workaholics.qa/
172.104.156.169301 Moved Permanently 0 B IP 172.104.156.169:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 26 Nov 2022 11:43:48 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
X-Redirect-By: WordPress
Location: https://workaholics.qa/
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2836
Expires: Sat, 26 Nov 2022 12:31:04 GMT
Date: Sat, 26 Nov 2022 11:43:48 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 15b59d5e62caedb4bec3ba6724906c1e
960f801e608a56fdd11449f4face29f62cad2b21
8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1248
Cache-Control: max-age=169688
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:43:48 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 10:51:56 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5509
Expires: Sat, 26 Nov 2022 13:15:37 GMT
Date: Sat, 26 Nov 2022 11:43:48 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 11:19:13 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1475
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: tRhCbmowvKz1+J1G3YAegasG+TmATYgjMRRCfXXZpf7/tN41RMx4iwlUyBWM+b2610U2HJ/u180=
x-amz-request-id: 5TNSCRS0AE8HQDRY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 11:41:11 GMT
age: 157
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 11:43:48 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c11f2471954eb80879044f47e4a61aa7
da4a2f85a7acff27a59b43763ff6ad960480f857
d2aff6e5eef8af25bb90806beb92f188a46ecba3bbdd308918ffc832c27fd76d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2AFF6E5EEF8AF25BB90806BEB92F188A46ECBA3BBDD308918FFC832C27FD76D"
Last-Modified: Thu, 24 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21548
Expires: Sat, 26 Nov 2022 17:42:56 GMT
Date: Sat, 26 Nov 2022 11:43:48 GMT
Connection: keep-alive
workaholics.qa/
172.104.156.169200 OK 31 kB IP 172.104.156.169:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (8047), with CRLF, LF line terminators
Hash e228482720875a78d41a89e4212c69ea
07de3c16108d0a23381d100027fafbbd819d4da2
3a3fa2dbb569f69be397ee3bcd88336ea7836b5c0e6306297103f7494552aacb
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:48 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Link: <https://workaholics.qa/wp-json/>; rel="https://api.w.org/", <https://workaholics.qa/wp-json/wp/v2/pages/305>; rel="alternate"; type="application/json", <https://workaholics.qa/>; rel=shortlink
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 11:11:12 GMT
cache-control: public,max-age=3600
age: 1956
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
workaholics.qa/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
172.104.156.169200 OK 12 kB URL HTTP/1.1 workaholics.qa/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP 172.104.156.169:0
File type ASCII text, with very long lines (43771)
Hash 6deba145701e1ec3d23d79a2465f4449
251e4f7ef516d58489ce4f66e382d10e70d7d9d9
d96ae43ee972423cca433cd10de81c7f54f5ff53396746ae41e93d02f0cce07c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 12 Jul 2022 19:10:49 GMT
ETag: W/"aec0b5-15b64-5e3a06d2cf463"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5
172.104.156.169200 OK 2.0 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5
IP 172.104.156.169:0
File type ASCII text, with very long lines (10435), with no line terminators
Hash add3bd0a3cabd69661d975adbd908e88
963a478b6ebb84cb86fd1a09ba2ee79ed5eb00b5
09c88c84f472888008017c6304f631d53b2bbd860aa6d43dd594aa7f009bb906
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 07:10:13 GMT
ETag: W/"62e62a-28c3-5ed04590cb1a2"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/gravityforms/css/datepicker.min.css?ver=2.2.6.4
172.104.156.169200 OK 1.6 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/gravityforms/css/datepicker.min.css?ver=2.2.6.4
IP 172.104.156.169:0
File type ASCII text, with very long lines (5328), with no line terminators
Hash a00f9cdda24ebbd7f3699e40e95f1852
5766dee33338792d4d588e592284aee166524a2c
03e49748a3eb383c26c0edcf7ce2cb2e5fdc9508a7c2d8cc49e4e6dc5adf41a0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gravityforms/css/datepicker.min.css?ver=2.2.6.4 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:26 GMT
ETag: W/"e2e1bc-14d0-5c5467b071e80"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/gravityforms/css/formsmain.min.css?ver=2.2.6.4
172.104.156.169200 OK 11 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/gravityforms/css/formsmain.min.css?ver=2.2.6.4
IP 172.104.156.169:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash fd52f4c149ee3ee5cfaf50c0addcafb3
45d5899ae4366c3cf5cc58062260d29514131718
7f44e210f0c3a28475babc0b149bb7b6125996592c97a3dd1c36c4f49f5de87a
GET /wp-content/plugins/gravityforms/css/formsmain.min.css?ver=2.2.6.4 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:26 GMT
ETag: W/"e2e1c4-10bdf-5c5467b071e80"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5
172.104.156.169200 OK 25 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5
IP 172.104.156.169:0
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 455bd337a92868e5db28194feee88d72
cbfa43251d9d777c4cbf33ae783febcee44c25a7
1a854593a5a043f81e37fca16c76048678abac71d39bbcaa969767d6ec31b37c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 07:10:13 GMT
ETag: W/"62e5c3-39996-5ed04590ca49c"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
172.104.156.169200 OK 974 B URL HTTP/1.1 workaholics.qa/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 172.104.156.169:0
Hash d7804d649234ee1928e28576be1dc211
a4084bf3222ebb744fe921f1716f7d6d45aeebe6
36e72ef65d6c9091a71d963f37139c48f0eea6a393429a32e5fedced15be5bfe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 19 Oct 2022 16:14:16 GMT
ETag: W/"296257-aab-5eb658012b08a"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/gravityforms/css/formreset.min.css?ver=2.2.6.4
172.104.156.169200 OK 407 B URL HTTP/1.1 workaholics.qa/wp-content/plugins/gravityforms/css/formreset.min.css?ver=2.2.6.4
IP 172.104.156.169:0
File type ASCII text, with very long lines (3840), with no line terminators
Hash fdf6c5113943470e111f1e1e96f5ae96
c14ccb5b58762c18b5e1cde3eb7d14ae8ebc392a
8abd1c49105819a451abe181a985598cc7efd5e1a8063d0f1e1d1d928b3c9da6
GET /wp-content/plugins/gravityforms/css/formreset.min.css?ver=2.2.6.4 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:26 GMT
ETag: W/"e2e1c0-f00-5c5467b071e80"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:43:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
workaholics.qa/wp-content/plugins/gravityforms/css/readyclass.min.css?ver=2.2.6.4
172.104.156.169200 OK 3.6 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/gravityforms/css/readyclass.min.css?ver=2.2.6.4
IP 172.104.156.169:0
File type ASCII text, with very long lines (30635), with no line terminators
Hash b6ab11f43a58419cad29ca986ea59488
6db0706338cf41fd0a93e46cf37098c74f2c1698
5d57160d49e9d0e7d1741ec0d37379c4aa6bd76e2dbaea673728cd648b9d40fb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gravityforms/css/readyclass.min.css?ver=2.2.6.4 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:26 GMT
ETag: W/"e2e1cf-77ab-5c5467b071e80"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/gravityforms/css/browsers.min.css?ver=2.2.6.4
172.104.156.169200 OK 1.2 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/gravityforms/css/browsers.min.css?ver=2.2.6.4
IP 172.104.156.169:0
File type ASCII text, with very long lines (7262), with no line terminators
Hash d6d183f17a4bfd10062019a82c1e4c35
cf2873ce9ba378bdf7d67904c7b40056ca68fe62
78a1959d190f843da2870f893eca541af2ce6f101a578654e4f2e028ad9c9252
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gravityforms/css/browsers.min.css?ver=2.2.6.4 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:26 GMT
ETag: W/"e2e03d-1c5e-5c5467b071e80"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/popup-builder/public/css/theme.css?ver=4.1.14
172.104.156.169200 OK 12 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/popup-builder/public/css/theme.css?ver=4.1.14
IP 172.104.156.169:0
File type ASCII text, with very long lines (4774)
Hash b57350260964d85923661326b417cee5
d1f3c8e6b305f2cc743dc29879fac24f4882c75f
6023acb1fb4b3838979cdf69ea1bce6f3b20cb8d239f50c5028775a308ec5ee2
GET /wp-content/plugins/popup-builder/public/css/theme.css?ver=4.1.14 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 03 Oct 2022 16:02:17 GMT
ETag: W/"2b62d4-119f9-5ea2377c1a79d"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.2
172.104.156.169200 OK 12 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.2
IP 172.104.156.169:0
File type Unicode text, UTF-8 text, with very long lines (12602)
Hash 7cd1ba35285fefde6b1efa7358eb59bf
5e40983f5211eea9b3c6cbc8872f62e80f6505a6
8830de71715b695de4fde4ed795f7140b6cf2faf57255c323777e04a6b0f5a06
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.2 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:26 GMT
ETag: W/"444dd5-dd6d-5c5467b071e80"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.1.0
172.104.156.169200 OK 2.6 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.1.0
IP 172.104.156.169:0
File type ASCII text, with very long lines (17809), with no line terminators
Hash 59eef599605e3117a3e365e1415fdb71
74b2155ed5a802d8f287cfe5764261e9774112df
35da9d68ede2470f2f15bc2de8c227d309665ccf0eda4646ed34aeb5072e67a4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.1.0 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 07:10:13 GMT
ETag: W/"105a260-4591-5ed04590e5f54"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.1.0
172.104.156.169200 OK 9.1 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.1.0
IP 172.104.156.169:0
File type Unicode text, UTF-8 text, with very long lines (62781), with no line terminators
Hash db75f66f74a58207db3780b21f23cb75
57a40775c36e5b32875c0d5b541384c1cbb34107
c8093a9afaa0d7644bf0ad97dae3b234345dff0f3929d7f5d520002c77640f06
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.1.0 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 07:10:13 GMT
ETag: W/"105a147-f53f-5ed04590e524f"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/style.css?ver=6.0.3
172.104.156.169200 OK 18 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/style.css?ver=6.0.3
IP 172.104.156.169:0
Hash e0b76caa07474391581045ef05552b4c
5b58404e0a447efedf366577a1e6a645ae26c06c
66faba380983316ca63b4801602194ab18f2128e163d77f9d6d7a1daa3085846
GET /wp-content/themes/consultive/style.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"358884-20372-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/css/gui.css?ver=6.0.3
172.104.156.169200 OK 8.2 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/css/gui.css?ver=6.0.3
IP 172.104.156.169:0
File type ASCII text, with very long lines (2363)
Hash ee1de2611dfeb4bed565dfae64fdd29e
ea8b024df025876eb2548463daffd1162b63f1b2
033a4cf95890726239901f138eed5dfd092a6af74c9f0f5b6b6cf77b7280b3a2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/css/gui.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"6184e4-898b-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/css/imp.css?ver=6.0.3
172.104.156.169200 OK 1.8 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/css/imp.css?ver=6.0.3
IP 172.104.156.169:0
Hash f4d50bcd8cd731891e0ef11dca3cfa75
ab709dda3610b49877d96834c361683d49613fc2
9b7816058a38d691c91575697b3c0ebc299c5242272e3175b725805ba915df71
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/css/imp.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"6184e7-216d-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/css/bootstrap.min.css?ver=6.0.3
172.104.156.169200 OK 20 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/css/bootstrap.min.css?ver=6.0.3
IP 172.104.156.169:0
File type ASCII text, with very long lines (65371)
Hash ebf3d354217329244922ad160638836d
06d29ffffbedfb4918a3502a496b35c770c9e931
ba6b544fd975c6302801b177cfe0896d6213d2dfa1d8c72eefb15677196fd872
GET /wp-content/themes/consultive/css/bootstrap.min.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"6184dd-1d970-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/css/hover.css?ver=6.0.3
172.104.156.169200 OK 8.8 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/css/hover.css?ver=6.0.3
IP 172.104.156.169:0
Hash 2cb87ad1b995dae5d6fe83f39036a671
f317df97ac1ec0dd011fc6b5b32bbca6b90f5189
42a7418b43ba5a18159b40434d65ef7b22298c479cefc7a1bccd8077b1e0f051
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/css/hover.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"6184e5-1ccb8-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/css/jquery.bxslider.css?ver=6.0.3
172.104.156.169200 OK 1.2 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/css/jquery.bxslider.css?ver=6.0.3
IP 172.104.156.169:0
Hash 8a7b7967b5cdf4650e6d44cda21945b5
2ab06512e17ba2abb68f99e5b669189874b9bef5
c07bafc3b7fd6d2dc2c498776881b532af2dd4c5141e42e3be29b8984a55f900
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/css/jquery.bxslider.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"6184ea-f2e-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/css/animate.min.css?ver=6.0.3
172.104.156.169200 OK 4.1 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/css/animate.min.css?ver=6.0.3
IP 172.104.156.169:0
File type ASCII text, with very long lines (52592)
Hash 061f87d1c87c003d1753beccf5871fe0
da2e8e5419bf69892841853b825d9ff2da58b7c2
c166474f95b826b9ae2aaa22ad20049699af8c91369c68bfccc4f67c9696fdb9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/css/animate.min.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"618155-ce35-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/css/owl.carousel.css?ver=6.0.3
172.104.156.169200 OK 1.1 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/css/owl.carousel.css?ver=6.0.3
IP 172.104.156.169:0
Hash d63c5f62d8bed644bfcdc3b66be04a55
c48d8dbb4d0dae62b23bcebb47a771e1c8cac28c
88a758bf69b00fbf3ac70ef65bc984a173e4ac212b1f36ebb723610d1299faa2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/css/owl.carousel.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"6184fb-125d-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/css/owl.theme.default.min.css?ver=6.0.3
172.104.156.169200 OK 403 B URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/css/owl.theme.default.min.css?ver=6.0.3
IP 172.104.156.169:0
File type ASCII text, with very long lines (1142), with no line terminators
Hash ed36c4ae423d615a9315669d8ab101fa
c347c1112b4473a644a48396b94f50f7b61775de
82a79aec4702f06d1d486402f52023842401e0943665351cdc759a9bb06cea5b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/css/owl.theme.default.min.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"6184fc-476-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/css/jquery.bootstrap-touchspin.css?ver=6.0.3
172.104.156.169200 OK 306 B URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/css/jquery.bootstrap-touchspin.css?ver=6.0.3
IP 172.104.156.169:0
Hash 24de97be2b947519e02c1b0d498afe90
b6e1eaa290a8b8994b0a32a623bcc4e5ec7ee139
0d690c10b29f6616a8bd792a789c4b1b2ce9e4cc4c0e1522b81c03bb2068a91b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/css/jquery.bootstrap-touchspin.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"6184e8-304-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/css/jquery.fancybox.css?ver=6.0.3
172.104.156.169200 OK 1.4 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/css/jquery.fancybox.css?ver=6.0.3
IP 172.104.156.169:0
Hash 508b4dead6b9d46c302c46868bd06df7
47648be1cbec72b620c23ef301198a3cb994cc7d
3ffabb41ad50a2b5d3a205268117232a015852c2bf54605d6ceb0f6254a788ee
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/css/jquery.fancybox.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"6184f7-1391-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/css/prettyPhoto.css?ver=6.0.3
172.104.156.169200 OK 2.8 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/css/prettyPhoto.css?ver=6.0.3
IP 172.104.156.169:0
File type ASCII text, with very long lines (402)
Hash f099bc69474e0cb459d1c55212e3233b
a28e87de6343f1356eedca48083f7fbf1372e8b2
e1ab3a4b8ddc645326a72074a6ee3b6053c802a6517bb09718a000a297e95040
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/css/prettyPhoto.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"6184fd-4db0-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/css/nouislider.css?ver=6.0.3
172.104.156.169200 OK 1.0 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/css/nouislider.css?ver=6.0.3
IP 172.104.156.169:0
File type ASCII text, with very long lines (3085)
Hash 5a4888325096872d205ca1ffebf3604f
bd2e603860d46b8f657de6b6431723c305941f96
f8651b40740c495b0f77f83f30e6f5f28c41f209b522010dc9220d8e75dc1434
GET /wp-content/themes/consultive/css/nouislider.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"6184f9-c3f-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/css/flaticon.css?ver=6.0.3
172.104.156.169200 OK 594 B URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/css/flaticon.css?ver=6.0.3
IP 172.104.156.169:0
Hash 64bb928c403bf91fa383b5707afb6473
096dab5d7589e56aa2b508e6f01dfbf4182d1bcc
41fe4d4d84d1c5184dbdd7c17e511af428c6e1c95cc04826cd2f73c20443b5f4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/css/flaticon.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"6184e1-7e7-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/css/nouislider.pips.css?ver=6.0.3
172.104.156.169200 OK 446 B URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/css/nouislider.pips.css?ver=6.0.3
IP 172.104.156.169:0
Hash d8b42134559500c649347defc21eb22a
84b96937ce366fb5a2810804b1f4daa40410497f
a733b5f45d34aa7fa5b2ebef42279433dfe3027ef208ee408c36b6a842247d21
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/css/nouislider.pips.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"6184fa-52b-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/css/bootstrap-select.css?ver=6.0.3
172.104.156.169200 OK 1.6 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/css/bootstrap-select.css?ver=6.0.3
IP 172.104.156.169:0
Hash 25d9215c2a143a61c730dcb321aedefa
080675a88092a49b250b6bbd78979f60f211f286
3a03c013e31cac37a0fa019cd099936f5b641070d828288229187ee4026ec471
GET /wp-content/themes/consultive/css/bootstrap-select.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"618194-1d1a-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/css/flexslider.css?ver=6.0.3
172.104.156.169200 OK 1.6 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/css/flexslider.css?ver=6.0.3
IP 172.104.156.169:0
Hash 23d1588787cd263f2826ad9b5b57ee06
db421d0a48273808fc4b19555f08e54e20bd801b
723868c637413486355f88c4106f4fc4625a86ac0fbac224d12ff3623bf27361
GET /wp-content/themes/consultive/css/flexslider.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"6184e2-1a8a-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/assets/language-switcher/polyglot-language-switcher.css?ver=6.0.3
172.104.156.169200 OK 1.1 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/assets/language-switcher/polyglot-language-switcher.css?ver=6.0.3
IP 172.104.156.169:0
Hash 0e7d8e7018e6626e3173a5742b621f28
157994de02272ccc9f7b2069c3b20565361ac7d9
353d25e6c1df97f289927e90e777c36f29f9b6e0354d66769e0ebfaee6c18a20
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/assets/language-switcher/polyglot-language-switcher.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"d90067-ec9-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/css/timePicker.css?ver=6.0.3
172.104.156.169200 OK 1.0 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/css/timePicker.css?ver=6.0.3
IP 172.104.156.169:0
Hash fd920622f48b74a36ee885469c825b44
36f2c4d66209b1f1de7602bfe9a9778badf13c8e
8793d4d0d40caa4f0c5a47ac358df61e6c42c50b3e2fffebb8ba45144d59512e
GET /wp-content/themes/consultive/css/timePicker.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"6184ff-f02-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive-child/style.css?ver=6.0.3
172.104.156.169200 OK 1.1 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive-child/style.css?ver=6.0.3
IP 172.104.156.169:0
Hash 793dce49dbe586164a212827da828a52
437220ed90aa7d69df33f10fad6a2bd57df2d491
47519fca673c4f615949f888d7eeabaea525892516fca72ce2f26a3ab376876a
GET /wp-content/themes/consultive-child/style.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"3520f6-b14-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/css/custom.css?ver=6.0.3
172.104.156.169200 OK 4.0 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/css/custom.css?ver=6.0.3
IP 172.104.156.169:0
Hash 16ab91130e5f532f7e41f29f711b2161
9a47405064ef68d37c4fd0b042738d043b4e733c
40683e5e840404c1bb8af034810ff30a6399120e82079954a7f89a3d334df89d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/css/custom.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"6184e0-4422-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/css/woocommerce.css?ver=6.0.3
172.104.156.169200 OK 9.6 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/css/woocommerce.css?ver=6.0.3
IP 172.104.156.169:0
File type Unicode text, UTF-8 text, with very long lines (1148)
Hash 37a690ce11f3d7bde57666df76fe7a0d
c42b46b6151724497d12b583093915fb3d3cf069
d1742e1093e60e99586067575421d80cfb997b9e67d92c47b6287dcfadf0021c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/css/woocommerce.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"61851d-e575-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/css/color.php?main_color=ffc200&ver=6.0.3
172.104.156.169200 OK 2.7 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/css/color.php?main_color=ffc200&ver=6.0.3
IP 172.104.156.169:0
Hash 61efca12938446490ef0bb4a1ce09d06
411496b0098ef0ee44eae907f4cd0cee3fd2bba4
89afecd38d1aad331e0dc5392d95147da1a8e164f29acf09643c2a047435837d
GET /wp-content/themes/consultive/css/color.php?main_color=ffc200&ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 24 Nov 2023 21:24:44 GMT
Cache-Control: public, max-age=31536000
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
workaholics.qa/wp-content/themes/consultive/css/responsive.css?ver=6.0.3
172.104.156.169200 OK 3.9 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/css/responsive.css?ver=6.0.3
IP 172.104.156.169:0
File type ASCII text, with very long lines (716)
Hash f60cf0cc4e266e46c5e244c828529f92
6aa8209f1560a4503f9eca0179bcc0b25c458f58
1545a3406436fdcf718b5e87519a28567b9aabafbbe84df6b876b1a194d13727
GET /wp-content/themes/consultive/css/responsive.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"6184fe-7565-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/css/color-panel.css?ver=6.0.3
172.104.156.169200 OK 871 B URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/css/color-panel.css?ver=6.0.3
IP 172.104.156.169:0
Hash 4aa9dc43f4774f606c88a6a6cb63601e
22ed617facea7ae7641c4dc64166c3fccb5b53b8
32d91e4d964336b1410a1364f96553a74882913288ce53d6c24688ea97ae8a80
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/css/color-panel.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"6184de-a50-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16
172.104.156.169200 OK 487 B URL HTTP/1.1 workaholics.qa/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16
IP 172.104.156.169:0
File type ASCII text, with very long lines (1519), with no line terminators
Hash f49750e93d3f1fe51cd1cc2350e20af6
240ae051bb9b55a3937871753d40da640ca03137
9d693c8ed1d35aa67923da6ce3125c6e754ffcceeb2c99c44e84f1c3240ab086
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 27 Jul 2022 07:00:27 GMT
ETag: W/"28479c-5ef-5e4c3f8c8abb1"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/kingcomposer/assets/frontend/css/kingcomposer.min.css?ver=2.9.6
172.104.156.169200 OK 13 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/kingcomposer/assets/frontend/css/kingcomposer.min.css?ver=2.9.6
IP 172.104.156.169:0
File type ASCII text, with very long lines (65412)
Hash 814e548c13aeb975f2f560d0e82a575d
f9bc81d5fc753156304e6a4fdb109372efed96e8
8516f3e4ac795ce9b6b3963dd126bb5fc42e865e626f23cf84bac2fe9fc090f5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/kingcomposer/assets/frontend/css/kingcomposer.min.css?ver=2.9.6 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:26 GMT
ETag: W/"e7a096-10d5e-5c5467b071e80"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/kingcomposer/assets/css/animate.css?ver=2.9.6
172.104.156.169200 OK 3.0 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/kingcomposer/assets/css/animate.css?ver=2.9.6
IP 172.104.156.169:0
File type ASCII text, with very long lines (36512)
Hash 599534d12708541ac5c70c04208ed333
7a55d3da2d4554d81d8081ceda770d55fc365795
9dc335b73c8145d1f130c5397af8482a8269805d2637a89da39b70c618b2fe59
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/kingcomposer/assets/css/animate.css?ver=2.9.6 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:26 GMT
ETag: W/"e7021d-8f89-5c5467b071e80"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.9.6
172.104.156.169200 OK 11 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.9.6
IP 172.104.156.169:0
File type ASCII text, with very long lines (35475)
Hash 039d28ceac329db27fd861dc28a1bcbe
dd216728d18751310811cd6e5bd2b08513ba3337
dca7e33c0ff4f7360142b21e136cb0017f0b72ec4d215fdcf60603544474e23e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.9.6 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:26 GMT
ETag: W/"e7021e-c096-5c5467b071e80"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
172.104.156.169200 OK 4.2 kB URL HTTP/1.1 workaholics.qa/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 172.104.156.169:0
File type ASCII text, with very long lines (11126)
Hash 5f0c7c68ce291948081d8bc40b311a4d
52e9e66db13df06a18cb59905195d45ee80e466a
d0f639afed36e6a912a17a467beb71c7f3976cc9cfba3d105a76e985c487e62f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"b6e104-2bd8-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.2.6.4
172.104.156.169200 OK 935 B URL HTTP/1.1 workaholics.qa/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.2.6.4
IP 172.104.156.169:0
File type ASCII text, with very long lines (1848), with no line terminators
Hash d934195a1da48b89a439f023938d5798
8a901b7c7eb2380ced4b030487d69a7426edc097
bae927ca13cca9c30ef5919edcac8acbdd2b0a6aee2ef7761d4755465379d303
GET /wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.2.6.4 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:26 GMT
ETag: W/"e361a2-738-5c5467b071e80"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1
172.104.156.169200 OK 129 B URL HTTP/1.1 workaholics.qa/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1
IP 172.104.156.169:0
File type ASCII text, with no line terminators
Hash 5ef26b5e47e6951f43ecf2b1fc645222
081afb52577f6f3bb044fdea6d34a632c3cce7e8
50679e0e3933c945348a2db0cc128bb14b57a60a74fabf8cae13acc14efbb2e1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Content-Length: 129
Connection: keep-alive
Last-Modified: Wed, 27 Jul 2022 07:00:27 GMT
ETag: "28479d-81-5e4c3f8c8d2c2"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
workaholics.qa/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
172.104.156.169200 OK 31 kB URL HTTP/1.1 workaholics.qa/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 172.104.156.169:0
File type ASCII text, with very long lines (65447)
Hash 0e12e8ad50f470e9a500e00b739965c2
505d806a166278dd2e066b5e00952dd4dfc9605f
6d3c4243e698d8bf64940fa1295d60edc1add8c7b733048b1ff7cea9b98380d8
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 01 Apr 2022 13:15:38 GMT
ETag: W/"b6e136-15db1-5db979320281a"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/popup-builder/public/js/Popup.js?ver=4.1.14
172.104.156.169200 OK 8.2 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/popup-builder/public/js/Popup.js?ver=4.1.14
IP 172.104.156.169:0
File type ASCII text, with very long lines (5515)
Hash 4d385ccbc61bdb9428d5f4ba1e58299a
5026f9e8eabb24eb86e5c0bee99b42e32cb69be5
08ac1c83147a2f00ac63da4cfd71b614d9d1f6ca5db804ab327c28acd7f0f5ca
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/popup-builder/public/js/Popup.js?ver=4.1.14 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 03 Oct 2022 16:02:17 GMT
ETag: W/"ae215d-97db-5ea2377c202c3"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/popup-builder/public/js/PopupConfig.js?ver=4.1.14
172.104.156.169200 OK 1.8 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/popup-builder/public/js/PopupConfig.js?ver=4.1.14
IP 172.104.156.169:0
File type ASCII text, with very long lines (2826)
Hash be5f32e1a65bbcb5e7c8393f85fcd1ba
99f898b06b86407e56bb5c7a4015656acba3ecf8
c12d96bf754e859427c258be8a248c2b68a90b929ce7850c32b8fbda05ac573c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/popup-builder/public/js/PopupConfig.js?ver=4.1.14 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 03 Oct 2022 16:02:17 GMT
ETag: W/"ae21b0-177a-5ea2377c20fc8"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.2.6.4
172.104.156.169200 OK 8.5 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.2.6.4
IP 172.104.156.169:0
File type ASCII text, with very long lines (26915), with no line terminators
Hash c5b14a5a269c9ef62e307784a9043708
87b526233ff61a05d9e3d1acd7c637a2ba262aaf
4471840099f565e53b0b9ddedc51ff60af8d696d7ee2ad2ec54cbb533fbfa803
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.2.6.4 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:26 GMT
ETag: W/"e3619d-6923-5c5467b071e80"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/gravityforms/js/jquery.maskedinput.min.js?ver=2.2.6.4
172.104.156.169200 OK 1.9 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/gravityforms/js/jquery.maskedinput.min.js?ver=2.2.6.4
IP 172.104.156.169:0
File type ASCII text, with very long lines (4112)
Hash 4ed63e859a74892a4e36b87eb1db0469
48503370d4f91920b947153a6e40d6d860e0e0f0
b114cc8e08bd235825deb4b1bd805cceb545f3c4391d240ae496c0776da4637b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gravityforms/js/jquery.maskedinput.min.js?ver=2.2.6.4 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:26 GMT
ETag: W/"e361a4-10db-5c5467b071e80"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/popup-builder/public/js/PopupBuilder.js?ver=4.1.14
172.104.156.169200 OK 17 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/popup-builder/public/js/PopupBuilder.js?ver=4.1.14
IP 172.104.156.169:0
Hash 9f8ea8d4949e4f4875604814a0a1b2ae
3527805dfc4bfdc9d1eeb52eb1d86644faaab7d9
4c31630e0977ad03c23be9835c8458fd3676e1bd1987f580d5538c88cdafde3c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/popup-builder/public/js/PopupBuilder.js?ver=4.1.14 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 03 Oct 2022 16:02:17 GMT
ETag: W/"ae21b2-13557-5ea2377c20fc8"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/js/gmaps.js?ver=6.0.3
172.104.156.169200 OK 9.1 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/js/gmaps.js?ver=6.0.3
IP 172.104.156.169:0
File type ASCII text, with very long lines (30508)
Hash 60b362223982ec87189b11e4d34159d0
3ff48d5cfbc324010af598c37d7dec18ee06aea2
0806fd05f69c2d5fcb0127fd416b01a3f4b7e9eca5c590697d7abe1c418670d6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/js/gmaps.js?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"624621-7752-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
172.104.156.169200 OK 2.9 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 172.104.156.169:0
File type ASCII text, with very long lines (9937), with no line terminators
Hash c4b9428e3c510caa34e3a0f28724f929
ec879ee1e2f29cbdaec1a51cebb2ea4df09c105f
a3b5a6ca2491e52df3166c9cbee5bc2d9a0a84375e542a527af7c8640737b443
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 19 Oct 2022 16:14:16 GMT
ETag: W/"296276-26d1-5eb658012bd8f"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.2
172.104.156.169200 OK 75 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.2
IP 172.104.156.169:0
File type ASCII text, with very long lines (63491)
Hash 5c0257470b29bdfb2aa4173a7683c22d
fb723e551caf622f9050ff086b0ae7953ecf7201
a42d54292c6b2be1f3aadb21936c189500b2adbe59f2c25798633537d91610bf
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.2 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:26 GMT
ETag: W/"444dd9-47543-5c5467b071e80"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
172.104.156.169200 OK 4.0 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 172.104.156.169:0
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash 64c7c684d6628bf83c7e807057769e38
f69e888323a49ea830aadabd075321c23a7cbec6
3ec862a2ead6c543b1835c3f63a296c0bfd7aab478da64292c897e96f393d76f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 19 Oct 2022 16:14:16 GMT
ETag: W/"2962ab-3016-5eb658012ca95"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/gravityforms/js/datepicker.min.js?ver=2.2.6.4
172.104.156.169200 OK 469 B URL HTTP/1.1 workaholics.qa/wp-content/plugins/gravityforms/js/datepicker.min.js?ver=2.2.6.4
IP 172.104.156.169:0
File type ASCII text, with very long lines (944), with no line terminators
Hash 51a7706c9428697d2eee193523196b2c
76a43aa1f6cebcb421239788736384e7746441ff
caff515d0d2fcf11fa51c1596e497162fb8d3b59b9f3b3a5777688a86d662298
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gravityforms/js/datepicker.min.js?ver=2.2.6.4 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:26 GMT
ETag: W/"e36191-3b0-5c5467b071e80"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1
172.104.156.169200 OK 11 kB URL HTTP/1.1 workaholics.qa/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1
IP 172.104.156.169:0
File type ASCII text, with very long lines (36560)
Hash aa17b171e922312c6837e54ce74d3f4a
64dd639c742cfbdfdd4a4e326396d6854577ec1c
af9e3842f6733f75e3cc6f1f3c54a8b6e334ee8fc1c46705f39d7cd47ca1a4a9
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 15 Jun 2022 09:30:01 GMT
ETag: W/"b860dd-8f87-5e1792a5d7e1b"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
172.104.156.169200 OK 3.5 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
IP 172.104.156.169:0
File type ASCII text, with very long lines (9111)
Hash 2d4b859cb3e15099ebf6d879ac62f499
0871f7a5aba774fd4cc2340d3e9a92dbb1c18205
87248cdbe6c6e0dcc91aabb828f08e378e14c8da5a8e4853d3ade949cbc54c58
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 07:10:13 GMT
ETag: W/"107600e-2521-5ed04590eee8f"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
172.104.156.169200 OK 1.1 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
IP 172.104.156.169:0
File type HTML document, ASCII text, with very long lines (3029), with no line terminators
Hash faed3b217fec27419c7ca0b7a1003b0f
6468e41585cd3c33fa6940b7789f643614b6d754
a196d76683a1f6bc6a349055ab00228be6757f103761d613e5d5797ca03c16ee
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 07:10:13 GMT
ETag: W/"1d100-bd5-5ed04590f159f"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
172.104.156.169200 OK 982 B URL HTTP/1.1 workaholics.qa/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
IP 172.104.156.169:0
File type ASCII text, with very long lines (1668)
Hash e66463f2023b738680c9bdefece69a37
315dc8e6ebdfb18c662851244ee33e2758ad3c83
fd83e7fc6d81aa6f6680ea640e9c086aa1950a17757a582aa74ea9797a70f346
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 07:10:13 GMT
ETag: W/"e68010-72a-5ed04590ed484"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
172.104.156.169200 OK 794 B URL HTTP/1.1 workaholics.qa/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
IP 172.104.156.169:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash 50a068dd64a5c9f112e56850b52aaf21
8bc6cf0acbabf47f01cd2e256284bba23eb532fc
0f1570edcf461c1413534c142a5e7fef16d87701ae798c91da0e27b7796c3a26
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 07:10:13 GMT
ETag: W/"1d0ec-85b-5ed04590f159f"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
172.104.156.169200 OK 1.0 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
IP 172.104.156.169:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash 4e34cbd897375ae38364102a460bffb9
717333b42169a087e13d69a4e3ee169ed493ebfe
6fbd7f385cd635ee6652fd28b762c68f698f6e82f28ee38d8eab88c82ac90a38
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 07:10:13 GMT
ETag: W/"1d0fb-b7a-5ed04590f159f"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/js/bootstrap.min.js?ver=6.0.3
172.104.156.169200 OK 9.9 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/js/bootstrap.min.js?ver=6.0.3
IP 172.104.156.169:0
File type ASCII text, with very long lines (32033)
Hash 42f53897b51d98693cf96578e9514ea2
84ea678a184ec7267b438b1b91cb79fbcdaba24f
265722a333958fec8c2614574c61bb316ce831cd1e123023b57899f10171a30c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/js/bootstrap.min.js?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"62461e-90b5-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/js/jquery-ui.js?ver=6.0.3
172.104.156.169200 OK 117 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/js/jquery-ui.js?ver=6.0.3
IP 172.104.156.169:0
File type ASCII text, with very long lines (547)
Size 117 kB (116919 bytes)
Hash 7e17341cf17807e2e8e7c974236c174f
f174ba77f8cc318eca24b47b986af45b9e4e41c9
3ab9827bd99cc42203b221e5ec171b829a09541f91b3a6b2c650a365c69b36e5
GET /wp-content/themes/consultive/js/jquery-ui.js?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"624714-72e47-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/js/jquery.bxslider.min.js?ver=6.0.3
172.104.156.169200 OK 5.2 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/js/jquery.bxslider.min.js?ver=6.0.3
IP 172.104.156.169:0
File type ASCII text, with very long lines (19040)
Hash c53635e48674549dfd526a1220de1cc0
1dec77d7c2e757b2f15ef285b3b19206578b2982
9022bb62a4ad9020d834f87fd929c9813471fdea6ba314e9c9f48b72c7f7d478
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/js/jquery.bxslider.min.js?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"62471d-4b9f-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/js/wow.js?ver=6.0.3
172.104.156.169200 OK 2.2 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/js/wow.js?ver=6.0.3
IP 172.104.156.169:0
File type ASCII text, with very long lines (6269)
Hash 73cf9dfcf64f1a94d74c005428e20fb6
be9b60d59fd2b467b0bf67365c31c5a3130afa41
3726efcd9540114fe020bea340241b9472c8f4c1994b4f9663c9a589993b8780
GET /wp-content/themes/consultive/js/wow.js?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"624728-189b-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/js/jquery.countTo.js?ver=6.0.3
172.104.156.169200 OK 1.0 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/js/jquery.countTo.js?ver=6.0.3
IP 172.104.156.169:0
Hash 34bd374fedfbc15ace388cc82abd2373
3d14e2b3ed28574347651c7d8d636155395ed356
caccdb4fa4beeb1611262884d3444342d1113a2d477edf5d2e678113551842f3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/js/jquery.countTo.js?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"62471e-d8a-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/js/map-helper.js?ver=6.0.3
172.104.156.169200 OK 928 B URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/js/map-helper.js?ver=6.0.3
IP 172.104.156.169:0
Hash 39d298db07b8ea8135be76fb371d7336
9ebac172a79fcae52795df82f6ec174b7bbfe73e
d70e72d56d8990136bd0b382b4a7b1afe07a9308aaece1a14eb925702ce90692
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/js/map-helper.js?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"624724-f3c-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/js/jquery.easing.min.js?ver=6.0.3
172.104.156.169200 OK 1.9 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/js/jquery.easing.min.js?ver=6.0.3
IP 172.104.156.169:0
File type Unicode text, UTF-8 text, with very long lines (3601)
Hash d4fdf5146198eb97852c040b8acf3f19
acf3345d33cd241639a3e1081e760e5a6ef4c371
d56ef446a264f67bf66314b7b33fd21d48c90abd28bee98dbd5dc616fac435dc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/js/jquery.easing.min.js?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"62471f-15b3-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/js/jquery.fancybox.pack.js?ver=6.0.3
172.104.156.169200 OK 8.7 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/js/jquery.fancybox.pack.js?ver=6.0.3
IP 172.104.156.169:0
File type ASCII text, with very long lines (645)
Hash 0f2d860ada9ba5e2cc6bd75e56711134
da9f032dbb3f387dd1032ff3de2eaec13d649df7
d1c3aa6ff8955f7823dbd3c50f8a38227193a35acf8896a37cb81712f34ef61f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/js/jquery.fancybox.pack.js?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"624720-5a5f-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/js/jquery.appear.js?ver=6.0.3
172.104.156.169200 OK 710 B URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/js/jquery.appear.js?ver=6.0.3
IP 172.104.156.169:0
File type ASCII text, with very long lines (1285)
Hash 63c101dd924a7bea5cf0507a4298c1d4
91d47480aba145a6495d3f326a49f80e99276d3e
ea5b24b42cb413fbc28d9d23b14139bb57e06d8b6fe4b98ed50de2610787c1a3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/js/jquery.appear.js?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"624715-5c6-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/js/isotope.js?ver=6.0.3
172.104.156.169200 OK 10 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/js/isotope.js?ver=6.0.3
IP 172.104.156.169:0
File type ASCII text, with very long lines (32039)
Hash 3a6a912ca6eea6c56393c34546212f21
cbd8a3cde4e5aa499f4f4b11ccb8115124d7a9a3
f5482369215e692529a98fb94bba742df9e821dd0a717a149d4c52739413c698
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/js/isotope.js?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"624713-938c-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6-wc.7.1.0
172.104.156.169200 OK 5.8 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6-wc.7.1.0
IP 172.104.156.169:0
File type HTML document, ASCII text, with very long lines (21310), with no line terminators
Hash 808c697980f1aa24c27d03e130c13cde
c4d16e6b0a3da86d2a90b97aff3c6d0f04c285f0
461721baec4741203916996825303d7f00d843d5513d082250f7931a7f23c30d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6-wc.7.1.0 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 07:10:13 GMT
ETag: W/"1054006-533e-5ed04590ee18a"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/js/jquery.bootstrap-touchspin.js?ver=6.0.3
172.104.156.169200 OK 3.4 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/js/jquery.bootstrap-touchspin.js?ver=6.0.3
IP 172.104.156.169:0
File type ASCII text, with very long lines (587)
Hash d20249449a0da81a88fd5167b99ccc51
9630e0a46bea5ab219daae3ebdabd22102a84258
ce34b30aeb052674f8fce57b844c29ea1b6d5bba7dbd74255ac629bdc9e510db
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/js/jquery.bootstrap-touchspin.js?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"624716-4c54-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/js/timePicker.js?ver=6.0.3
172.104.156.169200 OK 5.4 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/js/timePicker.js?ver=6.0.3
IP 172.104.156.169:0
File type HTML document text\012- HTML document, ASCII text
Hash c96b389171d250d6eb24d4a22e1f1b0e
7d38392b33bc7a73bc39c6b7ce18f7cd733acc73
e1a2345cfd67607c399b261d1c7c6106817477666dc8efeaff041999d9926f6f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/js/timePicker.js?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"624726-5f36-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/js/bootstrap-select.js?ver=6.0.3
172.104.156.169200 OK 16 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/js/bootstrap-select.js?ver=6.0.3
IP 172.104.156.169:0
Hash d280bfa1b29c5e8bb443b2f32804ec16
77f5ccfb4f9874dab2d77b77ebe580900039164a
20b498c0352892091e383f3dddefa64fcc6fb7107aaf7a468e70f1c76b498621
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/js/bootstrap-select.js?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"624604-1110e-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/js/html5lightbox.js?ver=6.0.3
172.104.156.169200 OK 18 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/js/html5lightbox.js?ver=6.0.3
IP 172.104.156.169:0
File type ASCII text, with very long lines (637)
Hash 9154c06aa8c294aa104e61df49148deb
7038b84f890246978f2ae5e88d614c1a26654563
d95c3850f1959424d5e57b26ea5383d6510b9c733a6490cea7e4794f2e28084d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/js/html5lightbox.js?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"624622-140f1-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash e93c05da275c574b377bf486283da6d4
0b37fb7edcd4e9a4b76722efa62eb7e44225d2c6
6cf1c05cd98888725c136437d903d1df8e37a331f4a4e889430887d52c35aa39
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6295
Cache-Control: max-age=108116
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:43:49 GMT
Etag: "6380e6b2-117"
Expires: Sun, 27 Nov 2022 17:45:45 GMT
Last-Modified: Fri, 25 Nov 2022 16:00:50 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
workaholics.qa/wp-content/themes/consultive/js/custom.js?ver=6.0.3
172.104.156.169200 OK 3.9 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/js/custom.js?ver=6.0.3
IP 172.104.156.169:0
File type ASCII text, with CRLF line terminators
Hash 65d8010108d56c83d8dd81c815161d99
fa7f9c42935bed2f8aa8a86dac7657e262fd9334
f6555e45e351bdccdec97282b53c3a70e355d7ea54084c56787c335e8ff6a367
GET /wp-content/themes/consultive/js/custom.js?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 18 Aug 2021 08:24:40 GMT
ETag: W/"62461f-5382-5c9d12a628200"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-includes/js/comment-reply.min.js?ver=6.0.3
172.104.156.169200 OK 1.4 kB URL HTTP/1.1 workaholics.qa/wp-includes/js/comment-reply.min.js?ver=6.0.3
IP 172.104.156.169:0
File type ASCII text, with very long lines (2946)
Hash 28214bc78b9edfcfbc9c7b651fb4f56c
fb0847abdb33dd943a2dcda4c4b905fb5cdd116c
11691bc1acc1f3a7ab8ef7c67fb720ca58fb72e52f510009f7b0cbc2589d45e0
GET /wp-includes/js/comment-reply.min.js?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 15 Jun 2022 09:30:01 GMT
ETag: W/"446fe-ba5-5e1792a5fe215"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:43:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
workaholics.qa/wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.min.js?ver=2.9.6
172.104.156.169200 OK 7.6 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.min.js?ver=2.9.6
IP 172.104.156.169:0
File type ASCII text, with very long lines (17655)
Hash ac50f017336d9f192988654ae8abb27b
960b7a01e2ffb25b353c40c8686956e7a1bee200
6ccce6335cc2bc6a98ea8f1cd4b7572b2148acd40b4469861f59fba649bba646
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.min.js?ver=2.9.6 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:26 GMT
ETag: W/"e7e193-44f8-5c5467b071e80"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
172.104.156.169200 OK 5.1 kB URL HTTP/1.1 workaholics.qa/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 172.104.156.169:0
File type ASCII text, with very long lines (15660)
Hash 8592048ec656e41d4797240e7df5ac38
5ed5d9f50f67b9283dc78d0f0ad9e4ab53af595b
0865155ebddd7c505b677182ab113cc5f1ba66ccc7bd085c3aa8f94403fdc6cd
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 15 Jun 2022 09:30:01 GMT
ETag: W/"44cac-48b9-5e1792a5fae00"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3df71aab146eefc49acb608796aab63
8401892995193919376dfcd798b09c8261579454
a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6221
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:43:49 GMT
Last-Modified: Sat, 26 Nov 2022 10:00:08 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e922b25acaba2d7f8921ebe973a4b261
5dd4c237c84a652cbcf3db163529f3788ceafc46
a7856c7777aa01b671ddae097494f2b031cbbddc7b244fe8714a8c02b85d8589
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:43:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.google.com/maps/api/js?key&ver=6.0.3
216.58.211.14200 OK 53 kB URL HTTP/2 maps.google.com/maps/api/js?key&ver=6.0.3
IP 216.58.211.14:0
File type ASCII text, with very long lines (2342)
Hash e18d5ed6c6eac1f73943ab86524cd97d
50a6aaa246ec7761abdd70e07e565d6bcd319143
7a9c595eee5e1ddd6a6a8fb2ea526e5c0eca8c72cee9c433cd1caabc8b41dc66
GET /maps/api/js?key&ver=6.0.3 HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Sat, 26 Nov 2022 11:43:49 GMT
expires: Sat, 26 Nov 2022 12:13:49 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53293
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=11
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 31be40994cbc3ddd534008bfd455708f
eef14c8626ac62319f5eaafb8e0560818af66510
e69b4f205671508023c876ea499df2872607b1fb4ec1d71cd3fd66acc581aa80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E69B4F205671508023C876EA499DF2872607B1FB4EC1D71CD3FD66ACC581AA80"
Last-Modified: Sat, 26 Nov 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 26 Nov 2022 17:43:50 GMT
Date: Sat, 26 Nov 2022 11:43:50 GMT
Connection: keep-alive
push.services.mozilla.com/
54.186.209.73101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.186.209.73:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: mF4150Mo/4KSWqFWQOL0gw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: VeoDj51Cbvxw4loPWRNU5YVFbiU=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 97ebcbfe55fd98252519e1019ab975b0
d65b4f384482031d613df474b70df68526abb6a7
f19d80309cd684b724b8bfc102b2ec7b1adeebc4f56c587eb079f2b129494472
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F19D80309CD684B724B8BFC102B2EC7B1ADEEBC4F56C587EB079F2B129494472"
Last-Modified: Thu, 24 Nov 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21576
Expires: Sat, 26 Nov 2022 17:43:26 GMT
Date: Sat, 26 Nov 2022 11:43:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 97ebcbfe55fd98252519e1019ab975b0
d65b4f384482031d613df474b70df68526abb6a7
f19d80309cd684b724b8bfc102b2ec7b1adeebc4f56c587eb079f2b129494472
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F19D80309CD684B724B8BFC102B2EC7B1ADEEBC4F56C587EB079F2B129494472"
Last-Modified: Thu, 24 Nov 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21557
Expires: Sat, 26 Nov 2022 17:43:07 GMT
Date: Sat, 26 Nov 2022 11:43:50 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:43:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash e93c05da275c574b377bf486283da6d4
0b37fb7edcd4e9a4b76722efa62eb7e44225d2c6
6cf1c05cd98888725c136437d903d1df8e37a331f4a4e889430887d52c35aa39
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6296
Cache-Control: max-age=108116
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:43:50 GMT
Etag: "6380e6b2-117"
Expires: Sun, 27 Nov 2022 17:45:46 GMT
Last-Modified: Fri, 25 Nov 2022 16:00:50 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 97ebcbfe55fd98252519e1019ab975b0
d65b4f384482031d613df474b70df68526abb6a7
f19d80309cd684b724b8bfc102b2ec7b1adeebc4f56c587eb079f2b129494472
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F19D80309CD684B724B8BFC102B2EC7B1ADEEBC4F56C587EB079F2B129494472"
Last-Modified: Thu, 24 Nov 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 26 Nov 2022 17:43:50 GMT
Date: Sat, 26 Nov 2022 11:43:50 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e922b25acaba2d7f8921ebe973a4b261
5dd4c237c84a652cbcf3db163529f3788ceafc46
a7856c7777aa01b671ddae097494f2b031cbbddc7b244fe8714a8c02b85d8589
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:43:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
workaholics.qa/wp-content/themes/consultive/css/font-awesome.min.css?ver=6.0.3
172.104.156.169200 OK 6.3 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/css/font-awesome.min.css?ver=6.0.3
IP 172.104.156.169:0
File type ASCII text, with very long lines (27303)
Hash 5553e4459cadf3a5a20f8b9e157a6e86
2f8f986e225516151a9580efb6f5791c2bffedb4
2e3a1a013310056297edf29fca5a7bb9e61a55ad4b075fc3d01a0888218d9626
GET /wp-content/themes/consultive/css/font-awesome.min.css?ver=6.0.3 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"6184e3-6b4a-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:50 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 31be40994cbc3ddd534008bfd455708f
eef14c8626ac62319f5eaafb8e0560818af66510
e69b4f205671508023c876ea499df2872607b1fb4ec1d71cd3fd66acc581aa80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E69B4F205671508023C876EA499DF2872607B1FB4EC1D71CD3FD66ACC581AA80"
Last-Modified: Sat, 26 Nov 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21557
Expires: Sat, 26 Nov 2022 17:43:07 GMT
Date: Sat, 26 Nov 2022 11:43:50 GMT
Connection: keep-alive
workaholics.qa/wp-content/uploads/2017/07/1-on-6.png
172.104.156.169200 OK 18 kB URL HTTP/1.1 workaholics.qa/wp-content/uploads/2017/07/1-on-6.png
IP 172.104.156.169:0
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash 3e1f4f86d4567635821521b3f301c277
6c65f791f0016c254597668470ecf28e4102fce3
22cfb89b4a7f419b62a81e3a83d3a71ae1c08a6c3cad59ade2335e9910c8a880
GET /wp-content/uploads/2017/07/1-on-6.png HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: image/png
Content-Length: 17484
Connection: keep-alive
Last-Modified: Tue, 11 May 2021 10:58:06 GMT
ETag: "4cc6b2-444c-5c20bc4d0cb80"
Expires: Wed, 25 Jan 2023 11:43:50 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
workaholics.qa/wp-content/uploads/2021/09/workaholics-mirabelloInteriors-Logo.png
172.104.156.169200 OK 5.3 kB URL HTTP/1.1 workaholics.qa/wp-content/uploads/2021/09/workaholics-mirabelloInteriors-Logo.png
IP 172.104.156.169:0
File type PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 0e8b453a7275861193cdfc40aaaa2926
fcd6d64d1740bb0b6225e6629589b5e62b738cfa
035d97e33679a57feb47a4dd22a43dedbd6cefe8b286c916fdd3924cc1f148bd
GET /wp-content/uploads/2021/09/workaholics-mirabelloInteriors-Logo.png HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: image/png
Content-Length: 5332
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 12:52:52 GMT
ETag: "4cca76-14d4-5cd21cee0b100"
Expires: Wed, 25 Jan 2023 11:43:50 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
workaholics.qa/wp-content/uploads/2021/09/play-1-e1632745713563.png
172.104.156.169200 OK 25 kB URL HTTP/1.1 workaholics.qa/wp-content/uploads/2021/09/play-1-e1632745713563.png
IP 172.104.156.169:0
File type PNG image data, 364 x 95, 8-bit/color RGBA, non-interlaced\012- data
Hash de285c53f59a68ebaf813757140a7927
6d6a5bc3f88250f3257360c335c8f03f9b3e06a3
46393899c800adfaa4ee5375c58a7fa741daad0d291804a676a60d6223b98d12
GET /wp-content/uploads/2021/09/play-1-e1632745713563.png HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: image/png
Content-Length: 24673
Connection: keep-alive
Last-Modified: Mon, 27 Sep 2021 12:28:32 GMT
ETag: "4cca2a-6061-5ccf93c2c1c00"
Expires: Wed, 25 Jan 2023 11:43:50 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
workaholics.qa/wp-content/uploads/2021/09/workaholics-RSPR_Concepts_and_Design.png
172.104.156.169200 OK 6.9 kB URL HTTP/1.1 workaholics.qa/wp-content/uploads/2021/09/workaholics-RSPR_Concepts_and_Design.png
IP 172.104.156.169:0
File type PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 52e6d852868bdaed602305865dd79084
6a20f88592fc760d0e1862cbadf3a903ebe9fee3
fd01afa4fd872578fda6a88452285d436121f4e4be6c6c3f2c2064b1d3afbd3b
GET /wp-content/uploads/2021/09/workaholics-RSPR_Concepts_and_Design.png HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: image/png
Content-Length: 6892
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 12:52:44 GMT
ETag: "4cca62-1aec-5cd21ce669f00"
Expires: Wed, 25 Jan 2023 11:43:50 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
workaholics.menaws.com/wp-content/uploads/2017/07/1-on-1-300x300.png
172.104.156.169404 Not Found 238 B URL HTTP/1.1 workaholics.menaws.com/wp-content/uploads/2017/07/1-on-1-300x300.png
IP 172.104.156.169:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
GET /wp-content/uploads/2017/07/1-on-1-300x300.png HTTP/1.1
Host: workaholics.menaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
workaholics.qa/wp-content/uploads/2021/09/app-e1632745579101.png
172.104.156.169200 OK 25 kB URL HTTP/1.1 workaholics.qa/wp-content/uploads/2021/09/app-e1632745579101.png
IP 172.104.156.169:0
File type PNG image data, 353 x 95, 8-bit/color RGBA, non-interlaced\012- data
Hash 3439dc24830fa553f5952b509961229f
852c903f026b0a8a0e91d957d2e620842c60bc2d
7345623563778630fa850d195902354c9367c6a3027764668a4138a20c8318a1
GET /wp-content/uploads/2021/09/app-e1632745579101.png HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: image/png
Content-Length: 24775
Connection: keep-alive
Last-Modified: Mon, 27 Sep 2021 12:26:18 GMT
ETag: "4cc9ef-60c7-5ccf9342f6e80"
Expires: Wed, 25 Jan 2023 11:43:50 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
workaholics.menaws.com/wp-content/uploads/2017/07/offices-300x300.png
172.104.156.169404 Not Found 238 B URL HTTP/1.1 workaholics.menaws.com/wp-content/uploads/2017/07/offices-300x300.png
IP 172.104.156.169:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
GET /wp-content/uploads/2017/07/offices-300x300.png HTTP/1.1
Host: workaholics.menaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
workaholics.menaws.com/wp-content/uploads/2017/07/bar-300x300.png
172.104.156.169404 Not Found 238 B URL HTTP/1.1 workaholics.menaws.com/wp-content/uploads/2017/07/bar-300x300.png
IP 172.104.156.169:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
GET /wp-content/uploads/2017/07/bar-300x300.png HTTP/1.1
Host: workaholics.menaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
workaholics.menaws.com/wp-content/uploads/2021/04/1-on-4-300x300.png
172.104.156.169404 Not Found 238 B URL HTTP/1.1 workaholics.menaws.com/wp-content/uploads/2021/04/1-on-4-300x300.png
IP 172.104.156.169:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
GET /wp-content/uploads/2021/04/1-on-4-300x300.png HTTP/1.1
Host: workaholics.menaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
workaholics.menaws.com/wp-content/uploads/2017/07/visual-300x300.png
172.104.156.169404 Not Found 238 B URL HTTP/1.1 workaholics.menaws.com/wp-content/uploads/2017/07/visual-300x300.png
IP 172.104.156.169:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
GET /wp-content/uploads/2017/07/visual-300x300.png HTTP/1.1
Host: workaholics.menaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
workaholics.qa/wp-content/uploads/2021/04/workaholics-logo.png
172.104.156.169200 OK 22 kB URL HTTP/1.1 workaholics.qa/wp-content/uploads/2021/04/workaholics-logo.png
IP 172.104.156.169:0
File type PNG image data, 300 x 139, 8-bit/color RGBA, non-interlaced\012- data
Hash a8b68a809553d4fe736234e8ca37d3f9
b1383a67f9919d0c8d261a3c950a11602bdae7c1
fe9ba7b78be46ae4ac24da38c080f426b17b070b67cd171d447208edf48ee339
GET /wp-content/uploads/2021/04/workaholics-logo.png HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: image/png
Content-Length: 22059
Connection: keep-alive
Last-Modified: Fri, 09 Apr 2021 07:44:10 GMT
ETag: "4cc78d-562b-5bf8554558680"
Expires: Wed, 25 Jan 2023 11:43:50 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
workaholics.menaws.com/wp-content/uploads/2021/04/1-on-5-300x300.png
172.104.156.169404 Not Found 238 B URL HTTP/1.1 workaholics.menaws.com/wp-content/uploads/2021/04/1-on-5-300x300.png
IP 172.104.156.169:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
GET /wp-content/uploads/2021/04/1-on-5-300x300.png HTTP/1.1
Host: workaholics.menaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
workaholics.qa/wp-content/uploads/2021/04/1-on-2.png
172.104.156.169200 OK 24 kB URL HTTP/1.1 workaholics.qa/wp-content/uploads/2021/04/1-on-2.png
IP 172.104.156.169:0
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash 1d524ce151a85b2537f90bff58f6cd45
360486eb2eb439127486050b9ec02e18aa8d98a1
ecfffe9a7581b3dc5d975b2515782def147a231cb629514912f537276722b37b
GET /wp-content/uploads/2021/04/1-on-2.png HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: image/png
Content-Length: 24198
Connection: keep-alive
Last-Modified: Tue, 11 May 2021 10:55:56 GMT
ETag: "4cc75e-5e86-5c20bbd112700"
Expires: Wed, 25 Jan 2023 11:43:50 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
workaholics.menaws.com/wp-content/uploads/2017/07/events-300x300.png
172.104.156.169404 Not Found 238 B URL HTTP/1.1 workaholics.menaws.com/wp-content/uploads/2017/07/events-300x300.png
IP 172.104.156.169:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
GET /wp-content/uploads/2017/07/events-300x300.png HTTP/1.1
Host: workaholics.menaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
workaholics.menaws.com/wp-content/uploads/2021/04/1-on-1-300x300.png
172.104.156.169404 Not Found 238 B URL HTTP/1.1 workaholics.menaws.com/wp-content/uploads/2021/04/1-on-1-300x300.png
IP 172.104.156.169:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
GET /wp-content/uploads/2021/04/1-on-1-300x300.png HTTP/1.1
Host: workaholics.menaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
workaholics.qa/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.1.0
172.104.156.169200 OK 1.2 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.1.0
IP 172.104.156.169:0
File type ASCII text, with very long lines (7043), with no line terminators
Hash 4be8c34cbd87f033edea3b6fa2a39f83
7749e3a03a35276d6c7f6b2f7c43d5abd5513673
5807bbd158730d4e4aee3ee4cd307c4ef7269eaea7d4baaee5e57440099e135a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.1.0 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 09 Nov 2022 07:10:13 GMT
ETag: W/"105a284-1b83-5ed04590e5f54"
Expires: Mon, 26 Dec 2022 11:43:50 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/uploads/2021/05/1-on-1-e1621415690982.png
172.104.156.169200 OK 44 kB URL HTTP/1.1 workaholics.qa/wp-content/uploads/2021/05/1-on-1-e1621415690982.png
IP 172.104.156.169:0
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash 1dd84bceb76d2b5567cdb827aabcb733
e6fb70b7810b4198aa74eec072723840b540eec1
e0e588cc86f593e1550f24451b84c52d217a02fe1ece1abaef36fdc64cf73043
GET /wp-content/uploads/2021/05/1-on-1-e1621415690982.png HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: image/png
Content-Length: 43981
Connection: keep-alive
Last-Modified: Wed, 19 May 2021 09:14:50 GMT
ETag: "4cc7b2-abcd-5c2ab423c5680"
Expires: Wed, 25 Jan 2023 11:43:50 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
workaholics.qa/wp-content/uploads/2021/04/1-on-1.png
172.104.156.169200 OK 23 kB URL HTTP/1.1 workaholics.qa/wp-content/uploads/2021/04/1-on-1.png
IP 172.104.156.169:0
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash fa07d42118fcdb5f6c9569440bef2059
73f7b3032272543283e04c1e926b106537f0ad8d
cf38af2ce1b154773166408971acc0d85a7433b7c23856cb085b650ac5aa61a7
GET /wp-content/uploads/2021/04/1-on-1.png HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: image/png
Content-Length: 22606
Connection: keep-alive
Last-Modified: Tue, 11 May 2021 10:55:44 GMT
ETag: "4cc751-584e-5c20bbc5a0c00"
Expires: Wed, 25 Jan 2023 11:43:50 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
workaholics.qa/wp-content/uploads/2021/04/workaholics-slide.jpg
172.104.156.169200 OK 168 kB URL HTTP/1.1 workaholics.qa/wp-content/uploads/2021/04/workaholics-slide.jpg
IP 172.104.156.169:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x706, components 3\012- data
Size 168 kB (168360 bytes)
Hash 51a154a6aadce070e6dbe3a05e105ca3
812952c272ea3c84c89efae6351fb64634170fdd
775425f659cef918a0e46ea5910e8fd502dd9e6dfa3316667deda1b34672f4fe
GET /wp-content/uploads/2021/04/workaholics-slide.jpg HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: image/jpeg
Content-Length: 168360
Connection: keep-alive
Last-Modified: Fri, 09 Apr 2021 09:54:48 GMT
ETag: "4cc79f-291a8-5bf872783ea00"
Expires: Wed, 25 Jan 2023 11:43:50 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
workaholics.qa/wp-content/uploads/2021/09/workaholics-bc_bb-logo.png
172.104.156.169200 OK 17 kB URL HTTP/1.1 workaholics.qa/wp-content/uploads/2021/09/workaholics-bc_bb-logo.png
IP 172.104.156.169:0
File type PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 1c5cd5f906311e9fd7fa8faba3868075
c149837fd9e54860d519c4cf2e2164487d655dbd
f1d9649419de09ef1889b23aff30ec721468144aeb0c53027526e1aa2c0d2e70
GET /wp-content/uploads/2021/09/workaholics-bc_bb-logo.png HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: image/png
Content-Length: 17159
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 12:52:50 GMT
ETag: "4cca6c-4307-5cd21cec22c80"
Expires: Wed, 25 Jan 2023 11:43:50 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
workaholics.qa/wp-content/plugins/kingcomposer/assets/css/fonts/fa-solid-900.woff2
172.104.156.169200 OK 44 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/kingcomposer/assets/css/fonts/fa-solid-900.woff2
IP 172.104.156.169:0
File type Web Open Font Format (Version 2), TrueType, length 44068, version 1.0\012- data
Hash 84f351b3972185aed620f78489e48b2d
27c88aea3904d48cde4c8cd6fa85a414b547feea
cb7aa6b06aa5a8eea3670662c4b0c37104041c14575fc170dc48677a0506a33a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/kingcomposer/assets/css/fonts/fa-solid-900.woff2 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://workaholics.qa/wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.9.6
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: font/woff2
Content-Length: 44068
Connection: keep-alive
Last-Modified: Mon, 21 Jun 2021 13:16:26 GMT
ETag: "e7813c-ac24-5c5467b071e80"
Expires: Wed, 25 Jan 2023 11:43:50 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
workaholics.qa/wp-content/uploads/2021/06/workaholics-partner.png
172.104.156.169200 OK 2.4 kB URL HTTP/1.1 workaholics.qa/wp-content/uploads/2021/06/workaholics-partner.png
IP 172.104.156.169:0
File type PNG image data, 300 x 150, 8-bit/color RGB, non-interlaced\012- data
Hash 883e71e83286032ffe181ec8fb35269a
c8512bf1c458bb311bbd229e070a0fcc28f51de1
1bc7c03b2a5e650ce4ce8eb49f902a171801ac301b7ef3360d373c2e6ee06945
GET /wp-content/uploads/2021/06/workaholics-partner.png HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: image/png
Content-Length: 2367
Connection: keep-alive
Last-Modified: Mon, 14 Jun 2021 11:53:28 GMT
ETag: "4cc976-93f-5c4b8816d3e00"
Expires: Wed, 25 Jan 2023 11:43:50 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
workaholics.qa/wp-content/uploads/2021/04/1-on-5.png
172.104.156.169200 OK 23 kB URL HTTP/1.1 workaholics.qa/wp-content/uploads/2021/04/1-on-5.png
IP 172.104.156.169:0
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash 52e06f85e9b42b0638b56c34e1335aef
87871c8feb2ac206c70360c2b6b51b16437bd229
6ea6fd73ffcaa04eeef4c95628c3bcd597aa3b99a98b2faff39ae57aca6fc74c
GET /wp-content/uploads/2021/04/1-on-5.png HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: image/png
Content-Length: 22883
Connection: keep-alive
Last-Modified: Tue, 11 May 2021 10:57:48 GMT
ETag: "4cc782-5963-5c20bc3be2300"
Expires: Wed, 25 Jan 2023 11:43:50 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
workaholics.qa/wp-content/uploads/2021/04/1-on-4.png
172.104.156.169200 OK 19 kB URL HTTP/1.1 workaholics.qa/wp-content/uploads/2021/04/1-on-4.png
IP 172.104.156.169:0
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash d54bc9ee1ceccaf498b13e63a9455a99
a02d66c2423f01dd2f7f882d63cc901b97f2fe52
8f1dbabd4d2e5f0173837a778451349e7c5ca53b5c4fa71ce9f767616daf94ea
GET /wp-content/uploads/2021/04/1-on-4.png HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: image/png
Content-Length: 19379
Connection: keep-alive
Last-Modified: Tue, 11 May 2021 10:56:44 GMT
ETag: "4cc76d-4bb3-5c20bbfed9300"
Expires: Wed, 25 Jan 2023 11:43:50 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:43:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:43:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.195200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://workaholics.qa
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 21:48:50 GMT
expires: Thu, 23 Nov 2023 21:48:50 GMT
cache-control: public, max-age=31536000
age: 222900
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
216.58.207.195200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://workaholics.qa
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:30:59 GMT
expires: Thu, 23 Nov 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 231171
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
workaholics.qa/wp-content/plugins/kingcomposer/assets/css/fonts/Simple-Line-Icons.ttf
172.104.156.169200 OK 53 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/kingcomposer/assets/css/fonts/Simple-Line-Icons.ttf
IP 172.104.156.169:0
File type TrueType Font data, 11 tables, 1st "OS/2", 18 names, Macintosh, type 1 string, simple-line-icons\012- data
Hash b2892aa62b0fb2c21c8d7700e2ef6e56
acb3e2b0f5ba11b8e4e43b7f73223ec048054861
937e59152189ecedb8688efcd8b927fc40d43b5c5225a05a25f4cf537ad8ca7c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/kingcomposer/assets/css/fonts/Simple-Line-Icons.ttf HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.9.6
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: font/ttf
Content-Length: 53368
Connection: keep-alive
Last-Modified: Mon, 21 Jun 2021 13:16:26 GMT
ETag: "e7812d-d078-5c5467b071e80"
Expires: Wed, 25 Jan 2023 11:43:50 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
216.58.207.195200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://workaholics.qa
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 14:43:52 GMT
expires: Wed, 22 Nov 2023 14:43:52 GMT
cache-control: public, max-age=31536000
age: 334798
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
216.58.207.195200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://workaholics.qa
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 08:32:10 GMT
expires: Thu, 23 Nov 2023 08:32:10 GMT
cache-control: public, max-age=31536000
age: 270700
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:43:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
workaholics.qa/wp-content/themes/consultive/fonts/fontawesome-webfont.woff2?v=4.5.0
172.104.156.169200 OK 67 kB URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/fonts/fontawesome-webfont.woff2?v=4.5.0
IP 172.104.156.169:0
File type Web Open Font Format (Version 2), TrueType, length 66624, version 4.262\012- data
Hash db812d8a70a4e88e888744c1c9a27e89
638c652d623280a58144f93e7b552c66d1667a11
ff82aeed6b9bb6701696c84d1b223d2e682eb78c89117a438ce6cfea8c498995
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://workaholics.qa/wp-content/themes/consultive/css/font-awesome.min.css?ver=6.0.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: font/woff2
Content-Length: 66624
Connection: keep-alive
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: "61a942-10440-5c5467b25a300"
Expires: Wed, 25 Jan 2023 11:43:50 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
workaholics.qa/wp-content/plugins/revslider/public/assets/assets/loader.gif
172.104.156.169200 OK 2.5 kB URL HTTP/1.1 workaholics.qa/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP 172.104.156.169:0
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: image/gif
Content-Length: 2545
Connection: keep-alive
Last-Modified: Mon, 21 Jun 2021 13:16:26 GMT
ETag: "44489b-9f1-5c5467b071e80"
Expires: Wed, 25 Jan 2023 11:43:50 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
workaholics.qa/wp-content/uploads/2017/07/visual.png
172.104.156.169200 OK 36 kB URL HTTP/1.1 workaholics.qa/wp-content/uploads/2017/07/visual.png
IP 172.104.156.169:0
File type PNG image data, 1251 x 1251, 8-bit/color RGBA, non-interlaced\012- data
Hash 165e41acc98765bf27b63b7c00f00ce1
a06ad5b81f4642a95d686783398592fcd09c1b71
92ed4802d8818b263e7f7af40f42ac9748dc3fd62b42151d73f61a6a4871fad3
GET /wp-content/uploads/2017/07/visual.png HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: image/png
Content-Length: 36347
Connection: keep-alive
Last-Modified: Thu, 15 Apr 2021 07:18:06 GMT
ETag: "4cc73b-8dfb-5bffdaa290780"
Expires: Wed, 25 Jan 2023 11:43:50 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
workaholics.qa/wp-content/plugins/gravityforms/images/calendar.png
172.104.156.169200 OK 260 B URL HTTP/1.1 workaholics.qa/wp-content/plugins/gravityforms/images/calendar.png
IP 172.104.156.169:0
File type PNG image data, 17 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 084caff7d56d33da39b58d680b08dc4f
d5ec81c710ea9e6a1344918d03efe5904cdeda0d
983474dc36e4959d72f9254b5cb6277503ddaa9355df2825ea351c5ebddbc490
GET /wp-content/plugins/gravityforms/images/calendar.png HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: image/png
Content-Length: 260
Connection: keep-alive
Last-Modified: Mon, 21 Jun 2021 13:16:26 GMT
ETag: "e320bd-104-5c5467b071e80"
Expires: Wed, 25 Jan 2023 11:43:50 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
workaholics.qa/wp-content/themes/consultive/js/froogaloop2.min.js
172.104.156.169200 OK 843 B URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/js/froogaloop2.min.js
IP 172.104.156.169:0
File type ASCII text, with very long lines (520)
Hash 3e47e8d74f1f265c400639f43b7be0ce
e03c7dd463a907c9a245139bd278d44daaa5f424
15dacd17ac62b5772cf8d5826d3968465d2149cf53d1fb3da43d2408e57f22be
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consultive/js/froogaloop2.min.js HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: W/"624620-6e9-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:50 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/themes/consultive/js/icons/css/fontello.css
172.104.156.169200 OK 38 B URL HTTP/1.1 workaholics.qa/wp-content/themes/consultive/js/icons/css/fontello.css
IP 172.104.156.169:0
Hash 95763cef2e051318c56467c13a879b7f
02e701a0dddde40f940df04f48aa3b0e27fd9f5b
cbd30921d0ecc61b829d9d4551ea0c9aed5711d1e3242a10623e426ad00fad0e
GET /wp-content/themes/consultive/js/icons/css/fontello.css HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: text/css
Content-Length: 38
Connection: keep-alive
Last-Modified: Mon, 21 Jun 2021 13:16:28 GMT
ETag: "116e0b0-26-5c5467b25a300"
Expires: Mon, 26 Dec 2022 11:43:50 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
workaholics.qa/?wc-ajax=get_refreshed_fragments
172.104.156.169200 OK 161 B URL HTTP/1.1 workaholics.qa/?wc-ajax=get_refreshed_fragments
IP 172.104.156.169:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 650d329ca7144ad1b254f70cec48c223
05e4429056d334328c79307d47cb4f2437037c25
2343b049d208442d3efabc649b5f659a589a5bbb8d5e92f1fffb474775331fea
Analyzer Verdict Alert fortinet Phishing
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://workaholics.qa
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: application/json; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Origin: https://workaholics.qa
Access-Control-Allow-Credentials: true
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Robots-Tag: noindex
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
X-Server-Powered-By: Engintron
Content-Encoding: gzip
workaholics.qa/wp-content/uploads/2017/07/bar-e1621415795811.png
172.104.156.169200 OK 50 kB URL HTTP/1.1 workaholics.qa/wp-content/uploads/2017/07/bar-e1621415795811.png
IP 172.104.156.169:0
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash 5fe348ab1e43c1a2c9d048f14d62fd27
0d5cae42087e7518a802183bf86aa93d65189c03
35753b317bf1b1b6453add4e37f7df6f351c35da8754b7ee9a0e0019f91cbee2
GET /wp-content/uploads/2017/07/bar-e1621415795811.png HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: image/png
Content-Length: 49630
Connection: keep-alive
Last-Modified: Wed, 19 May 2021 09:16:34 GMT
ETag: "4cc6c4-c1de-5c2ab486f4080"
Expires: Wed, 25 Jan 2023 11:43:50 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
workaholics.qa/wp-content/uploads/2017/07/1-on-1-e1621415775531.png
172.104.156.169200 OK 44 kB URL HTTP/1.1 workaholics.qa/wp-content/uploads/2017/07/1-on-1-e1621415775531.png
IP 172.104.156.169:0
Hash 28e2639f64a5fa48919356229060c3c6
240ab9e2d670b9c6211b5664c1518ef798584466
e927800b19172c6bd929724935d3e61866ddb22217bbc5515609b9c8b30a271a
GET /wp-content/uploads/2017/07/1-on-1-e1621415775531.png HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:50 GMT
Content-Type: image/png
Content-Length: 43981
Connection: keep-alive
Last-Modified: Wed, 19 May 2021 09:16:14 GMT
ETag: "4cc695-abcd-5c2ab473e1380"
Expires: Wed, 25 Jan 2023 11:43:50 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4863
Expires: Sat, 26 Nov 2022 13:04:53 GMT
Date: Sat, 26 Nov 2022 11:43:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4863
Expires: Sat, 26 Nov 2022 13:04:53 GMT
Date: Sat, 26 Nov 2022 11:43:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4863
Expires: Sat, 26 Nov 2022 13:04:53 GMT
Date: Sat, 26 Nov 2022 11:43:50 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ezHvyK3va4SioabOjSittTiLQRs_Q8k4TPxkiGp_svtZ8omDPTUN-A==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 05:04:28 GMT
age: 23962
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c125eba-03aa-443e-b99e-10c7890258e8.webp
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c125eba-03aa-443e-b99e-10c7890258e8.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 95101ded0fe92a85649a086992948008
afed98649590f2524a9e530c53eebbc1ba36da6a
7f754cb2105494045efe657c47313e77bb26361ca45a6f8cbce1fdb52a15ba01
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c125eba-03aa-443e-b99e-10c7890258e8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9787
x-amzn-requestid: 51d9848a-868c-4e51-b1a8-30596d0108b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLUfxHjToAMFeGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813464-749244df2aa06b23445d675c;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:32:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mSCEUQ3aOXg6rxJV0iWPgFZ6TE2pCucWwOI3KAsdbu_EadcDDa5vwg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:07:47 GMT
age: 48963
etag: "afed98649590f2524a9e530c53eebbc1ba36da6a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins%3A300%2C400%2C500%2C600%2C700%7CHind%3A300%2C400%2C500%2C600%2C700&subset=latin%2Clatin-ext
142.250.74.10200 OK 12 kB URL HTTP/2 fonts.googleapis.com/css?family=Poppins%3A300%2C400%2C500%2C600%2C700%7CHind%3A300%2C400%2C500%2C600%2C700&subset=latin%2Clatin-ext
IP 142.250.74.10:0
Hash 9593941b1756bd93151fa579af1e5818
c38159d4c00bf6ced5f14fc90634a634b98edd1e
ebda96e5a79dac8ac79146d5d70ded02ef0d505e82a0b6bb510f96d4fb321e8b
GET /css?family=Poppins%3A300%2C400%2C500%2C600%2C700%7CHind%3A300%2C400%2C500%2C600%2C700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 26 Nov 2022 11:43:49 GMT
date: Sat, 26 Nov 2022 11:43:49 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8dc4b8a7e9f7f4f84f0da568b43392b
3d32bff85cb7ec118c4496d0c3802829fdc9af3b
4b0ffde427085c796a7a5823604b29a4af43dbb93e99ec41f34feb37f52ac7d9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9049
x-amzn-requestid: 6cbd9639-c29d-4ff4-8091-3168f64f4c78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVGHzKoAMFSuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135ba-100ea4235fdf1df8491041c8;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OJZkZ18TlSgdBWsmSroQPIcYIvBFvz5-7hu9_GravTcz6zqxKXHZrg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:43:36 GMT
age: 50414
etag: "3d32bff85cb7ec118c4496d0c3802829fdc9af3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e649ab-6d56-47c9-ab7e-c65d9bdfcffd.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e649ab-6d56-47c9-ab7e-c65d9bdfcffd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 926df9839ec3d924b563b55d8bccace8
c47a3884465fc02b5c57faa5ffbd986ba29c64c2
a97cd625959aa81bc516024628315b2c6e2ce94f76cd579751a686a6611cc4d2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e649ab-6d56-47c9-ab7e-c65d9bdfcffd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6789
x-amzn-requestid: eede6332-5376-4f9c-83fc-f894430c1f4b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWWYFFgoAMFhaQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381375b-66d7ffc70f7d901420a503da;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:44:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -6kE-HDfLIQMtzuaOuArCjtxgpQUgxMrpjcT7pDIdY7CDlJNK1GZWA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:24 GMT
etag: "c47a3884465fc02b5c57faa5ffbd986ba29c64c2"
content-type: image/jpeg
age: 50246
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
34.120.237.76200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a783df85f30f9c555f9df6b99f61744d
61f9bed607e81606be78285596acdc5e0e4f4994
19db42201d0fa059f680d890ede6683c04e893e6308a2256d0203f826a7f34de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QS3ZKYetcm87GNwSr34eRPF2d4r8ppwf3fT19aV-u84f7ObX4bU8wQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 07:13:26 GMT
age: 16224
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
workaholics.menaws.com/wp-content/uploads/2021/06/Lower-Buttons-4.png
172.104.156.169404 Not Found 238 B URL HTTP/1.1 workaholics.menaws.com/wp-content/uploads/2021/06/Lower-Buttons-4.png
IP 172.104.156.169:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
GET /wp-content/uploads/2021/06/Lower-Buttons-4.png HTTP/1.1
Host: workaholics.menaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 26 Nov 2022 11:43:51 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
workaholics.menaws.com/wp-content/uploads/2021/06/Lower-Buttons-3.png
172.104.156.169404 Not Found 238 B URL HTTP/1.1 workaholics.menaws.com/wp-content/uploads/2021/06/Lower-Buttons-3.png
IP 172.104.156.169:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
GET /wp-content/uploads/2021/06/Lower-Buttons-3.png HTTP/1.1
Host: workaholics.menaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 26 Nov 2022 11:43:51 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
workaholics.qa/wp-content/uploads/2021/04/workaholics-fv.png
172.104.156.169200 OK 4.3 kB URL HTTP/1.1 workaholics.qa/wp-content/uploads/2021/04/workaholics-fv.png
IP 172.104.156.169:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash ec5a43752eff2f6af6d743622ea19fc2
5c3458180ce0804abccbc6f96ac263078f859ea7
3f9168f3831e06d0e396058effee23d17308d5109e83e6aeec14d24766011c3e
GET /wp-content/uploads/2021/04/workaholics-fv.png HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:51 GMT
Content-Type: image/png
Content-Length: 4286
Connection: keep-alive
Last-Modified: Fri, 09 Apr 2021 07:41:18 GMT
ETag: "4cc783-10be-5bf854a150380"
Expires: Wed, 25 Jan 2023 11:43:51 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
172.217.21.170200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 172.217.21.170:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://workaholics.qa
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 26 Nov 2022 11:43:51 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://workaholics.qa
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
workaholics.qa/path/to/font-awesome/css/font-awesome.min.css
172.104.156.169404 Not Found 0 B URL HTTP/1.1 workaholics.qa/path/to/font-awesome/css/font-awesome.min.css
IP 172.104.156.169:0
GET /path/to/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Link: <https://workaholics.qa/wp-json/>; rel="https://api.w.org/"
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
fonts.googleapis.com/css?family=Roboto:400
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400
IP 142.250.74.10:0
GET /css?family=Roboto:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 26 Nov 2022 11:43:49 GMT
date: Sat, 26 Nov 2022 11:43:49 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.addtoany.com/menu/page.js
172.67.39.148200 OK 0 B URL HTTP/2 static.addtoany.com/menu/page.js
IP 172.67.39.148:0
GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 11:43:49 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=172800
cf-bgj: minify
access-control-allow-origin: *
age: 12865
etag: W/"c04-5ee0ab04c6251"
last-modified: Tue, 22 Nov 2022 08:09:18 GMT
vary: Accept-Encoding
via: e4s
x-content-type-options: nosniff
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 77025e60db8eb521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
workaholics.qa/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.0
172.104.156.169200 OK 0 B URL HTTP/1.1 workaholics.qa/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.0
IP 172.104.156.169:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.0 HTTP/1.1
Host: workaholics.qa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://workaholics.qa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 11:43:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jun 2021 13:16:26 GMT
ETag: W/"444dd8-1e469-5c5467b071e80"
Expires: Mon, 26 Dec 2022 11:43:49 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip