Report - construmat-ng.com/

Report Overview

Submitted URL
construmat-ng.com/
IP
173.254.24.41
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2022-10-07 04:03:57
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
104

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	4.9 kB	142.250.74.3
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	56 kB	34.120.237.76
www.gavias-theme.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	185 kB	69.175.109.52
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	54.230.111.35
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
construmat-ng.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	44 kB	846 kB	173.254.24.41
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	34.160.144.191
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	52.42.74.230
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	28 kB	142.250.74.10
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	51 kB	172.217.21.163

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-07	medium	construmat-ng.com/	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/indutri-themer/assets/css/update.css?ver=6.0.2	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/uploads/elementor/css/post-6.css?ver=1649909572	Phishing
2022-10-07	medium	construmat-ng.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/indutri-themer/elementor/assets/css/base.css?ver=6.0.2	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/themes/indutri/js/lightgallery/css/lightgallery.min.css?ver=6.0.2	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/uploads/elementor/css/post-4818.css?ver=1649909573	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.8	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.4	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/indutri-themer/assets/js/main.js	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3	Phishing
2022-10-07	medium	construmat-ng.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/themes/indutri/js/woocommerce.js?ver=6.0.2	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/indutri-themer/elementor/assets/libs/jquery.appear.js?ver=1.0.0	Phishing
2022-10-07	medium	construmat-ng.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/uploads/elementor/css/post-206.css?ver=1649909574	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/themes/indutri/js/jquery.cookie.js?ver=6.0.2	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/uploads/elementor/css/post-4004.css?ver=1649909573	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/themes/indutri/js/main.js?ver=6.0.2	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.8	Phishing
2022-10-07	medium	construmat-ng.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/themes/indutri/js/magnific/jquery.magnific-popup.min.js?ver=6.0.2	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/themes/indutri/js/owl-carousel/owl.carousel.min.js?ver=6.0.2	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.15	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/the-events-calendar/common/src/resources/js/underscore-after.js	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/themes/indutri/js/add-to-cart.js?ver=6.0.2	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/the-events-calendar/common/src/resources/js/underscore-before.js	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/themes/indutri/js/perfect-scrollbar.jquery.min.js?ver=6.0.2	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.10	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/indutri-themer/elementor/assets/main.js?ver=1.0.0	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8	Phishing
2022-10-07	medium	construmat-ng.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/themes/indutri/fonts/gilmer/GilmerBold.woff	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/themes/indutri/js/lightgallery/js/lightgallery.min.js?ver=6.0.2	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/indutri-themer/elementor/assets/libs/owl-carousel/owl.carousel.js?ver=1.0.0	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/themes/indutri/css/bootstrap.css?ver=1.0.9	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/themes/indutri/fonts/gilmer/GilmerRegular.otf	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/themes/indutri/css/template.css?ver=1.0.9	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.3	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/themes/indutri/css/woocommerce.css?ver=1.0.9	Phishing
2022-10-07	medium	construmat-ng.com/	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/themes/indutri/fonts/gilmer/GilmerMedium.otf	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.15	Phishing
2022-10-07	medium	construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

Files detected

URL
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP
172.217.21.163
ASN
#15169 GOOGLE

File type
gzip compressed data, max compression\012- data
Size
18 kB (17476 bytes)
Hash
fbe5e8f0de1bb902e871654a390039cd
3352e851ca3f91ab52f4f5b2af3ace50b5e21742
d42ebd9d686c2afd632f6a88011433870851aedb197dd3aa9996c4b4088f1eb7

Detections

Analyzer	Verdict	Alert
VirusTotal	0/0

JavaScript (37)

	URL	Size	First Seen	Last Seen
	construmat-ng.com/wp-content/themes/indutri/js/perfect-scrollbar.jquery.min.js?ver=6.0.2	25 kB	2023-03-07	2024-04-14
Pretty URL construmat-ng.com/wp-content/themes/indutri/js/perfect-scrollbar.jquery.min.js?ver=6.0.2 IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:23:36 Last Seen2024-04-14 19:59:21 Times Seen556 Hash b4e42d596127ea16f0150021ddf74901 82044ba7df0f805a589a6bca7269544a4ef04094 da5c19d735b8439914d618639384cfdaa1f6ec7574bfc0fdb89317490ea83735 Loading...

	construmat-ng.com/	332 B	2023-03-07	2024-04-26
Pretty URL construmat-ng.com/ IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-04-26 01:59:54 Times Seen9163 Hash 7d495bb1d6c246a2d57df3ab9332a3cc 6367d4f8addf48f2af1023b8176a2263bb424d01 df09a4f39d495e901a5479fce56c8ddec4f8a6acda1b3ceab7adc704fa439e32 Loading...

	construmat-ng.com/	493 B	2023-03-07	2024-04-26
Pretty URL construmat-ng.com/ IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:11 Last Seen2024-04-26 14:22:53 Times Seen4279 Hash f73f3cc147a181d5955eaba113c1c122 07a5ef5a63d37a99d17986786d75bdcb3cda6409 5aab3a40376dc0dffe15b2882b50d298e6c877683a4f25ddfcf77fbd16d47b56 Loading...

	construmat-ng.com/wp-content/plugins/metronet-profile-picture/js/mpp-frontend.js?ver=2.6.0	331 B	2023-03-07	2024-04-26
Pretty URL construmat-ng.com/wp-content/plugins/metronet-profile-picture/js/mpp-frontend.js?ver=2.6.0 IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:26 Last Seen2024-04-26 01:59:56 Times Seen1171 Hash f0cba76b7742df5f4c51e5b1d106c1a7 ad223c79db3073aa58d3414ddfcf055a48796029 b695f4e09490004246d228e02338f9d3c4591273e1f35bb0ebe63607c860e608 Loading...

	construmat-ng.com/wp-content/themes/indutri/js/magnific/jquery.magnific-popup.min.js?ver=6.0.2	21 kB	2023-03-07	2024-04-25
Pretty URL construmat-ng.com/wp-content/themes/indutri/js/magnific/jquery.magnific-popup.min.js?ver=6.0.2 IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-25 21:53:59 Times Seen2407 Hash be3333626c57af03599abcb59b325e09 3824067348f6485d6b07d3a43660804e3731b21a ecbef0f33e8ccedd2c605816e052cfff778abcc0e30a80b874c097a5fddd24fc Loading...

	construmat-ng.com/wp-content/themes/indutri/js/lightgallery/js/lightgallery.min.js?ver=6.0.2	50 kB	2023-03-07	2024-04-14
Pretty URL construmat-ng.com/wp-content/themes/indutri/js/lightgallery/js/lightgallery.min.js?ver=6.0.2 IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:23:36 Last Seen2024-04-14 19:59:23 Times Seen144 Hash 86f27fcadae53f40784887ed27575cb7 7b95a9f0f73bd3de3e196cb9f990f383b1c24694 2c74a178a66ab6497b18552787ea5c6ecb32f3a3c616d41a1631e02570bbcd81 Loading...

	construmat-ng.com/wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.10	6.2 kB	2023-03-07	2024-04-26
Pretty URL construmat-ng.com/wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.10 IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-26 15:14:16 Times Seen826 Hash b739d72c47c93702aef206eb58857289 fdc2a712672c64f317df41073aec28d7b01a5e6e dcbe862273a5d7cb61ffaa1eda7e0a1ecb466ca5e08a592fae3e6d1824960293 Loading...

	construmat-ng.com/	369 B	2023-03-07	2024-04-26
Pretty URL construmat-ng.com/ IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-26 15:14:14 Times Seen696 Hash 199d3f2d880a45cb76f4d355f5edf5ed e7a478ac7c81b36e22894fd2be69085c6dba81d8 38db327084e1b800d3f263fe22995a999545eb07b01fa350bc2453f940fa8795 Loading...

	construmat-ng.com/wp-content/plugins/indutri-themer/elementor/assets/libs/owl-carousel/owl.carousel.js?ver=1.0.0	90 kB	2023-03-08	2024-04-14
Pretty URL construmat-ng.com/wp-content/plugins/indutri-themer/elementor/assets/libs/owl-carousel/owl.carousel.js?ver=1.0.0 IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:31:38 Last Seen2024-04-14 19:59:20 Times Seen85 Hash 2e51028837de489d04b342e23e6bc517 6636355271271bef99639eb9b0c46215bbbdab34 bf46d62b800ccde330d0a270b59ec3f89109232d593c7dc44a81ed7fee4a3f14 Loading...

	construmat-ng.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4	5.6 kB	2023-03-07	2024-04-26
Pretty URL construmat-ng.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-04-26 15:16:07 Times Seen30980 Hash 3a56752b736635bf69cb069b8818cbfd 42e0951fe74bb3f56a30f51291823bcd4a84d76e ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869 Loading...

	construmat-ng.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.4	9.5 kB	2023-03-07	2024-04-25
Pretty URL construmat-ng.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.4 IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-25 13:07:05 Times Seen1881 Hash a5451283952efd5df49466bbeace6911 dce405842471c303c3d8fd6fa3c084aa56a71029 f4e38e5ef16efe51836cf7142412b8e1aa8b73ce89afed23be0cf77dfd8e095d Loading...

	construmat-ng.com/wp-content/plugins/indutri-themer/elementor/assets/main.js?ver=1.0.0	18 kB	2023-03-08	2023-05-21
Pretty URL construmat-ng.com/wp-content/plugins/indutri-themer/elementor/assets/main.js?ver=1.0.0 IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:02:23 Last Seen2023-05-21 17:33:46 Times Seen5 Hash 4af29e3f09c117882dd8a6202d275d15 9cb6190e361164d3a99e000279ac3126dfd898c2 7b3072724bd0d1fc04d2859b9ee2cea75e4b2524d9450494b81896c9421214ef Loading...

	construmat-ng.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	90 kB	2023-03-07	2024-04-26
Pretty URL construmat-ng.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-26 15:16:06 Times Seen31852 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	construmat-ng.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8	40 kB	2023-03-08	2024-04-21
Pretty URL construmat-ng.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:46:08 Last Seen2024-04-21 09:39:37 Times Seen1057 Hash 9195e52afe51faf6fa959276ea149ae8 5e18d4c1b5344b36fe9838b381d034a375619636 0e4b2020366cf0e467191b309fe8f9a946228e2834bf2c053ae7cb8facb1d97f Loading...

	construmat-ng.com/	152 B	2023-03-07	2024-04-26
Pretty URL construmat-ng.com/ IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-26 12:29:30 Times Seen19934 Hash b8c40bf7c92768058d743847cccdb147 4fbbbcb2dda4d05e2e58bf43330c559b4165fc0b 7872ff233c7b2bfa962f491d0575e71f0b0b487bc63899ff4c72c7c9d5197688 Loading...

	construmat-ng.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2	19 kB	2023-03-07	2024-04-26
Pretty URL construmat-ng.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-26 15:14:15 Times Seen38061 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.8	15 kB	2023-03-07	2024-04-26
Pretty URL construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.8 IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:07 Last Seen2024-04-26 13:53:03 Times Seen16393 Hash 7a5dea0a705cc2f4cd87dbaaa6666bc6 678bc6f750f13adb29bbc158eb0d9cd813b736fa 97cf1307c16a437b77b5f7f5c9bc0b985d0745a14be5a279019aca5a3432e264 Loading...

	construmat-ng.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1	21 kB	2023-03-07	2024-04-25
Pretty URL construmat-ng.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 18:37:12 Times Seen3655 Hash 6aaf0a4e8eac131defea126f5b1b5fbf 24da0326af36303e5a1e9799a3c26f7a1077928c 240b702419d6c39ecc4896f0132ccfc9bc517e9aef0c782d99580e0c678b47d5 Loading...

	construmat-ng.com/	1.4 kB	2023-03-07	2024-04-26
Pretty URL construmat-ng.com/ IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:33 Last Seen2024-04-26 15:14:14 Times Seen1944 Hash baa52dd43e0e29340348ae52a88fdcfd a85cd8502fafa4fb5cb0786c1ab1e6c0c957093e 49117ca60d8aeb4aa478d3541e09db31ce6fe2608ff7f96e9409239390e6b1bc Loading...

	construmat-ng.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-04-26
Pretty URL construmat-ng.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-26 15:16:07 Times Seen52804 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	construmat-ng.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8	33 kB	2023-03-08	2024-04-21
Pretty URL construmat-ng.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:46:08 Last Seen2024-04-21 09:39:37 Times Seen873 Hash be470f42763699211b6bde600035489e 4ba8055c19103b570b98018e45204e3cab1d141f 9b5283387ec103868d83ebcb8ed6516cf4b29fa6c1490991ce3aff980aadfe02 Loading...

	construmat-ng.com/	145 B	2023-03-07	2024-04-26
Pretty URL construmat-ng.com/ IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:22 Last Seen2024-04-26 15:14:14 Times Seen3489 Hash 09c7a3dbfcd65973e5cbdb48c5460c07 086b7a4ac6632ec06f2f0e68f4ff3fcfc9a1c71c d81a9dc0c33559bfacc014a5216f454c40183312addc9623d3da987650cd56f3 Loading...

	construmat-ng.com/	131 B	2023-03-08	2023-03-08
Pretty URL construmat-ng.com/ IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:02:23 Last Seen2023-03-08 08:02:23 Times Seen1 Hash 99c759a80fca040343c07f48c72cf130 f583023e3f7431e9eb3d2c0a2efff706e36d9aa2 1958ba1270996190cf2756bc9f118e6cf9d159a489bf5d308e04eaa152dde643 Loading...

	construmat-ng.com/wp-includes/js/underscore.min.js?ver=1.13.3	19 kB	2023-03-07	2024-04-24
Pretty URL construmat-ng.com/wp-includes/js/underscore.min.js?ver=1.13.3 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2024-04-24 13:45:07 Times Seen2359 Hash 42aa17e1f850a414638ee4a32a3aa807 2e42d03a5e042701191650c041eae1cfb2d6c7b9 0da4791b446818516f710c51707081aec7b23a7c5212fc0b2629c973210136a4 Loading...

	construmat-ng.com/wp-content/themes/indutri/js/jquery.cookie.js?ver=6.0.2	3.1 kB	2023-03-07	2024-04-26
Pretty URL construmat-ng.com/wp-content/themes/indutri/js/jquery.cookie.js?ver=6.0.2 IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:43 Last Seen2024-04-26 06:55:52 Times Seen3146 Hash 0f1f6cd6e0036897019b376d38593403 498b29de6e170fffc8535183b7d6550490f0a159 8c0301b3dba5061632d7321cd8bb7bd527f48288d5cb15ff614ea0c1dcc1ad69 Loading...

	construmat-ng.com/wp-includes/js/masonry.min.js?ver=4.2.2	24 kB	2023-03-07	2024-04-26
Pretty URL construmat-ng.com/wp-includes/js/masonry.min.js?ver=4.2.2 IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2024-04-26 11:39:41 Times Seen15289 Hash 3b3fc826e58fc554108e4a651c9c7848 76778fd446e2ff2377588a7b4ac4d79f258427c9 e00add38134eac2fb8e8e9c09cbfff7bbe57952b210322eb2eecb0a21fc055eb Loading...

	construmat-ng.com/wp-content/themes/indutri/js/sticky.js?ver=6.0.2	1.7 kB	2023-03-07	2024-04-14
Pretty URL construmat-ng.com/wp-content/themes/indutri/js/sticky.js?ver=6.0.2 IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:23:36 Last Seen2024-04-14 19:59:21 Times Seen52 Hash eb1adf1ce003d90f5a277ef1155a397b 7d8bbbb2961c98332b35209c17bfb87aaa3f8099 5c00be228159790a0fdc9d757fc36521a4c569c1575f43f5b0eefeae9b6a7c58 Loading...

	construmat-ng.com/	2.2 kB	2023-03-07	2024-04-26
Pretty URL construmat-ng.com/ IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:41 Last Seen2024-04-26 14:22:52 Times Seen2097 Hash cc6a0fa7152159e48d38e4d993f4c97d c9a88fa9cc00cedbc0d454a7875cb2503b7b9e24 5cad5dcc261bc6949e544662a54863753a9b7850c764e731da87e9845dbb0bbb Loading...

	construmat-ng.com/	486 B	2023-03-08	2023-03-08
Pretty URL construmat-ng.com/ IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:02:23 Last Seen2023-03-08 08:02:23 Times Seen1 Hash d904fc66dca804b293375ef3f73ccb52 425ceafae865618d72ad831a32c30c11a90fa271 a04d3f64222240b80336b28672ec55bcb5db6ef9ca0e5a5f42f10f8f56df521e Loading...

	construmat-ng.com/	215 B	2023-03-07	2024-04-26
Pretty URL construmat-ng.com/ IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-26 15:14:14 Times Seen2240 Hash 1bb7b821b587959d4c0cc406c49077ff 2cb4827d5cd5a05729418b369019b9c1eb0798ed 1f93a5f6091369b8b6cdb7be01a6c7044ec8c3af0eeac05a5f0dfb3aea2a3e31 Loading...

	construmat-ng.com/	2.2 kB	2023-03-08	2023-03-08
Pretty URL construmat-ng.com/ IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:02:23 Last Seen2023-03-08 08:02:23 Times Seen1 Hash 6cae3e7ca6b1659c1264ea1e0e852d4b c36dcbcae49b2a991aa8c7160bab4a118d2d05f8 c362323e73c03b28eb96e6b7fd4e7ee33890cd5190ad6d79e05591f6c8095ae4 Loading...

	construmat-ng.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-26
Pretty URL construmat-ng.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-26 15:14:15 Times Seen68668 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	construmat-ng.com/wp-content/themes/indutri/js/woocommerce.js?ver=6.0.2	4.6 kB	2023-03-07	2023-05-21
Pretty URL construmat-ng.com/wp-content/themes/indutri/js/woocommerce.js?ver=6.0.2 IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:23:36 Last Seen2023-05-21 17:33:46 Times Seen6 Hash 31c02a86bf1419ec35396bd918b5ef34 cf36a5f0e2ccfc6a47db36fe8440641100a5b74e e9ae1399a848995396cb56b5a864cd20da59742d217e6d4cec66422a62e05536 Loading...

	construmat-ng.com/	67 B	2023-03-08	2023-03-08
Pretty URL construmat-ng.com/ IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:02:23 Last Seen2023-03-08 08:02:23 Times Seen1 Hash 83ee750aa825987982141d1c7c6f3388 8fedf3de97d74af05b7990e462fc50a8fe3868c0 44bbe5667be2935a889fb8598326529bfc36e93e1cd8aba56db73698c28fb778 Loading...

	construmat-ng.com/wp-content/themes/indutri/js/owl-carousel/owl.carousel.min.js?ver=6.0.2	41 kB	2023-03-07	2024-04-13
Pretty URL construmat-ng.com/wp-content/themes/indutri/js/owl-carousel/owl.carousel.min.js?ver=6.0.2 IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:40 Last Seen2024-04-13 03:25:31 Times Seen720 Hash d3da0099c1e1895799b0b2ce8fb0fe87 c35537510e7253ac1ceee5938b858b81630ee4f7 db6cf8e60315d8dff85519b88b6eca97e553fc0655f711db46b0ce79b82eed40 Loading...

	construmat-ng.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b	1.8 kB	2023-03-07	2024-04-26
Pretty URL construmat-ng.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-04-26 00:51:36 Times Seen6658 Hash cd0eb3406096ff80266e7c9d7d419186 0e3709691bf96233766de30e2fd473b84166c5b6 c2e606e1fc82ea3a554aad5d0520e25d2677b89a891dc5c49e7ace08fce92e25 Loading...

	construmat-ng.com/wp-content/themes/indutri/js/bootstrap.js?ver=6.0.2	115 kB	2023-03-07	2024-04-15
Pretty URL construmat-ng.com/wp-content/themes/indutri/js/bootstrap.js?ver=6.0.2 IP 173.254.24.41 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:05 Last Seen2024-04-15 19:53:33 Times Seen512 Hash d810a38ca2781735a27cba0625a027db 07da27bb41cf623acc959d70b9611d09c01fa5a5 71577fb46a22fa031506bab9c5ddb4640e38ef10a1b4959a11288b41ce4b0757 Loading...

HTTP Transactions (131)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
282f6e1328452c1cb41f6a6272fff757
20b9ff1b5f4f81b645769bd4b4cf7bf7dfc16262
6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10838
Expires: Fri, 07 Oct 2022 07:04:24 GMT
Date: Fri, 07 Oct 2022 04:03:46 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

54.230.111.35

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
54.230.111.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: BLZkh19kQuUg3SA835bDGCXq1qKGAyQ_Sl1bOpscpoQQ1o_iZ0RbYQ==
Age: 130588

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4ab7d8709d334de0e46dcb86aabfbff1
f221138a8ad9d0bfa3c054370dcdb363a67dc310
b91d37f606eaf448b9c7dfc05566a11de004ce44503409e1a776288ee2622805

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B91D37F606EAF448B9C7DFC05566A11DE004CE44503409E1A776288EE2622805"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6685
Expires: Fri, 07 Oct 2022 05:55:11 GMT
Date: Fri, 07 Oct 2022 04:03:46 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 935geeltMQuTTNqmzVkre7K+rl4Bp1Q2EZYEBGqykBOoGId2MIM9Kwm0hxgMmW1vjdpCwOYmQI8=
x-amz-request-id: TBGX758KEGN4EBJ8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 07 Oct 2022 03:59:01 GMT
age: 285
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 04:03:46 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

54.230.111.35

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
54.230.111.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Fri, 07 Oct 2022 03:29:41 GMT
Expires: Fri, 07 Oct 2022 04:14:30 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: gIALaveMO7Ac4iK15JGR29v4VaNlxn7zPC0ydNPFeaDRzeJHk4RDmg==
Age: 2045

construmat-ng.com/

173.254.24.41

301 Moved Permanently

0 B

URL HTTP/1.1
construmat-ng.com/
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Fri, 07 Oct 2022 04:03:46 GMT
Server: Apache
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://construmat-ng.com/
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
8be5570b9a5ca76c580da007a824b029
38840f2ac6476bdd5608121c5653e338c7ad9715
0b94e05080ef85432b1815eb3c6c7594c9613cfde1b51eeabee46d0d9fde64b2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6241
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 04:03:46 GMT
Last-Modified: Fri, 07 Oct 2022 02:19:45 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8b774f35db7c6604255b07814d854798
8cd74af08f754d44c4842d08570937a618f26e2b
bd3dc1f28e26d2e2cd6131e11b537ca93f249dd6f08c0b66c670c1826cafc762

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD3DC1F28E26D2E2CD6131E11B537CA93F249DD6F08C0B66C670C1826CAFC762"
Last-Modified: Fri, 07 Oct 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21544
Expires: Fri, 07 Oct 2022 10:02:51 GMT
Date: Fri, 07 Oct 2022 04:03:47 GMT
Connection: keep-alive

push.services.mozilla.com/

52.42.74.230

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.42.74.230:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +7L3fHz0EMN9uX0vTukDhg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: b5233Lk/rHd3clNFcQ5IKMzhSX4=

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10740
Expires: Fri, 07 Oct 2022 07:02:48 GMT
Date: Fri, 07 Oct 2022 04:03:48 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10740
Expires: Fri, 07 Oct 2022 07:02:48 GMT
Date: Fri, 07 Oct 2022 04:03:48 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
18e0e019cd697bb16806d8f00408a319
60ceb13c31595e6cf9bb6800657e4593a1fbd670
7cb0778c80be637b67a5d198ca180a76bbfa4c32e502a0fa472a4c6946ffb56e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 04:03:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
18e0e019cd697bb16806d8f00408a319
60ceb13c31595e6cf9bb6800657e4593a1fbd670
7cb0778c80be637b67a5d198ca180a76bbfa4c32e502a0fa472a4c6946ffb56e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 04:03:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0b7bc4b-b79a-4bab-9bec-87695d757b08.jpeg

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0b7bc4b-b79a-4bab-9bec-87695d757b08.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10987 bytes)
Hash
53b7ffdc3799e0ac7a225145242579ef
c47f0525fe5354ee13fe63c0ec31f0f826a58005
4bb518afc9b3e7bfb976d343e46b306155834adbe71fa35b0d6f509959f78aca

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0b7bc4b-b79a-4bab-9bec-87695d757b08.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10987
x-amzn-requestid: c2ab1012-1afd-4d74-8114-97977b43da24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZgCHwGdGoAMFvyg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633cb097-3237927a0c1e081d22c902f7;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 22:15:51 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: JYDg0-KelCPr__4bKtpARLrwiE1CHGICcFI6I9_TFCMcmESbykNhXQ==
via: 1.1 3dde68f1f52282c9e1ee336d97233b0a.cloudfront.net (CloudFront), 1.1 27f6faf9790b5a2877fb528fa31f7922.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 22:08:50 GMT
age: 21298
etag: "c47f0525fe5354ee13fe63c0ec31f0f826a58005"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F622cb832-8fef-4fe9-9445-c157aaf29d57.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6847 bytes)
Hash
a3a09d5d16b53ee4490d882ed48c0075
ce9546b225787f1c765be9bbef42f585c83a10d3
ac27484dba78ee6657f5aa791999d4958ccdfba8e67a011f4ab4034fa235a26f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F622cb832-8fef-4fe9-9445-c157aaf29d57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6847
x-amzn-requestid: 9af16d4c-106c-4e8d-912b-e6f4fa44daa6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZkjcNHkAIAMFsDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633e7f81-35fc285b7639a1a879d89f00;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 07:10:57 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 4d5W1LjWo-F3wimuYTXZo_pEZ8vIyXPZub9qQGHa5dmOGU_RBXlArw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 45d6a557ecb29942f314e3dd736d817a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 07:20:02 GMT
age: 74626
etag: "ce9546b225787f1c765be9bbef42f585c83a10d3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
18e0e019cd697bb16806d8f00408a319
60ceb13c31595e6cf9bb6800657e4593a1fbd670
7cb0778c80be637b67a5d198ca180a76bbfa4c32e502a0fa472a4c6946ffb56e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 04:03:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

34.120.237.76

200 OK

6.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cfb29b1-34eb-4ec3-8390-1145a644534c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.1 kB (6052 bytes)
Hash
06283ec49d3981b60b28731fd8a9940d
10c0d991f7ad234557792c175fdbf81e3356416a
0d8d932cd46fa377ce3dfe5fe1287ab1cd0daad0ef52a42baad2462d10e5a80f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cfb29b1-34eb-4ec3-8390-1145a644534c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6052
x-amzn-requestid: 6c8abd32-7499-4636-bf8a-3baaa88bf1ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zmhi-HWOoAMFalA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4946-464364630dd2dbfa0d69f6f5;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 4EEoZVMtDaWUiCVvGW_0w4BSa1f1KDudnzPEoSIVF_ckE9MdhiflOw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:45:54 GMT
age: 22674
etag: "10c0d991f7ad234557792c175fdbf81e3356416a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ecd6748-5460-43cc-84b5-f33deb7cf126.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.9 kB (6900 bytes)
Hash
6fb155a5d0fa0cebfa4cd03606f1f48c
c44cac382e2f2eb2b6ce35da6dfb37747d436d60
ca79a1bcc80f4e6fece82a0efb71a6c9af2b0b3d67b8f8c010a7f02ded6d2cfa

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ecd6748-5460-43cc-84b5-f33deb7cf126.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6900
x-amzn-requestid: 6d8885f4-d244-4ec7-9c2b-68d86983a30d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZQmngFsHoAMFxqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63368496-0926524f3c50d16160c2665e;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 05:54:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: vW_p02JxJdXHI1YjEOXEo8mnWZPCKvANQZJo6aconRHBrCoqFp65Aw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 04:14:56 GMT
age: 85732
etag: "c44cac382e2f2eb2b6ce35da6dfb37747d436d60"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff362ea4b-2913-4401-9322-7a70f223e2a9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9160 bytes)
Hash
5cf80f9e9e5aabf650c561b5939acf1c
6a66ddb2c8c77cbd27101b8705a34492aa998b98
9aff5e0564805bbf83edb94b2d0462f76e09b5b67a39f3ab65aee66a24a192da

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff362ea4b-2913-4401-9322-7a70f223e2a9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9160
x-amzn-requestid: 3064ca86-5e0e-4bff-ad0c-6dcce9fa1404
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZmhkaGIGoAMFZzg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f494f-06a55ad9421678605d12a4a6;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:59 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: Z1h24jWWAxKjkhNTNvBshIHgrs2siyiVKQcWNn9t3ah1q94IZLwQmg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 27f6faf9790b5a2877fb528fa31f7922.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 22:08:50 GMT
age: 21298
etag: "6a66ddb2c8c77cbd27101b8705a34492aa998b98"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F773e2560-6c32-4224-8404-2794a40799cd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9564 bytes)
Hash
39cf77bd6009d3c538455b3846680278
ad0ed304e5173bdb8f08254c2e4a5032e8fcafa5
792997f1f9a485ca57d274c7899e4f526476bf15ed564a8b74d248c4458b188f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F773e2560-6c32-4224-8404-2794a40799cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9564
x-amzn-requestid: 38d87e57-3600-4e0e-bd24-a8f857800bc6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZmhkGHtZIAMFz0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f494d-21b041d97b406dea36b9f35b;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:57 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: rqw7Z-JNaRJZf8828i9HPcP-J3mn3ROnnXRJwD6dCiRvFSZAKp3WDw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 57bd3a2d9e0e4cbf89d9eb3d7dfb916e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:43:40 GMT
age: 22808
etag: "ad0ed304e5173bdb8f08254c2e4a5032e8fcafa5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
18e0e019cd697bb16806d8f00408a319
60ceb13c31595e6cf9bb6800657e4593a1fbd670
7cb0778c80be637b67a5d198ca180a76bbfa4c32e502a0fa472a4c6946ffb56e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 04:03:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

construmat-ng.com/wp-content/plugins/metronet-profile-picture/dist/blocks.style.build.css?ver=2.6.0

173.254.24.41

200 OK

4.5 kB

URL HTTP/2
construmat-ng.com/wp-content/plugins/metronet-profile-picture/dist/blocks.style.build.css?ver=2.6.0
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (27709)
Size
4.5 kB (4513 bytes)
Hash
31a224cdfb1d426236a171d5ad553f26
647ba56b7e8367e495494d44c7a86ec09da3ef2d
6c6366580e26166f2a478408abdbe459442e77c593701391e5db844f8dab9278

HTTP Headers

GET /wp-content/plugins/metronet-profile-picture/dist/blocks.style.build.css?ver=2.6.0 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:44:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4513
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/custom-twitter-feeds/css/ctf-styles.min.css?ver=2.0.3

173.254.24.41

200 OK

4.4 kB

URL HTTP/2
construmat-ng.com/wp-content/plugins/custom-twitter-feeds/css/ctf-styles.min.css?ver=2.0.3
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (17189), with no line terminators
Size
4.4 kB (4410 bytes)
Hash
d13b86f3fc19b30a30ffd6c276c13ccf
6b6dfe7ef72e7461e41ff15c7c1bc6891e1b59f6
3431dccb7eaa995c2fbe1b7faa7d32ba570fe787e3e2261ee8f13bc0dfe2517e

HTTP Headers

GET /wp-content/plugins/custom-twitter-feeds/css/ctf-styles.min.css?ver=2.0.3 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 08 Aug 2022 23:46:53 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4410
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.3

173.254.24.41

200 OK

3.0 kB

URL HTTP/2
construmat-ng.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.3
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (10435), with no line terminators
Size
3.0 kB (2985 bytes)
Hash
a6099ee677b6d930b6b878cf0cb08422
a2eb69454196d4250d624d25aaec587e97686642
755acd6dc98e63baff6d8b105b1bcaf63b79f935381fb3f32a79dace7faae0ac

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.3 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 27 Sep 2022 01:21:33 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2985
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/indutri-themer/assets/css/update.css?ver=6.0.2

173.254.24.41

200 OK

126 B

URL HTTP/2
construmat-ng.com/wp-content/plugins/indutri-themer/assets/css/update.css?ver=6.0.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
126 B (126 bytes)
Hash
f22d5e82b03dc34785d3621be367bce9
ef38557672ca4b4940f4306e2ba10e4e6eb62f08
46fb69f5858969a613c38d307d970c94d4bdf11472ecdc242dbc17b8d0810e8b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/indutri-themer/assets/css/update.css?ver=6.0.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:44:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 126
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/uploads/elementor/css/post-6.css?ver=1649909572

173.254.24.41

200 OK

426 B

URL HTTP/2
construmat-ng.com/wp-content/uploads/elementor/css/post-6.css?ver=1649909572
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1558), with no line terminators
Size
426 B (426 bytes)
Hash
42bbbe113329b5880e24c5b7dcb38a55
275c3311221356e66b5083b47e088356418c6221
fa3d12ecb2eaabdda0bebacd51b079ffb99130161c5955c072c37502ef1c020f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-6.css?ver=1649909572 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 14 Apr 2022 04:12:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 426
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2

173.254.24.41

200 OK

17 kB

URL HTTP/2
construmat-ng.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (43771)
Size
17 kB (16594 bytes)
Hash
2a67a4888baa44de739f3fe56203ce07
da175eae57f26b655747d79f055477e3fee1abb9
3a4d7627476a0099ca4bcc101685f27de04cb49dd66ef842d72c6cda270599dd

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 12 Jul 2022 23:47:33 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16594
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0

173.254.24.41

200 OK

4.0 kB

URL HTTP/2
construmat-ng.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (19233)
Size
4.0 kB (4008 bytes)
Hash
2701214b028ad24fa347df8335b36d12
156bc8a7ad2657f00881890637f07c6052636499
9a6e62615ceeec7a9763e4f9614e4715d04fd87873b23db2b3ead06c996cad27

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Oct 2022 00:08:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4008
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/indutri-themer/elementor/assets/css/base.css?ver=6.0.2

173.254.24.41

200 OK

139 B

URL HTTP/2
construmat-ng.com/wp-content/plugins/indutri-themer/elementor/assets/css/base.css?ver=6.0.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
139 B (139 bytes)
Hash
681d5f1077c3b8fc04e449262e215488
ca0ac392da07c52c33e312529172e5425db43607
b9dacfed9031aae1920dedbc42f5a25b5006cf38bf4474e3f058f3b9273c4e7e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/indutri-themer/elementor/assets/css/base.css?ver=6.0.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:44:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 139
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/style.css?ver=6.0.2

173.254.24.41

200 OK

570 B

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/style.css?ver=6.0.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
570 B (570 bytes)
Hash
3106dae54d75fb06e24494faf7fb3b7a
02dd656e3070c85fc1be1fa320eae562f65a0a69
0e14e8d90cd4343e22dfe7b11bbe5f18f9550afd4de4fb79863e493e87285d7a

HTTP Headers

GET /wp-content/themes/indutri/style.css?ver=6.0.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 570
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/js/owl-carousel/assets/owl.carousel.css?ver=6.0.2

173.254.24.41

200 OK

1.5 kB

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/js/owl-carousel/assets/owl.carousel.css?ver=6.0.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
1.5 kB (1491 bytes)
Hash
dcf96198102edb34fea3d523b903e4fb
69d345eb9264339e7a35774c15062c6450b96013
6de02cd5f58a9e39fe2edeaebdfb99d32d062dc48cc2d1d76fbefe2cf8dbfac5

HTTP Headers

GET /wp-content/themes/indutri/js/owl-carousel/assets/owl.carousel.css?ver=6.0.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1491
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/js/lightgallery/css/lightgallery.min.css?ver=6.0.2

173.254.24.41

200 OK

5.2 kB

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/js/lightgallery/css/lightgallery.min.css?ver=6.0.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (20376), with CRLF line terminators
Size
5.2 kB (5181 bytes)
Hash
878f3b2586e5e41be83aa79b90fcd29e
efcb7a0394f3e4f120c4a2d1177e4ce454c77b99
77cefdf4f4b5e70dc69e157f90bbe32454db16081471ddd822f2d0c32e6f13c0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/indutri/js/lightgallery/css/lightgallery.min.css?ver=6.0.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5181
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3

173.254.24.41

409 Conflict

83 B

URL HTTP/2
construmat-ng.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/uploads/elementor/css/post-4818.css?ver=1649909573

173.254.24.41

200 OK

2.2 kB

URL HTTP/2
construmat-ng.com/wp-content/uploads/elementor/css/post-4818.css?ver=1649909573
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (11434), with no line terminators
Size
2.2 kB (2219 bytes)
Hash
d4caa6c0ed55e32b098019fbc9f86422
12621362f9ba85e6de7128a270190d52d68015fc
f837933687330985b2ae54fb913612f3e115e80a3cc29481e579fb67fcb167e9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-4818.css?ver=1649909573 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 14 Apr 2022 04:12:53 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2219
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/uploads/2022/04/logo_prissmacer.png

173.254.24.41

200 OK

4.1 kB

URL HTTP/2
construmat-ng.com/wp-content/uploads/2022/04/logo_prissmacer.png
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 162 x 45, 8-bit/color RGBA, interlaced\012- data
Size
4.1 kB (4115 bytes)
Hash
e0132934b97aff6c25a4e1aab94f34ea
b382cc1b025d48978536fd8f1b4e2bf171c7a03a
8fc39e6956c14aeb93ec72d6926f825f21c928d14867d1dd7c398873c94b2b0d

HTTP Headers

GET /wp-content/uploads/2022/04/logo_prissmacer.png HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 10 Apr 2022 14:33:24 GMT
accept-ranges: bytes
content-length: 4115
content-type: image/png
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/uploads/2022/04/logo-default-154x53-1.png

173.254.24.41

200 OK

6.7 kB

URL HTTP/2
construmat-ng.com/wp-content/uploads/2022/04/logo-default-154x53-1.png
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 190 x 58, 8-bit/color RGBA, non-interlaced\012- data
Size
6.7 kB (6715 bytes)
Hash
7e39861cb747afd533c3c6669e6181da
f776f984c44522db010da4060af9972e23e09f2f
691ff43f4e3983df77a73e75c900455d6cce073c9ef13d1dc98bed6fc43c8555

HTTP Headers

GET /wp-content/uploads/2022/04/logo-default-154x53-1.png HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 10 Apr 2022 14:08:37 GMT
accept-ranges: bytes
content-length: 6715
content-type: image/png
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/uploads/2022/04/logo-2.png

173.254.24.41

200 OK

19 kB

URL HTTP/2
construmat-ng.com/wp-content/uploads/2022/04/logo-2.png
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 214 x 86, 8-bit/color RGBA, non-interlaced\012- data
Size
19 kB (18883 bytes)
Hash
5c98c63bf89239bc9f2942219c150715
6737e8298f8af26eeb973267fd4fac8a638d8353
b8ee0c1de9b63e8709687649c12ef9fed48cd376efdaa5e7443c78f5af85ea61

HTTP Headers

GET /wp-content/uploads/2022/04/logo-2.png HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 10 Apr 2022 13:15:44 GMT
accept-ranges: bytes
content-length: 18883
content-type: image/png
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/js/magnific/magnific-popup.css?ver=6.0.2

173.254.24.41

200 OK

2.6 kB

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/js/magnific/magnific-popup.css?ver=6.0.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
2.6 kB (2631 bytes)
Hash
bccffa2e75feb023e0f714372f882382
9bc0d236088e6f8c9d4ff9f90a5a0ce9902fed75
0ca6542eb4b8666db24ac40da86ffd0962e16a71c7c0bf95d86fc66f33ef8fa3

HTTP Headers

GET /wp-content/themes/indutri/js/magnific/magnific-popup.css?ver=6.0.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2631
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/css/fontawesome/css/all.css?ver=6.0.2

173.254.24.41

200 OK

13 kB

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/css/fontawesome/css/all.css?ver=6.0.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
13 kB (13139 bytes)
Hash
55cbc27f0a81b88df07a2a88ad612231
e5de953b90373a69ffd8be9cded6482f4da7ede6
4dcc92dc806b79178dcc99122ef353d5181cb3b5d7b15d9182594d7f8da01e0d

HTTP Headers

GET /wp-content/themes/indutri/css/fontawesome/css/all.css?ver=6.0.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 13139
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3

173.254.24.41

409 Conflict

83 B

URL HTTP/2
construmat-ng.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/indutri-themer/elementor/assets/libs/owl-carousel/assets/owl.carousel.css?ver=1.0.0

173.254.24.41

200 OK

1.3 kB

URL HTTP/2
construmat-ng.com/wp-content/plugins/indutri-themer/elementor/assets/libs/owl-carousel/assets/owl.carousel.css?ver=1.0.0
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
1.3 kB (1267 bytes)
Hash
2998e987d6fa9d3614244dfd5f42dbf0
6067ab62334c5b802784344ae53546b23a4f8545
6f584307413f1c8f6ecd3f162e7964ad63dd2c726f3147046212ca9094facf66

HTTP Headers

GET /wp-content/plugins/indutri-themer/elementor/assets/libs/owl-carousel/assets/owl.carousel.css?ver=1.0.0 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:44:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1267
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2

173.254.24.41

200 OK

5.3 kB

URL HTTP/2
construmat-ng.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (15660)
Size
5.3 kB (5321 bytes)
Hash
710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 24 May 2022 23:40:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5321
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.8

173.254.24.41

200 OK

4.4 kB

URL HTTP/2
construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.8
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (26516)
Size
4.4 kB (4436 bytes)
Hash
fdd462f58aee3f9349eabdefb5ca0b57
bb6e017d5537630516ccb98952593690a8c69864
ca51806fcedbe90dd613c4c28673af8693381806a5cb3b43dce2ea4f43e8b314

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.8 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Oct 2022 00:08:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4436
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/metronet-profile-picture/js/mpp-frontend.js?ver=2.6.0

173.254.24.41

200 OK

195 B

URL HTTP/2
construmat-ng.com/wp-content/plugins/metronet-profile-picture/js/mpp-frontend.js?ver=2.6.0
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
195 B (195 bytes)
Hash
f9d342a66f882a21aaa6bf2f886dec5f
208b0196ddc4618f81a4acbe5e03b0789da1b9b3
16354818e612c2d6a9457960b8425bc745d7d48aa7e35f2c4ff4a32be4633cdf

HTTP Headers

GET /wp-content/plugins/metronet-profile-picture/js/mpp-frontend.js?ver=2.6.0 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:44:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 195
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.4

173.254.24.41

200 OK

1.0 kB

URL HTTP/2
construmat-ng.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.4
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1668)
Size
1.0 kB (1000 bytes)
Hash
0bebfb5722cbc8ac04e62aa40698be49
3bc5e4f29cb19a2d80d46dee242dabf7e42c0fd3
70d02eabbadbe176455a2bb53d8d567feca69847c067a5274987a8bdc65e3c05

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.4 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 27 Sep 2022 01:21:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1000
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3

173.254.24.41

200 OK

308 B

URL HTTP/2
construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (489)
Size
308 B (308 bytes)
Hash
0a08469d24387f830bbaaa00b3c228ae
01f5dfeb8f93a32c9a8f66fe5940758109771fcd
3c7c29e5fc1193ff7ce24f72f77b2dc129e1a9434a97ef7b625f6f715531803c

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Oct 2022 00:08:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 308
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/indutri-themer/assets/js/main.js

173.254.24.41

200 OK

636 B

URL HTTP/2
construmat-ng.com/wp-content/plugins/indutri-themer/assets/js/main.js
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
636 B (636 bytes)
Hash
edf88ff3756b391a5a836290b21577e2
c609637c5e470ea97c8e52c699830602e0c2116d
ce139a02a687a3e05247d74ddb894be1e5a581a19f6ed870f7ab32b366a9f3d8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/indutri-themer/assets/js/main.js HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:44:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 636
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3

173.254.24.41

409 Conflict

83 B

URL HTTP/2
construmat-ng.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

construmat-ng.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b

173.254.24.41

200 OK

724 B

URL HTTP/2
construmat-ng.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1626)
Size
724 B (724 bytes)
Hash
e1b8f48388e00a715d3fe1f64ea15476
3ea75fd181dd3630bd8765a2b67f23d6da39edbf
87f4466dda6ad8e1c9aa26ef27e28b3b74ac40327d8daf4a7cf994e5b7893718

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 19 Aug 2016 06:25:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 724
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.4

173.254.24.41

200 OK

792 B

URL HTTP/2
construmat-ng.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.4
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (2139), with no line terminators
Size
792 B (792 bytes)
Hash
1ca3f41c13e0027acc45f0601f8b640f
cced34af0c6a59e9cee4229faa66ab39c7031506
d3bc5eaf4c6be9473dbba690825cce9a1a6f4accb6721dae7875efef54942f41

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.4 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 27 Sep 2022 01:21:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 792
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3

173.254.24.41

200 OK

309 B

URL HTTP/2
construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (483)
Size
309 B (309 bytes)
Hash
0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Oct 2022 00:08:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 309
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css

173.254.24.41

200 OK

1.7 kB

URL HTTP/2
construmat-ng.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (11736)
Size
1.7 kB (1651 bytes)
Hash
123f8b37abef34d50d796ace35e35f09
127f09c18b566bf5379bd37c7572301a5ed6f0ef
0c12c27eb88912b938c2b844a23b5157a7b3424b9e79cd91782aa7bf201389d1

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Oct 2022 00:08:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1651
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/js/woocommerce.js?ver=6.0.2

173.254.24.41

200 OK

1.5 kB

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/js/woocommerce.js?ver=6.0.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
1.5 kB (1525 bytes)
Hash
a258e79876d77ed18e2707c4fd54ab46
318e347266d6b012ddaef4fb6ad8ad32480da6e4
5c143b8928944e39fb6e544123a730f3b3499ad64b6916d8bc4612bf295fc103

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/indutri/js/woocommerce.js?ver=6.0.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1525
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/elementor/assets/css/widget-icon-box.min.css

173.254.24.41

200 OK

2.1 kB

URL HTTP/2
construmat-ng.com/wp-content/plugins/elementor/assets/css/widget-icon-box.min.css
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (12953)
Size
2.1 kB (2094 bytes)
Hash
d0f6767243a0c69c56e1ebe6f2706137
e38d2be0233c8dbb0a3d8a0861c1dc3bb53f49a6
25950146472f3c0a49d7adc2f36ac1bf56d50c24507db59c668aaf30c16c0ed5

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/widget-icon-box.min.css HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Oct 2022 00:08:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2094
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/indutri-themer/elementor/assets/libs/jquery.appear.js?ver=1.0.0

173.254.24.41

200 OK

1.5 kB

URL HTTP/2
construmat-ng.com/wp-content/plugins/indutri-themer/elementor/assets/libs/jquery.appear.js?ver=1.0.0
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
1.5 kB (1455 bytes)
Hash
08b121afb0aa0dde36ab849c06d9dbc3
415180ab10e6ae517ccbcca10ae7c11b1007c06d
b24db99a125de587f19425173ce3713c62d63e12a36d68dcc1b48910055197fd

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/indutri-themer/elementor/assets/libs/jquery.appear.js?ver=1.0.0 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:44:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1455
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4

173.254.24.41

200 OK

2.1 kB

URL HTTP/2
construmat-ng.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (5477)
Size
2.1 kB (2103 bytes)
Hash
f0bd7ad12acdee26cbb2701c1ba3610b
53c5d15129860868b60b74cb010b2c6050a64f69
e6d0cb19e56d22e8e511c23ca2bd233bedb40e3c7cf4ff38fe6f059bc7e0c64f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 14 Jun 2020 06:23:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2103
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/uploads/elementor/css/post-206.css?ver=1649909574

173.254.24.41

200 OK

2.1 kB

URL HTTP/2
construmat-ng.com/wp-content/uploads/elementor/css/post-206.css?ver=1649909574
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (11568), with no line terminators
Size
2.1 kB (2067 bytes)
Hash
0a49c344358e1a2e65e4dca9bb49212a
500326d39459e06d62245f4e25b410ce9f91021d
d95c42241a72a6a201a737dd6a78f17bdfa50b498060924d4376b3f11be11af9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-206.css?ver=1649909574 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 14 Apr 2022 04:12:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2067
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/js/jquery.cookie.js?ver=6.0.2

173.254.24.41

200 OK

1.5 kB

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/js/jquery.cookie.js?ver=6.0.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
1.5 kB (1462 bytes)
Hash
3318ce36c9d6f986b278acff7edc89ad
a51c4b87756e6a9de6a9c14f4fd6c21a2992a5c7
c758432366e6246417d975dd4e7eaac7c346ba2c8ae1a935e9b4f880a2f6736e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/indutri/js/jquery.cookie.js?ver=6.0.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1462
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/uploads/elementor/css/post-4004.css?ver=1649909573

173.254.24.41

200 OK

8.4 kB

URL HTTP/2
construmat-ng.com/wp-content/uploads/elementor/css/post-4004.css?ver=1649909573
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (45650), with no line terminators
Size
8.4 kB (8380 bytes)
Hash
bef65f4bce6acbd3389ef1c43998ae3c
e242e4c8def014ecb54d0fe31ce57c521eb4b98e
cb41c3bcdc5f8b3dadac790e607e5a7d237234a3b98eb5d8d13f29a077423dde

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-4004.css?ver=1649909573 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 14 Apr 2022 04:12:53 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8380
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/js/main.js?ver=6.0.2

173.254.24.41

200 OK

3.2 kB

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/js/main.js?ver=6.0.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
3.2 kB (3240 bytes)
Hash
8998eb415620c0321ea71bd4fb74232d
683b62b0b2ec3fa017a02c6f4fb6052afa93469b
d3974b67fc1d1156b749b7ba12d6b88c700a225bc39dea67833c72b37df92c44

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/indutri/js/main.js?ver=6.0.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3240
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.4

173.254.24.41

200 OK

4.0 kB

URL HTTP/2
construmat-ng.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.4
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (9115)
Size
4.0 kB (3955 bytes)
Hash
30e4855ccd2fde73cd01838d073b8d4b
aa39e03ffb6e39bf82b6a04d72e3f7cf7509f778
cbcfd79d48b4735b59e17b77cb3930f8a51fcdcb3d4675718a45af6077469636

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.4 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 27 Sep 2022 01:21:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3955
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888

173.254.24.41

200 OK

7.5 kB

URL HTTP/2
construmat-ng.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Size
7.5 kB (7536 bytes)
Hash
04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:44:27 GMT
accept-ranges: bytes
content-length: 7536
content-type: font/woff
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.8

173.254.24.41

200 OK

3.0 kB

URL HTTP/2
construmat-ng.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.8
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (10019)
Size
3.0 kB (2997 bytes)
Hash
c2b5af6052f630a96e450e5e2a3cea52
00ca76a8828a1bbec1534eb10786804fd36492f2
58f6cc2d4fa3e528622102975fb62949dc0170bd47b588a67318d18552a57d59

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.8 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Oct 2022 00:08:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2997
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

173.254.24.41

200 OK

4.6 kB

URL HTTP/2
construmat-ng.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (11126)
Size
4.6 kB (4618 bytes)
Hash
acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 18 Nov 2020 21:36:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4618
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.8

173.254.24.41

200 OK

13 kB

URL HTTP/2
construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.8
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (59158)
Size
13 kB (12862 bytes)
Hash
e6b67e11736ae36a062b381717f2ea9f
a663a79bc8d42aa58bfea1351cc27e0d0b09c9b2
a07a94d36246d0b3e5b9b18e274e31995d0e23cda955babf5e350e91a879523d

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.8 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Oct 2022 00:08:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12862
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-includes/js/masonry.min.js?ver=4.2.2

173.254.24.41

200 OK

9.2 kB

URL HTTP/2
construmat-ng.com/wp-includes/js/masonry.min.js?ver=4.2.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (23966)
Size
9.2 kB (9216 bytes)
Hash
2a730dafa34e6ff81513d31e486cdbdb
1fce17d256f67ae086d74092a03006997d9b0add
7a5fd36a453a3a7471fa93b8169579f9a98e2df7a262c44d28d3de41a0f7ae1c

HTTP Headers

GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 14 Jun 2020 06:23:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9216
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/js/magnific/jquery.magnific-popup.min.js?ver=6.0.2

173.254.24.41

200 OK

9.6 kB

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/js/magnific/jquery.magnific-popup.min.js?ver=6.0.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (21014)
Size
9.6 kB (9589 bytes)
Hash
006ebdd6b49adaffd1cb172bb699ba1b
34b1c1356f74b47f38ba4de7596693142c1794c5
82dcb093f13742e059bc47bebfdba4f9cbb517525731b9d7b782ea16947677f8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/indutri/js/magnific/jquery.magnific-popup.min.js?ver=6.0.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9589
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3

173.254.24.41

200 OK

13 kB

URL HTTP/2
construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (57726)
Size
13 kB (12577 bytes)
Hash
dc63c0a8e2d5857cc7a00a4b5456dabb
ee29df5eb2a4bf3eb805b160551c1afd84b42599
035ef40b1dd3df1eefb2dd3c8c2096425727fb939b06f3aa0bc6ef91dafd5441

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Oct 2022 00:08:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12577
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/js/owl-carousel/owl.carousel.min.js?ver=6.0.2

173.254.24.41

200 OK

15 kB

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/js/owl-carousel/owl.carousel.min.js?ver=6.0.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (32045)
Size
15 kB (14930 bytes)
Hash
bff0a824f36149a9ae0f3509524db238
969aae3d477c473683d0447ed04d4d8fb4f55855
cd83b4478b6e3e39c108c5c0182d5819f83531496c3eb348ac0ee81d774f855d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/indutri/js/owl-carousel/owl.carousel.min.js?ver=6.0.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14930
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.15

173.254.24.41

200 OK

16 kB

URL HTTP/2
construmat-ng.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.15
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (12602)
Size
16 kB (16398 bytes)
Hash
ef1f75a7e3a95466dbb541342d218497
aee4425ad15662a4a27ba4806773aee46be6b259
337aa9ca7c55b6580203aa0cfef8be8e42deb5441faacb9be21c0107347d3388

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.15 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:44:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16398
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/css/custom_script.css?ver=6.0.2

173.254.24.41

200 OK

3 B

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/css/custom_script.css?ver=6.0.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with no line terminators
Size
3 B (3 bytes)
Hash
ecaa88f7fa0bf610a5a26cf545dcd3aa
57218c316b6921e2cd61027a2387edc31a2d9471
f1945cd6c19e56b3c1c78943ef5ec18116907a4ca1efc40a57d48ab1db7adfc5

HTTP Headers

GET /wp-content/themes/indutri/css/custom_script.css?ver=6.0.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
content-length: 3
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/js/sticky.js?ver=6.0.2

173.254.24.41

200 OK

588 B

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/js/sticky.js?ver=6.0.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
588 B (588 bytes)
Hash
13bc988394d3558ed184dddfbfdf079c
c9d911d73e70655359ebd1d3a2b2c1e72db97be4
4cd7a186194296d5ade7332cdb0443818c9475ff97ca381b332acbf3f940094d

HTTP Headers

GET /wp-content/themes/indutri/js/sticky.js?ver=6.0.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 588
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/the-events-calendar/common/src/resources/js/underscore-after.js

173.254.24.41

200 OK

443 B

URL HTTP/2
construmat-ng.com/wp-content/plugins/the-events-calendar/common/src/resources/js/underscore-after.js
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
443 B (443 bytes)
Hash
c1b534926212ccab16a850cedc5b42bd
e60e469c4fd8fefd67efafcc977cc5e73d591667
14ebe3da7346a194507201e557b5bade9ae7688e9af5f7140d0f4a207cc49942

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/the-events-calendar/common/src/resources/js/underscore-after.js HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Oct 2022 00:09:01 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 443
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.7.1

173.254.24.41

200 OK

374 B

URL HTTP/2
construmat-ng.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.7.1
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (754), with no line terminators
Size
374 B (374 bytes)
Hash
ef785f463505633971eae5c08ad626d4
624e22257f386801822229db3a4bbd2e24b25e2f
b2a0dc77f0f79d81698a7e3893e16ecba7b0d980b80a5233656d9b11f1d8160d

HTTP Headers

GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.7.1 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 05 Oct 2022 12:58:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 374
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/indutri-themer/elementor/assets/icons/flaticon.css

173.254.24.41

200 OK

741 B

URL HTTP/2
construmat-ng.com/wp-content/plugins/indutri-themer/elementor/assets/icons/flaticon.css
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
741 B (741 bytes)
Hash
4ea4655ba7017f3f805d2644806f95de
bd30845b7bce8060ff0cee8ca52e778bbad0859c
16bd258c0ae5d1a55ba6c28740af629b1acc70fb2e6810ea5904d3b5a8dc373e

HTTP Headers

GET /wp-content/plugins/indutri-themer/elementor/assets/icons/flaticon.css HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:44:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 741
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-includes/js/wp-util.min.js?ver=6.0.2

173.254.24.41

200 OK

709 B

URL HTTP/2
construmat-ng.com/wp-includes/js/wp-util.min.js?ver=6.0.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1305)
Size
709 B (709 bytes)
Hash
e9edb7bac979409cf7dbc48d7ab8aca7
ed3f941a8fe41e3994a3ca5e620219328628f532
2a0742cad9937c742b2f51c1ea2ae48359ce8d88d8b56f6d8910c0a267d631b5

HTTP Headers

GET /wp-includes/js/wp-util.min.js?ver=6.0.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 26 Jun 2021 02:20:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 709
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/js/add-to-cart.js?ver=6.0.2

173.254.24.41

200 OK

1.2 kB

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/js/add-to-cart.js?ver=6.0.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with CRLF line terminators
Size
1.2 kB (1165 bytes)
Hash
6c601df26e750a0565184fe75f4a3b9f
be05e0a85f9f29216bc158dd1fc842750ac42a72
7a5261169724eb7143eab5a714016ec951ab5ced04c598b893784e1f7c9258e7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/indutri/js/add-to-cart.js?ver=6.0.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1165
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/the-events-calendar/common/src/resources/js/underscore-before.js

173.254.24.41

200 OK

596 B

URL HTTP/2
construmat-ng.com/wp-content/plugins/the-events-calendar/common/src/resources/js/underscore-before.js
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
596 B (596 bytes)
Hash
32022e8fb56608a3fcaacd1dbef7009f
87b54b96724c3291af1515b799230fdcf18c4b75
cd505fbe1083d551d86b36140e86048556d35dd975cca36a716cdc2f478327ab

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/the-events-calendar/common/src/resources/js/underscore-before.js HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Oct 2022 00:09:01 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 596
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.8

173.254.24.41

200 OK

4.4 kB

URL HTTP/2
construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.8
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (14869)
Size
4.4 kB (4359 bytes)
Hash
7bab7ad64ffbd7846dd6819250b93e2e
c924918d540389aff62220088b6761f38a5da272
045250efe67364c953a91f6a60cf407ebb5cfdb2da04e84c3d98e5bab5eca9ba

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.8 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Oct 2022 00:08:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4359
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/js/perfect-scrollbar.jquery.min.js?ver=6.0.2

173.254.24.41

200 OK

8.5 kB

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/js/perfect-scrollbar.jquery.min.js?ver=6.0.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (25086)
Size
8.5 kB (8532 bytes)
Hash
e77628d63133dd86b1036b8e430a4a81
c240e3821b4252b08529bb6edd448b5135d18566
8a3170b982a27548c75023ca3a405fc2102ae3dd43c71d453ee1c8de4351d898

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/indutri/js/perfect-scrollbar.jquery.min.js?ver=6.0.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8532
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8

173.254.24.41

200 OK

2.3 kB

URL HTTP/2
construmat-ng.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (4918)
Size
2.3 kB (2313 bytes)
Hash
a8a064f7e05640436a939b0839c64a66
e9bbdd085a3038acd63d108accba8dfb5499f4c0
2173daddf76795f8194c34463bfc5c9be793aecc545b4672ed5a6f9afcb473c3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Oct 2022 00:08:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2313
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.10

173.254.24.41

200 OK

2.8 kB

URL HTTP/2
construmat-ng.com/wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.10
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (6210), with no line terminators
Size
2.8 kB (2759 bytes)
Hash
c74a284893e700efac7feda7f8ca29d9
e5f08422e3a5b9ed64676469e2d73ed9600ab3ee
01fb2bcfb32c7eabebccf5d1196cae451bae4f8ab247010f3cd6d86ef8521345

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.10 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 11:36:01 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2759
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/indutri-themer/elementor/assets/main.js?ver=1.0.0

173.254.24.41

200 OK

4.4 kB

URL HTTP/2
construmat-ng.com/wp-content/plugins/indutri-themer/elementor/assets/main.js?ver=1.0.0
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (340), with CRLF line terminators
Size
4.4 kB (4405 bytes)
Hash
330e46b51dcf1bd37354804c9b72cdbd
33a94b770a4993a804df4e36604473aa992a7d8c
54e2172ad812900ebc5b2dccb59d4d6bb99425de3cdb7c63da5542167fcda283

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/indutri-themer/elementor/assets/main.js?ver=1.0.0 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:44:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4405
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Hind:wght@400;500;600;700&display=swap&subset

142.250.74.10

200 OK

8.8 kB

URL HTTP/2
fonts.googleapis.com/css2?family=Hind:wght@400;500;600;700&display=swap&subset
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (18876)
Size
8.8 kB (8810 bytes)
Hash
514ac56d2b0dac97724c3198bbdd0ed4
ca98a557422d20dfddf91b1c604c39e21999e05d
d2d96fef6088a5829f230576d3a4f4006a778f2ab15626bb7717ba505b38b58b

HTTP Headers

GET /css2?family=Hind:wght@400;500;600;700&display=swap&subset HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 07 Oct 2022 04:03:48 GMT
date: Fri, 07 Oct 2022 04:03:48 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8

173.254.24.41

200 OK

35 kB

URL HTTP/2
construmat-ng.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65497)
Size
35 kB (34864 bytes)
Hash
20779dfc3c1bec9fdbe330d9829d4608
b46db398e14f222e77bdd69852a4d158c7f03e3c
a4fba78f37202ef5fd92fe07c8c5c320fd4b362f0c91656b78ead042589c6377

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Oct 2022 00:08:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1

173.254.24.41

200 OK

8.2 kB

URL HTTP/2
construmat-ng.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (8189)
Size
8.2 kB (8169 bytes)
Hash
a0a1c8194f131320e1798f90a7b1262a
3346d35be1f2e4886f19e7fcc0cc96ee4753d9ed
7f618ab13cec0933ec2c61fa2b580ad77ca41522028649677494219fa9ce56db

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 24 May 2022 23:40:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8169
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open%20Sans&display=swap&ver=1649777748

142.250.74.10

200 OK

17 kB

URL HTTP/2
fonts.googleapis.com/css?family=Open%20Sans&display=swap&ver=1649777748
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (40474)
Size
17 kB (16766 bytes)
Hash
aeedf5dea94538b1f498429bbe70996d
faf84477072114e5e5241be6680be1fb18b6d84c
3f3b2a7ed2e5dd99b2d831749b9ae37efde8bdf8c23acb1203656e05e69af336

HTTP Headers

GET /css?family=Open%20Sans&display=swap&ver=1649777748 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 07 Oct 2022 04:03:48 GMT
date: Fri, 07 Oct 2022 04:03:48 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/uploads/2022/04/consmat5.jpg

173.254.24.41

200 OK

14 kB

URL HTTP/2
construmat-ng.com/wp-content/uploads/2022/04/consmat5.jpg
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, orientation=upper-left, software=Photos 2.7.4], baseline, precision 8, 485x62, components 3\012- data
Size
14 kB (13922 bytes)
Hash
d168996179e9c074615545e3ee2cff19
8a2b96ad5c19be49996f3da7efff7d6cbe5dc28a
f989bffde6652b1b3897bf597b9ff9a21b4ad16f4f82e022f6d3fc7b039c5084

HTTP Headers

GET /wp-content/uploads/2022/04/consmat5.jpg HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 13:24:15 GMT
accept-ranges: bytes
content-length: 13922
content-type: image/jpeg
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
aea480478c3be7392d09e8a92826542f
b660fb42c8122efb07b3d1de1a8907ad1f6e1a60
ee691969e4d61ba3145fe90b28c5051367c223f31c0e0ee001d8481035090760

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 04:03:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
aea480478c3be7392d09e8a92826542f
b660fb42c8122efb07b3d1de1a8907ad1f6e1a60
ee691969e4d61ba3145fe90b28c5051367c223f31c0e0ee001d8481035090760

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 04:03:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2

172.217.21.163

200 OK

18 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP
172.217.21.163:0
ASN
#15169 GOOGLE

File type
gzip compressed data, max compression\012- data
Size
18 kB (17476 bytes)
Hash
fbe5e8f0de1bb902e871654a390039cd
3352e851ca3f91ab52f4f5b2af3ace50b5e21742
d42ebd9d686c2afd632f6a88011433870851aedb197dd3aa9996c4b4088f1eb7

HTTP Headers

GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://construmat-ng.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 18:53:39 GMT
expires: Tue, 03 Oct 2023 18:53:39 GMT
cache-control: public, max-age=31536000
age: 292212
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/hind/v16/5aU69_a8oxmIdGl4BA.woff2

172.217.21.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/hind/v16/5aU69_a8oxmIdGl4BA.woff2
IP
172.217.21.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 16216, version 1.0\012- data
Size
16 kB (16216 bytes)
Hash
4c5bc71b3cf6f2584725c0bb3e25d391
f051f482061dc48d09c328c45459dd04db5b5547
aca5dec430a7470ff1d8a16f9e7bb3ca30f2ff58f3bd60432cf1dddfa30c9d71

HTTP Headers

GET /s/hind/v16/5aU69_a8oxmIdGl4BA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://construmat-ng.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16216
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 17:27:03 GMT
expires: Wed, 04 Oct 2023 17:27:03 GMT
cache-control: public, max-age=31536000
age: 211008
last-modified: Tue, 26 Apr 2022 15:45:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
aea480478c3be7392d09e8a92826542f
b660fb42c8122efb07b3d1de1a8907ad1f6e1a60
ee691969e4d61ba3145fe90b28c5051367c223f31c0e0ee001d8481035090760

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 04:03:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/hindsiliguri/v12/ijwOs5juQtsyLLR5jN4cxBEoREP-0uYVKw.woff2

172.217.21.163

200 OK

15 kB

URL HTTP/2
fonts.gstatic.com/s/hindsiliguri/v12/ijwOs5juQtsyLLR5jN4cxBEoREP-0uYVKw.woff2
IP
172.217.21.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 14724, version 1.0\012- data
Size
15 kB (14724 bytes)
Hash
fc4268e5177f6fea5ba65f17f10c7088
b7fd5cb55e24cb84f4224021f84af53d70404b40
c39d0db6f570276765a06728ce87d83be5808ae403475ed6b49a64c02915805c

HTTP Headers

GET /s/hindsiliguri/v12/ijwOs5juQtsyLLR5jN4cxBEoREP-0uYVKw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://construmat-ng.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14724
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 23:33:13 GMT
expires: Wed, 04 Oct 2023 23:33:13 GMT
cache-control: public, max-age=31536000
age: 189038
last-modified: Tue, 26 Apr 2022 15:50:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/uploads/2022/04/panal.jpg

173.254.24.41

200 OK

176 kB

URL HTTP/2
construmat-ng.com/wp-content/uploads/2022/04/panal.jpg
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 160x160, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Macintosh, datetime=2010:07:16 12:05:41], baseline, precision 8, 1000x1000, components 3\012- data
Size
176 kB (175546 bytes)
Hash
dc705d97990c51225024ad3ecc317d03
5d549aee200a38d505fe66dc4c0a546f5e99167b
f9edafb83103df338c6cad610b61277b8fbec197dc54e086d5472aa05416b5f7

HTTP Headers

GET /wp-content/uploads/2022/04/panal.jpg HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 10 Apr 2022 14:39:53 GMT
accept-ranges: bytes
content-length: 175546
content-type: image/jpeg
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

www.gavias-theme.com/wp/indutri/wp-content/uploads/2020/06/bg-4.jpg

69.175.109.52

200 OK

184 kB

URL HTTP/2
www.gavias-theme.com/wp/indutri/wp-content/uploads/2020/06/bg-4.jpg
IP
69.175.109.52:0
ASN
#32475 SINGLEHOP-LLC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x378, components 3\012- data
Size
184 kB (184195 bytes)
Hash
d4d2a971a518492faa911fa31abf5086
a954973f4b4fd14a94dd7b37bc218718848c9f43
c1c7e59651379608580a89c97c7e9238b1f91f4b6a4c7a1042ca9333603bb53c

HTTP Headers

GET /wp/indutri/wp-content/uploads/2020/06/bg-4.jpg HTTP/1.1
Host: www.gavias-theme.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Sat, 07 Oct 2023 10:03:51 GMT
content-type: image/jpeg
last-modified: Wed, 12 May 2021 08:49:37 GMT
etag: "2cf83-609b96a1-14f79cba8fb176a3;;;"
accept-ranges: bytes
content-length: 184195
date: Fri, 07 Oct 2022 04:03:51 GMT
server: LiteSpeed
x-frame-options: GOFORIT
x-drupal-dynamic-cache: MISS
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3

173.254.24.41

409 Conflict

83 B

URL HTTP/2
construmat-ng.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 409 Conflict
date: Fri, 07 Oct 2022 04:03:51 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/images/preloader.gif

173.254.24.41

200 OK

8.4 kB

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/images/preloader.gif
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
GIF image data, version 89a, 25 x 25\012- data
Size
8.4 kB (8406 bytes)
Hash
188c9dd83153138e4659ae568fba977d
03b89d6470ddbf1a905dd45ffac83a7c1edfba16
0c3a82d78e837bb5a9ce83ee379cde6a86b3ded8e0365434cb745bec5356481c

HTTP Headers

GET /wp-content/themes/indutri/images/preloader.gif HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/wp-content/themes/indutri/css/template.css?ver=1.0.9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
content-length: 8406
content-type: image/gif
date: Fri, 07 Oct 2022 04:03:51 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/images/bg-testimonial.png

173.254.24.41

200 OK

2.9 kB

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/images/bg-testimonial.png
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 402 x 83, 8-bit/color RGBA, non-interlaced\012- data
Size
2.9 kB (2903 bytes)
Hash
f92b829751a5901b691a06f0edba8072
e6fbdffa85fa910135c4163edada116cd782304e
c909eb8a597dc3e0afe1a994c80014845c6ad724ed2d0f796692d76cf0e7df66

HTTP Headers

GET /wp-content/themes/indutri/images/bg-testimonial.png HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/wp-content/themes/indutri/css/template.css?ver=1.0.9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
content-length: 2903
content-type: image/png
date: Fri, 07 Oct 2022 04:03:51 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/revslider/public/assets/assets/dummy.png

173.254.24.41

200 OK

68 B

URL HTTP/2
construmat-ng.com/wp-content/plugins/revslider/public/assets/assets/dummy.png
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
2a637d3d825673c0e3462fa4ed9a1c5c
81668d396da22832d75a986407ff10035e0d5899
69539b5b3777cffda28a66d7f2aa9b17c91ee1ec8fd50c00c442af91753a60f7

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/assets/dummy.png HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:44:27 GMT
accept-ranges: bytes
content-length: 68
content-type: image/png
date: Fri, 07 Oct 2022 04:03:51 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/fonts/gilmer/GilmerBold.woff

173.254.24.41

200 OK

32 kB

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/fonts/gilmer/GilmerBold.woff
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format, TrueType, length 32324, version 0.0\012- data
Size
32 kB (32324 bytes)
Hash
ace9521157a623762d3ccd82c0c766eb
09705c55e5562574a3cade4fb951483ef14e552f
1fe185b0a0aaa037adaaf1cfa42f13599690335cbc21102d3768c823ff624e8a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/indutri/fonts/gilmer/GilmerBold.woff HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://construmat-ng.com/wp-content/themes/indutri/css/template.css?ver=1.0.9
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
content-length: 32324
content-type: font/woff
date: Fri, 07 Oct 2022 04:03:51 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/uploads/2019/05/logo.png

173.254.24.41

200 OK

297 kB

URL HTTP/2
construmat-ng.com/wp-content/uploads/2019/05/logo.png
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 465 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size
297 kB (296848 bytes)
Hash
ef57ec7adbdf8aecd46973e629f21c9b
aa1b7594377da807bfe9c85414d69dc3d9099b2f
93e4197861071a5e9a98774d624cc3fa21652830a0ab44c41962e39847bb6008

HTTP Headers

GET /wp-content/uploads/2019/05/logo.png HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 10:25:44 GMT
accept-ranges: bytes
content-length: 296848
content-type: image/png
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/uploads/2018/01/escama-1.jpg

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/uploads/2018/01/escama-1.jpg
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2018/01/escama-1.jpg HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 16:03:17 GMT
accept-ranges: bytes
content-length: 242275
content-type: image/jpeg
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Oct 2022 00:08:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3747
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 07 Oct 2022 04:03:48 GMT
date: Fri, 07 Oct 2022 04:03:48 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/js/lightgallery/js/lightgallery.min.js?ver=6.0.2

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/js/lightgallery/js/lightgallery.min.js?ver=6.0.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/indutri/js/lightgallery/js/lightgallery.min.js?ver=6.0.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/indutri-themer/elementor/assets/libs/owl-carousel/owl.carousel.js?ver=1.0.0

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/plugins/indutri-themer/elementor/assets/libs/owl-carousel/owl.carousel.js?ver=1.0.0
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/indutri-themer/elementor/assets/libs/owl-carousel/owl.carousel.js?ver=1.0.0 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:44:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/css/bootstrap.css?ver=1.0.9

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/css/bootstrap.css?ver=1.0.9
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/indutri/css/bootstrap.css?ver=1.0.9 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/fonts/gilmer/GilmerRegular.otf

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/fonts/gilmer/GilmerRegular.otf
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/indutri/fonts/gilmer/GilmerRegular.otf HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/wp-content/themes/indutri/css/template.css?ver=1.0.9
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
content-length: 133572
content-type: font/otf
date: Fri, 07 Oct 2022 04:03:51 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/uploads/2018/01/cartuja.jpg

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/uploads/2018/01/cartuja.jpg
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2018/01/cartuja.jpg HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 15:43:22 GMT
accept-ranges: bytes
content-length: 221125
content-type: image/jpeg
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 11 Mar 2021 03:37:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/css/template.css?ver=1.0.9

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/css/template.css?ver=1.0.9
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/indutri/css/template.css?ver=1.0.9 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.15

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.15
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.15 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:44:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/uploads/2018/01/pam1900x140-640x930.jpg

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/uploads/2018/01/pam1900x140-640x930.jpg
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2018/01/pam1900x140-640x930.jpg HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 16:00:14 GMT
accept-ranges: bytes
content-length: 46706
content-type: image/jpeg
date: Fri, 07 Oct 2022 04:03:51 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/uploads/2022/04/bg-2-1024x202-1.png

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/uploads/2022/04/bg-2-1024x202-1.png
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/04/bg-2-1024x202-1.png HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/wp-content/uploads/elementor/css/post-4004.css?ver=1649909573
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 12:53:12 GMT
accept-ranges: bytes
content-length: 844050
content-type: image/png
date: Fri, 07 Oct 2022 04:03:51 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/uploads/2022/04/page007.jpg

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/uploads/2022/04/page007.jpg
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/04/page007.jpg HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 10 Apr 2022 14:39:15 GMT
accept-ranges: bytes
content-length: 242203
content-type: image/jpeg
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.3

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.3
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.3 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 27 Sep 2022 01:21:33 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/uploads/2022/04/bg-1-1.png

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/uploads/2022/04/bg-1-1.png
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/04/bg-1-1.png HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/wp-content/uploads/elementor/css/post-4004.css?ver=1649909573
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 11 Apr 2022 10:15:56 GMT
accept-ranges: bytes
content-length: 2293113
content-type: image/png
date: Fri, 07 Oct 2022 04:03:51 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Oct 2022 00:08:58 GMT
accept-ranges: bytes
content-length: 76764
content-type: font/woff2
date: Fri, 07 Oct 2022 04:03:51 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/css/woocommerce.css?ver=1.0.9

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/css/woocommerce.css?ver=1.0.9
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/indutri/css/woocommerce.css?ver=1.0.9 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/uploads/2022/04/pam1900x2309.jpg

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/uploads/2022/04/pam1900x2309.jpg
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/04/pam1900x2309.jpg HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/wp-content/uploads/elementor/css/post-4004.css?ver=1649909573
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 14:07:57 GMT
accept-ranges: bytes
content-length: 256299
content-type: image/jpeg
date: Fri, 07 Oct 2022 04:03:51 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
link: <https://construmat-ng.com/wp-json/>; rel="https://api.w.org/", <https://construmat-ng.com/wp-json/wp/v2/pages/4004>; rel="alternate"; type="application/json", <https://construmat-ng.com/>; rel=shortlink
x-tec-api-version: v1
x-tec-api-root: https://construmat-ng.com/wp-json/tribe/events/v1/
x-tec-api-origin: https://construmat-ng.com
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Fri, 07 Oct 2022 04:03:47 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/uploads/2018/01/pam1900x2216.jpg

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/uploads/2018/01/pam1900x2216.jpg
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2018/01/pam1900x2216.jpg HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/wp-content/uploads/elementor/css/post-4004.css?ver=1649909573
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 16:35:01 GMT
accept-ranges: bytes
content-length: 344668
content-type: image/jpeg
date: Fri, 07 Oct 2022 04:03:51 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/uploads/2022/04/image-11.png

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/uploads/2022/04/image-11.png
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/04/image-11.png HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 11 Apr 2022 10:35:23 GMT
accept-ranges: bytes
content-length: 437323
content-type: image/png
date: Fri, 07 Oct 2022 04:03:51 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/uploads/2018/01/adoquin.jpg

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/uploads/2018/01/adoquin.jpg
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2018/01/adoquin.jpg HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 15:43:45 GMT
accept-ranges: bytes
content-length: 248734
content-type: image/jpeg
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/uploads/2018/01/panal.jpg

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/uploads/2018/01/panal.jpg
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2018/01/panal.jpg HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 15:43:09 GMT
accept-ranges: bytes
content-length: 175546
content-type: image/jpeg
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/fonts/gilmer/GilmerMedium.otf

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/fonts/gilmer/GilmerMedium.otf
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/indutri/fonts/gilmer/GilmerMedium.otf HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/wp-content/themes/indutri/css/template.css?ver=1.0.9
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
content-length: 133088
content-type: font/otf
date: Fri, 07 Oct 2022 04:03:51 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/themes/indutri/js/bootstrap.js?ver=6.0.2

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/themes/indutri/js/bootstrap.js?ver=6.0.2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/indutri/js/bootstrap.js?ver=6.0.2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:43:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.15

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.15
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.15 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://construmat-ng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Apr 2022 11:44:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 07 Oct 2022 04:03:48 GMT
server: Apache
X-Firefox-Spdy: h2

construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2

173.254.24.41

200 OK

0 B

URL HTTP/2
construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP
173.254.24.41:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: construmat-ng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://construmat-ng.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 04 Oct 2022 00:08:58 GMT
accept-ranges: bytes
content-length: 78196
content-type: font/woff2
date: Fri, 07 Oct 2022 04:03:51 GMT
server: Apache
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files detected

URL

IP

ASN

File type

Size

Hash

Detections

JavaScript (37)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML