r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e36c852b5e145f2f09fe73111fb162e1
e439c6a462f86a3003d6464a8b9999b1c4d1e210
52a721168d0c41cb0854ff8c730fce3b79db2e804b383238e95ff1401922bd74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "52A721168D0C41CB0854FF8C730FCE3B79DB2E804B383238E95FF1401922BD74"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2726
Expires: Wed, 26 Oct 2022 00:28:38 GMT
Date: Tue, 25 Oct 2022 23:43:12 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c2bba4cad162918b17858b60e909e4d9
d9a1d4f7fb7635ab233ebbf776e6de1a2857032b
3a1d27ec3d034d6326b32f6054b6be46079a86a33e75d5a2a3796a0c4c5eadab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2962
Cache-Control: max-age=124641
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 23:43:12 GMT
Etag: "6357acdf-1d7"
Expires: Thu, 27 Oct 2022 10:20:33 GMT
Last-Modified: Tue, 25 Oct 2022 09:31:11 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8db408c487f7d35bba323046736e8d3a
01b91e2dce7c6d3de9adfe6ff4d38f9b24ab7db0
9aeafc72c1a969243e1fc96f68ce18888034a749ee70582208bf814bd40b61a5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9AEAFC72C1A969243E1FC96F68CE18888034A749EE70582208BF814BD40B61A5"
Last-Modified: Tue, 25 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3884
Expires: Wed, 26 Oct 2022 00:47:56 GMT
Date: Tue, 25 Oct 2022 23:43:12 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: VMEJ9C0cshV8oJ0j3ptle9bH+P7YLVFFPf5WuK2BwxDxkzgnTTpSDSvUhd4+hSftn2cUpIQ+xkI=
x-amz-request-id: C76FHPMBVSN7DR0B
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 25 Oct 2022 23:09:07 GMT
age: 2045
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 25 Oct 2022 23:43:12 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.americanfinancialending.com/
192.254.234.35301 Moved Permanently 0 B URL HTTP/1.1 www.americanfinancialending.com/
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 25 Oct 2022 23:43:12 GMT
Server: Apache
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://americanfinancialending.com/
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 518ff04fd536958e285cf07aaf4a2786
fa5dad2391c2a9957340bd629f0462db4f412a5c
608c78964412d5dc7025e9cbfaef345d448a29eae0f11257c49a41f274917b9a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4909
Cache-Control: max-age=121524
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 23:43:13 GMT
Etag: "63579918-1d7"
Expires: Thu, 27 Oct 2022 09:28:37 GMT
Last-Modified: Tue, 25 Oct 2022 08:06:48 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5b959b5b53de504266a4b590c8c7fff6
62191b6500718c46884b79d47b5a7ecf0b323fd5
766f20b84b4bf27fbaea89a68e89568efd713af1b49a6fd94e60f1991693e9e9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "766F20B84B4BF27FBAEA89A68E89568EFD713AF1B49A6FD94E60F1991693E9E9"
Last-Modified: Mon, 24 Oct 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 26 Oct 2022 05:43:13 GMT
Date: Tue, 25 Oct 2022 23:43:13 GMT
Connection: keep-alive
push.services.mozilla.com/
52.38.227.80101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.227.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1OM2ABAmIy8NLF3AlVMkkA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: G8CbcHkAtgSN5xkVcLh2AVRexs4=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4139
Expires: Wed, 26 Oct 2022 00:52:14 GMT
Date: Tue, 25 Oct 2022 23:43:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4139
Expires: Wed, 26 Oct 2022 00:52:14 GMT
Date: Tue, 25 Oct 2022 23:43:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4139
Expires: Wed, 26 Oct 2022 00:52:14 GMT
Date: Tue, 25 Oct 2022 23:43:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4139
Expires: Wed, 26 Oct 2022 00:52:14 GMT
Date: Tue, 25 Oct 2022 23:43:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4139
Expires: Wed, 26 Oct 2022 00:52:14 GMT
Date: Tue, 25 Oct 2022 23:43:15 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fa5fdec-5335-427d-851c-6c86307c9c24.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fa5fdec-5335-427d-851c-6c86307c9c24.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 250f9d4a37cec1e47b62fc5fdb1ee0e1
5fb06917bfb86966f06a981e960ff51df4cc344e
f2972481fbbb03204634e8b817d93f8dfd379033d0a7e20452d7bd4cc3920f99
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fa5fdec-5335-427d-851c-6c86307c9c24.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5272
x-amzn-requestid: 321c9e46-69e8-4c04-8dff-229330fb9886
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ackaiGANoAMF1YA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6354e776-0a0e8cb30a7f95105ac6e5be;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 07:04:22 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: WF0rfAhA3cW5bu9LMxlnMxlVoKyY7A4nt1ElG8E6ejxbivpToU377Q==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 13:09:08 GMT
age: 38047
etag: "5fb06917bfb86966f06a981e960ff51df4cc344e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4bb798f-68f7-40da-b8a2-df020464cf6a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4bb798f-68f7-40da-b8a2-df020464cf6a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bde3afce205445ff4d37fd7304d6703f
940ab4fcf102e23bd3c66ea4ed884758884a3562
4effa7986e9e0f55c88caeefaa3d0523ad7496352c8caeaa1b6d7ef2e40138c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4bb798f-68f7-40da-b8a2-df020464cf6a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12421
x-amzn-requestid: d1acf900-eae0-4c4a-9310-5cabb6cc53c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ2hGsnoAMFXNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358568f-315abf3d30887d94198a14af;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 6vw_9qHLCuynGyCBz_xUgy903P5zAdVijTMIZaozryR6fU4Yd0PC9w==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:49:36 GMT
age: 6819
etag: "940ab4fcf102e23bd3c66ea4ed884758884a3562"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b946c4f2f177828cf7b76c5764e97157
c3856686b98e1883133aa1824c496d34512769a0
be818a015fc9c745ea561a0b9c2aca6ba25ade24acd696fa651163d47b195371
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13796
x-amzn-requestid: 90b1e032-78c6-499d-b564-f25c15e20304
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ2OG0SoAMFx-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358568e-599d0f526fc6a01f77b67dcf;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sVS9nFgRyVconkkFTOrCO2zA0cICFNQFB2E1q7SQcVQm5_Dm6khvrA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:48:40 GMT
age: 6875
etag: "c3856686b98e1883133aa1824c496d34512769a0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F146a58d8-e764-43d0-9812-6e8fd4a4ddf5.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F146a58d8-e764-43d0-9812-6e8fd4a4ddf5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7b2c3f2a710323cabe8b60f067758182
5d1dfb235e19f623699f0ad023df09d22ceb0645
4c4a5d1e0c9e0e2030f897dfd33200bf109060143e09a826d750c7b3f87cec17
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F146a58d8-e764-43d0-9812-6e8fd4a4ddf5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4678
x-amzn-requestid: 65ffc943-1dbc-457c-9572-c24f75d4c01c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alK9NGhboAMF93w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63585854-3ff1da9f5aeba49e27d3d8d4;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:42:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: QnNW3Q-yaRrtYQ1qcmYmv9tHETKFb0IbMmxQQqBLJuHLjtLT89jidQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 22:05:09 GMT
etag: "5d1dfb235e19f623699f0ad023df09d22ceb0645"
content-type: image/jpeg
age: 5886
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9e9e44c-367f-4419-9232-a61ac0ceba8e.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9e9e44c-367f-4419-9232-a61ac0ceba8e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 088f0f2074f83c6265c531c1aa94110b
3934a64203860925a6e7ddd5c9ec1e23d6a4fb62
ad6a0705eed632a908e735a806657221852533eda9ae9978d8f1aeb4ad2ebb38
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9e9e44c-367f-4419-9232-a61ac0ceba8e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12703
x-amzn-requestid: 80a35fb9-0cfb-4fe9-9c04-bf8ba82f3d32
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ2hEhuoAMF_xw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358568f-3a4bd0df07d1e3cb7d66614c;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:11 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gsLMebtAiXNASQTF7wuzS3uhTQTZd5c-56wRx_JJhUiv0Zui7h7-mw==
via: 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:49:36 GMT
etag: "3934a64203860925a6e7ddd5c9ec1e23d6a4fb62"
content-type: image/jpeg
age: 6819
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4eccb336-aab3-4c45-986e-3d5c068fa95f.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4eccb336-aab3-4c45-986e-3d5c068fa95f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 77f26048280036eede4e216d7ac2ed6f
619dff28900195c0d76692c6695c610c57fde4f2
d17b83d8de3794b198bd371579ca3447639f53121eb463b6eb0a766fe7f0103c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4eccb336-aab3-4c45-986e-3d5c068fa95f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4545
x-amzn-requestid: f774726e-125a-486e-8f7b-7eb86450368a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ2qHG7IAMFTSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63585690-3e3bf9a7046685f7643817b9;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: cH4Ae-5tI8KMs7ZQCIQM6OWRz1cEBUf7eOTZmQw0mJ-cmnlLqSX19w==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:53:34 GMT
age: 6581
etag: "619dff28900195c0d76692c6695c610c57fde4f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 19132f29a8811a10f90eca2d81e5deb8
3b9e0bbf9f40f46b57dad5567b008e58b5770565
708aeab241760b108d60c1462b1979e59cf473242222e9270705ba70642b04f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 23:43:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 5368369f9244d7ae8d111737bd5ef921
e8af3a4b5f873ad2b90157711c1409e2dacd11de
4467f7c8bd835ebcbb82545b4e33f101d6e4d9605b43066fa732aebd284307e0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6425
Cache-Control: max-age=133836
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 23:43:15 GMT
Etag: "6357c346-118"
Expires: Thu, 27 Oct 2022 12:53:51 GMT
Last-Modified: Tue, 25 Oct 2022 11:06:46 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 19132f29a8811a10f90eca2d81e5deb8
3b9e0bbf9f40f46b57dad5567b008e58b5770565
708aeab241760b108d60c1462b1979e59cf473242222e9270705ba70642b04f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 23:43:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 5368369f9244d7ae8d111737bd5ef921
e8af3a4b5f873ad2b90157711c1409e2dacd11de
4467f7c8bd835ebcbb82545b4e33f101d6e4d9605b43066fa732aebd284307e0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6425
Cache-Control: max-age=133836
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 23:43:15 GMT
Etag: "6357c346-118"
Expires: Thu, 27 Oct 2022 12:53:51 GMT
Last-Modified: Tue, 25 Oct 2022 11:06:46 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 280
americanfinancialending.com/wp-content/themes/astra/assets/css/minified/frontend.min.css?ver=3.7.7
192.254.234.35200 OK 13 kB URL HTTP/2 americanfinancialending.com/wp-content/themes/astra/assets/css/minified/frontend.min.css?ver=3.7.7
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (45376)
Hash 172da7a43180320d5317955db9d94883
c20dc6828f6a17d438ded8680f182a4875dad08c
a8f98d135d01e80a8c0a5c1f96d2205bf3dddc6aaa5b73c0441a9522a372dfd3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/astra/assets/css/minified/frontend.min.css?ver=3.7.7 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 13042
content-type: text/css
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
192.254.234.35200 OK 5.3 kB URL HTTP/2 americanfinancialending.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 24 May 2022 22:18:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 5321
content-type: application/javascript
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 19132f29a8811a10f90eca2d81e5deb8
3b9e0bbf9f40f46b57dad5567b008e58b5770565
708aeab241760b108d60c1462b1979e59cf473242222e9270705ba70642b04f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 23:43:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
americanfinancialending.com/wp-content/uploads/elementor/css/post-442.css?ver=1647186724
192.254.234.35200 OK 329 B URL HTTP/2 americanfinancialending.com/wp-content/uploads/elementor/css/post-442.css?ver=1647186724
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (948), with no line terminators
Hash 26bee6c04faf593d567f65a4427b4776
aab02d38eeb4176f2452fe240a2496c37b3ebf0a
59f32bb2af75c110398b6b4c752015060a5c58bf71ef6e88d6aa626aa2d671c6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-442.css?ver=1647186724 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 15:52:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 329
content-type: text/css
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3
142.250.74.10200 OK 1.8 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3
IP 142.250.74.10:0
Hash dac2cfb18b4460f6dd3c2177243ff9aa
260b7e9ab7105b1d093fa1cea42c53781aa14301
dc7b6fb64caf3386fc36df402dae5f1571d01d76bd78ab5f35e5c08a6fa62dd6
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 25 Oct 2022 23:43:15 GMT
date: Tue, 25 Oct 2022 23:43:15 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
americanfinancialending.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
192.254.234.35200 OK 17 kB URL HTTP/2 americanfinancialending.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (43771)
Hash 2a67a4888baa44de739f3fe56203ce07
da175eae57f26b655747d79f055477e3fee1abb9
3a4d7627476a0099ca4bcc101685f27de04cb49dd66ef842d72c6cda270599dd
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Jul 2022 22:54:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 16594
content-type: text/css
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/uploads/astra-addon/astra-addon-62278eba32a083-96129518.css?ver=3.6.1
192.254.234.35200 OK 10 kB URL HTTP/2 americanfinancialending.com/wp-content/uploads/astra-addon/astra-addon-62278eba32a083-96129518.css?ver=3.6.1
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (59115), with no line terminators
Hash a70396db28dfaa515284a46f7d66977f
f08cbab2d4bb0c82df69a9034d89c15f8e1ab119
b2a78fe1c38f539f6d621f49c7e6b05e097717d4272d145ddbc8c0ba0e0451a5
GET /wp-content/uploads/astra-addon/astra-addon-62278eba32a083-96129518.css?ver=3.6.1 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:45 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 9994
content-type: text/css
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.14.0
192.254.234.35200 OK 4.0 kB URL HTTP/2 americanfinancialending.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.14.0
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19004)
Hash 3770d40a3b6bfb7fd2847fefdc93cf2c
0ae9564463a16c29233adefdf92bb7375ad46bcb
af5ed5aa155dc7252334407c53ee97a0d296d0bfb30590304a39abadb589c73c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.14.0 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 3961
content-type: text/css
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/ooohboi-steroids-for-elementor/assets/css/main.css?ver=1.9.024012022
192.254.234.35200 OK 3.0 kB URL HTTP/2 americanfinancialending.com/wp-content/plugins/ooohboi-steroids-for-elementor/assets/css/main.css?ver=1.9.024012022
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash f763340af10ed70812b0fb159923c3f9
99ec93f40f382e26d700c8cb6b35820a1443f7f3
12b0d2313f7186500193d904225b7cdc077e972150a0925b8eda6779c7387339
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ooohboi-steroids-for-elementor/assets/css/main.css?ver=1.9.024012022 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 3044
content-type: text/css
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.4.2
192.254.234.35200 OK 11 kB URL HTTP/2 americanfinancialending.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.4.2
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (59843)
Hash b5dec95d4bab88864ac794eac59754de
4f7ded6c336e23b52cc6688d7349ff5e58d177a2
4fb6ee792ab44a7a8465578696e3df6434aa4962c0cd8fd9f6b340b77fba71d9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.4.2 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 10675
content-type: text/css
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.5.5
192.254.234.35200 OK 13 kB URL HTTP/2 americanfinancialending.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.5.5
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (59158)
Hash e6b67e11736ae36a062b381717f2ea9f
a663a79bc8d42aa58bfea1351cc27e0d0b09c9b2
a07a94d36246d0b3e5b9b18e274e31995d0e23cda955babf5e350e91a879523d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.5.5 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 12862
content-type: text/css
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/uploads/2022/02/260e.svg
192.254.234.35200 OK 1.9 kB URL HTTP/2 americanfinancialending.com/wp-content/uploads/2022/02/260e.svg
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1855), with no line terminators
Hash e39ec5942bc69d0a6392f507ff3321ed
b5bcee94e2f5bed3285f100ddebcc2dbe87b1d89
c63cb7c1d50d26f952c92776aa366684242aeb63e9951675ce0a6a331c89c6aa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/02/260e.svg HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:48 GMT
accept-ranges: bytes
content-length: 1855
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/svg+xml
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/uploads/2022/01/AFL-LOGO-1024x459-1-120x54.png
192.254.234.35200 OK 10 kB URL HTTP/2 americanfinancialending.com/wp-content/uploads/2022/01/AFL-LOGO-1024x459-1-120x54.png
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 120 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 570f4ec8faf491b709d6aa412f31eb8d
ef116fbd48837a3f93ebe0b22b760a88e8397387
e554bbdf60177b192a2a047c393aa79a6093ef3d5d4f91541607774843d3259b
GET /wp-content/uploads/2022/01/AFL-LOGO-1024x459-1-120x54.png HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:47 GMT
accept-ranges: bytes
content-length: 10295
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
192.254.234.35200 OK 4.6 kB URL HTTP/2 americanfinancialending.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4618
content-type: application/javascript
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.5.5
192.254.234.35200 OK 4.4 kB URL HTTP/2 americanfinancialending.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.5.5
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14869)
Hash 7bab7ad64ffbd7846dd6819250b93e2e
c924918d540389aff62220088b6761f38a5da272
045250efe67364c953a91f6a60cf407ebb5cfdb2da04e84c3d98e5bab5eca9ba
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.5.5 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4359
content-type: application/javascript
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/uploads/elementor/css/post-553.css?ver=1647186725
192.254.234.35200 OK 12 kB URL HTTP/2 americanfinancialending.com/wp-content/uploads/elementor/css/post-553.css?ver=1647186725
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash dc6a68a78b2aef9e516bb4ce914877fe
4d15aab0fd50a0a4430da4169e1f8db83a302973
fa65a156c3f90d90cc871106dc88e518813897c2e19224e5a4b7f0c8509dff3e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-553.css?ver=1647186725 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 15:52:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 11586
content-type: text/css
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
192.254.234.35200 OK 7.1 kB URL HTTP/2 americanfinancialending.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (30837)
Hash 09b8b6cbc1b0486aa66786792e8c6984
73a077a16ce58b6b5c7169a61989f7421a913936
a8e462cb54773ddf7cd4fdc03715c0cd12a537c633c026635d5810b621246db6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 7112
content-type: text/css
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/happy-elementor-addons/assets/fonts/style.min.css?ver=3.4.3
192.254.234.35200 OK 5.1 kB URL HTTP/2 americanfinancialending.com/wp-content/plugins/happy-elementor-addons/assets/fonts/style.min.css?ver=3.4.3
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (24770)
Hash 2bd9ae33bb495670acef0b03302f134a
43afbfa3de689ca45ac0af481cb841d5f766e67c
2230fcf663f4a6a90dfadce1ef1c10b27efb9629a602b483f94a1a4551ba078b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/happy-elementor-addons/assets/fonts/style.min.css?ver=3.4.3 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 5118
content-type: text/css
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/elementor/assets/lib/e-gallery/css/e-gallery.min.css?ver=1.2.0
192.254.234.35200 OK 880 B URL HTTP/2 americanfinancialending.com/wp-content/plugins/elementor/assets/lib/e-gallery/css/e-gallery.min.css?ver=1.2.0
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3264)
Hash fee72084bf5c710182617ae92be5ac0a
62ef396bf32946bbff36a2d0c8bd0cbeb06ea163
f626f9e73ba1e7c52ee55054b7449f1e5bf6ba851564248da32058db454fadc3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/e-gallery/css/e-gallery.min.css?ver=1.2.0 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 880
content-type: text/css
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/
192.254.234.35200 OK 72 kB URL HTTP/2 americanfinancialending.com/
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (50683), with CRLF, LF line terminators
Hash add2246cb1422491eb34b17c7c1dbd96
7209005a3002b32a6233a92219f03cb6cc15e55b
8941e1ee472d8411aed22dc5358e781da2e2050cd1e812a2d46a0084d88f52ce
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
link: <https://americanfinancialending.com/wp-json/>; rel="https://api.w.org/", <https://americanfinancialending.com/wp-json/wp/v2/pages/553>; rel="alternate"; type="application/json", <https://americanfinancialending.com/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: text/html; charset=UTF-8
date: Tue, 25 Oct 2022 23:43:13 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.5
192.254.234.35200 OK 2.3 kB URL HTTP/2 americanfinancialending.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.5
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4866)
Hash 3e308f7aafd9f45e3fc643cdff9b2d16
23091ad9fe2b3c8db15f13bdfaefd3992c70c761
b2e999d5373ca64fba0bef600b7fea7464ba22d826dd5a57f30689d37eb5b515
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.5 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 2286
content-type: application/javascript
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.5
192.254.234.35200 OK 5.6 kB URL HTTP/2 americanfinancialending.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.5
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14196)
Hash 940f287c085b1f14a3610319363a3eab
e6330e55618eaf08ca12fc67197c6918d479d997
fefb50865b7f09a39bf25c9fcb8ab1776298f2dfeebd073ef686b2ca0a18ec06
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.5 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 5629
content-type: application/javascript
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
192.254.234.35200 OK 8.2 kB URL HTTP/2 americanfinancialending.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash a0a1c8194f131320e1798f90a7b1262a
3346d35be1f2e4886f19e7fcc0cc96ee4753d9ed
7f618ab13cec0933ec2c61fa2b580ad77ca41522028649677494219fa9ce56db
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 24 May 2022 22:18:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 8169
content-type: application/javascript
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-includes/js/underscore.min.js?ver=1.13.3
192.254.234.35200 OK 8.3 kB URL HTTP/2 americanfinancialending.com/wp-includes/js/underscore.min.js?ver=1.13.3
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (18876)
Hash 61a4a3c276f704185a925bfa0f4d8b1b
0176eb701bb114d9cb170193f6208ec4fbb35f71
f0875cbb46e9eeb5e497dd52d8c33725509228193c2dbe9ab464f62a15c2f0e2
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 24 May 2022 22:18:39 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 8313
content-type: application/javascript
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/happy-elementor-addons/assets/js/happy-addons.min.js?ver=3.4.3
192.254.234.35200 OK 11 kB URL HTTP/2 americanfinancialending.com/wp-content/plugins/happy-elementor-addons/assets/js/happy-addons.min.js?ver=3.4.3
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash f5f19b4497cb6da34514866ef9f98d7b
6c5245d99cda4f58212724e3d506121abeb71702
cd1e519e50ac013e06901132d5fd246d403bd98dc98b6a40caf9d5c50982d583
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/happy-elementor-addons/assets/js/happy-addons.min.js?ver=3.4.3 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 11140
content-type: application/javascript
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-includes/js/wp-util.min.js?ver=6.0.3
192.254.234.35200 OK 709 B URL HTTP/2 americanfinancialending.com/wp-includes/js/wp-util.min.js?ver=6.0.3
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1305)
Hash e9edb7bac979409cf7dbc48d7ab8aca7
ed3f941a8fe41e3994a3ca5e620219328628f532
2a0742cad9937c742b2f51c1ea2ae48359ce8d88d8b56f6d8910c0a267d631b5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-util.min.js?ver=6.0.3 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 709
content-type: application/javascript
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.2.1
192.254.234.35200 OK 374 B URL HTTP/2 americanfinancialending.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.2.1
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (754), with no line terminators
Hash ef785f463505633971eae5c08ad626d4
624e22257f386801822229db3a4bbd2e24b25e2f
b2a0dc77f0f79d81698a7e3893e16ecba7b0d980b80a5233656d9b11f1d8160d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.2.1 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 374
content-type: application/javascript
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.4.2
192.254.234.35200 OK 6.7 kB URL HTTP/2 americanfinancialending.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.4.2
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (23736)
Hash 512055ccb50bf2fb76647a4c8f2f0832
0608ce78a0884a68ead8b24126dd6b69452bccd1
71540aa841cddabbd7013a1be5e64d27688423faaee5aadb7d66208dbdd6fb60
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.4.2 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 6718
content-type: application/javascript
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
192.254.234.35200 OK 3.7 kB URL HTTP/2 americanfinancialending.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12198), with no line terminators
Hash e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 3747
content-type: application/javascript
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.4.2
192.254.234.35200 OK 7.1 kB URL HTTP/2 americanfinancialending.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.4.2
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19857)
Hash afabd98d35bd5499589248720f4d6018
ac893084f0597099bf2487bab4b809351e0f3cdb
5fd41ed07017648651c3b16a9ae436cbf13a1cb959a32ea10f7dd5d8fe063d78
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.4.2 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 7073
content-type: application/javascript
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.5
192.254.234.35200 OK 14 kB URL HTTP/2 americanfinancialending.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.5
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (36850)
Hash 63e3199c4df0039ae4047f807efdaa84
0d8aa97317fa0f345e33480f1f444cade353cb0a
7ce19c5abbe199fd80452e9e7f44b75cdd4378e2dc2e7b77f5aaafa5b94ec3af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.5 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 14423
content-type: application/javascript
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.4.2
192.254.234.35200 OK 2.2 kB URL HTTP/2 americanfinancialending.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.4.2
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4659)
Hash 93787ba4cb35650e59dd324765e91f21
1b36d4b2ac1021d95bc10b39ca319bb36fb91bf9
a34fe002845033ced3837d6aea0fb34dd1c010f055cc8584baf2d6535b56e90f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.4.2 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 2245
content-type: application/javascript
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat%3A400%2C%2C700&display=fallback&ver=3.7.7
142.250.74.10200 OK 5.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Montserrat%3A400%2C%2C700&display=fallback&ver=3.7.7
IP 142.250.74.10:0
File type ASCII text, with very long lines (15766)
Hash 81ee17164bc6b9fae3a3963323cb5801
cceb6934ce21247fe609df1ab117ae585a10ff14
269aa16dd32df5ab840bd2cde0e971a4f250e7e37e36a3806511463ab51824ba
GET /css?family=Montserrat%3A400%2C%2C700&display=fallback&ver=3.7.7 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 25 Oct 2022 23:43:15 GMT
date: Tue, 25 Oct 2022 23:43:15 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/elementor/assets/lib/e-gallery/js/e-gallery.min.js?ver=1.2.0
192.254.234.35200 OK 5.7 kB URL HTTP/2 americanfinancialending.com/wp-content/plugins/elementor/assets/lib/e-gallery/js/e-gallery.min.js?ver=1.2.0
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15310)
Hash ce5241f65a3b1bd236b06fb6a4217f52
e66d57ccbc1b21ebef5e9127154eab8b4e41d661
9db31385f58f37810a1e19dc407960208b1da84c31164ff74c65cfa1070e3b36
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/e-gallery/js/e-gallery.min.js?ver=1.2.0 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 5691
content-type: application/javascript
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e4f7139b125683bac76c2b5638a1a643
2f84ea7104d659754e5962f88f504a7189f6f914
c9c550489201a92e8bbe162bca49d4aa6b21fa22b254a6a29502186423b3b579
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 23:43:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
americanfinancialending.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.5.5
192.254.234.35200 OK 472 B URL HTTP/2 americanfinancialending.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.5.5
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash e4f7139b125683bac76c2b5638a1a643
2f84ea7104d659754e5962f88f504a7189f6f914
c9c550489201a92e8bbe162bca49d4aa6b21fa22b254a6a29502186423b3b579
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.5.5 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4436
content-type: text/css
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.195200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://americanfinancialending.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Oct 2022 16:40:18 GMT
expires: Fri, 20 Oct 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 457377
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e4f7139b125683bac76c2b5638a1a643
2f84ea7104d659754e5962f88f504a7189f6f914
c9c550489201a92e8bbe162bca49d4aa6b21fa22b254a6a29502186423b3b579
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Oct 2022 23:43:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
americanfinancialending.com/wp-content/uploads/2022/02/Portfolio-Loan-picture.jpeg
192.254.234.35200 OK 170 kB URL HTTP/2 americanfinancialending.com/wp-content/uploads/2022/02/Portfolio-Loan-picture.jpeg
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, description=Architectural details of modern apartment building., manufacturer=Canon, model=Canon EOS 70D, orientation=upper-left, xresolution=242, yresolution=250, resolutionunit=2, software=Adobe Photoshop Lightroom 5.4 (Windows), datetime=2014:05:17 12:21:51], baseline, precision 8, 798x428, components 3\012- data
Size 170 kB (169824 bytes)
Hash 2be21928a50ea727b4a1f01ee2123844
e36caecf80f62e45925ccf96e7d7951c830e175f
c1840a996fd5b03a3af526f1acc90d7d412fc12a3650dacd655fbc9a6b6545ca
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/02/Portfolio-Loan-picture.jpeg HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/wp-content/uploads/elementor/css/post-553.css?ver=1647186725
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:47 GMT
accept-ranges: bytes
content-length: 169824
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.15.4/css/v4-shims.css
172.64.133.15200 OK 7.5 kB URL HTTP/2 use.fontawesome.com/releases/v5.15.4/css/v4-shims.css
IP 172.64.133.15:0
File type ASCII text, with very long lines (26516)
Hash a12fe328f209b3627246e66299fff4e6
4e148e7e528ffa4589a27bee8aa13bd4a03d0c96
f23d5b93ba785fbb68655f3811c432751d95609d367cea94c876d6518564e173
GET /releases/v5.15.4/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://americanfinancialending.com
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 25 Oct 2022 23:43:15 GMT
content-type: text/css
x-amz-id-2: uJkQ7c3pFsbSJfGw8XLzZXHVl5Mwgm82ERXZAUofEFqMfdgQxvC1xTzx/vv+CRIjPfCTFxxlVdA=
x-amz-request-id: M0P9A36NE3RP4KBQ
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 20:43:22 GMT
etag: W/"a034d3c71bee546f625877d7932917f8"
cache-control: max-age=31556926
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PutmI7i1jyIR4m0rOE8mym9nM71DFyCqD3DEtaGzo%2FU1yB4oDykqpdBWjY7VYOE3Czs70UON0ZuKQnO8LkSBPfdKi6AXozQtn76lVL%2BHFGfMKdQinuQOgaAYjkdngBbTKAUNZ0%2Bz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75fed0389e0271cf-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/uploads/2022/01/AFL-LOGO-1024x459-1.png
192.254.234.35200 OK 146 kB URL HTTP/2 americanfinancialending.com/wp-content/uploads/2022/01/AFL-LOGO-1024x459-1.png
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1024 x 459, 8-bit/color RGBA, non-interlaced\012- data
Size 146 kB (146423 bytes)
Hash 6178f636daadaf5d28449b2f65c28022
8ae68596e9b94dbbf7876e80315de72d9f9fdf57
e1ce062a2bfc2835a8165be117925ad93c023c331573cf9615cf3cdb3acc01d8
GET /wp-content/uploads/2022/01/AFL-LOGO-1024x459-1.png HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:47 GMT
accept-ranges: bytes
content-length: 146423
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/uploads/2022/02/Screen-Shot-2022-02-21-at-8.04.22-AM-1024x629.png
192.254.234.35200 OK 612 kB URL HTTP/2 americanfinancialending.com/wp-content/uploads/2022/02/Screen-Shot-2022-02-21-at-8.04.22-AM-1024x629.png
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1024 x 629, 8-bit/color RGBA, non-interlaced\012- data
Size 612 kB (612295 bytes)
Hash 02a57280366a4a66c905fd5edc5ffb06
f9ea88f692c97ce952b82ed1f0a4383121d9e678
46f8e34db2100f45abd35d34f273ccfeabc5736685819dbedcbf863c99a9af6c
GET /wp-content/uploads/2022/02/Screen-Shot-2022-02-21-at-8.04.22-AM-1024x629.png HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:48 GMT
accept-ranges: bytes
content-length: 612295
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/elementor/assets/js/text-editor.289ae80d76f0c5abea44.bundle.min.js
192.254.234.35200 OK 667 B URL HTTP/2 americanfinancialending.com/wp-content/plugins/elementor/assets/js/text-editor.289ae80d76f0c5abea44.bundle.min.js
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1316)
Hash a9c38a804262b52eb6bd9bc9072ec0ca
929714fe0bf6502ff801ff1b2f1f251c36912fba
7cb2fd6d64124cd53ab42004f9384b5f2a2d518fac631c172769fbc4449380b6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/text-editor.289ae80d76f0c5abea44.bundle.min.js HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 667
content-type: application/javascript
date: Tue, 25 Oct 2022 23:43:16 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/elementor-pro/assets/js/gallery.6af8f19f91f1b16c3ab6.bundle.min.js
192.254.234.35200 OK 2.0 kB URL HTTP/2 americanfinancialending.com/wp-content/plugins/elementor-pro/assets/js/gallery.6af8f19f91f1b16c3ab6.bundle.min.js
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5697)
Hash 8c4c86c0abf755a2873bf9fd38824cea
6015bb1f5c6209a7c88486705c11f227abfe9c24
a759f6c936f7faba47d06504438384bbd66b710069cc868a4d0e4362e998e160
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/gallery.6af8f19f91f1b16c3ab6.bundle.min.js HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 1964
content-type: application/javascript
date: Tue, 25 Oct 2022 23:43:16 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/elementor/assets/js/lightbox.c404a8ad323d6ea31d40.bundle.min.js
192.254.234.35200 OK 11 kB URL HTTP/2 americanfinancialending.com/wp-content/plugins/elementor/assets/js/lightbox.c404a8ad323d6ea31d40.bundle.min.js
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (29156)
Hash 69fdd87a7cfb45f5f86f76b3eccd74c7
cef622c719ae4966960680e0cf78e39742b0fb60
cb01da6c43e63c45c72c67cce636fadf8f9592b7069924cd617f00cacbeae0ef
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/lightbox.c404a8ad323d6ea31d40.bundle.min.js HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 11316
content-type: application/javascript
date: Tue, 25 Oct 2022 23:43:16 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.5.5
192.254.234.35200 OK 1.2 kB URL HTTP/2 americanfinancialending.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.5.5
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2577)
Hash 159281ac01a46f042b38d0d44cf3eb7a
54677be6b1cf85899d2ab1a6fada531ca5613d29
0738d3f931e8df2b67f3be1ec216b103560266c56cc38fdafae055bcb807ffea
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.5.5 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 1151
content-type: application/javascript
date: Tue, 25 Oct 2022 23:43:16 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
192.254.234.35200 OK 4.2 kB URL HTTP/2 americanfinancialending.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10544)
Hash 552977febe8ef2c71b0806dfaefd2552
01baebfd09383c5d44f066e7b5540fcca6a5eae4
7895907f5a4f54c08c4705b1a194e21c556d68027c5e0a70d4c05b377e712b1d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4200
content-type: application/javascript
date: Tue, 25 Oct 2022 23:43:16 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/uploads/2022/01/AFL-LOGO-1024x459-2-e1643480143229-150x150.png
192.254.234.35200 OK 26 kB URL HTTP/2 americanfinancialending.com/wp-content/uploads/2022/01/AFL-LOGO-1024x459-2-e1643480143229-150x150.png
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 530934c4cf261f1c43997115a724b87a
b1b423096e5d58c005c8fa16dc6c938d87aabe19
5ea016623f6f2cc642af2758c093593f9d00864f5d8d64612c6cb999bf7df3fc
GET /wp-content/uploads/2022/01/AFL-LOGO-1024x459-2-e1643480143229-150x150.png HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:46 GMT
accept-ranges: bytes
content-length: 26179
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Tue, 25 Oct 2022 23:43:16 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
192.254.234.35200 OK 115 kB URL HTTP/2 americanfinancialending.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
Size 115 kB (115256 bytes)
Hash dada93027489dcad2ed66188209ead05
548f7b25b171ccf6c6bc2d6a1b34f89dccc9137f
4d2452db6f49b0f1a4d326e3863d18e5c881932dc3c5c688835d36273cb93bab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: application/javascript
date: Tue, 25 Oct 2022 23:43:16 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/uploads/2022/02/sarasota-fl.jpeg
192.254.234.35200 OK 11 kB URL HTTP/2 americanfinancialending.com/wp-content/uploads/2022/02/sarasota-fl.jpeg
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 276x183, components 3\012- data
Hash 364deb5012a0f90ff9ebdbc65e3f3736
1877316df83e673794160de6507cab504e9b5821
9aee0b9f29b958d1cb7f485165284f8c61cd86f2b6e8bff64d2ff3d0f32be9d1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/02/sarasota-fl.jpeg HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:47 GMT
accept-ranges: bytes
content-length: 11236
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Tue, 25 Oct 2022 23:43:16 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/uploads/2022/02/yuba-city.jpeg
192.254.234.35200 OK 6.4 kB URL HTTP/2 americanfinancialending.com/wp-content/uploads/2022/02/yuba-city.jpeg
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 283x178, components 3\012- data
Hash 5d14235ad578cafe365fe75b7e70c440
76aefb7b70ca123192ed5d19d2ea801f0f75cee8
41108d89dd3a85ecc00932aa7e213782f10a6655c3ee57cb90bab8ea39b88881
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/02/yuba-city.jpeg HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:47 GMT
accept-ranges: bytes
content-length: 6355
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Tue, 25 Oct 2022 23:43:16 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/uploads/2022/02/canon-CA.jpeg
192.254.234.35200 OK 13 kB URL HTTP/2 americanfinancialending.com/wp-content/uploads/2022/02/canon-CA.jpeg
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 275x183, components 3\012- data
Hash aa1d035e90aefb3f6300412dacdb2e1d
798ebe751cd70ec2386b305e97c1f559981bac84
991438cf6291b4785e89ac7af26145a3f42e1b8d3526148617fe64fb2b403ebb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/02/canon-CA.jpeg HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:48 GMT
accept-ranges: bytes
content-length: 12771
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Tue, 25 Oct 2022 23:43:16 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/uploads/2022/02/santa-barbara-DR.jpeg
192.254.234.35200 OK 8.0 kB URL HTTP/2 americanfinancialending.com/wp-content/uploads/2022/02/santa-barbara-DR.jpeg
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 259x194, components 3\012- data
Hash 4b9289e5c841b050e3cab47e8410af45
13c7dbf6d06f52e0d5cbbdd7f4da1ce1f0843e59
2876437c9f7a553d0d3f808e1bc51c34cbaddbee510d015090c1040e1f86e402
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/02/santa-barbara-DR.jpeg HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:48 GMT
accept-ranges: bytes
content-length: 7974
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Tue, 25 Oct 2022 23:43:16 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/uploads/2022/02/oceanside-ca.jpeg
192.254.234.35200 OK 11 kB URL HTTP/2 americanfinancialending.com/wp-content/uploads/2022/02/oceanside-ca.jpeg
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 259x194, components 3\012- data
Hash c5ba2de4bf932cba0d3f1050736e1b1f
e839d37936236320aa099583dd7a5a906f43ccf5
f49c8e7d274376967ed547bbc1ff97f122af5ab0e3b93ce5e813dad63c53a959
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/02/oceanside-ca.jpeg HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:48 GMT
accept-ranges: bytes
content-length: 11004
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Tue, 25 Oct 2022 23:43:16 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/uploads/2022/02/menifee.jpeg
192.254.234.35200 OK 11 kB URL HTTP/2 americanfinancialending.com/wp-content/uploads/2022/02/menifee.jpeg
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 259x194, components 3\012- data
Hash 5a99787e68aa100cbd239021aa76b7fa
a0f95abbf86704b4c3c1981abe3d3b22fc1f3df0
857881134985e0778aad3956231edaae3785dcfccab05fb383063972b8b8d0d5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/02/menifee.jpeg HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:48 GMT
accept-ranges: bytes
content-length: 10556
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Tue, 25 Oct 2022 23:43:16 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/uploads/2022/02/Pico-Rivera.png
192.254.234.35200 OK 670 kB URL HTTP/2 americanfinancialending.com/wp-content/uploads/2022/02/Pico-Rivera.png
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 829 x 403, 8-bit/color RGBA, non-interlaced\012- data
Size 670 kB (669959 bytes)
Hash 030307a84c0d33226582ca1d8ccd357d
fdbd56240771067b0298f6ad05e2424b0c81efeb
c47565f0364cb9b8f613ae16bbcdc4b6273ec34225b12f9438d69797ec080c44
GET /wp-content/uploads/2022/02/Pico-Rivera.png HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:48 GMT
accept-ranges: bytes
content-length: 669959
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Tue, 25 Oct 2022 23:43:16 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/uploads/2022/02/Screenshot_66-e1645295513317.png
192.254.234.35200 OK 470 kB URL HTTP/2 americanfinancialending.com/wp-content/uploads/2022/02/Screenshot_66-e1645295513317.png
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 458 x 431, 8-bit/color RGBA, non-interlaced\012- data
Size 470 kB (469683 bytes)
Hash aad85a566b10b68c255bce77e452dbcc
fe0c2a22f54d2d7f4551ed8e8ce6cf6e226f28b5
3b7d4c304b9fe722e7892f270bc0e612722fd914b5a61e206dc700e5086469b6
GET /wp-content/uploads/2022/02/Screenshot_66-e1645295513317.png HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:48 GMT
accept-ranges: bytes
content-length: 469683
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Tue, 25 Oct 2022 23:43:16 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/uploads/2022/01/Slide11.jpg
192.254.234.35200 OK 194 kB URL HTTP/2 americanfinancialending.com/wp-content/uploads/2022/01/Slide11.jpg
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 960x720, components 3\012- data
Size 194 kB (194468 bytes)
Hash 224bcbb2da69509ab46375eb1cf739f8
610197c2e515f87b6bb2cf1e36cd358ff983ee50
34732b2db11fd0d0b713284127b141fa8b5f7515b97254f45fc208fb772faeff
GET /wp-content/uploads/2022/01/Slide11.jpg HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:47 GMT
accept-ranges: bytes
content-length: 194468
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Tue, 25 Oct 2022 23:43:17 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/uploads/2022/01/Slide122.jpg
192.254.234.35200 OK 158 kB URL HTTP/2 americanfinancialending.com/wp-content/uploads/2022/01/Slide122.jpg
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Size 158 kB (157942 bytes)
Hash 005635f4b0d513281201dee73b053268
197306ae7d47eca934ee70a49952c3050674d44e
2927f4123a54577f24bd3bd0f0155f66d2b44d74c89e483a2785572b053af043
GET /wp-content/uploads/2022/01/Slide122.jpg HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:47 GMT
accept-ranges: bytes
content-length: 157942
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Tue, 25 Oct 2022 23:43:17 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/uploads/2022/01/Slide17.jpg
192.254.234.35200 OK 291 kB URL HTTP/2 americanfinancialending.com/wp-content/uploads/2022/01/Slide17.jpg
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Size 291 kB (291245 bytes)
Hash cab58848c5a3bec78964d9ef22b1d270
53959f0228ea0104249d5fed6ba4ac0cb00dcbd7
f86451b5dfda0db8f8cbdc2eb3bb95389cc08e1492e1fd2904bc411a688f1d0b
GET /wp-content/uploads/2022/01/Slide17.jpg HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:46 GMT
accept-ranges: bytes
content-length: 291245
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Tue, 25 Oct 2022 23:43:17 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/uploads/2022/01/Slide60.jpg
192.254.234.35200 OK 185 kB URL HTTP/2 americanfinancialending.com/wp-content/uploads/2022/01/Slide60.jpg
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Size 185 kB (185155 bytes)
Hash 855449f1021c13a8ee7426756f0d824a
8a19586550a6314e44332c49e642052775af4391
bb55a61686b4a4d7e3830178595cd3f46940d815aa65d67fcd12fc61d0e5a4ad
GET /wp-content/uploads/2022/01/Slide60.jpg HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:46 GMT
accept-ranges: bytes
content-length: 185155
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Tue, 25 Oct 2022 23:43:17 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/uploads/2022/01/Slide63.jpg
192.254.234.35200 OK 225 kB URL HTTP/2 americanfinancialending.com/wp-content/uploads/2022/01/Slide63.jpg
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Size 225 kB (225131 bytes)
Hash 3d82a10957544464eede6dee747aea38
76d6a5d477c0624fc79d1f293f79bdd26b8cdb01
ee24d339e4a774240c8ea81a0b3c9e5a147b584eb739a150065f1133200fb651
GET /wp-content/uploads/2022/01/Slide63.jpg HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:46 GMT
accept-ranges: bytes
content-length: 225131
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Tue, 25 Oct 2022 23:43:17 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/uploads/2022/01/Slide152.jpg
192.254.234.35200 OK 153 kB URL HTTP/2 americanfinancialending.com/wp-content/uploads/2022/01/Slide152.jpg
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Size 153 kB (153376 bytes)
Hash fe985e37765dc6205e2e32421be062b4
29480345316319d7d39c34841c1298dbf3ef9c5d
daaebc3c44b946a2aa9a49312ae883c1c5ded5d51e9c53a1459c62cbddb56855
GET /wp-content/uploads/2022/01/Slide152.jpg HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:46 GMT
accept-ranges: bytes
content-length: 153376
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Tue, 25 Oct 2022 23:43:17 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/uploads/2022/01/Slide232.jpg
192.254.234.35200 OK 104 kB URL HTTP/2 americanfinancialending.com/wp-content/uploads/2022/01/Slide232.jpg
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 960x720, components 3\012- data
Size 104 kB (103975 bytes)
Hash b1201ab147180e8d3b5145904a0ec02a
18519c23dfc591a1f84cf0921e809b905c71912e
0169b6008396c1dc515462019f13c341bd636813cf7c88e1f967ff93b2645cce
GET /wp-content/uploads/2022/01/Slide232.jpg HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:46 GMT
accept-ranges: bytes
content-length: 103975
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Tue, 25 Oct 2022 23:43:17 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/uploads/2022/01/Picture4.png
192.254.234.35200 OK 3.8 MB URL HTTP/2 americanfinancialending.com/wp-content/uploads/2022/01/Picture4.png
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 2000 x 1125, 8-bit/color RGBA, non-interlaced\012- data
Size 3.8 MB (3790704 bytes)
Hash e9ff3e3b4428fa68b28f34604b8d533f
6b81f6469afc90eafb205b43c5c72ca7e98a41dd
a6cb311da263bb50df339690b5514f56ba53e95c5c4012ec3ef7716a2fee7447
GET /wp-content/uploads/2022/01/Picture4.png HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:46 GMT
accept-ranges: bytes
content-length: 3790704
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Tue, 25 Oct 2022 23:43:17 GMT
server: Apache
X-Firefox-Spdy: h2
americanfinancialending.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.5.5
192.254.234.35200 OK 0 B URL HTTP/2 americanfinancialending.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.5.5
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.5.5 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: text/css
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.15.4/css/all.css
172.64.133.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.15.4/css/all.css
IP 172.64.133.15:0
GET /releases/v5.15.4/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://americanfinancialending.com
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 25 Oct 2022 23:43:15 GMT
content-type: text/css
x-amz-id-2: PWeN+RisQ9pJI/PsuWvaANTqYM9h6NUqGoBn13cJxj3Mr9XmhmMalVA9ljh74BNWkucWuc8XzVI=
x-amz-request-id: M0P2VGSMHTBJG2A8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 20:43:22 GMT
etag: W/"ecd507b3125edc4d2a03aa6ae5d07da9"
cache-control: max-age=31556926
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ic%2BayI9dEt6HJ%2BoMw9WZviBuOqW28yYkOGyF%2Bk1yD1TtQ2oQDskx3KpB07T%2Ba4LIObQofOH%2B%2F2Drec5OjxSDHBeY%2BEgwF94YZORgo2FWeO%2BpqshehRF16rpjZZ%2BqntyouL5dLB5E"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75fed038ae1171cf-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
americanfinancialending.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
192.254.234.35200 OK 0 B URL HTTP/2 americanfinancialending.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 192.254.234.35:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: americanfinancialending.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://americanfinancialending.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Mar 2022 14:51:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: application/javascript
date: Tue, 25 Oct 2022 23:43:15 GMT
server: Apache
X-Firefox-Spdy: h2