r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9972
Expires: Wed, 01 Feb 2023 13:26:14 GMT
Date: Wed, 01 Feb 2023 10:40:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6270
Expires: Wed, 01 Feb 2023 12:24:32 GMT
Date: Wed, 01 Feb 2023 10:40:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4808
Expires: Wed, 01 Feb 2023 12:00:10 GMT
Date: Wed, 01 Feb 2023 10:40:02 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 10:36:01 GMT
content-type: application/json
age: 241
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 6XvJsG94TSZFkbn4XSq4Zf8R/0sgx0B2Z9bgIBw7MSXSLEdYKFgdvRPNn1Bzd9FeKLUcbqodOaw=
x-amz-request-id: T8T9VBVACFJ9KN6A
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 09:51:31 GMT
age: 2911
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
wboxpanama.com/
164.68.99.151301 Moved Permanently 0 B IP 164.68.99.151:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 01 Feb 2023 10:40:02 GMT
Server: Apache
X-Pingback: http://www.wboxpanama.com/xmlrpc.php
X-Redirect-By: WordPress
Location: https://wboxpanama.com/
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 10:40:02 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 09:49:05 GMT
age: 3057
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
wboxpanama.com/
164.68.99.151301 Moved Permanently 0 B IP 164.68.99.151:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Date: Wed, 01 Feb 2023 10:40:02 GMT
Server: Apache
X-Pingback: https://www.wboxpanama.com/xmlrpc.php
X-Redirect-By: WordPress
Location: https://www.wboxpanama.com/
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8151
Expires: Wed, 01 Feb 2023 12:55:54 GMT
Date: Wed, 01 Feb 2023 10:40:03 GMT
Connection: keep-alive
push.services.mozilla.com/
52.88.24.20101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.88.24.20:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: UNwAI2aN9lHBt0XhjexsGA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: kanhLFhRguMHvZ0nF8yqrmLb8i4=
www.wboxpanama.com/
164.68.99.151200 OK 144 kB IP 164.68.99.151:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (11026), with CRLF, LF line terminators
Size 144 kB (144035 bytes)
Hash da7d93fb61d04bbab390ca789fa609db
fa9b398aa2ca4ce23165cbc40afacaaecaa06e6d
27d110522852771b0b19a59d596b762d6808451d868445705c4fdeac30f61cbb
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:03 GMT
Server: Apache
X-Pingback: https://www.wboxpanama.com/xmlrpc.php
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Link: <https://www.wboxpanama.com/wp-json/>; rel="https://api.w.org/", <https://www.wboxpanama.com/wp-json/wp/v2/pages/2>; rel="alternate"; type="application/json", <https://www.wboxpanama.com/>; rel=shortlink
Set-Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5; path=/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.wboxpanama.com/wp-content/plugins/user-registration/assets/css/sweetalert2/sweetalert2.min.css?ver=10.16.7
164.68.99.151200 OK 24 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/user-registration/assets/css/sweetalert2/sweetalert2.min.css?ver=10.16.7
IP 164.68.99.151:0
File type ASCII text, with very long lines (24459), with no line terminators
Hash a9c2f4051b00fbcf2987591a80ae8f06
d0005069b942ca6e7a09e0fca98509181b96f447
fa2feafb22f53d9b46ed75dca33bf4eab83d763bb68263481d6eec27eb2efd4e
GET /wp-content/plugins/user-registration/assets/css/sweetalert2/sweetalert2.min.css?ver=10.16.7 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:08:38 GMT
Accept-Ranges: bytes
Content-Length: 24459
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.wboxpanama.com/wp-content/plugins/user-registration/assets/css/user-registration.css?ver=2.2.3
164.68.99.151200 OK 40 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/user-registration/assets/css/user-registration.css?ver=2.2.3
IP 164.68.99.151:0
File type Unicode text, UTF-8 text, with very long lines (39375), with no line terminators
Hash 69dd6fd301fefc2127628bfde2835338
13d42bf235092c7590148e376a6fb86f6a6cafb3
68afa54b6c37f062926c43dbd3e85b41899cc45417ebc3931859ecdc29898de7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/user-registration/assets/css/user-registration.css?ver=2.2.3 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:08:38 GMT
Accept-Ranges: bytes
Content-Length: 39467
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 0dea93a9adb1e26a6ebfaf2e12c22cd5
e286810b718e374858f11adf0aae18dc65f27d66
73dafa5cd629cdf850ca05894932507c209713024ef27ce7597cb25365f2150e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 10:40:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.wboxpanama.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
164.68.99.151200 OK 22 kB URL HTTP/1.1 www.wboxpanama.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 164.68.99.151:0
File type ASCII text, with very long lines (15660)
Hash 554e05edb0dda4bd81824a9133080d8b
73de823af61d5baf21f37786456d8fe3273933a3
df5cdc8574f76989164ae1b8d78011ddf2830f08e6af81e95b96b66418ca5bfe
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 18:14:43 GMT
Accept-Ranges: bytes
Content-Length: 22381
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.wboxpanama.com/wp-content/plugins/user-registration/assets/css/my-account-layout.css?ver=2.2.3
164.68.99.151200 OK 5.3 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/user-registration/assets/css/my-account-layout.css?ver=2.2.3
IP 164.68.99.151:0
File type ASCII text, with very long lines (5266), with no line terminators
Hash 07fbb0fb6b455ce2bc7a560cedae442b
417121bf6b5a52f83e4677b1028111d3a8df1fbf
057ebddcb56b7f7e8f03848d75e4231fa61745336c5e090b50709ad35f0f14b3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/user-registration/assets/css/my-account-layout.css?ver=2.2.3 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:08:38 GMT
Accept-Ranges: bytes
Content-Length: 5266
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.wboxpanama.com/wp-content/plugins/yappy-bg-para-woocommerce//assets/wp_bg-payment.css?ver=6.0.3
164.68.99.151200 OK 4.5 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/yappy-bg-para-woocommerce//assets/wp_bg-payment.css?ver=6.0.3
IP 164.68.99.151:0
Hash 5376a801852b8ee7846c24ccf35293ff
f3222ad5397455ab42ec7dad1ff2310d8afa81e4
5a67b8e1e3ec4e53136cca2ea3d19e4c4b4b356cf249ef04e5746575b7692632
GET /wp-content/plugins/yappy-bg-para-woocommerce//assets/wp_bg-payment.css?ver=6.0.3 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Sat, 16 Jul 2022 16:25:04 GMT
Accept-Ranges: bytes
Content-Length: 4512
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.wboxpanama.com/wp-content/plugins/wp-support-ticket/assets/style-support.css?ver=6.0.3
164.68.99.151200 OK 2.3 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/wp-support-ticket/assets/style-support.css?ver=6.0.3
IP 164.68.99.151:0
File type ASCII text, with CRLF line terminators
Hash 62c91b7d152ec01f47ab4244c99828f5
8f7b42a669cbb61adcfdfe05dc7fe314502c9c73
9f3e6754ac7ee4dbf55e05c16af563cba84889d84cdd7eed17f988b164835b77
GET /wp-content/plugins/wp-support-ticket/assets/style-support.css?ver=6.0.3 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Sun, 01 Aug 2021 17:15:17 GMT
Accept-Ranges: bytes
Content-Length: 2294
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.wboxpanama.com/wp-content/uploads/porto_styles/theme_css_vars.css?ver=6.5.1
164.68.99.151200 OK 5.8 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/uploads/porto_styles/theme_css_vars.css?ver=6.5.1
IP 164.68.99.151:0
File type ASCII text, with very long lines (5805), with no line terminators
Hash 2f975a7ae472476b41c943de406f74b8
8ce12dce52c63e12d8e2594bea045fd5aca117b4
a0d9f11ec94eedcce72f17851ae738596d174cf7c10651510b145c224a1a4478
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/porto_styles/theme_css_vars.css?ver=6.5.1 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:59:09 GMT
Accept-Ranges: bytes
Content-Length: 5805
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.wboxpanama.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
164.68.99.151200 OK 2.7 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 164.68.99.151:0
Hash e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 17:48:16 GMT
Accept-Ranges: bytes
Content-Length: 2731
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.wboxpanama.com/wp-includes/css/dashicons.min.css?ver=6.0.3
164.68.99.151200 OK 59 kB URL HTTP/1.1 www.wboxpanama.com/wp-includes/css/dashicons.min.css?ver=6.0.3
IP 164.68.99.151:0
File type ASCII text, with very long lines (58981)
Hash d68d6bf519169d86e155bad0bed833f8
27ba9c67d0e775fc4e6dd62011daf4c3902698fc
c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dashicons.min.css?ver=6.0.3 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 03 Mar 2021 21:16:22 GMT
Accept-Ranges: bytes
Content-Length: 59016
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.wboxpanama.com/wp-content/themes/porto/css/theme_shop.css?ver=6.5.1
164.68.99.151200 OK 165 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/themes/porto/css/theme_shop.css?ver=6.5.1
IP 164.68.99.151:0
File type Unicode text, UTF-8 text, with very long lines (453)
Size 165 kB (165001 bytes)
Hash 483cec25f764edaadc99112bcb8c3f7d
5ecc150ebedb7edfa507abce525926cbd1c61e99
4f5422f647891f3f4e41d1be7bb147395c19edac34672628ef0579dee79d4a45
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/porto/css/theme_shop.css?ver=6.5.1 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:59:08 GMT
Accept-Ranges: bytes
Content-Length: 165001
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.wboxpanama.com/wp-content/uploads/porto_styles/bootstrap.css?ver=6.5.1
164.68.99.151200 OK 185 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/uploads/porto_styles/bootstrap.css?ver=6.5.1
IP 164.68.99.151:0
File type assembler source, ASCII text, with very long lines (804)
Size 185 kB (185237 bytes)
Hash 16ad2a93e37143031b1ba077a448e4df
38616591ab97f72e0b17ebeb0507c171d690d95b
196eb4691a1add8eb230fd0c8810488d6ac1ea83fab053463edd909c3424095f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/porto_styles/bootstrap.css?ver=6.5.1 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 31 Aug 2022 02:26:34 GMT
Accept-Ranges: bytes
Content-Length: 185237
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.wboxpanama.com/wp-content/themes/porto/css/theme.css?ver=6.5.1
164.68.99.151200 OK 295 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/themes/porto/css/theme.css?ver=6.5.1
IP 164.68.99.151:0
File type Unicode text, UTF-8 text, with very long lines (65526), with no line terminators
Size 295 kB (294966 bytes)
Hash 74be4cd09b122383d88f477f3dad6fba
9249a8c31428ea6d9fad36cbe18908c95a0d0923
1fe72b2f166c8c76835707c08b10a01528baaccbaff38f9f5ece61411dcce732
GET /wp-content/themes/porto/css/theme.css?ver=6.5.1 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:59:08 GMT
Accept-Ranges: bytes
Content-Length: 294966
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.wboxpanama.com/wp-content/themes/porto/css/theme_wpb.css?ver=6.5.1
164.68.99.151200 OK 5.9 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/themes/porto/css/theme_wpb.css?ver=6.5.1
IP 164.68.99.151:0
File type ASCII text, with very long lines (5902), with no line terminators
Hash d366d2336ace4fe5a6cedbb960360f64
40507ba7e8161238f9d7062a2aafde9eae761182
8380750ca7e0d8285be9f6e537279ecf6a8ef5135edb7fda3f00ddd606c4aa17
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/porto/css/theme_wpb.css?ver=6.5.1 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:59:08 GMT
Accept-Ranges: bytes
Content-Length: 5902
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.wboxpanama.com/wp-content/themes/porto/css/plugins.css?ver=6.5.1
164.68.99.151200 OK 113 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/themes/porto/css/plugins.css?ver=6.5.1
IP 164.68.99.151:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 113 kB (112637 bytes)
Hash ded273e2003b80175c675e10511e071a
de9c7231a9bce007837767d533dbbe760e047904
53604af751ee20a3be2eac537b7186b05ebc37dcc2ca2eb824b61b08cd018beb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/porto/css/plugins.css?ver=6.5.1 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:59:08 GMT
Accept-Ranges: bytes
Content-Length: 112637
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.wboxpanama.com/wp-content/uploads/porto_styles/dynamic_style.css?ver=6.5.1
164.68.99.151200 OK 40 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/uploads/porto_styles/dynamic_style.css?ver=6.5.1
IP 164.68.99.151:0
File type ASCII text, with very long lines (40047), with no line terminators
Hash 8579ca7bcff00f9cf48ad1d8956c876a
db1a613a1b65b3dcd777ba8cea4526b49e60462a
818b32a0e82e636705b9ad89cc1c3f2ff9e5c825bfaad3b8beab7508ac3f37be
GET /wp-content/uploads/porto_styles/dynamic_style.css?ver=6.5.1 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:59:09 GMT
Accept-Ranges: bytes
Content-Length: 40047
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
www.wboxpanama.com/wp-content/uploads/porto_styles/shortcodes.css?ver=6.5.1
164.68.99.151200 OK 173 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/uploads/porto_styles/shortcodes.css?ver=6.5.1
IP 164.68.99.151:0
File type ASCII text, with very long lines (525)
Size 173 kB (173359 bytes)
Hash 9a3aaf09f3dabca270eab1af790d28e6
234ec6596b710f0afcf92df0b8efa7a9aca1f3b1
1cfdb11bcb391ac1048ec8eba3daf0b768ee4a44cd89b3373efb094d81e5c023
GET /wp-content/uploads/porto_styles/shortcodes.css?ver=6.5.1 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 31 Aug 2022 02:40:12 GMT
Accept-Ranges: bytes
Content-Length: 173359
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.wboxpanama.com/wp-content/themes/porto/style.css?ver=6.5.1
164.68.99.151200 OK 1.0 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/themes/porto/style.css?ver=6.5.1
IP 164.68.99.151:0
File type ASCII text, with very long lines (609), with CRLF line terminators
Hash 3dcba0f5c9a6e210168eaab4c8f1ec2c
d16e73df57aca7e389de63d34152eac242bbb17f
60eb22ffd3694227e9129f2ae27361a8672deb8c4ee23bf891765817b158c196
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/porto/style.css?ver=6.5.1 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:59:08 GMT
Accept-Ranges: bytes
Content-Length: 1032
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.wboxpanama.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.9.0
164.68.99.151200 OK 486 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.9.0
IP 164.68.99.151:0
File type ASCII text, with very long lines (65358)
Size 486 kB (485521 bytes)
Hash 04f75b46513691d1d7aaa1a1684eb148
67c753bc6a1981621aed44b40a34388f3e36e95f
779ae1e963b5e8a5263625a174e34dfcd073775f2893211fc7e304fb70f0e3a7
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.9.0 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:44:11 GMT
Accept-Ranges: bytes
Content-Length: 485521
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.wboxpanama.com/wp-content/themes/porto/css/theme/shop/login-style/account-login.css?ver=6.5.1
164.68.99.151200 OK 2.5 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/themes/porto/css/theme/shop/login-style/account-login.css?ver=6.5.1
IP 164.68.99.151:0
File type ASCII text, with very long lines (2505), with CRLF line terminators
Hash 6343e03dc7e45791ee16e8a7e431d560
37654eb973077e27dc8653e3caaa917393e4b58b
e25c1ad41c87ef7ec89cd3c4b6ebd17825eb8098009beb85efffa54d541ce10d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/porto/css/theme/shop/login-style/account-login.css?ver=6.5.1 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:59:08 GMT
Accept-Ranges: bytes
Content-Length: 2507
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.wboxpanama.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
164.68.99.151200 OK 96 kB URL HTTP/1.1 www.wboxpanama.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 164.68.99.151:0
File type ASCII text, with very long lines (62654)
Hash 1a8531d0c3c7d893f39644bd6c6196fb
456a0bd8d06d245d697fe44c21b0defb23caa8e1
1965437e2869002c7fa0d64b31445aa1e2158ccd858c94364795ef23da2e962c
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Sat, 28 Jan 2023 11:38:12 GMT
Accept-Ranges: bytes
Content-Length: 96078
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.wboxpanama.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.0.0
164.68.99.151200 OK 6.8 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.0.0
IP 164.68.99.151:0
File type HTML document, ASCII text, with very long lines (3059)
Hash c265b66dccdac30a8831f5e519611cc6
336634163435d5ee9e1b1fe680c59c94700a24bb
d5afc12b7a8d1523caaa679cc739df2517962bf70cf4a2b3b4ae13d811b24c99
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.0.0 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:08:50 GMT
Accept-Ranges: bytes
Content-Length: 6801
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.wboxpanama.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
164.68.99.151200 OK 18 kB URL HTTP/1.1 www.wboxpanama.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 164.68.99.151:0
File type ASCII text, with very long lines (11126)
Hash ecc31f42ed1dd55b2583524ca0403de7
7fd7365be725f98531745deaf742854e997fd1fc
586c7d9af92b1e1d4d25662e4eaa8b03714029f20742ddd03f64f4421b3e89e0
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Sat, 28 Jan 2023 11:38:12 GMT
Accept-Ranges: bytes
Content-Length: 17781
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.wboxpanama.com/wp-content/plugins/porto-functionality/builders/assets/type-builder.css?ver=2.5.0
164.68.99.151200 OK 6.6 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/porto-functionality/builders/assets/type-builder.css?ver=2.5.0
IP 164.68.99.151:0
File type ASCII text, with very long lines (6599), with no line terminators
Hash c22f1447211d3e1f542ce67236600b95
a3c4899173b2674a1f1d282d608f715285c8933a
ddf93a957407646337d448934d8df0f8d680fec21ce3c53f8be1941dd44848e1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/porto-functionality/builders/assets/type-builder.css?ver=2.5.0 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:53:39 GMT
Accept-Ranges: bytes
Content-Length: 6599
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.wboxpanama.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.0.0
164.68.99.151200 OK 13 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.0.0
IP 164.68.99.151:0
File type ASCII text, with very long lines (9137)
Hash 4735f7708cde11384fad1be463ee7625
2e2596b7e547d38ae60352136e4c998d86012efd
8482715233bd003ee4edbd7b2cbea8198f7d31db5f1dffadd6aa675f17891b23
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.0.0 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:08:50 GMT
Accept-Ranges: bytes
Content-Length: 13273
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.wboxpanama.com/wp-content/plugins/wp-support-ticket/js/additional-methods.js?ver=6.0.3
164.68.99.151200 OK 45 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/wp-support-ticket/js/additional-methods.js?ver=6.0.3
IP 164.68.99.151:0
File type Unicode text, UTF-8 text, with very long lines (1239)
Hash 649e6c7b2f32b120a79646307968d9df
a96541c1b8edebddff606724a11ff989c9affe87
593d58847472264d1301084333670f0a69cc5879329efee24fd7b79a2fc87d56
GET /wp-content/plugins/wp-support-ticket/js/additional-methods.js?ver=6.0.3 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 15:12:34 GMT
Accept-Ranges: bytes
Content-Length: 44668
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.wboxpanama.com/wp-content/plugins/wp-support-ticket/js/jquery.validate.min.js?ver=6.0.3
164.68.99.151200 OK 27 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/wp-support-ticket/js/jquery.validate.min.js?ver=6.0.3
IP 164.68.99.151:0
File type Unicode text, UTF-8 text, with very long lines (22954)
Hash 60a310d3a4d637c42ed52c9bd2760668
993347425a09fc4535ce6869b81054eded286bba
e5d3721596832243f924993b9258989a588c0f61ce1071af4aa95c98cc6360db
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-support-ticket/js/jquery.validate.min.js?ver=6.0.3 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 15:12:31 GMT
Accept-Ranges: bytes
Content-Length: 26834
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 0dea93a9adb1e26a6ebfaf2e12c22cd5
e286810b718e374858f11adf0aae18dc65f27d66
73dafa5cd629cdf850ca05894932507c209713024ef27ce7597cb25365f2150e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 10:40:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.wboxpanama.com/wp-content/plugins/js_composer/assets/lib/vc_carousel/css/vc_carousel.min.css?ver=6.9.0
164.68.99.151200 OK 10 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/js_composer/assets/lib/vc_carousel/css/vc_carousel.min.css?ver=6.9.0
IP 164.68.99.151:0
File type ASCII text, with very long lines (10211), with no line terminators
Hash c5a97c7733270bd1cd4fd372951b04a1
d097bad47341c7c4de271cb37bd9cec1af2d8aa8
831cbafcf6a5713fe71da6dbf30be2ac90979334401afad6530352eb967d8503
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/vc_carousel/css/vc_carousel.min.css?ver=6.9.0 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:44:11 GMT
Accept-Ranges: bytes
Content-Length: 10211
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.wboxpanama.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.9.0
164.68.99.151200 OK 4.8 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.9.0
IP 164.68.99.151:0
Hash ae66d445c7f728202e7cd63537f9d6b7
f7907b62f119755821341b9645ca6762266e5af8
75b215710e1c3a2788baddc4334297209eecea306e4cc7981801f687359b0291
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.9.0 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:44:11 GMT
Accept-Ranges: bytes
Content-Length: 4756
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.wboxpanama.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/css/lightbox.min.css?ver=6.9.0
164.68.99.151200 OK 2.1 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/css/lightbox.min.css?ver=6.9.0
IP 164.68.99.151:0
File type ASCII text, with very long lines (2137), with no line terminators
Hash 98a2ba64069cf77cc7cba2df38863b69
c1697578a11c5d4d578fcaa15da343e33bb2db06
6fc0c282b3bbbbfe9a5ab6666573c5c0fd459f1e324449747a1e0d4e67ff76d4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/lightbox2/dist/css/lightbox.min.css?ver=6.9.0 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:44:11 GMT
Accept-Ranges: bytes
Content-Length: 2137
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.wboxpanama.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
164.68.99.151200 OK 14 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 164.68.99.151:0
File type ASCII text, with very long lines (9959)
Hash 13e7a1edb94dfb8cec151f0c41f6caf7
aac086fc8a3db6c6551b02cb255a660e15a1df26
6889ff0eefe30d08b4b73728d40180af9f7476a10018509f5dd97992571d3efd
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 17:48:16 GMT
Accept-Ranges: bytes
Content-Length: 13701
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.wboxpanama.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
164.68.99.151200 OK 16 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 164.68.99.151:0
File type HTML document, ASCII text, with very long lines (12332)
Hash 6d2be1e11efb3498df36903400eaf1bb
ea4842b4abc001a9fbca264363058842fb781150
4cb9f46f3b466c9a759bd3dff16d9e5142364697762e709a091e685416f29985
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 17:48:16 GMT
Accept-Ranges: bytes
Content-Length: 16074
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.wboxpanama.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.20
164.68.99.151200 OK 58 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.20
IP 164.68.99.151:0
File type Unicode text, UTF-8 text, with very long lines (12602)
Hash 7d4cdc18b95171f8dadb5d4fa0de7cf2
a960abb1c3844715ec9565e3b2b73a9b1faa32b0
8527577417ba8bd5dbaaad96e47d57c5e94b9e17094ffd9c0a2b5ad56a324347
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.20 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 21:10:33 GMT
Accept-Ranges: bytes
Content-Length: 57925
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fcbacac5eb95f3ff2259da750f722f9f
b9bb493602c7c53cc8419307230dc727533442fa
7ce7a12bbdda79f1bf740f6cfdf66c683e53ae46b2168d37f45b77833cff8c4c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7CE7A12BBDDA79F1BF740F6CFDF66C683E53AE46B2168D37F45B77833CFF8C4C"
Last-Modified: Tue, 31 Jan 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14756
Expires: Wed, 01 Feb 2023 14:46:00 GMT
Date: Wed, 01 Feb 2023 10:40:04 GMT
Connection: keep-alive
www.wboxpanama.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.0.0
164.68.99.151200 OK 5.6 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.0.0
IP 164.68.99.151:0
File type ASCII text, with very long lines (1690)
Hash db5e54def8492ab724659d6f64d2e9fd
b1dff30d4aef628b164b57a709b351ab5c6a5c6f
dae41eb00c2a6dcd4eca65bb6970a98b34763b6f62bbd408706765fffeea2300
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.0.0 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:08:50 GMT
Accept-Ranges: bytes
Content-Length: 5598
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.wboxpanama.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.0.0
164.68.99.151200 OK 5.9 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.0.0
IP 164.68.99.151:0
File type ASCII text, with very long lines (2161)
Hash 8fab5ce647d3c33ad70a30c6aa7c5315
462ff138a5cd7b000cd4924ab70a99bea2448060
78f0a19228da8312fb2c5120da6d0f52f99f6bf7fe4885bcff9779e184020137
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.0.0 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:08:50 GMT
Accept-Ranges: bytes
Content-Length: 5903
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.wboxpanama.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18
164.68.99.151200 OK 132 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18
IP 164.68.99.151:0
File type ASCII text, with very long lines (45108)
Size 132 kB (132432 bytes)
Hash fcd33bb9dcce1aeddaa961057f62a630
75ce5fd33cfbd77e3965d980820bebc1cdd2d901
d8c961feb6fd1d0eaa6d8db57e1c43e539f43c9545a1161df68ffbf075bc827a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 21:10:33 GMT
Accept-Ranges: bytes
Content-Length: 132432
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.wboxpanama.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.0.0
164.68.99.151200 OK 6.7 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.0.0
IP 164.68.99.151:0
File type ASCII text, with very long lines (2960)
Hash a80a33f91eae36757446bd39f89bddab
6a5d6c9b8550b6001c4d807a2911b6f63ddafcd1
91a81b70a8f93434f529754f7804dc219fba2f62b9f7bd9218abb4f7a6f1bbae
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.0.0 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:08:50 GMT
Accept-Ranges: bytes
Content-Length: 6702
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
dns.firstblackphase.com/scripts/start.js?vl=0.9.5
159.69.234.10200 OK 1.7 kB URL HTTP/1.1 dns.firstblackphase.com/scripts/start.js?vl=0.9.5
IP 159.69.234.10:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1685), with no line terminators
Hash e8025c2f37df60985c146f189efa904b
6acd32c36a0822a210b267e305821646a42ce3f3
531863f173e405b3149d06c28c9e9b768c18ff354fce7a98f3924d1ddd7e9a60
GET /scripts/start.js?vl=0.9.5 HTTP/1.1
Host: dns.firstblackphase.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 10:40:04 GMT
Content-Type: application/javascript
Content-Length: 1685
Last-Modified: Tue, 31 Jan 2023 11:00:07 GMT
Connection: keep-alive
ETag: "63d8f4b7-695"
Expires: Sat, 11 Feb 2023 10:40:04 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
www.wboxpanama.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.9.0
164.68.99.151200 OK 24 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.9.0
IP 164.68.99.151:0
File type ASCII text, with very long lines (20118)
Hash e05bbdf6da1d58d6c78d19d580877d67
e3d15b1d7d2935ce6421ca4fa4c433fc5d8b8f0b
dbb8e1ce465703e7ffb426e7cd6d61401a0c8c6751caaea090ddfc33d3536feb
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.9.0 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:44:11 GMT
Accept-Ranges: bytes
Content-Length: 24079
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.wboxpanama.com/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.7.0.0
164.68.99.151200 OK 5.2 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.7.0.0
IP 164.68.99.151:0
File type ASCII text, with very long lines (1263)
Hash 8e65b7e49bbcacd7d7671f0206f8737d
aaf811a49a405edb40fbff0b0e825156e7c243ed
3870d25022d848e0908c2ce1e9890c6c171f070ce7f40c5589cafcfbb4c4314c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.7.0.0 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:08:50 GMT
Accept-Ranges: bytes
Content-Length: 5156
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14034
Expires: Wed, 01 Feb 2023 14:33:58 GMT
Date: Wed, 01 Feb 2023 10:40:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14034
Expires: Wed, 01 Feb 2023 14:33:58 GMT
Date: Wed, 01 Feb 2023 10:40:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14034
Expires: Wed, 01 Feb 2023 14:33:58 GMT
Date: Wed, 01 Feb 2023 10:40:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14034
Expires: Wed, 01 Feb 2023 14:33:58 GMT
Date: Wed, 01 Feb 2023 10:40:04 GMT
Connection: keep-alive
www.wboxpanama.com/wp-content/themes/porto/js/bootstrap.js?ver=5.0.1
164.68.99.151200 OK 194 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/themes/porto/js/bootstrap.js?ver=5.0.1
IP 164.68.99.151:0
File type ASCII text, with very long lines (620)
Size 194 kB (194058 bytes)
Hash c5081a401f7193096902942d51526b06
f162ca88d3ed342091d14cd3041a0522da1e381e
e78b64626b7ca3d1c7f3ad321197092f4acba8dcd010d0d80a08da6249ff3cbc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/porto/js/bootstrap.js?ver=5.0.1 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:59:08 GMT
Accept-Ranges: bytes
Content-Length: 194058
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49ea501c-c491-40c1-82ec-c750680af9df.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49ea501c-c491-40c1-82ec-c750680af9df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e4354120b504a8b1d1c3f4e206eb4611
ba854dec74347525b20dbf3b4e5c13876d56aa1c
bc921fe78a71864819998207c13b5c3ca7913275a4503119c5d105ad7827c377
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49ea501c-c491-40c1-82ec-c750680af9df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9282
x-amzn-requestid: f448477b-b445-46fa-8aee-8c5c527ee95b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: feqp8FuToAMFxDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5be3f-30fbf0dd70d17878651809a0;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 00:30:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XGTtVMp42cyJ-Xmh0D-ECG50tJe_AZWIir602PjdJ1CwsAygJpbJyA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 04:00:34 GMT
age: 23970
etag: "ba854dec74347525b20dbf3b4e5c13876d56aa1c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27e95b7912edc909d6b031e36fe83534
eb27fae0bb17dbe0929a620002195233ef50c1d0
b32e7e1a2eee367c5bf9e99bcb38f4c74c4e9e7bdfe7fb0f8f2a657060c0624c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8597
x-amzn-requestid: e7bf4ac9-d86d-4ee9-9e10-8a42e5dfe2c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcRaNEW4IAMFatA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4c90d-7731312f630b00ba028836ca;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 07:04:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z3ZJ7bq6LuJd-9I9D22VIs0avctNGVDKnYmt-fxevCheQibivmUomQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 13:15:35 GMT
age: 77069
etag: "eb27fae0bb17dbe0929a620002195233ef50c1d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23db22ce2120fbb0ae6109e1a046062d
2068c8d9a5bc30a17be658e198e26c64a80703cf
f307ba6c4929d9f0c9354334b7baea878da379138489d9689bb777c4da308dab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8735
x-amzn-requestid: f466c962-7b12-4923-a4be-7ff9fce372a0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaWFP_IAMF9wA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-7a8c027d58f5b9132bb68a33;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: XtqfgDxskGIUmZdRj2nrGDpo9KvECk528eLZV29xNx3h7CLOu49mnQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:42:19 GMT
age: 46665
etag: "2068c8d9a5bc30a17be658e198e26c64a80703cf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 02:29:58 GMT
age: 29406
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.wboxpanama.com/wp-content/themes/porto/js/libs/owl.carousel.min.js?ver=2.3.4
164.68.99.151200 OK 120 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/themes/porto/js/libs/owl.carousel.min.js?ver=2.3.4
IP 164.68.99.151:0
File type ASCII text, with CRLF line terminators
Size 120 kB (119652 bytes)
Hash 7ec345cb1a51359d063adc8e01d7218d
ea68ddda714ffbdef6e8d8737504a8143200327e
170012e3fab813e03fdcd00d12c96e8b09e5c15b9f556b9add529997b240565f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/porto/js/libs/owl.carousel.min.js?ver=2.3.4 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:59:08 GMT
Accept-Ranges: bytes
Content-Length: 119652
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
www.wboxpanama.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
164.68.99.151200 OK 9.4 kB URL HTTP/1.1 www.wboxpanama.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 164.68.99.151:0
File type ASCII text, with very long lines (5499)
Hash 6faa995f86051533b2cf60d02024de2a
34429dff311fb94cfc5788b2495d93649b67510b
167fc7a5e4b3acd3c4d39a48a9a8623cdb925fb9a6b214746f395f4aa00c2228
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 18:12:27 GMT
Accept-Ranges: bytes
Content-Length: 9393
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2998f7f50ac0eec931c348e8a0fb0c60
f5e411cda74cb7fb4a662f4787e9543b9749c8b5
0c81413a819e379212bf757b1c9469415aec2ac8fdf47f94ff23c420a1da20e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5736
x-amzn-requestid: 895ee89b-8d2e-42f9-a392-466557f8a0d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffEtEGk_oAMFYPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e7ed-026a1b0d79dc7eb572317bd2;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:28:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4yxwz2MFTdpb8I56VVbFU2Zz0qG_uHcYc3aDtn6boQPjhw7UFLLnYw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 10:37:09 GMT
age: 175
etag: "f5e411cda74cb7fb4a662f4787e9543b9749c8b5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.wboxpanama.com/wp-content/themes/porto/js/theme.js?ver=6.5.1
164.68.99.151200 OK 183 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/themes/porto/js/theme.js?ver=6.5.1
IP 164.68.99.151:0
File type ASCII text, with very long lines (10900), with CRLF line terminators
Size 183 kB (182856 bytes)
Hash a9a0e31d02b910959b965d0d1f50fd5e
be331f7ca89dfa91e1c53a10606b86fca748b5d7
1db874c6c5d1274a7e3a7e3ca3c950fd7936342bb4ec45568617bd84303a48b6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/porto/js/theme.js?ver=6.5.1 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:59:08 GMT
Accept-Ranges: bytes
Content-Length: 182856
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
dns.firstblackphase.com/scripts/start.js
159.69.234.10200 OK 1.7 kB URL HTTP/1.1 dns.firstblackphase.com/scripts/start.js
IP 159.69.234.10:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1685), with no line terminators
Hash e8025c2f37df60985c146f189efa904b
6acd32c36a0822a210b267e305821646a42ce3f3
531863f173e405b3149d06c28c9e9b768c18ff354fce7a98f3924d1ddd7e9a60
GET /scripts/start.js HTTP/1.1
Host: dns.firstblackphase.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 10:40:04 GMT
Content-Type: application/javascript
Content-Length: 1685
Last-Modified: Tue, 31 Jan 2023 11:00:07 GMT
Connection: keep-alive
ETag: "63d8f4b7-695"
Expires: Sat, 11 Feb 2023 10:40:04 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
www.wboxpanama.com/wp-includes/js/underscore.min.js?ver=1.13.3
164.68.99.151200 OK 23 kB URL HTTP/1.1 www.wboxpanama.com/wp-includes/js/underscore.min.js?ver=1.13.3
IP 164.68.99.151:0
File type ASCII text, with very long lines (18898)
Hash 76b459281631d030652867401a6141e6
37f9dfde1fc36973eeb16360678756e16b77bbac
58825b7cdeb3d7075511b8c61730634c1de19f51914fd279d9c39d90225e0153
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 18:14:54 GMT
Accept-Ranges: bytes
Content-Length: 22675
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
www.wboxpanama.com/wp-content/themes/porto/js/libs/jquery.magnific-popup.min.js?ver=1.1.0
164.68.99.151200 OK 24 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/themes/porto/js/libs/jquery.magnific-popup.min.js?ver=1.1.0
IP 164.68.99.151:0
File type ASCII text, with very long lines (20135)
Hash 35a4c2b7e63e4220af142d33dd352655
4306f6b084775eb8920585a950b42a9e0565df0d
777dc19ec9c374cee23cfea632174312bee44d73bc0a1b2c2072af60ef4679f0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/porto/js/libs/jquery.magnific-popup.min.js?ver=1.1.0 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:59:08 GMT
Accept-Ranges: bytes
Content-Length: 24006
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.wboxpanama.com/wp-includes/js/wp-util.min.js?ver=6.0.3
164.68.99.151200 OK 5.1 kB URL HTTP/1.1 www.wboxpanama.com/wp-includes/js/wp-util.min.js?ver=6.0.3
IP 164.68.99.151:0
File type ASCII text, with very long lines (1327)
Hash 4ec4e7c0717f2a8a351a01e3fd45bef2
18c336f5bb08c60f7d7c6f67bd83acb9c83f1bec
d2fa4c2f59f2f7cbc376ecde8d2b58b7dfce4e165bdefe619dd80eb0131f6b27
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-util.min.js?ver=6.0.3 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 18:14:34 GMT
Accept-Ranges: bytes
Content-Length: 5104
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
www.wboxpanama.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=7.0.0
164.68.99.151200 OK 18 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=7.0.0
IP 164.68.99.151:0
File type ASCII text, with very long lines (13909)
Hash e0206b7551c7cd4647ce8c07903c727a
f561ed7dbfebccd98fb825802b1933b58d3a2654
d63a8425d488cecbdc695b8d8e35c723961b242c5771f663defee2ab1ac0d1d6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=7.0.0 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:08:50 GMT
Accept-Ranges: bytes
Content-Length: 17651
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
www.wboxpanama.com/wp-content/plugins/js_composer/assets/lib/vc_carousel/js/transition.min.js?ver=6.9.0
164.68.99.151200 OK 4.6 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/js_composer/assets/lib/vc_carousel/js/transition.min.js?ver=6.9.0
IP 164.68.99.151:0
File type ASCII text, with very long lines (641)
Hash a40804b0dc9052ae6aecaad34cef2907
d601a0c4720cd6f4ae1b3470ccb9413173aa4fb0
656554c2a0fe9fbe7080f27932db4e31c6305c4e01241b3b18355e5d38453011
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/vc_carousel/js/transition.min.js?ver=6.9.0 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:44:11 GMT
Accept-Ranges: bytes
Content-Length: 4602
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
www.wboxpanama.com/wp-content/plugins/js_composer/assets/lib/vc_carousel/js/vc_carousel.min.js?ver=6.9.0
164.68.99.151200 OK 14 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/js_composer/assets/lib/vc_carousel/js/vc_carousel.min.js?ver=6.9.0
IP 164.68.99.151:0
File type ASCII text, with very long lines (9579)
Hash 8c17c9be95f03f541fb32eec7e91cfe7
1c2d1f10635b6f21708d4a8fb1b543000cc81cdc
82f17f1208b2a11b218ba610405edfe6f5252ec729cda35638fd7f5f6fc9725b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/vc_carousel/js/vc_carousel.min.js?ver=6.9.0 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:44:11 GMT
Accept-Ranges: bytes
Content-Length: 13540
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.wboxpanama.com/wp-content/plugins/yappy-bg-para-woocommerce//assets/bg-payment.js?ver=6.0.3
164.68.99.151301 Moved Permanently 0 B URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/yappy-bg-para-woocommerce//assets/bg-payment.js?ver=6.0.3
IP 164.68.99.151:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/yappy-bg-para-woocommerce//assets/bg-payment.js?ver=6.0.3 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 301 Moved Permanently
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.wboxpanama.com/wp-content/plugins/yappy-bg-para-woocommerce/assets/bg-payment.js?ver=6.0.3
Content-Length: 0
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.wboxpanama.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/js/lightbox.min.js?ver=6.9.0
164.68.99.151200 OK 15 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/js/lightbox.min.js?ver=6.9.0
IP 164.68.99.151:0
File type ASCII text, with very long lines (10796)
Hash 17877631d1bd97ab507517d375dd8d94
ca348ab14ae4e409ee1c05bb68cd0d6ae688518d
f62c22028664e41c2662aacb0a5a35180f0e16ad256b2f270e22cc7599398ef6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/lightbox2/dist/js/lightbox.min.js?ver=6.9.0 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:44:11 GMT
Accept-Ranges: bytes
Content-Length: 14757
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.wboxpanama.com/wp-content/plugins/user-registration/assets/css/user-registration-smallscreen.css?ver=2.2.3
164.68.99.151200 OK 655 B URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/user-registration/assets/css/user-registration-smallscreen.css?ver=2.2.3
IP 164.68.99.151:0
File type ASCII text, with very long lines (655), with no line terminators
Hash 0fa8061dafcac2faf261c55befe05c4f
bf4d702650bdc9718b1db9387778e6e0a80c3a17
15f177a5fa69fdd925de2e53a03ad289d7497ad0a98e68c0b1e409ea1d54cbaa
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/user-registration/assets/css/user-registration-smallscreen.css?ver=2.2.3 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:08:38 GMT
Accept-Ranges: bytes
Content-Length: 655
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/css
www.wboxpanama.com/wp-content/uploads/2020/08/logistics-75x75.png
164.68.99.151200 OK 4.5 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/uploads/2020/08/logistics-75x75.png
IP 164.68.99.151:0
File type PNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash 879b56cf4efe550cffa66f054658fe44
1407bb228a45ed23a8c01941f20e7bd7aa2455cc
084a97f21eecbeb88b4ad6dd44dc727bd867265784e27bcd76daa5083d3fd417
GET /wp-content/uploads/2020/08/logistics-75x75.png HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Sat, 16 Jul 2022 19:55:47 GMT
Accept-Ranges: bytes
Content-Length: 4485
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/png
www.wboxpanama.com/wp-content/uploads/2020/08/food-delivery-75x75.png
164.68.99.151200 OK 3.7 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/uploads/2020/08/food-delivery-75x75.png
IP 164.68.99.151:0
File type PNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash 901f77854ce8dec204449693d04b915a
4ad95a8c68e71cd919a60d0eb77255cf5beba6da
4eb420a48a791cfd3a1aadb26d211a72d15e625e32a00403eec72d159a023964
GET /wp-content/uploads/2020/08/food-delivery-75x75.png HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Sat, 16 Jul 2022 19:55:47 GMT
Accept-Ranges: bytes
Content-Length: 3683
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
www.wboxpanama.com/wp-content/uploads/2020/08/pay-75x75.png
164.68.99.151200 OK 3.5 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/uploads/2020/08/pay-75x75.png
IP 164.68.99.151:0
File type PNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash f126d065897999fbd19c645c629e2bad
0a6910a78ebb58a42e23a318f88deb04b9f42372
6aa4178d42496d90e51aff0945278c2e06a4fe9d8217b7b4aaa4350ec9fb2d1c
GET /wp-content/uploads/2020/08/pay-75x75.png HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Sat, 16 Jul 2022 19:55:47 GMT
Accept-Ranges: bytes
Content-Length: 3462
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
www.wboxpanama.com/wp-content/uploads/2020/08/white.png
164.68.99.151200 OK 13 kB URL HTTP/1.1 www.wboxpanama.com/wp-content/uploads/2020/08/white.png
IP 164.68.99.151:0
File type PNG image data, 840 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash f6a7f32f104e44d5f727ba58e4747564
081e0dcf091c8b360674f4c61d78b73e860f7d98
d2b365c404b3a71eff227b91d48d90f722cb16cc7dfc864f86e7b73aaa5e274d
GET /wp-content/uploads/2020/08/white.png HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Thu, 06 Aug 2020 02:27:04 GMT
Accept-Ranges: bytes
Content-Length: 13350
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 436f7183d835791e7c54d994b71fe4e1
0855518b0bfd4e358af6b821bc59f777212a8f93
a0b9c95175db36f39a9d490ed5b61645e60e2bbd567cff5abe89981a520faa0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0B9C95175DB36F39A9D490ED5B61645E60E2BBD567CFF5ABE89981A520FAA0D"
Last-Modified: Tue, 31 Jan 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18278
Expires: Wed, 01 Feb 2023 15:44:43 GMT
Date: Wed, 01 Feb 2023 10:40:05 GMT
Connection: keep-alive
away.firstblackphase.com/scripts/take.js?vr=1.8.2
194.135.30.40200 OK 1.9 kB URL HTTP/2 away.firstblackphase.com/scripts/take.js?vr=1.8.2
IP 194.135.30.40:0
ASN #2856 British Telecommunications PLC
File type ASCII text, with very long lines (5003), with no line terminators
Hash c8c31cd26e95420cbe4dfd36826fe208
275c7b43685f0bbfac0d63aa41823b08fea17110
e14b73b1a782e8c7cf1ae1704197d3d9e0032eb6a57259df49219d190ba08b43
GET /scripts/take.js?vr=1.8.2 HTTP/1.1
Host: away.firstblackphase.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 10:40:05 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 31 Jan 2023 11:04:27 GMT
vary: Accept-Encoding
etag: W/"63d8f5bb-138b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=15768000;
content-encoding: gzip
X-Firefox-Spdy: h2
store.firstblackphase.com/follow/give.php?id=93953945-77-345376456-23&qid=8568&wid=76538&kid=863843534&suid=795897689
194.135.30.210200 OK 463 B URL HTTP/1.1 store.firstblackphase.com/follow/give.php?id=93953945-77-345376456-23&qid=8568&wid=76538&kid=863843534&suid=795897689
IP 194.135.30.210:0
ASN #2856 British Telecommunications PLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash f4fb5fcef40258813aadd804bd4e3fe4
a72595e9df38169458504f2b2e1c94e21a328223
c3496a3c77c6eeab755de66198ba494da1fb5cd8ecffb2de10cb9d5c41028538
GET /follow/give.php?id=93953945-77-345376456-23&qid=8568&wid=76538&kid=863843534&suid=795897689 HTTP/1.1
Host: store.firstblackphase.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.wboxpanama.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 10:40:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Content-Encoding: gzip
domainassetmanager.de/myred/search108.php?src=HTA-Tier1-DWC&utm_publisher=EZ46KGZE6R
78.46.155.196200 OK 338 B URL HTTP/2 domainassetmanager.de/myred/search108.php?src=HTA-Tier1-DWC&utm_publisher=EZ46KGZE6R
IP 78.46.155.196:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash b548c0c97bbae5ae001e5610fe32c8aa
4ec1fde8850d276b5bd177dc909fa4eef52dc1e7
661584164d3c8c1c7d8c624ed123e64aeb892fee998ac7ab05e4eb9d2179727d
GET /myred/search108.php?src=HTA-Tier1-DWC&utm_publisher=EZ46KGZE6R HTTP/1.1
Host: domainassetmanager.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
referrer-policy: no-referrer
x-mod-pagespeed: 1.14.36.1-0
cache-control: max-age=0, no-cache
vary: Accept-Encoding
content-encoding: gzip
content-length: 338
content-type: text/html;charset=utf-8
date: Wed, 01 Feb 2023 10:40:07 GMT
server: Apache
X-Firefox-Spdy: h2
listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
172.67.223.14200 OK 2.0 kB URL HTTP/1.1 listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
IP 172.67.223.14:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (446)
Hash 6164326033120991fa8c5b36bacca6df
e628655fce1b695ae6d88a97fe985ea9b48fe6a0
44909c73f7160e4683843bfee11d76bd0e4eee88718ed03f648adaa4cd884fa2
GET /?c=&session=124ca80c46666bfde2b005e72c14e8ab HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
CF-Cache-Status: DYNAMIC
Server-Timing: cf-q-config;dur=6.0000002122251e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J4PoQaYnuGPRldC8Bo2gpc0eBUM%2B6uR4j4XnVSvAwBkU64lGLUXCe8NGpJavoXotRKhPpDS%2FyOnr0%2Bp4k76mmWt%2B5V%2BQ0Hnwt0m9fK9%2BGbCUoyE42ZdV1l7sx3sPRxHfSlc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792a11325b55b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/fonts/jost/stylesheet.css
172.67.223.14200 OK 231 B URL HTTP/1.1 listingsdir.com/fonts/jost/stylesheet.css
IP 172.67.223.14:0
File type ASCII text, with CRLF line terminators
Hash 1338bcafdbdfe2717566bd82c9932ed8
e6717d53814a6dda61ec4b58c5a0a744051d7722
a02fce8cefac0051a9ed7385b4405da10b1e5aededcf51bae4108112747ed5db
GET /fonts/jost/stylesheet.css HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:41:14 GMT
ETag: W/"60c99d0a-499"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=5.0000016926788e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xe6yAFVlidS0wCF5L3NGgVZKJBr4SdWbnCklT9JV8mmwUywDhVhpNKm71MGEUPb1nZ%2FfzUuWA7AsG%2Bgc7TibU9vaHlBwNl7JJ8H4VLfCivIDe7mNIcqO6kcZXdSmqls1oi0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11345e4cb517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/libs/quilljs/css/quill.bubble.css
172.67.223.14200 OK 3.7 kB URL HTTP/1.1 listingsdir.com/libs/quilljs/css/quill.bubble.css
IP 172.67.223.14:0
File type ASCII text, with CRLF line terminators
Hash 5b95895bcd12b15262697d8a86258250
35ff284694324b630c2b41857c7367d2d764d49c
2e3a189c2054b0a643e98e077297e7c8c58fe179031bc65d313266b0bc8cf2b3
GET /libs/quilljs/css/quill.bubble.css HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:41:18 GMT
ETag: W/"60c99d0e-6671"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=6.0000002122251e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b3romFVzUAQEsLDBuN4QY1d9%2B7enPrfqYgbJkeuqD2TbbGgc8RlyUDKuAkLyr18OkfMb1ycSqxdg%2FCJhdo4svz%2FNKbJxQHm6FEQRseuj2gPgaBADc733%2BYZSTt91QpyQP%2B8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11346e56b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/libs/fontawesome-pro/css/fontawesome.css
172.67.223.14200 OK 11 kB URL HTTP/1.1 listingsdir.com/libs/fontawesome-pro/css/fontawesome.css
IP 172.67.223.14:0
File type ASCII text, with very long lines (56015), with CRLF line terminators
Hash 6d778fd2bd331da117a5d386a2d86eb5
c2783a5c690b52f22e22727eceab6bc55c02e5e9
1f60ff8d14f370ca7c958a5462bbb1b7059bafe81332bbd3aadc1152aaed9af2
GET /libs/fontawesome-pro/css/fontawesome.css HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:41:50 GMT
ETag: W/"60c99d2e-db61"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=7.0000005507609e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BHomNM66Fe68k5xjcckNYF5YWriaPdPeUTvrUQOkrYEfYjhEBPGQF%2BL4IQpbiswTljKTBHcBqtVasVhnW7HbwSKijG62Nu6fCRxSXapZVN4v4jXi1PEO%2Fac5JQYd2ULexl8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11345da90b31-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/libs/slick/slick.css
172.67.223.14200 OK 577 B URL HTTP/1.1 listingsdir.com/libs/slick/slick.css
IP 172.67.223.14:0
File type ASCII text, with CRLF line terminators
Hash c301e00688c2fca4e0a37a64375c229d
c84c79750ceb4338e9cf391880e8f6878c2edf0e
6ce221700180ab26b1d925d76fba6cc9d356d9313316fe6e76d41db6ab6b3c7a
GET /libs/slick/slick.css HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:41:26 GMT
ETag: W/"60c99d16-765"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=4.9999998736894e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oF4Jtxq0JWJBKSJReepwtrkr1VoOk0lj7Jl%2FbgCTZBgeAi0041%2FV0lAj5IQqiDrpKr%2BW1tZy4SEnMdsVhmKc4pkGwEsRFQJ0gGpF9VTaMwTEr1atFQSuKZJvLfzNPgCGg8Q%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11346c6ab521-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/libs/bootstrap/css/bootstrap.min.css
172.67.223.14200 OK 20 kB URL HTTP/1.1 listingsdir.com/libs/bootstrap/css/bootstrap.min.css
IP 172.67.223.14:0
File type ASCII text, with very long lines (65313), with CRLF line terminators
Hash 73f280bf2369bbe294636ecfc8e74fa1
160bf3d32704012572980be0180570a6b40126dc
67b7b3d13ddea3e6a623ccb867f4baa62f9d636d2754851c947ca7121b631c83
GET /libs/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:41:32 GMT
ETag: W/"60c99d1c-22b3e"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=3.9999995351536e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WjMXBKso8cPTxZmksLYLuSJmRht6wgr%2FHQZdMwS0n2I1jGv7V2yZyv7xpTCBxikw%2BblYKILQLcDTeq56f0PCWZT%2BdXEMJLqkrrPJnjfFfZD3zAUenPEuPRvi5Tk%2FH1YAMYg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11346ed7b503-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/libs/slick/slick-theme.css
172.67.223.14200 OK 876 B URL HTTP/1.1 listingsdir.com/libs/slick/slick-theme.css
IP 172.67.223.14:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 15e8ea90d520336b9d17d1fa65303f4b
39c628b691fe76f19825027cdb8be4d49639a8bb
f90f503b61853c3c3dbe6a57c89602e6588ddc016ed0afdc4b7d666d0c668f63
GET /libs/slick/slick-theme.css HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:41:28 GMT
ETag: W/"60c99d18-d13"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=3.9999995351536e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FXjnNGCudGQHNreJ5lktNeOqM4IaKaUetGTMV44dwuxfmccajvsvf8eDidkgIrRfraTxSzSe%2FejQolN0D68ZPXpDPSgc3iZNrqTc0nGDsLOjPLBLZx6WPMzuBBpij3M8DM4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11346c181bfe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/libs/quilljs/css/quill.core.css
172.67.223.14200 OK 1.6 kB URL HTTP/1.1 listingsdir.com/libs/quilljs/css/quill.core.css
IP 172.67.223.14:0
File type ASCII text, with CRLF line terminators
Hash dbccdaaf3f3f810d84b0520c1c4b7c4d
001e8959051919fa234288f98402fbace03c72df
d06777a7b78898ed14f448e8453a9c7c4eb7cb9db7ce9bf877adffa7a6070351
GET /libs/quilljs/css/quill.core.css HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:41:20 GMT
ETag: W/"60c99d10-24c9"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=6.0000002122251e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jIz0Fx0K3gBzJHvh8w9gJcig17gY%2FRYH34SwMLKi1zULDacr1Iheo4A4e1sGd7W3bB09aunZr53WBRaFIjF2Ucmu7pAw4UXe63BMJLWkgXs%2B1s6nsXpWQc4TawuCT2YNavg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11347e7ab517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/libs/chosen/chosen.min.css
172.67.223.14200 OK 2.3 kB URL HTTP/1.1 listingsdir.com/libs/chosen/chosen.min.css
IP 172.67.223.14:0
File type ASCII text, with very long lines (9850), with CRLF line terminators
Hash aeeb10881e2b72b84820af36646e75d4
eb24c27f4fe425236e17b52f489827b0fe2c3d93
99cf39cab9e26309baa14e7bbb0c727440ed36a28812aa5fdf4aa7c4ddb7b753
GET /libs/chosen/chosen.min.css HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:42:40 GMT
ETag: W/"60c99d60-27f6"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=4.9999998736894e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kxZVxI8cF4v0i9sl20UZ0LCn88bZzfxF6vmYTIpEsmUk8B2L6WXMAG2odNkG5WZu%2FGm2E5KKnbqCJBHFzD%2BwaJhgeLy7OENP6em8XZ7mpngu1FMwqG%2BR1cD2lOE1GPoHhTA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11347c80b521-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/libs/venobox/venobox.css
172.67.223.14200 OK 2.2 kB URL HTTP/1.1 listingsdir.com/libs/venobox/venobox.css
IP 172.67.223.14:0
File type ASCII text, with very long lines (6970)
Hash 6b43e8a428baf14f6f5184987615674e
08bb547e93d169ed6596dad3d60057fb68461c05
c16565c439785ad8d9b27e647fc96719c325ec13de160be16a6522dbab0fc9ca
GET /libs/venobox/venobox.css HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:41:50 GMT
ETag: W/"60c99d2e-2cbd"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=4.9999998736894e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mfGzndUaX6DfyAFrayJRlLM0EBeMaeHOY1us4HKJwUIp%2BFfG3oERWbEvF7aTXYiuqWUaQkSaHQizGCiHPn9lBoLLX134KK0DZhovd0kghoZbe%2BLklFwj457MG5cp9O0iZss%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11347c241bfe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/libs/line-awesome/css/line-awesome.min.css
172.67.223.14200 OK 16 kB URL HTTP/1.1 listingsdir.com/libs/line-awesome/css/line-awesome.min.css
IP 172.67.223.14:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 699655f70d21c013c51ca4f9d082bf7d
b6b306a360e63c277fb3e0d1af8605faef5cfc59
e4dafec4dbafcbd1696c01b881663d37c2aba14f377174d152d45dc7bf7a1a89
GET /libs/line-awesome/css/line-awesome.min.css HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:42:56 GMT
ETag: W/"60c99d70-15e82"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=6.0000002122251e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ynmyp63wtHXQn0XaSmwXQHeElciFi0MkUJ%2Fcuj7A6TpMCv1pqunGnquEuY1Qc2lJlkXEtT2FEJQ2NM44oHDge7Y3EkHmqK7F7c5R3GwqL7cl2k70UCP8ofduE8irZ1lOO7M%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11345c8db4fa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/libs/quilljs/css/quill.snow.css
172.67.223.14200 OK 3.6 kB URL HTTP/1.1 listingsdir.com/libs/quilljs/css/quill.snow.css
IP 172.67.223.14:0
File type ASCII text, with CRLF line terminators
Hash fde459647a362adf1904da826f5b51b3
efd9b223fe84feff78529482812dcba6cf7ef177
8521b10ca90e33eceb4544d3e5f6166e5692f9d93bf2d4c91cf642277351389d
GET /libs/quilljs/css/quill.snow.css HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:41:20 GMT
ETag: W/"60c99d10-6458"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=7.0000005507609e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0BIIIPLnNwu1KDNSKqBMhtIQTvhBes57%2BI81COtmLoI%2Buibvd4bYJXt1BFUdXlQ%2FcrSkA3P5KpcJqt5z6c%2FuPPZrvZFt2cNpQL6DzuLhbYdnj7OCKGehPEtb0jEzuJShDEA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11347dea0b31-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/libs/datetimepicker/jquery.datetimepicker.min.css
172.67.223.14200 OK 4.5 kB URL HTTP/1.1 listingsdir.com/libs/datetimepicker/jquery.datetimepicker.min.css
IP 172.67.223.14:0
File type ASCII text, with very long lines (16502), with CRLF line terminators
Hash b2dd17d998652fde3958294037648916
bfbebe83e8b00cde924c7daa1a4aea86f194aa42
e2a8649c7688ce3e13c866dce2eb147a8de2d83bb8e0b3a2934dc97ec95b2bec
GET /libs/datetimepicker/jquery.datetimepicker.min.css HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:41:28 GMT
ETag: W/"60c99d18-4078"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=4.9999998736894e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cVajwxsp3HEaDza8W6G4uowjMdiVJMOF1qNqwjJ6djWcpmKtd3%2Fd6srSYJT72G3fkIWxHr2a%2FvJuraIYIpEdbQk899uaE7xHJZreD1NwvWxSyKHMsguFYUGB2gWxCS50EjQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11347efcb503-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/css/responsive.css?123s
172.67.223.14200 OK 7.0 kB URL HTTP/1.1 listingsdir.com/css/responsive.css?123s
IP 172.67.223.14:0
File type ASCII text, with CRLF line terminators
Hash 8a1c0daac7e4e8e98938a8f509cf5c65
0fbe0993996fbf8cd4aaf03150b7146c9b7adec3
8f00d46c1dd6cfd26dca5676924008d8b3e956791dbf7a8d7b8fab82d4191dec
GET /css/responsive.css?123s HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:36:46 GMT
ETag: W/"60c99bfe-a004"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=6.0000002122251e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1BF5DP6oxUzvM2HV42T0QZRk%2BBN4IEXHR%2B24oVzIZ9M9AD%2F69YDXW2EmxWRAEN2yr8bf1YySqEx9sk5d67uFsDiZeU0z1jYJpFSowFuNAGBVN%2BV7ITUK2QsahrUoz2Y4Pm8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11348c8db521-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/css/style.css?asd
172.67.223.14200 OK 26 kB URL HTTP/1.1 listingsdir.com/css/style.css?asd
IP 172.67.223.14:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash cd01170c6261aeab7d44148eed883df0
5a71c3f6d6b49aa8856add54177d7d3ba3db359a
7eb54fab4f11b36622d259a0c641d510758ab50abe777b7b5310808f7a3351a5
GET /css/style.css?asd HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:36:50 GMT
ETag: W/"60c99c02-2d527"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=5.9999983932357e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cG1pPR96NUvck9FL0VO7x1aRM30c2qaCiOctZLlKHlAF1DAHe6B42IiRofXdXXbqjDVZJGWz44t1nBIJr66CtWzXST9InSx8d2sVAPwCC9mohL5BpLFl4wim9wh277QXS44%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11347e99b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/libs/popper/popper.js
172.67.223.14200 OK 21 kB URL HTTP/1.1 listingsdir.com/libs/popper/popper.js
IP 172.67.223.14:0
File type ASCII text, with very long lines (337), with CRLF line terminators
Hash d6d5d1df08093b73e5cfec1e0149309f
b710b1448693f923ff1d78ae1ff476f80218a420
92d5c1066ccf3be9107d6be72a0dafecf77b871a859e7ba0505b2c322a16c7df
GET /libs/popper/popper.js HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:41:18 GMT
ETag: W/"60c99d0e-14631"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=6.0000002122251e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U74xDcz53L8p8j7jayQYuVphWyrNevh14ezeJdw%2Bj5agdhnTx%2BpQ3r70JT1imueFfLkQNT3OmBIVTxq35gQip%2B7JOgCXp6eJ%2F1IMFDdZFHH89n4adyXliYKwcu%2FIgAVGr1o%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11348cccb4fa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/libs/bootstrap/js/bootstrap.min.js
172.67.223.14200 OK 13 kB URL HTTP/1.1 listingsdir.com/libs/bootstrap/js/bootstrap.min.js
IP 172.67.223.14:0
File type ASCII text, with very long lines (48600), with CRLF line terminators
Hash c1e35004d80e0de6fdf812b3f4d4ac8e
cfab62a872960d9cdd1278882fc21cfa3c536bda
f49d272a23b1655dd46c1e86822537b7ec885129a5fd8136780e58b78aee9bca
GET /libs/bootstrap/js/bootstrap.min.js HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:41:32 GMT
ETag: W/"60c99d1c-bed4"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=3.9999995351536e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nD430ggXeCrpfubI0ZnOrW7g99Dg1ogdnqnSuVNjAuz%2BM77tuUsXi8ZTW83eDa37CypVkE7UhZC78GRVTgisMRteGAdF8ObB6KT4gYD8TSx9VKMy8rhuhVAM3pIv3JJSYwA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11348e220b31-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/libs/slick/slick.min.js
172.67.223.14200 OK 11 kB URL HTTP/1.1 listingsdir.com/libs/slick/slick.min.js
IP 172.67.223.14:0
File type ASCII text, with very long lines (32026), with CRLF line terminators
Hash 486d65f2e1db24edc5a9321a364a5cfb
0eb79ed37cbc4f7bc7aa3bc03fa20eed978ee649
e18ad6b9a377680659a9580402121ba9b5c666541185a2c618eb0aae30b58f29
GET /libs/slick/slick.min.js HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:41:26 GMT
ETag: W/"60c99d16-ab7a"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=7.0000005507609e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2dwnXOZ2AtKOMkrpNO8a2EjT2X82LRUaZPhXokQ0e6nC%2B1W%2Bo0KqXPr%2BE7X7Wfe59dm8xk2fh6iHPCvi0aEr0YWCGG9lD1Sludr9WIdshDITDezuOjxgiA5V4%2Bei1hKDri4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11348f12b503-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/js/jquery-1.12.4.js
172.67.223.14200 OK 88 kB URL HTTP/1.1 listingsdir.com/js/jquery-1.12.4.js
IP 172.67.223.14:0
File type ASCII text, with CRLF line terminators
Hash f9c34ddeb06e7338f2cee0ced4da49b8
d37595a150ab63e0915c371e48f851876fd117df
b736148703f99d4a70dec4d324e5f90dbbb5bfcc33583351b7751f0dabe3c8cb
GET /js/jquery-1.12.4.js HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:37:06 GMT
ETag: W/"60c99c12-4a534"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=3.9999995351536e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oi2%2F%2BjCYODFF29khs2u42kFqr%2BRLtgOC8IWZJFppKiq0JzhSOt77O4Fyz3hvVhRXs9GMcYgQ11HavgOh8pb%2FWrX6u%2Fu5D3inWYwloZnUzSAmY8C3SeCFFVlY87qLamyW4cg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11348c2a1bfe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/libs/slick/jquery.zoom.min.js
172.67.223.14200 OK 1.2 kB URL HTTP/1.1 listingsdir.com/libs/slick/jquery.zoom.min.js
IP 172.67.223.14:0
File type ASCII text, with very long lines (2550), with CRLF line terminators
Hash b245b5c7da24e6af58c601bb5b84b065
89b1cb4dc7039d92f62432bc66d36a1ba6fccad0
56743d90b0de3fbcaecc13caea284093a690f74fc49ddc071a5a20ae25450586
GET /libs/slick/jquery.zoom.min.js HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:41:28 GMT
ETag: W/"60c99d18-a40"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=4.9999998736894e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y6FeNPHcVnOb%2FAvJlszVzLiGYCm2%2BBL1ENpUhtUub7sg1%2FLgkMqs2p1Ro52bQD3BpTGlRtFenFd2C08kU%2FJoVuYp1jFsrn2mMwcfsqCda%2B4Y6Tv8TLB4o5TINQcaepmw18M%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11349c9cb521-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/libs/venobox/venobox.min.js
172.67.223.14200 OK 3.5 kB URL HTTP/1.1 listingsdir.com/libs/venobox/venobox.min.js
IP 172.67.223.14:0
File type ASCII text, with very long lines (9498)
Hash d7bfe70a3166bec758b287ee121e7c07
2f0648f5547cac7c6e22acfe9863f694ff009d00
7e9dc59559573772b7c9a31d08422d5ed34d0ccaa3aee281ca50f111f5809d76
GET /libs/venobox/venobox.min.js HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:41:50 GMT
ETag: W/"60c99d2e-263a"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=4.9999998736894e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YGbfv%2F%2FAWoaLBbgL5y%2BThrOC02%2BrqFGVmXONguXJ%2BvxqwaG6bfWePklRfzCaWgswdhZDOkzw%2BHz7Qo4D4Xb8lRXOpnJCG5Tlh9ewqsUXhcAVzl9Yl6J55nv%2FLRqqQ2JGDDc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11356d95b521-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/libs/chosen/chosen.jquery.min.js
172.67.223.14200 OK 6.6 kB URL HTTP/1.1 listingsdir.com/libs/chosen/chosen.jquery.min.js
IP 172.67.223.14:0
File type ASCII text, with very long lines (28999), with CRLF line terminators
Hash 56e7f2cddc22519e8ec51b0eff4cf4f3
f6ad4e8cf619ae8725ac190dd6d14d7f70032aa0
a44ad3eea46f620b46a27f06e3178ef6040f1638eb4e7c2c50acea1395359225
GET /libs/chosen/chosen.jquery.min.js HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:42:38 GMT
ETag: W/"60c99d5e-71c3"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=6.0000002122251e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GMm1%2BAfYc8ovf6SZ6DstENIJmdfJEIyZ%2BhRbc5iAGiLbgwfzjYY9LTuVj96mJo%2FOHqO5Mg8dGWhjOyDkYa561d%2FOreTQYuj%2FslRSWUjUNVC8M%2Fbh9dc4ULw87ScYK0d0%2FiI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11356865b503-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/libs/datetimepicker/jquery.datetimepicker.full.min.js
172.67.223.14200 OK 20 kB URL HTTP/1.1 listingsdir.com/libs/datetimepicker/jquery.datetimepicker.full.min.js
IP 172.67.223.14:0
File type Unicode text, UTF-8 text, with very long lines (57400), with no line terminators
Hash 73449332e6d855e22f73280ff5938313
4acca7224a535b54cb6d00bd20e6e2bed008ac33
5ab9240e7127b7c931b2af90972b32a3a76a20c88aa972d16580743c986ce416
GET /libs/datetimepicker/jquery.datetimepicker.full.min.js HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:41:30 GMT
ETag: W/"60c99d1a-ed93"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=4.000001354143e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZyTR5qv%2BNLtgrATCs%2BPrrgq7vL96o8XTM%2B9lvR0GOuBoNfMciSSGf%2B39bRFmOKBkEK9zrVBHJG2BuFkcw0PBoVzBDtUjQ3eUyFWgTkDMlL50K5wFotsiDe1oGcB2F5lgR1E%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11356cff1bfe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/libs/isotope/isotope.pkgd.min.js
172.67.223.14200 OK 9.8 kB URL HTTP/1.1 listingsdir.com/libs/isotope/isotope.pkgd.min.js
IP 172.67.223.14:0
File type ASCII text, with very long lines (32019), with CRLF line terminators
Hash f644fdf0d57c81a9681e6e471bdf8b53
39eccddb64185bd3113bb0a9b141d3bf79e5fe70
69038e70a64b16dbe4ad07b24a6738c99f1cd0140b90db84578249e40b81abbc
GET /libs/isotope/isotope.pkgd.min.js HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:42:40 GMT
ETag: W/"60c99d60-8a80"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=4.9999998736894e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8oPkJjyo5Se4Y%2B33er2xMHB%2FpYdlaNuYIlmx76ycTFPy2VkouHNaWGoG3K1OZTDvC4JvXYv2JyTxHRjry2jYstNt2EGSuvVXCiPfwXvFTrMuTzK2AnmTKmXKT41LdjnhRdY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11356fc0b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/libs/quilljs/js/quill.core.js
172.67.223.14200 OK 59 kB URL HTTP/1.1 listingsdir.com/libs/quilljs/js/quill.core.js
IP 172.67.223.14:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (664), with CRLF, CR line terminators
Hash 49009a505bf4c2d309bd4118219d72c7
699b60093a7a953c471e6b23df8732632a93a09b
0aa81b591ffc42a86ac5485cc53f2a92653835913744ebaa332c1038c96428ac
GET /libs/quilljs/js/quill.core.js HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:41:26 GMT
ETag: W/"60c99d16-4c0ae"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=4.9999998736894e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=caHkMp112DAeaNwDsFEp%2FsMiFOUrm8q8%2FsqhMjfHofdVPYz19ZtNNpArrzEFLgPR%2Bwxvw5DVW%2FDUpsuEFwUzv3K%2FSxBzCvOdmgYLbIgiRO8zDaIGSaU1ObdsKCcSKZfP5xk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11356e19b4fa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
listingsdir.com/js/main.js
172.67.223.14200 OK 7.8 kB URL HTTP/1.1 listingsdir.com/js/main.js
IP 172.67.223.14:0
File type ASCII text, with CRLF line terminators
Hash a7f3f5db7804b4da4e87ad2d8bd9dcf2
62a0ac57eb2fc6977e577140668f77edff12040a
bb473bbafaa0d6e155f2905aff590f99630a2098f1c1346e378ce8bd71dc6ad1
GET /js/main.js HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:37:00 GMT
ETag: W/"60c99c0c-bdb9"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=6.0000002122251e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jSJX2JjC3M4PNpkVNkCpNFW4qSocOYKyNKaIIv7Ym0AzSYVxGJHvN3q%2FgDraUDHmGM8HqI2RSgiKeziVI9WwxsrXKEv5z5fe0BO566vakc4ZXsqPzyCmoLKcc%2Fa7cl9jHSk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11359890b503-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 488dc37ca418b6250cd23b5bd657f71b
9a54306131e91c1c116a3fd3e0aae8738dc6b9cc
6f3e018f1e24bf580a116d4a68dd57515c2dbfd13f0d7832c8c735f8e9bf5547
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6F3E018F1E24BF580A116D4A68DD57515C2DBFD13F0D7832C8C735F8E9BF5547"
Last-Modified: Tue, 31 Jan 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17470
Expires: Wed, 01 Feb 2023 15:31:18 GMT
Date: Wed, 01 Feb 2023 10:40:08 GMT
Connection: keep-alive
richinfo.co/js/rp.js
46.105.199.75200 OK 1.6 kB IP 46.105.199.75:0
Hash 53b17f9647a8d6feb84fec2b75bd15bd
887dbbf850ad5dacb7e36274f2a89aea998230eb
0dda28f3eeb4487ec52e19157f16b456bed172f0cd980816c86dc7f2d136de56
GET /js/rp.js HTTP/1.1
Host: richinfo.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://listingsdir.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 10:36:29 GMT
last-modified: Wed, 09 Jun 2021 06:49:12 GMT
etag: "60c06468-1450"
expires: Wed, 15 Feb 2023 10:36:29 GMT
cache-control: max-age=1209600
x-request-id: 79134929
content-type: application/javascript
content-encoding: br
x-grace: full
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 1610
X-Firefox-Spdy: h2
listingsdir.com/images/bg/top-banner.png
172.67.223.14200 OK 72 kB URL HTTP/1.1 listingsdir.com/images/bg/top-banner.png
IP 172.67.223.14:0
File type PNG image data, 791 x 423, 8-bit/color RGBA, non-interlaced\012- data
Hash df4f135fb1c96d379cef638ca506c7ea
83af5caedaedc6d2928fd55d2632cea8e9c0fa2a
30cc35d9dd175f73b8fcc418f1925966d2334d3389a76190c368e946244d8084
GET /images/bg/top-banner.png HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: image/png
Content-Length: 72477
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:39:52 GMT
ETag: "60c99cb8-11b1d"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 986
Accept-Ranges: bytes
Server-Timing: cf-q-config;dur=4.9999998736894e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6u6s9i8%2FPYZl3T%2B%2FCyEV8tAF7R8Jc0cFWNzM6ATuKU0d1Iu7OiwRB%2BHkakPoNlC%2BABjoIhN5x%2FAOxo7NngJkTmP2QcSf238kFD7DxxwGTMio8AzaEBa9AnGgFEr1%2F4mpvxI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11373f041bfe-OSL
alt-svc: h2=":443"; ma=60
listingsdir.com/fonts/jost/Jost-Medium.woff2
172.67.223.14200 OK 21 kB URL HTTP/1.1 listingsdir.com/fonts/jost/Jost-Medium.woff2
IP 172.67.223.14:0
File type Web Open Font Format (Version 2), TrueType, length 20668, version 1.0\012- data
Hash 8208b64dd4ea3023cf372049ef21f534
8c5a9f75dc6004c0c3ca061a69b01cbaf7c323f5
cd3d98414c328810975b44f5f8b62fd061b9b5f7c4b21686a0f1d9d1aefbe9ca
GET /fonts/jost/Jost-Medium.woff2 HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://listingsdir.com/fonts/jost/stylesheet.css
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: application/octet-stream
Content-Length: 20668
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:41:14 GMT
ETag: "60c99d0a-50bc"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Server-Timing: cf-q-config;dur=7.0000005507609e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eLJixZHOLbAT258UmZkeaMFGlAz2kzHwL%2Bp9LyTecwKXJ1W2A7Fwyx72shfQHWSEyaKoJ5s%2BHWFNmbU9uzQtaQLZCypS8OjAtoIAmplVPEavIeF9m5GEEuEqFQ6359%2Bv9%2FM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a113738b5b4fa-OSL
alt-svc: h2=":443"; ma=60
listingsdir.com/fonts/jost/Jost-Book.woff2
172.67.223.14200 OK 19 kB URL HTTP/1.1 listingsdir.com/fonts/jost/Jost-Book.woff2
IP 172.67.223.14:0
File type Web Open Font Format (Version 2), TrueType, length 18992, version 1.0\012- data
Hash 3409c0d64be21715c9871d6bee150bfe
e321a275d66693b5c902779b3dcde5f21af66645
157fca2d578fefad6762c3f5ea03ea86e97b2d2434af51f5219aba759699ef65
GET /fonts/jost/Jost-Book.woff2 HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://listingsdir.com/fonts/jost/stylesheet.css
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: application/octet-stream
Content-Length: 18992
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:41:16 GMT
ETag: "60c99d0c-4a30"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Server-Timing: cf-q-config;dur=4.9999998736894e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wsxa9R9dzOucLjNtvDadsxcvdcUpcBTj1t8ngQFSIbQ59RjdxMRHWodtIo3Ki%2FU%2B%2FzyTmOlN9UDjlXqhktU0FnQolwyD%2FLnMa6qpEyKMvfaVkCN2Ui7cCh%2B31rDO0GVgKes%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a113738720b31-OSL
alt-svc: h2=":443"; ma=60
listingsdir.com/libs/line-awesome/fonts/la-solid-900.woff2
172.67.223.14200 OK 97 kB URL HTTP/1.1 listingsdir.com/libs/line-awesome/fonts/la-solid-900.woff2
IP 172.67.223.14:0
File type Web Open Font Format (Version 2), TrueType, length 96752, version 1.0\012- data
Hash 36fc297902c9a2e857858baa6ac25f2c
89d9531c0c70a8751dff83c1917baab1f16a2071
10a68e01209d939afa9318ee71601b0a6e10f025d4cd6d98a492d340b73941fb
GET /libs/line-awesome/fonts/la-solid-900.woff2 HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://listingsdir.com/libs/line-awesome/css/line-awesome.min.css
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: application/octet-stream
Content-Length: 96752
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:43:18 GMT
ETag: "60c99d86-179f0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Server-Timing: cf-q-config;dur=6.0000002122251e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pOGEZqEYU4wbGZ5LL0ZZwRx5Ia2U9Grm4thnQrjYI8MKpgY7JzuRRPytYUTqGnLqsete%2BezUAUNm9F9R0HetqoETapLQwEE5PgLnz4EwxUONTrEIhriwKLPorMeAh5WZZOs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11373b25b503-OSL
alt-svc: h2=":443"; ma=60
listingsdir.com/?session=124ca80c46666bfde2b005e72c14e8ab
172.67.223.14200 OK 894 B URL HTTP/1.1 listingsdir.com/?session=124ca80c46666bfde2b005e72c14e8ab
IP 172.67.223.14:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (527)
Hash 5f0d911357cebf37337f1296adaf6c49
5351161316f20dc32a46895eab4dcf12285b8904
130efbe5315a8036b9d550e330420fb3047441f209a1bd06c2221733c3a6fea1
POST /?session=124ca80c46666bfde2b005e72c14e8ab HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Content-Length: 18
Origin: http://listingsdir.com
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
CF-Cache-Status: DYNAMIC
Server-Timing: cf-q-config;dur=6.0000002122251e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i7AAlAwyx5KmgK1Gz7X9uMl9KZmHQQ1i29TILUcUgDa1StAC2cwd4j812ZEXtEeHR6Sl9DNRLGuiSVuA9EdeVQwWRXpWHgUyn1DjiNqerUvNUNd6G3iynjUSJd1mB8T3I5I%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792a11375f191bfe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
globessl.ocsp.sectigo.com/
104.18.32.68200 OK 471 B URL HTTP/1.1 globessl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash d62228da70c177aa47315e0f00e4a37f
1cbf92ce75ac8dbb1be375023e6185d74e1a26b9
7f9149b37ed6c28a01e09b3d62bb370b567ce367d3bc17352d1c9ea1b47265a5
POST / HTTP/1.1
Host: globessl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:10 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 20:13:40 GMT
Expires: Mon, 06 Feb 2023 20:13:39 GMT
Etag: "1cbf92ce75ac8dbb1be375023e6185d74e1a26b9"
Cache-Control: max-age=465808,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792a113dccceb518-OSL
track.vcdc.com/proceed.php?domain=listingsdir.com&hash=dedec788bf7c271b66c2ccd0d4c3020f&u=eyJkb21haW4iOiJsaXN0aW5nc2Rpci5jb20iLCJkb21haW5faWQiOiIyNDQyNTQ2NyIsImZvbGRlcl9pZCI6bnVsbCwibWlkIjoiMTA4IiwiZmlsdGVyX2lkIjpudWxsLCJhZHZlcnRpc2VyX2lkIjoiMTIxIiwidGFyZ2V0IjoiaHR0cDpcL1wvY2xpY2stdjQuY2VseGtwZGlyLmNvbVwvY2xpY2s/aT0tb0RWKjJSSi1vOF8wIiwiaXBfYWRkcmVzcyI6IjkxLjkwLjQyLjE1NCIsInR5cGUiOiJqYXZhX3JlZGlyZWN0IiwiYmlkIjoiMC4wMTYxMzQifQ==
167.233.8.197200 OK 523 B URL HTTP/2 track.vcdc.com/proceed.php?domain=listingsdir.com&hash=dedec788bf7c271b66c2ccd0d4c3020f&u=eyJkb21haW4iOiJsaXN0aW5nc2Rpci5jb20iLCJkb21haW5faWQiOiIyNDQyNTQ2NyIsImZvbGRlcl9pZCI6bnVsbCwibWlkIjoiMTA4IiwiZmlsdGVyX2lkIjpudWxsLCJhZHZlcnRpc2VyX2lkIjoiMTIxIiwidGFyZ2V0IjoiaHR0cDpcL1wvY2xpY2stdjQuY2VseGtwZGlyLmNvbVwvY2xpY2s/aT0tb0RWKjJSSi1vOF8wIiwiaXBfYWRkcmVzcyI6IjkxLjkwLjQyLjE1NCIsInR5cGUiOiJqYXZhX3JlZGlyZWN0IiwiYmlkIjoiMC4wMTYxMzQifQ==
IP 167.233.8.197:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (523), with no line terminators
Hash 61861ebf1376e63c31d8d33bebad215f
3de70ccfbb2039a60d27d5fe5dba921456305668
32a4b4113779741335eab1d4098ef9db3d8eec0c490fc4b370ec73a4254233a1
GET /proceed.php?domain=listingsdir.com&hash=dedec788bf7c271b66c2ccd0d4c3020f&u=eyJkb21haW4iOiJsaXN0aW5nc2Rpci5jb20iLCJkb21haW5faWQiOiIyNDQyNTQ2NyIsImZvbGRlcl9pZCI6bnVsbCwibWlkIjoiMTA4IiwiZmlsdGVyX2lkIjpudWxsLCJhZHZlcnRpc2VyX2lkIjoiMTIxIiwidGFyZ2V0IjoiaHR0cDpcL1wvY2xpY2stdjQuY2VseGtwZGlyLmNvbVwvY2xpY2s/aT0tb0RWKjJSSi1vOF8wIiwiaXBfYWRkcmVzcyI6IjkxLjkwLjQyLjE1NCIsInR5cGUiOiJqYXZhX3JlZGlyZWN0IiwiYmlkIjoiMC4wMTYxMzQifQ== HTTP/1.1
Host: track.vcdc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 10:40:10 GMT
content-type: text/html; charset=utf8
content-length: 523
cache-control: no-cache, must-revalidate
content-encoding: none
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
listingsdir.com/cdn-cgi/rum?
172.67.223.14204 No Content 0 B URL HTTP/1.1 listingsdir.com/cdn-cgi/rum?
IP 172.67.223.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
Content-Length: 520
Origin: http://listingsdir.com
Connection: keep-alive
HTTP/1.1 204 No Content
Date: Wed, 01 Feb 2023 10:40:10 GMT
Connection: keep-alive
access-control-allow-origin: http://listingsdir.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
Server: cloudflare
CF-RAY: 792a113fff1e1bfe-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
track.vcdc.com/favicon.ico
167.233.8.197200 OK 0 B URL HTTP/2 track.vcdc.com/favicon.ico
IP 167.233.8.197:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: track.vcdc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://track.vcdc.com/beam.php?tcid=&target=aHR0cDovL2NsaWNrLXY0LmNlbHhrcGRpci5jb20vY2xpY2s/aT0tb0RWKjJSSi1vOF8w&hash=c0be6bc7cad67c54226455732c6ab7e3&m=MTA4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 10:40:10 GMT
content-type: image/x-icon
content-length: 0
last-modified: Wed, 11 Sep 2013 08:44:06 GMT
etag: "52302d56-0"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
accept-ranges: bytes
X-Firefox-Spdy: h2
www.wboxpanama.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.20
164.68.99.151200 OK 0 B URL HTTP/1.1 www.wboxpanama.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.20
IP 164.68.99.151:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.20 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 21:10:33 GMT
Accept-Ranges: bytes
Content-Length: 391988
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.wboxpanama.com/wp-content/themes/porto/js/theme-async.js?ver=6.5.1
164.68.99.151200 OK 0 B URL HTTP/1.1 www.wboxpanama.com/wp-content/themes/porto/js/theme-async.js?ver=6.5.1
IP 164.68.99.151:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/porto/js/theme-async.js?ver=6.5.1 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:59:08 GMT
Accept-Ranges: bytes
Content-Length: 103690
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
arctic-farmer.com/b/3/V.0YPo3bpgvbb/mvV/JsZmDz0o0-NOTccyyRMrjDA/w/LLTTQX1eNezvIDy/MxDwER
188.72.219.35200 OK 0 B URL HTTP/2 arctic-farmer.com/b/3/V.0YPo3bpgvbb/mvV/JsZmDz0o0-NOTccyyRMrjDA/w/LLTTQX1eNezvIDy/MxDwER
IP 188.72.219.35:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /b/3/V.0YPo3bpgvbb/mvV/JsZmDz0o0-NOTccyyRMrjDA/w/LLTTQX1eNezvIDy/MxDwER HTTP/1.1
Host: arctic-farmer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://store.firstblackphase.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 10:40:06 GMT
content-type: text/html;charset=UTF-8
vary: Accept-Encoding
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
x-frame-options: DENY
referrer-policy: no-referrer
p3p: CP="CUR ADM OUR NOR STA NID"
last-modified: Wed, 01 Feb 2023 10:40:06 GMT
set-cookie: kadCCap=222582:1:1674318856;219484:1:1667715065;171526:1:1673628579;235975:1:1675248006;218665:1:1673777741;194136:1:1675008656;222555:1:1671433227;215297:1:1674141027;223642:1:1674763884;219047:1:1667194435;219652:1:1669330335;223454:1:1674804841;220335:1:1670435916;212269:1:1675220948;221398:1:1674769535;218693:1:1669515516;222775:1:1674305361;199455:1:1668245056;79610:1:1674135009;184246:1:1673859446;220790:1:1668460505;221352:1:1670163762;222513:1:1671568408;132751:1:1675084242;223255:1:1670393482;101716:1:1672946010; max-age=1706784006; path=/
kadACap=458498:1:1672536671;449523:1:1670210030;410252:1:1674308810;444748:1:1669841678;407100:1:1668246232;445506:1:1669286676;462327:1:1673736144;320498:1:1674924381;446531:1:1669270846;346327:1:1675197874;451147:1:1674036929;424441:1:1674948590;469907:1:1674927295;470673:1:1674289452;410256:1:1674039938;456883:1:1671781891;450649:1:1674026353;446498:1:1671420411;451724:1:1669565807;460384:1:1674927276;458041:1:1670526590;445788:1:1669918420;446720:1:1673953397;419297:1:1675156199;451139:1:1673951585;424443:1:1674359547;419301:1:1674188761;401659:1:1674332133;442019:1:1675112111;419295:1:1674030439;465201:1:1674236409;419321:1:1674357365;444785:1:1671894608;383700:1:1675240028;424445:1:1675105910;389299:1:1673726804;272913:1:1674460051;398832:1:1672025828;417177:1:1674123312;419303:1:1674299014;446718:1:1674353140;346329:1:1670226206;471728:1:1674871019;445735:1:1669286676;406293:1:1673859446;446714:1:1674043083;454815:1:1673736038;446716:1:1674258987;445499:1:1670164226;453831:1:1674872001;445081:1:1671894608;190964:1:1674135009;419299:1:1675150383;419291:1:1675228250;453850:1:1671627132;410254:1:1674926948;468607:1:1674893352;441369:1:1671297690;419323:1:1674028005;458045:1:1670528140;419293:1:1675131038;462319:1:1674949690;404163:1:1673226439;453839:1:1675215975;460522:1:1675063677;446013:1:1668228435; max-age=1706784006; path=/
kadCSCap=235975:2:1675182062;212269:1:1675220948; path=/
kadASCap=453839:1:1675215975;419291:1:1675228250;383700:1:1675240028;346327:1:1675197874; path=/
kadRPixJ=bnVsbA==; max-age=1706784006; path=/
kadUnP3=CAoQ6rPkngYaDQjVv5kBEAEYsvvlngYaDQioiJcCEAEYhoPpngYaDQj2iP8BEAEYlcblngYaDQjgrZgCEAIY54jnngYaDQirgJoCEAQY6rPkngYaDQiU0ZoCEAEY7v/kngYiCggDEAoY6rPkngYqDAiNzCgQARju/+SeBioMCKSTKBABGIaD6Z4GKgwIg70SEAEYsvvlngYqDAi4jiUQARiVxuWeBioMCIqpKBACGOeI554GKgwIyMIoEAQY6rPkngY=; max-age=1706784006; path=/
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:900%2C400&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:900%2C400&display=swap
IP 142.250.74.106:0
GET /css?family=Roboto:900%2C400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 01 Feb 2023 10:40:04 GMT
date: Wed, 01 Feb 2023 10:40:04 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.wboxpanama.com/wp-content/themes/porto/js/woocommerce-theme.js?ver=6.5.1
164.68.99.151200 OK 0 B URL HTTP/1.1 www.wboxpanama.com/wp-content/themes/porto/js/woocommerce-theme.js?ver=6.5.1
IP 164.68.99.151:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/porto/js/woocommerce-theme.js?ver=6.5.1 HTTP/1.1
Host: www.wboxpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wboxpanama.com/
Cookie: PHPSESSID=69cc4f8f4b4d6f581d64618430222cf5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:04 GMT
Server: Apache
Last-Modified: Wed, 19 Oct 2022 20:59:08 GMT
Accept-Ranges: bytes
Content-Length: 134789
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
104.16.57.101200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP 104.16.57.101:0
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://listingsdir.com
Connection: keep-alive
Referer: http://listingsdir.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 10:40:08 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 792a113629040b06-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
listingsdir.com/libs/quilljs/js/quill.js
172.67.223.14200 OK 0 B URL HTTP/1.1 listingsdir.com/libs/quilljs/js/quill.js
IP 172.67.223.14:0
GET /libs/quilljs/js/quill.js HTTP/1.1
Host: listingsdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://listingsdir.com/?c=&session=124ca80c46666bfde2b005e72c14e8ab
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 10:40:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Jun 2021 06:41:24 GMT
ETag: W/"60c99d14-6c85e"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 987
Server-Timing: cf-q-config;dur=4.9999998736894e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vSOEeCdx7ABaMm4uqVF6UNvw9dHvvBYcVJgQSoOEUVEE6SaDHX%2BSlLlo70ZAbagPvAEeDXhspnjbePC8y8N27Ly9Gq7txeIuUMWjgo0Od%2Bi9j1makGiNOHu20Kdq36aB1lQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792a11356ee50b31-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
track.vcdc.com/beam.php?tcid=&target=aHR0cDovL2NsaWNrLXY0LmNlbHhrcGRpci5jb20vY2xpY2s/aT0tb0RWKjJSSi1vOF8w&hash=c0be6bc7cad67c54226455732c6ab7e3&m=MTA4
167.233.8.197200 OK 0 B URL HTTP/2 track.vcdc.com/beam.php?tcid=&target=aHR0cDovL2NsaWNrLXY0LmNlbHhrcGRpci5jb20vY2xpY2s/aT0tb0RWKjJSSi1vOF8w&hash=c0be6bc7cad67c54226455732c6ab7e3&m=MTA4
IP 167.233.8.197:0
ASN #24940 Hetzner Online GmbH
GET /beam.php?tcid=&target=aHR0cDovL2NsaWNrLXY0LmNlbHhrcGRpci5jb20vY2xpY2s/aT0tb0RWKjJSSi1vOF8w&hash=c0be6bc7cad67c54226455732c6ab7e3&m=MTA4 HTTP/1.1
Host: track.vcdc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 10:40:10 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
X-Firefox-Spdy: h2