/1.1 spectre.aero/wp-content/plugins/fusion-core/js/min/avada-fusion-slider.js?ver=5.2.1
IP 199.250.212.228:0
File type ASCII text, with very long lines (16184), with no line terminators
Hash e2a0f9a309b15f0ef5bcba42bc9ee126
827a85edc349f3e5b22f07187b35bf812ae137de
b5aa79a0681f4583a036d5d9b87f35d00cad840c422013b6c947bea9f3528318
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-core/js/min/avada-fusion-slider.js?ver=5.2.1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:31:37 GMT
Accept-Ranges: bytes
Content-Length: 16184
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-drop-down.js?ver=7.2.1
199.250.212.228200 OK 5.8 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-drop-down.js?ver=7.2.1
IP 199.250.212.228:0
File type ASCII text, with very long lines (5839), with no line terminators
Hash edf46cc758b9a88d02dcf28e8771328d
bccd87251fad21dcfb051c601fed7a24a6fc4d16
a79f7b23e636346f674bc93f2f5ecbe3d00393a0efbbe6bd13b9eadd80846b6b
GET /wp-content/themes/Avada/assets/min/js/general/avada-drop-down.js?ver=7.2.1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:28 GMT
Accept-Ranges: bytes
Content-Length: 5839
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-to-top.js?ver=7.2.1
199.250.212.228200 OK 1.0 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-to-top.js?ver=7.2.1
IP 199.250.212.228:0
File type ASCII text, with very long lines (1012), with no line terminators
Hash cf56e581154d279e13de5332f23e27a0
96f153d3e5158769501ef29fbe2cdd9913a751f3
f446077aee12995fb136767c3294e9140748464d57ce882638f0033b1ebbd109
GET /wp-content/themes/Avada/assets/min/js/general/avada-to-top.js?ver=7.2.1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:28 GMT
Accept-Ranges: bytes
Content-Length: 1012
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-menu.js?ver=7.2.1
199.250.212.228200 OK 40 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-menu.js?ver=7.2.1
IP 199.250.212.228:0
File type ASCII text, with very long lines (40017), with no line terminators
Hash 0a60c98cfa5b904eb8743c39d52e9c14
366c7e5d821127eaf020fe853b4dd7061b5a80dc
98bca9dd562c4fd9f56c6a0464f787a6af903b6c994472765e0ed0fd0eafd64a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/assets/min/js/general/avada-menu.js?ver=7.2.1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:28 GMT
Accept-Ranges: bytes
Content-Length: 40017
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-scrollspy.js?ver=7.2.1
199.250.212.228200 OK 761 B URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-scrollspy.js?ver=7.2.1
IP 199.250.212.228:0
File type ASCII text, with very long lines (761), with no line terminators
Hash 650ccbe39b2bfe3a745328725c06e13d
34d4bf8158c7d98da1cb86b63a11da0caf4de667
64445832d8d9814200bd858049612f493ff15de4afaea51ff22a12e19aa7a012
GET /wp-content/themes/Avada/assets/min/js/general/avada-scrollspy.js?ver=7.2.1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:28 GMT
Accept-Ranges: bytes
Content-Length: 761
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-sidebars.js?ver=7.2.1
199.250.212.228200 OK 3.6 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/assets/min/js/general/avada-sidebars.js?ver=7.2.1
IP 199.250.212.228:0
File type ASCII text, with very long lines (3569), with no line terminators
Hash a888377c1b9f1fd6612d15871228296e
dd6528ad156b220f15605cd6142fd178f0ed3225
2b182ad82ed2ad13e54c6e8eb5644eeed95ba5041041c460f4610455fb26114b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/assets/min/js/general/avada-sidebars.js?ver=7.2.1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:28 GMT
Accept-Ranges: bytes
Content-Length: 3569
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1
199.250.212.228200 OK 5.5 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (5512), with no line terminators
Hash 1fe28e8d1e7702cef111d084a4e8e704
cd152c8b8c3f2b26d2f30a923ab26cb67a5f4a76
d1d05eb5520d48c9c7dbd4b6b4799b04466f1e790518e717c35b786f5c1ef826
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 5512
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/plugins/fusion-core/js/min/fusion-vertical-menu-widget.js?ver=5.2.1
199.250.212.228200 OK 1.9 kB URL HTTP/1.1 spectre.aero/wp-content/plugins/fusion-core/js/min/fusion-vertical-menu-widget.js?ver=5.2.1
IP 199.250.212.228:0
File type ASCII text, with very long lines (1887), with no line terminators
Hash 0db8b8f836e72682522d3241d882f0fa
8d89a5ab9563a805537c4855fb297f2f68622042
dacf368c1e8ff4cf7ca357f6df7c9bba459b0d04b8820a009d0121fffec12620
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-core/js/min/fusion-vertical-menu-widget.js?ver=5.2.1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:31:37 GMT
Accept-Ranges: bytes
Content-Length: 1887
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1
199.250.212.228200 OK 483 B URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (483), with no line terminators
Hash ce62a35d4fa426a1393f3f7a29c49d90
99da2e454a3cd37e48629627196b5879eee671c6
599b94fef9bd0069a32e3a11877547f3fabe274312c85873cab9ce334238bc8d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:45 GMT
Accept-Ranges: bytes
Content-Length: 483
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1
199.250.212.228200 OK 2.1 kB URL HTTP/1.1 spectre.aero/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (2069), with no line terminators
Hash a3304c9c1171401d80cace2144f8adc3
3a140da1c55015b949d1b02a18f853eb567dacd7
9a0a34bc67f5d3623591214473ac2d449be18a8ce1cb5e531b185ef22a09b31f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:33:32 GMT
Accept-Ranges: bytes
Content-Length: 2069
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1
199.250.212.228200 OK 5.1 kB URL HTTP/1.1 spectre.aero/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1
IP 199.250.212.228:0
File type ASCII text, with very long lines (5069), with no line terminators
Hash 40719b9116c5d2ecdc5963c3a1096492
7324973e34c2aecb3286fc1ef6637eb1ba3ebebd
171292f14119b55d0106dfa2df43e052b778a713c7bfa629364fae708223e76f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:33:32 GMT
Accept-Ranges: bytes
Content-Length: 5069
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: application/javascript
spectre.aero/wp-content/themes/Avada/assets/css/fonts/d-dinexp-webfont.woff2
199.250.212.228200 OK 21 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/assets/css/fonts/d-dinexp-webfont.woff2
IP 199.250.212.228:0
File type Web Open Font Format (Version 2), TrueType, length 21148, version 1.0\012- data
Hash b6ae4f891627136298a4e0e151880bb3
818ac379eb438ebba7d3609d4d32b1a4618ad5e0
0ea50104d63733add29ac1eac6bcb6c995888277b9d06d5f1687fa76065e953a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/assets/css/fonts/d-dinexp-webfont.woff2 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://spectre.aero/wp-content/uploads/fusion-styles/01ba0a4b3bb344d28623a43f2c6471a5.min.css?ver=3.2.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Wed, 17 Mar 2021 06:19:41 GMT
Accept-Ranges: bytes
Content-Length: 21148
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: font/woff2
spectre.aero/wp-content/themes/Avada/assets/css/fonts/d-dinexp-bold-webfont.woff2
199.250.212.228200 OK 21 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/assets/css/fonts/d-dinexp-bold-webfont.woff2
IP 199.250.212.228:0
File type Web Open Font Format (Version 2), TrueType, length 20744, version 1.0\012- data
Hash cd54956e8411b4db50f680e7f812fdd6
431bcad6df83c4d662bccad057dac6b43adf7d12
f1cf9b6a27219c7f958c778cccf5c92d7156ec6b78d534a143905aff91dcf6fe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/assets/css/fonts/d-dinexp-bold-webfont.woff2 HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://spectre.aero/wp-content/uploads/fusion-styles/01ba0a4b3bb344d28623a43f2c6471a5.min.css?ver=3.2.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Wed, 17 Mar 2021 06:19:38 GMT
Accept-Ranges: bytes
Content-Length: 20744
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/woff2
spectre.aero/wp-content/uploads/2021/02/our-story.jpg
199.250.212.228200 OK 54 kB URL HTTP/1.1 spectre.aero/wp-content/uploads/2021/02/our-story.jpg
IP 199.250.212.228:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015 (Windows), datetime=2021:02:17 15:49:42], baseline, precision 8, 607x525, components 3\012- data
Hash efc268f86b5d04c9dfb0b60bd0443877
48727fe908730a64d5ade3ee08422a50b088e66f
c4e9b14574048dffc5436d6dd6170a72db4f5217224fbfbe8fc3ccfe967409f1
GET /wp-content/uploads/2021/02/our-story.jpg HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Wed, 17 Feb 2021 07:49:57 GMT
Accept-Ranges: bytes
Content-Length: 53683
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
spectre.aero/wp-content/uploads/2021/01/Spectre-Logo1.png
199.250.212.228200 OK 21 kB URL HTTP/1.1 spectre.aero/wp-content/uploads/2021/01/Spectre-Logo1.png
IP 199.250.212.228:0
File type PNG image data, 240 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 107a98caaef5df52ec2b2589f6bad916
3230cca5a8fe6cbbb2d5539ca3b0f4839b7bc5ce
c97ee7830edba78c4c0ba0a161411840d67a9e96d8ac5e40a4069588e66ea77f
GET /wp-content/uploads/2021/01/Spectre-Logo1.png HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 26 Jan 2021 03:05:05 GMT
Accept-Ranges: bytes
Content-Length: 20804
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
spectre.aero/wp-content/uploads/2021/02/about-img-1.jpg
199.250.212.228200 OK 128 kB URL HTTP/1.1 spectre.aero/wp-content/uploads/2021/02/about-img-1.jpg
IP 199.250.212.228:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=13, height=746, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1065], baseline, precision 8, 1065x746, components 3\012- data
Size 128 kB (128147 bytes)
Hash 31939fcc3274577189ae0f8c043d1a3e
d7cd58cfc4ff5687dff39028fa3886e3687e6478
8edcdd365435f53cf9e515d2be805fdb77796e8587acf5fa117e6a8ec824e667
GET /wp-content/uploads/2021/02/about-img-1.jpg HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Thu, 18 Feb 2021 13:31:16 GMT
Accept-Ranges: bytes
Content-Length: 128147
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
spectre.aero/wp-content/uploads/2021/02/image-1.jpg
199.250.212.228200 OK 96 kB URL HTTP/1.1 spectre.aero/wp-content/uploads/2021/02/image-1.jpg
IP 199.250.212.228:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=13, height=619, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=616], baseline, precision 8, 616x619, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 21615-28704, spot sensor temperature 1125978593735313417306112.000000, unit celsius, color scheme 0, calibration: offset 33554432.000000, slope 1181845777953494668419268608.000000\012- data
Hash 1c0ef9becd454241b36d92572c75af4f
a87e0b7b97ee7337a25e2378847884c293cc1ff0
2f86628e2f0e5be06887771ef9c894166778a86f5830d7273ea96511fe419423
GET /wp-content/uploads/2021/02/image-1.jpg HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Mon, 22 Feb 2021 16:25:47 GMT
Accept-Ranges: bytes
Content-Length: 96446
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/jpeg
spectre.aero/wp-content/uploads/2023/01/orig-logo.png
199.250.212.228200 OK 9.6 kB URL HTTP/1.1 spectre.aero/wp-content/uploads/2023/01/orig-logo.png
IP 199.250.212.228:0
File type PNG image data, 350 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 91f243f4247df2f6d933bc27d5698fe6
fac93aa78dddb9e8ff3463bcc0ffc7d9d6d13a41
d771f54115c85c8a15ed82ae63a3b1b661276dd3b0a984d48f8ab85d18b8d005
GET /wp-content/uploads/2023/01/orig-logo.png HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Thu, 19 Jan 2023 05:39:59 GMT
Accept-Ranges: bytes
Content-Length: 9620
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
spectre.aero/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff
199.250.212.228200 OK 21 kB URL HTTP/1.1 spectre.aero/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff
IP 199.250.212.228:0
File type Web Open Font Format, TrueType, length 20908, version 1.0\012- data
Hash 00491de6282bc94e9cc6a2ccbb4b3ae6
a3f9f4a0e469c3557e64029415698942903f10a4
22c851d5f36813ff8cbb4ab0d16273aa1eb536f84f2c56b53df8d2c7a54479a4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://spectre.aero/wp-content/uploads/fusion-styles/01ba0a4b3bb344d28623a43f2c6471a5.min.css?ver=3.2.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 06:29:46 GMT
Accept-Ranges: bytes
Content-Length: 20908
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: font/woff
spectre.aero/wp-content/uploads/2021/01/slide2.jpg
199.250.212.228200 OK 67 kB URL HTTP/1.1 spectre.aero/wp-content/uploads/2021/01/slide2.jpg
IP 199.250.212.228:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015 (Windows), datetime=2021:01:26 09:16:12], progressive, precision 8, 1920x1080, components 3\012- data
Hash 8f4e6c55cf7cabca165f9dbe4d166dc6
dfa3114c674abc832b8da67dceed5d1de26863ad
67fcd976e7d791deeb49c740ebe70eb990a65de802e8b4464ce65dc68a82ef8a
GET /wp-content/uploads/2021/01/slide2.jpg HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 26 Jan 2021 01:16:33 GMT
Accept-Ranges: bytes
Content-Length: 67049
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg
spectre.aero/wp-content/uploads/2021/02/FC9A0569-2-1.jpg
199.250.212.228200 OK 231 kB URL HTTP/1.1 spectre.aero/wp-content/uploads/2021/02/FC9A0569-2-1.jpg
IP 199.250.212.228:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=14, height=4480, bps=182, PhotometricIntepretation=RGB, manufacturer=Canon, model=Canon EOS 5D Mark IV, orientation=upper-left, width=6720], baseline, precision 8, 2400x1600, components 3\012- data
Size 231 kB (230761 bytes)
Hash 3517999f3759eb8ba1c7ae7f4287ca8a
ced86e407ee7656b89ceb679a275f37a6042229b
a122a664304bda9b2300e5c7a1f2db3f8eaf1c4081349d903829f628a54c3a83
GET /wp-content/uploads/2021/02/FC9A0569-2-1.jpg HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Wed, 17 Feb 2021 08:30:51 GMT
Accept-Ranges: bytes
Content-Length: 230761
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
spectre.aero/wp-content/uploads/2021/01/aircraft-is-flying-islands-sea-sunrise-summer-landscape-with-white-passenger-airplane-1.jpg
199.250.212.228200 OK 345 kB URL HTTP/1.1 spectre.aero/wp-content/uploads/2021/01/aircraft-is-flying-islands-sea-sunrise-summer-landscape-with-white-passenger-airplane-1.jpg
IP 199.250.212.228:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=17, height=4912, bps=0, compression=none, PhotometricIntepretation=RGB, description=Aircraft is flying over islands and sea at sunrise in summer. Landscape with white passenger airplane, seashore, mountains, for, manufacturer=NIKON CORPORATION, model=NIKON D810, orientation=upper-left, width=7360], baseline, precision 8, 2400x1602, components 3\012- data
Size 345 kB (344820 bytes)
Hash 1dec7411d7d7f4a9cb4255b997bcbe79
929617f09dba30c294b84417b23313e6e2c6f738
4c56a5dcb1b081ba0975208cc0170eb9d607ff2fbf454ab90ec790d406f82d38
GET /wp-content/uploads/2021/01/aircraft-is-flying-islands-sea-sunrise-summer-landscape-with-white-passenger-airplane-1.jpg HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 26 Jan 2021 01:41:28 GMT
Accept-Ranges: bytes
Content-Length: 344820
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg
spectre.aero/wp-content/uploads/2021/02/FC9A0900.jpg
199.250.212.228200 OK 379 kB URL HTTP/1.1 spectre.aero/wp-content/uploads/2021/02/FC9A0900.jpg
IP 199.250.212.228:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=14, height=4480, bps=182, PhotometricIntepretation=RGB, manufacturer=Canon, model=Canon EOS 5D Mark IV, orientation=upper-left, width=6720], baseline, precision 8, 2400x1600, components 3\012- data
Size 379 kB (379417 bytes)
Hash 6e7890f707dff316734516b178bd03c9
5740d809108f2a201cc41f9978fde58b633bf816
5d994f183a56742cb894554ba5dce6f2f8103b6707d051f4cf3e8e230b505037
GET /wp-content/uploads/2021/02/FC9A0900.jpg HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Wed, 17 Feb 2021 12:08:14 GMT
Accept-Ranges: bytes
Content-Length: 379417
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/jpeg
spectre.aero/wp-content/uploads/2021/02/download.jpg
199.250.212.228200 OK 102 kB URL HTTP/1.1 spectre.aero/wp-content/uploads/2021/02/download.jpg
IP 199.250.212.228:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 750x450, components 3\012- data
Size 102 kB (102201 bytes)
Hash 9255f3a6703be8c12acd1c4f1775fb88
d7a6ef1ed75510b259179def8f58fc1e968abd73
a481422e1435b796e338ecaf7a2e18b5af0ebcce66ae9b8d51d3f773a7c93834
GET /wp-content/uploads/2021/02/download.jpg HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:07 GMT
Server: Apache
Last-Modified: Tue, 16 Feb 2021 12:32:45 GMT
Accept-Ranges: bytes
Content-Length: 102201
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/jpeg
spectre.aero/wp-content/uploads/2015/02/slide.jpg
199.250.212.228200 OK 341 kB URL HTTP/1.1 spectre.aero/wp-content/uploads/2015/02/slide.jpg
IP 199.250.212.228:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=561, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1500], progressive, precision 8, 1920x1080, components 3\012- data
Size 341 kB (341082 bytes)
Hash 14f2673e55ae270f6bbac7476636f23e
878e8b282b581be5d6a4ffc8d062441c628655fd
c9d257141e32ce854eae791d69b61381420faf88268c9167bfc29445a71c06aa
GET /wp-content/uploads/2015/02/slide.jpg HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:06 GMT
Server: Apache
Last-Modified: Tue, 26 Jan 2021 01:03:41 GMT
Accept-Ranges: bytes
Content-Length: 341082
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/jpeg
spectre.aero/wp-content/uploads/2021/02/contact-image.jpg
199.250.212.228200 OK 87 kB URL HTTP/1.1 spectre.aero/wp-content/uploads/2021/02/contact-image.jpg
IP 199.250.212.228:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=8, orientation=upper-left, xresolution=110, yresolution=118, resolutionunit=2, software=Adobe Photoshop CC 2015 (Windows), datetime=2021:02:17 15:59:37], baseline, precision 8, 2048x1365, components 3\012- data
Hash 3e0a94abadc8cf585baefa4e71d5f58c
74ddb06b8d4aefde5aa128973563877f5c0801a6
fcc182fa8421ac69b08b6087b208b089619d51569c827452d2c02b673ee614c3
GET /wp-content/uploads/2021/02/contact-image.jpg HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:07 GMT
Server: Apache
Last-Modified: Wed, 17 Feb 2021 08:00:51 GMT
Accept-Ranges: bytes
Content-Length: 86666
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
spectre.aero/wp-content/uploads/2021/02/contact-bldg.jpg
199.250.212.228200 OK 91 kB URL HTTP/1.1 spectre.aero/wp-content/uploads/2021/02/contact-bldg.jpg
IP 199.250.212.228:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=8, orientation=upper-left, xresolution=110, yresolution=118, resolutionunit=2, software=Adobe Photoshop CC 2015 (Windows), datetime=2021:02:17 16:02:07], baseline, precision 8, 676x993, components 3\012- data
Hash e78000646079015218843da5cd54054e
05c0f3f6efb9ada1f0ee6779768d007f172886e0
365deead4849d792c0450a0d01ff2c221ed900cae00a01d85bf21e52c5507116
GET /wp-content/uploads/2021/02/contact-bldg.jpg HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:07 GMT
Server: Apache
Last-Modified: Wed, 17 Feb 2021 08:05:39 GMT
Accept-Ranges: bytes
Content-Length: 90980
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/jpeg
spectre.aero/wp-content/uploads/2021/01/airplane-flying-modern-glass-office-building-perspective-view-futuristic-glass-building-exterior-office-glass-building-business-trip-company-window-1.jpg
199.250.212.228200 OK 378 kB URL HTTP/1.1 spectre.aero/wp-content/uploads/2021/01/airplane-flying-modern-glass-office-building-perspective-view-futuristic-glass-building-exterior-office-glass-building-business-trip-company-window-1.jpg
IP 199.250.212.228:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=16, height=4900, bps=206, PhotometricIntepretation=RGB, description=Airplane flying above modern glass office building. Perspective view of futuristic business building. Exterior of skyscraper bu, manufacturer=SONY, model=ILCE-7RM2, orientation=upper-left, width=7346], baseline, precision 8, 2400x1601, components 3\012- data
Size 378 kB (378518 bytes)
Hash 398249df27a3ce486febaa34d2c7d885
87cd93e2daa7923834202a6885d910eae18547f7
73d2eab864fbdbdc790b5841b26340209a6e64fea212643c7862f5c40af10c66
GET /wp-content/uploads/2021/01/airplane-flying-modern-glass-office-building-perspective-view-futuristic-glass-building-exterior-office-glass-building-business-trip-company-window-1.jpg HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:07 GMT
Server: Apache
Last-Modified: Tue, 26 Jan 2021 01:51:07 GMT
Accept-Ranges: bytes
Content-Length: 378518
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/jpeg
spectre.aero/wp-content/plugins/google-language-translator/images/flags.png
199.250.212.228200 OK 55 kB URL HTTP/1.1 spectre.aero/wp-content/plugins/google-language-translator/images/flags.png
IP 199.250.212.228:0
File type PNG image data, 169 x 520, 8-bit/color RGBA, non-interlaced\012- data
Hash 89c95031b56b90591fd4ef80558f8c25
9599f52c93b38f3e68686f299b3184be0a9de63a
d64c12a76a61096f3a14aa795d12c3fc0de8e5781ef2e1af3b66517e65d7f00e
GET /wp-content/plugins/google-language-translator/images/flags.png HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.16
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:07 GMT
Server: Apache
Last-Modified: Fri, 30 Dec 2022 06:10:34 GMT
Accept-Ranges: bytes
Content-Length: 54996
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: image/png
www.gstatic.com/images/branding/product/1x/translate_24dp.png
142.250.74.3200 OK 846 B URL HTTP/2 www.gstatic.com/images/branding/product/1x/translate_24dp.png
IP 142.250.74.3:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash e9cd262114358f26b7608b56905185dc
6dbde0a96deaab2b529723ce26c62043cf9180ab
5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99
GET /images/branding/product/1x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 12:53:47 GMT
expires: Tue, 23 Jan 2024 12:53:47 GMT
cache-control: public, max-age=31536000
age: 292160
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/images/branding/product/2x/translate_24dp.png
142.250.74.3200 OK 1.8 kB URL HTTP/2 www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP 142.250.74.3:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://translate.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 16:07:41 GMT
expires: Tue, 23 Jan 2024 16:07:41 GMT
cache-control: public, max-age=31536000
age: 280526
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
spectre.aero/wp-content/uploads/2021/01/favicon-1.png
199.250.212.228200 OK 19 kB URL HTTP/1.1 spectre.aero/wp-content/uploads/2021/01/favicon-1.png
IP 199.250.212.228:0
File type PNG image data, 72 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 0be9338463a34c43b4338f7ade3b73fb
c7c325592a4d2bf2d1e0196020666a3b73c03b6a
deb1844dbb6a3ddf756a7ba8b62b7710b7cd38400634dd1204d68e9e49e145ce
GET /wp-content/uploads/2021/01/favicon-1.png HTTP/1.1
Host: spectre.aero
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://spectre.aero/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 22:03:07 GMT
Server: Apache
Last-Modified: Tue, 26 Jan 2021 03:04:35 GMT
Accept-Ranges: bytes
Content-Length: 18789
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png