primatexpertise.com/stnf/mo327.zip
301 Moved Permanently 250 B URL HTTP/1.1 primatexpertise.com/stnf/mo327.zip
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 24b1cbfd4d64ce10a0ccaf4efcd37a94
5c8f71ff9a0da03c5abef46d92bfb86ace2ff7bf
a47775b168f757bcff6aa7ab5e26fca43379d9e74e7080389ca095d641db20d0
Analyzer Verdict Alert quad9 Sinkholed
GET /stnf/mo327.zip HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 18 Nov 2022 10:50:37 GMT
Server: Apache
Location: https://primatexpertise.com/stnf/mo327.zip
Content-Length: 250
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d27590a1d3cbe1e9632b8ae92aaae3f4
202b34e8a0c3b88c8826fd56c6227b34f2cd6f46
6bcfa518476658128c1fb4ea2435c4e58531454cf97138dce7ece9def589aead
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BCFA518476658128C1FB4EA2435C4E58531454CF97138DCE7ECE9DEF589AEAD"
Last-Modified: Wed, 16 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2993
Expires: Fri, 18 Nov 2022 11:40:30 GMT
Date: Fri, 18 Nov 2022 10:50:37 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash be1be806b5dca7facbb45a6c3db44652
7ae9380a2f3eca959fe6ff6b3832a17cffd12cf4
1f3338058f8e9cae5c9fdd733c74564312726b01c6efdcd628d851d0c99876b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4832
Cache-Control: max-age=90078
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:50:37 GMT
Etag: "63760d7b-1d7"
Expires: Sat, 19 Nov 2022 11:51:55 GMT
Last-Modified: Thu, 17 Nov 2022 10:31:23 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 18 Nov 2022 10:44:47 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 350
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3a38b6dd8a4cc335c026aebf2ed348b6
8a386e0ccb0ca4dc502746c45b2ebc3aa3f83cf8
8b4040a645cec1841a00a22765eb3a74978559daf15c54bd4b41b6b48aab7f95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B4040A645CEC1841A00A22765EB3A74978559DAF15C54BD4B41B6B48AAB7F95"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4147
Expires: Fri, 18 Nov 2022 11:59:44 GMT
Date: Fri, 18 Nov 2022 10:50:37 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 8M3SRVBJlGE886U9hczYWrO1Ft1Iopmv7cqZjmGTRv9rp6I4raWp83PqsUmIjcgKEjVpoPunstM=
x-amz-request-id: 1TFXKB84P96K6VS1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 18 Nov 2022 10:15:34 GMT
age: 2103
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 10:50:37 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 18 Nov 2022 10:44:49 GMT
cache-control: public,max-age=3600
age: 349
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash c10055ce87434f700ff8b20e3be1f919
477b3c9f1da0c464282bb54572737e76b6e346da
4d78eb296876122e5ff40fcd7667adf1bf8a4b1ee4c8203c88a63ce8d7910a57
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5791
Cache-Control: max-age=85968
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:50:38 GMT
Etag: "6375f9af-1d7"
Expires: Sat, 19 Nov 2022 10:43:26 GMT
Last-Modified: Thu, 17 Nov 2022 09:06:55 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: N6Ym/CazhXSnlAn/iXb43w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4bKMAVydXAGRBtF7suKcJmQgw3w=
primatexpertise.com/stnf/mo327.zip
404 Not Found 33 kB URL HTTP/1.1 primatexpertise.com/stnf/mo327.zip
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (46843)
Hash 10c7cedd113b20521d27319547beba71
923c177b9f7de74d10a1b97c8bb31f57b7d763db
accd426d0d484b04a1e4ac5eb217f1b5472f22244c59f2e08f86a85c93eaf17a
Analyzer Verdict Alert quad9 Sinkholed
GET /stnf/mo327.zip HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Fri, 18 Nov 2022 10:50:37 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://primatexpertise.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 32567
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
primatexpertise.com/wp-content/themes/wilddale/assets/themetechmount-wilddale-extra-icons/font/flaticon.css?ver=6.1.1
200 OK 675 B URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/assets/themetechmount-wilddale-extra-icons/font/flaticon.css?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
Hash d56e3f627d81d9081c9862a5ce36839e
0364440291ac387ced98baaab71021b299fee083
fb0dd645a3169ac44905a6c762c3e1a0377bec8652d99689488259e43563ba32
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/assets/themetechmount-wilddale-extra-icons/font/flaticon.css?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "c6d-5eabe67c4bc4f-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 675
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
primatexpertise.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
200 OK 972 B URL HTTP/1.1 primatexpertise.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP
ASN #24940 Hetzner Online GmbH
Hash 8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Wed, 16 Nov 2022 17:21:15 GMT
ETag: "aab-5ed99b32a7c36-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 972
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
c0.wp.com/c/6.1.1/wp-includes/css/classic-themes.min.css
200 OK 217 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/css/classic-themes.min.css
IP
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
GET /c/6.1.1/wp-includes/css/classic-themes.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 10:50:39 GMT
content-type: text/css
content-length: 217
last-modified: Tue, 25 Oct 2022 13:45:16 GMT
expires: Sat, 18 Nov 2023 10:50:39 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
primatexpertise.com/wp-content/themes/wilddale/assets/flexslider/flexslider.css?ver=6.1.1
200 OK 1.6 kB URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/assets/flexslider/flexslider.css?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
Hash c91e9157d6c8a37c834491ddf2f8344a
8f695ba59444e389aabd51286261fa18f024a45a
cd784661f1faa045e61e00dbed9c7579c6609c19a26add5f2fc32eaa11fd2204
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/assets/flexslider/flexslider.css?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "1ab6-5eabe67c46e2e-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 1558
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
primatexpertise.com/wp-content/themes/wilddale/assets/perfect-scrollbar/perfect-scrollbar.min.css?ver=6.1.1
200 OK 607 B URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/assets/perfect-scrollbar/perfect-scrollbar.min.css?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (4596)
Hash 6f4c1e677962c90a2504984fb9bd1e88
816978638fc745ec6f25e9f16a9691743e7540cb
8fd289dbfbdf9d827bbbfd125c6450f248baa88fd61fc6a7ebd7078363d3e6df
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/assets/perfect-scrollbar/perfect-scrollbar.min.css?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "1215-5eabe67c49926-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 607
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
primatexpertise.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
200 OK 7.1 kB URL HTTP/1.1 primatexpertise.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (30837)
Hash 2a2c987c48fb65bb0e78fa2a37120537
ede7a4d5da37f053251e8b8a33be2a23a660473f
3d3136cdfced0eee9b7766b7a17a591f6fb3ba480e71b8930acbea4db4ab71d1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 13:04:38 GMT
ETag: "7917-5edaa3b448fe9-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 7052
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
primatexpertise.com/wp-content/themes/wilddale/assets/chrisbracco-tooltip/chrisbracco-tooltip.min.css?ver=6.1.1
200 OK 873 B URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/assets/chrisbracco-tooltip/chrisbracco-tooltip.min.css?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (3512)
Hash f145780244ef765d12c2018ad224fab8
53c152abad8d378b4305a4128826c55a0b1ebe43
965c2d922025e37d243b6cda7c9a4f7d487b4f058e490a7850bdc3f09bb5132f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/assets/chrisbracco-tooltip/chrisbracco-tooltip.min.css?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "e07-5eabe67c46a46-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 873
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
primatexpertise.com/wp-content/themes/wilddale/css/multi-columns-row.css?ver=6.1.1
200 OK 319 B URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/css/multi-columns-row.css?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
Hash 7dc15bab594e2ca45448151212e34092
a061bd8a619fd18e7fa1236a8cad0b861ea1aeac
346078d626676d45af120a15621fc83ab62e1fe55364ad361806f4a0282a5a37
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/css/multi-columns-row.css?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "a9d-5eabe67c51240-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 319
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
primatexpertise.com/wp-content/themes/wilddale/assets/select2/select2.min.css?ver=6.1.1
200 OK 2.0 kB URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/assets/select2/select2.min.css?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (15195)
Hash 74cafc55fd4afb3a6c0a72a2d7f9cde3
61fafd31da714aca39ae881c63f6592c65fef75d
484d79735bd0cc611276b69fa005afe594b1160b816d6ed93775fc7258108110
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/assets/select2/select2.min.css?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "3b5c-5eabe67c4b097-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 1987
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
primatexpertise.com/wp-content/themes/wilddale/assets/tm-wilddale-icons/css/tm-wilddale-icons.css?ver=6.1.1
200 OK 2.4 kB URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/assets/tm-wilddale-icons/css/tm-wilddale-icons.css?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
Hash 405f2729d6824310f7a9219bf980d10d
6dd35a18dddc616d2d8571510f19ee4d5269b83d
fb20b34d641dfe4ce79e02efe284e7c3d1e513481b2d767cfc00d313a5b05208
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/assets/tm-wilddale-icons/css/tm-wilddale-icons.css?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "2997-5eabe67c4d7a7-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 2352
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
primatexpertise.com/wp-content/themes/wilddale/assets/slick/slick.css?ver=6.1.1
200 OK 557 B URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/assets/slick/slick.css?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
Hash d0e230b935d3f17f3b2ae2c38a6a6d8f
b9f29063a70a9599a89bcb497d833fc758ad63ba
0c38f4e97078d023aeb69238adae19262e7054147463bfe180b00fa7d85a0b7c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/assets/slick/slick.css?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "6c1-5eabe67c4b867-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 557
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
primatexpertise.com/wp-content/themes/wilddale/assets/slick/slick-theme.css?ver=6.1.1
200 OK 912 B URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/assets/slick/slick-theme.css?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
Hash a5591a5d84e0320cc526d027884d4b94
e8f4cb60e637ec3b1177139d6cfaa1ae7995172c
7da79747a8a459867015ac7d397f70c8e28f21b7c38a03fbf7ff0d9f0ef20a13
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/assets/slick/slick-theme.css?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "ca5-5eabe67c4b47f-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 912
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
primatexpertise.com/wp-content/themes/wilddale/assets/magnific-popup/magnific-popup.css?ver=6.1.1
200 OK 1.8 kB URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/assets/magnific-popup/magnific-popup.css?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
Hash 24d43b806e85342a40e2da6970fdfaa0
b365e6daf45244233ffac6681aa3dad08a26f2c5
dcf879e6dd283fcbef1dc4a0392fbd2ec5ea512b31a97f64ea3076fc392d784e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/assets/magnific-popup/magnific-popup.css?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "1b27-5eabe67c481b6-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 1816
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
primatexpertise.com/wp-content/themes/wilddale/assets/prettyphoto/css/prettyPhoto.css?ver=6.1.1
200 OK 2.8 kB URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/assets/prettyphoto/css/prettyPhoto.css?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (402)
Hash 7265f9044ff5e43b0c6a29d38a334caf
4b31c338cc38fb56a0e7f150924296f06fc5c3e6
67a7bab91efa3dd626206ccce6d13328cbfce710583b32b1949c033fd19aceaa
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/assets/prettyphoto/css/prettyPhoto.css?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "4db3-5eabe67c49926-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 2774
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
primatexpertise.com/wp-content/themes/wilddale/css/bootstrap-theme.min.css?ver=6.1.1
200 OK 2.6 kB URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/css/bootstrap-theme.min.css?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (23220), with no line terminators
Hash 0091a40c8890b0b9da8e90e6031dfa59
f16b699942af4347cf4b77c570e105c5e1ca5bb0
207d26931ba1f5578331598ac7a98f9235c4595cbcb5aa3edff8761295e83943
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/css/bootstrap-theme.min.css?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "5ab4-5eabe67c50687-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 2595
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
primatexpertise.com/wp-content/themes/wilddale/css/base.min.css?ver=6.1.1
200 OK 4.3 kB URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/css/base.min.css?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (16395), with no line terminators
Hash d54d39991d203636ca135e6596fc132a
f6d46fa2c72da23ad021b251fd7586fefedd44a4
7b0342e4335faf00e8e1c623443c508854a6166ba51fb49bea3dd13d627633a8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/css/base.min.css?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "400b-5eabe67c50687-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 4315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
primatexpertise.com/wp-content/themes/wilddale/css/responsive.min.css?ver=6.1.1
200 OK 9.0 kB URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/css/responsive.min.css?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (50636), with no line terminators
Hash 3dff313001e12fbdbf113ce56ed17d16
6a67b7dcc011cda2acf9dda458e3657cbb345480
53f20e2d3d62056991adc8f19bfc0c5daaf78b7f3698529bef25e732ec20bca0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/css/responsive.min.css?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "c5cc-5eabe67c51628-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 9027
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
primatexpertise.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
200 OK 5.0 kB URL HTTP/1.1 primatexpertise.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 12 Apr 2022 05:56:23 GMT
ETag: "48b9-5dc6eb878efc0-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 5009
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript
primatexpertise.com/wp-content/themes/wilddale/css/bootstrap.min.css?ver=6.1.1
200 OK 19 kB URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/css/bootstrap.min.css?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Hash a4a9faa06361992a2312c41ba0de7e1f
6350b55d0efc32ffcf7b6ebccd56bb7ad706f6d0
9273fc46caa4215db32a20b7a70a257ae6fc5b4143788740b0c731f4497f183f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/css/bootstrap.min.css?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "1c911-5eabe67c50a6f-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 19185
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
primatexpertise.com/wp-content/themes/wilddale/css/wilddale-last-checkpoint.min.css?ver=6.1.1
200 OK 0 B URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/css/wilddale-last-checkpoint.min.css?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/css/wilddale-last-checkpoint.min.css?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "0-5eabe67c51628"
Accept-Ranges: bytes
Content-Length: 0
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: User-Agent
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
primatexpertise.com/wp-content/plugins/visitors-traffic-real-time-statistics/js/front.js?ver=6.1.1
200 OK 414 B URL HTTP/1.1 primatexpertise.com/wp-content/plugins/visitors-traffic-real-time-statistics/js/front.js?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
Hash 819e3ca39547f1c61733f24d79750d38
b581de0fbd70e2fe6fb23f97ff7b208fa7d275f5
eb1d02a86a95c165bf8a2cae5bcde6da6ed19b1cdf5d832c73fd1950931ce40c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/visitors-traffic-real-time-statistics/js/front.js?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Wed, 16 Nov 2022 17:07:03 GMT
ETag: "37a-5ed9980630d37-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 414
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/x-javascript
primatexpertise.com/wp-content/plugins/themetechmount-wilddale-extras/js/jquery-resize.min.js?ver=6.1.1
200 OK 616 B URL HTTP/1.1 primatexpertise.com/wp-content/plugins/themetechmount-wilddale-extras/js/jquery-resize.min.js?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (854), with CRLF, CR line terminators
Hash 8469ff688d55a6e21d44177d20b56cb0
0a1928ef2b48002c53bcd16b3281d63c5f08606a
abac4c89d4f640afb8a6aa38e9219fe36661a02de703c84b090a3b31a942b620
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/themetechmount-wilddale-extras/js/jquery-resize.min.js?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 09:01:34 GMT
ETag: "451-5eabe85e371a5-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 616
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/x-javascript
primatexpertise.com/wp-content/themes/wilddale/assets/magnific-popup/jquery.magnific-popup.min.js?ver=6.1.1
200 OK 7.4 kB URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/assets/magnific-popup/jquery.magnific-popup.min.js?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (20097)
Hash 6829dba6cd3ba412690d87070b0ea1f7
f02209064d0c2b29ae6e6bd1324e3d45a44d200d
43d2c2a694e9c52e93152a0a760ad2211f7e3cbb8db4c4bdfd5e8c7b9b5c69da
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/assets/magnific-popup/jquery.magnific-popup.min.js?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "4f02-5eabe67c481b6-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 7350
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/x-javascript
primatexpertise.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.11
200 OK 12 kB URL HTTP/1.1 primatexpertise.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.11
IP
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (12602)
Hash ec14123fd07ef488fc1aff60a6f99c13
55e9b5c3cad505a780d948349d9009867368cf6a
46e3efd2835c5f189acbe5c392d41ce6b86f2cfe3f064cdd6780032777f5706a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.11 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 09:01:34 GMT
ETag: "e197-5eabe85e219e2-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 12303
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
primatexpertise.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
200 OK 2.9 kB URL HTTP/1.1 primatexpertise.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (9937), with no line terminators
Hash 8189a6a3f3f0efc64f857fe869d3729b
bc84b1c1e96a26fd6595da0cb024aad989c1f331
e2683386c2d5a8b3280fa9920d22fedb31a33a8bdca8ec494d3fe4df9fc6b337
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Wed, 16 Nov 2022 17:21:15 GMT
ETag: "26d1-5ed99b32a8bd6-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 2937
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/x-javascript
primatexpertise.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
200 OK 4.0 kB URL HTTP/1.1 primatexpertise.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash 832eeb1fd498e5839b89bfb5f05a2f0d
cf2d8668aecc5033346ac2906bb8bf7e143cfa4a
35b2b27ba0ba63c065e4c67d15b7cb1878b5868d7f475cc7f6f1724d3988793a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Wed, 16 Nov 2022 17:21:15 GMT
ETag: "3016-5ed99b32a87ee-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 3957
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/x-javascript
primatexpertise.com/wp-content/themes/wilddale/css/main.min.css?ver=6.1.1
200 OK 77 kB URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/css/main.min.css?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Hash d22e2a690f164988bdde8c657930910b
dc0b84f2894b8395da6582d7ca34fc8824373acc
ff1bed3cd9941e5df2e4784d2e0c57bbec502e0c0f6f4793e85267e70a9928a2
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/css/main.min.css?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "686ef-5eabe67c51240-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
primatexpertise.com/wp-content/themes/wilddale/assets/select2/select2.min.js?ver=6.1.1
200 OK 19 kB URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/assets/select2/select2.min.js?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (32091)
Hash 781d26c70b32fe18c93c2c7a20060370
8b7b946db6b1f7d151ed0f76012641f8e7ba83d6
180879347b62f29bcc5f5b1898566dca64827329582317fb70e275ea4c2d80be
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/assets/select2/select2.min.js?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "10468-5eabe67c4b47f-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 19023
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/x-javascript
primatexpertise.com/wp-content/themes/wilddale/assets/perfect-scrollbar/perfect-scrollbar.jquery.min.js?ver=6.1.1
200 OK 6.5 kB URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/assets/perfect-scrollbar/perfect-scrollbar.jquery.min.js?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (25300)
Hash f80db36391d43b98c8665526555420d2
e6a3fcbb863e8d4d0b0141d666281664d3863194
dd98e7533fc18d58eea5f5d8c63f5df258b2296ee97d18c5329ea0c12814f1fb
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/assets/perfect-scrollbar/perfect-scrollbar.jquery.min.js?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "62f4-5eabe67c4953e-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 6506
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/x-javascript
primatexpertise.com/wp-content/themes/wilddale/assets/isotope/isotope.pkgd.min.js?ver=6.1.1
200 OK 11 kB URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/assets/isotope/isotope.pkgd.min.js?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (32047)
Hash a171dc7dd783c8d4618bf96f465ad42e
753ee81d1865fa1ee6636c829638d10ed978a1e0
2f45ff9705c558196fe0c5054e917dc356146c868dee8747b0aaf52ac256dfee
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/assets/isotope/isotope.pkgd.min.js?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "9f9f-5eabe67c47dce-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 11048
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/x-javascript
primatexpertise.com/wp-content/themes/wilddale/assets/jquery-mousewheel/jquery.mousewheel.min.js?ver=6.1.1
200 OK 1.2 kB URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/assets/jquery-mousewheel/jquery.mousewheel.min.js?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (2609)
Hash 54305bf29ff554732346e099f69266d3
e31ea109f9d72d17a48a3016facf16a3a0cd2eae
3037271a8308d863016cd2f36a664a49874a2730acc36679c36e6c12a0f7dab3
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/assets/jquery-mousewheel/jquery.mousewheel.min.js?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "ad3-5eabe67c47dce-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 1241
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/x-javascript
primatexpertise.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.11
200 OK 47 kB URL HTTP/1.1 primatexpertise.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.11
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (42889)
Hash 53020e6c44148abf1bf6a40e38ea08ca
ef2394d748c49fbc6955408d474acf07153dbe2d
93ff7531b833c2a8b0e8b55931c93c7796f55c42677910d1b7e1eee59592ef1a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.11 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 09:01:34 GMT
ETag: "1e4e6-5eabe85e240f2-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 46966
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/x-javascript
primatexpertise.com/wp-content/themes/wilddale/assets/flexslider/jquery.flexslider-min.js?ver=6.1.1
200 OK 6.4 kB URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/assets/flexslider/jquery.flexslider-min.js?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (21939)
Hash 26d5ac3000951cd2f99e28dd7dfd6a7f
b365c839350e177672844950001707d444c600de
1d97981daaa3da42c2e1e524e14e5e01557c24687f4edc4feb7ec2c3caccd628
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/assets/flexslider/jquery.flexslider-min.js?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "5612-5eabe67c46e2e-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 6362
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/x-javascript
primatexpertise.com/wp-content/themes/wilddale/assets/sticky-kit/jquery.sticky-kit.min.js?ver=6.1.1
200 OK 1.7 kB URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/assets/sticky-kit/jquery.sticky-kit.min.js?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (575)
Hash b948f25b2002a287c30a2dde1bfb3c6c
8ada6ad22498ac1fbac53c9a3ac500af7d313f0a
9562e12ffd470f782a99069d86c3910e914e99251ea51f0393f432c26f95db09
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/assets/sticky-kit/jquery.sticky-kit.min.js?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "1561-5eabe67c4b867-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 1689
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/x-javascript
primatexpertise.com/wp-content/themes/wilddale/assets/slick/slick.min.js?ver=6.1.1
200 OK 10 kB URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/assets/slick/slick.min.js?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (32076)
Hash 7a6b74fb1418a5e7a5518d5a9fe2bb06
aef7197c8eeedcb350e55e20d07d203cc1891ad9
30d505b8d798cdf8fc55db71deb5b5e51453a33868c362886942066d6e2ab33c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/assets/slick/slick.min.js?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "a3e1-5eabe67c4b867-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 10170
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/x-javascript
c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery-migrate.min.js
200 OK 4.5 kB URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery-migrate.min.js
IP
File type ASCII text, with very long lines (11126)
Hash 122d646a1a207f3e58476397f36fa8cd
f6ba9424e0084c2e6d1fd8b7dad19a0b43172195
3ef6cf50c4deead207e200bc81453e65a5e46a305cd875b93d7ea117e14f836d
GET /c/6.1.1/wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 10:50:39 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
content-encoding: br
expires: Sat, 18 Nov 2023 10:50:39 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
primatexpertise.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-lazy-images/dist/intersection-observer.js?minify=false&ver=83ec8aa758f883d6da14
200 OK 3.1 kB URL HTTP/1.1 primatexpertise.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-lazy-images/dist/intersection-observer.js?minify=false&ver=83ec8aa758f883d6da14
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (8983), with no line terminators
Hash 479c19e149adf73371f8eb5bb65b415a
c30ba6d93c94903a9a3eda06e9e75735bfba9421
d529b5e4e113c23799858d4425ccccd741d4ddc588d2d46181482f4b8b4803c8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-lazy-images/dist/intersection-observer.js?minify=false&ver=83ec8aa758f883d6da14 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Wed, 16 Nov 2022 17:21:45 GMT
ETag: "2317-5ed99b4fb92b4-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 3057
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/x-javascript
primatexpertise.com/wp-content/themes/wilddale/assets/prettyphoto/js/jquery.prettyPhoto.js?ver=6.1.1
200 OK 5.9 kB URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/assets/prettyphoto/js/jquery.prettyPhoto.js?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (21225)
Hash afb679b214d8ab18c36e1006d8f9423d
9f3c6bfac1645ef961805a8765605576d6aa864c
0bde783a99a9fe5dded809aeedcb96ddc1d514c19e6ea16a2c4f0964f66204d8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/assets/prettyphoto/js/jquery.prettyPhoto.js?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "5404-5eabe67c4b097-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 5943
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/x-javascript
primatexpertise.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-lazy-images/dist/lazy-images.js?minify=false&ver=8767d0da914b289bd862
200 OK 1.0 kB URL HTTP/1.1 primatexpertise.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-lazy-images/dist/lazy-images.js?minify=false&ver=8767d0da914b289bd862
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (2366), with no line terminators
Hash 20d1095cb9420d7db47b37c16e11f5d9
c860245c56c44e40a49ef3a2d892ca2915adfb05
5052fd18c42323f2fbf80902ae792749173ee66e144a522a10d64a3deb1ce211
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-lazy-images/dist/lazy-images.js?minify=false&ver=8767d0da914b289bd862 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Wed, 16 Nov 2022 17:21:45 GMT
ETag: "93e-5ed99b4fb969c-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 1022
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/x-javascript
primatexpertise.com/wp-content/themes/wilddale/assets/datecounter/timecircles.js?ver=6.1.1
200 OK 7.9 kB URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/assets/datecounter/timecircles.js?ver=6.1.1
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash ad752bc67837564f35514343a5018049
58e5db58224501b97f7a10f77d37f850a4c5e8ec
297ec9dc68d1254693bf83ca6d109ffec41027b73de1bd7c94b2169c381e2eca
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/assets/datecounter/timecircles.js?ver=6.1.1 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "897e-5eabe67c46e2e-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 7925
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/x-javascript
primatexpertise.com/wp-content/themes/wilddale/js/functions.min.js?ver=1.0
200 OK 7.0 kB URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/js/functions.min.js?ver=1.0
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (3331)
Hash 4e4460af7f9d4ed39ae13d21c8ae13db
74822b22b92b70cb79641f2fbaba670de83de5af
c896f9dd29fd251c5ff091e623fa3307337a22d1534a889e49a6312a0f5cc448
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/js/functions.min.js?ver=1.0 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "9834-5eabe67c5cdc1-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 6966
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/x-javascript
primatexpertise.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.11
200 OK 503 B URL HTTP/1.1 primatexpertise.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.11
IP
ASN #24940 Hetzner Online GmbH
Hash 662dad9b6c205bff7a73f068d9c8f583
59b7931fc4fa6134abf4efe066eb9c54f5c6ffbb
d44e2573168d490e7eecf6c8b5194d733f4d94e9aab6c466038031d45eb2259d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.11 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 09:01:34 GMT
ETag: "5d7d8-5eabe85e240f2-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/x-javascript
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:50:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
primatexpertise.com/wp-content/themes/wilddale/assets/tm-wilddale-icons/font/tm-wilddale-icons.woff2?51136026
200 OK 21 kB URL HTTP/1.1 primatexpertise.com/wp-content/themes/wilddale/assets/tm-wilddale-icons/font/tm-wilddale-icons.woff2?51136026
IP
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 21028, version 1.0\012- data
Hash 0881749961d89a3b6530fcbfbd4f0228
62b5e244ca8a83d1ba3ca59efce2f02aa62e8b0c
045b757b061ac20a40c57c031dbaad559c8d12ae2845fc45dd7a507dc6c89701
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/wilddale/assets/tm-wilddale-icons/font/tm-wilddale-icons.woff2?51136026 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://primatexpertise.com/wp-content/themes/wilddale/assets/tm-wilddale-icons/css/tm-wilddale-icons.css?ver=6.1.1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 08:53:09 GMT
ETag: "5224-5eabe67c4db8f"
Accept-Ranges: bytes
Content-Length: 21028
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/font-woff2
primatexpertise.com/wp-content/uploads/2022/10/logo-PEx_.jpg
200 OK 190 kB URL HTTP/1.1 primatexpertise.com/wp-content/uploads/2022/10/logo-PEx_.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, baseline, precision 8, 1200x535, components 3\012- data
Size 190 kB (189571 bytes)
Hash 3f522e49ba0f74b6d4466d5a08a3193c
f0cc7bd91d99f17e5af9e80106906cf06ed13f31
8ada225ba9e934c9c1ef990d71ddca646da3759c80f6268c0c6e019f1519d1cd
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/10/logo-PEx_.jpg HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 09:54:55 GMT
ETag: "2e483-5eabf44b35682"
Accept-Ranges: bytes
Content-Length: 189571
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
primatexpertise.com/wp-content/uploads/2022/10/Bebe-Gorille-PEx.jpeg
200 OK 157 kB URL HTTP/1.1 primatexpertise.com/wp-content/uploads/2022/10/Bebe-Gorille-PEx.jpeg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x720, components 3\012- data
Size 157 kB (156816 bytes)
Hash a79befab5a98e27e37e3a001842b0351
11d9f191b37c9ad777903055827a243eef8bff9c
056374874a0224a167a316dfad00485b00d045c798ab6d1b38d735c5330c25f6
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/10/Bebe-Gorille-PEx.jpeg HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 12:55:49 GMT
ETag: "26490-5eac1cba8c578"
Accept-Ranges: bytes
Content-Length: 156816
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
primatexpertise.com/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL HTTP/1.1 primatexpertise.com/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://primatexpertise.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 13:04:38 GMT
ETag: "12d68-5edaa3b449ba2"
Accept-Ranges: bytes
Content-Length: 77160
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 10:50:39 GMT
Vary: Accept-Encoding,User-Agent
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/font-woff2
pixel.wp.com/g.gif?v=ext&blog=192111158&post=0&tz=1&srv=primatexpertise.com&j=1%3A11.5.1&host=primatexpertise.com&ref=&fcp=2346&rand=0.5528848525058214
200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=ext&blog=192111158&post=0&tz=1&srv=primatexpertise.com&j=1%3A11.5.1&host=primatexpertise.com&ref=&fcp=2346&rand=0.5528848525058214
IP
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&blog=192111158&post=0&tz=1&srv=primatexpertise.com&j=1%3A11.5.1&host=primatexpertise.com&ref=&fcp=2346&rand=0.5528848525058214 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 10:50:39 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
200 OK 2.9 kB URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
IP
File type ASCII text, with very long lines (11256), with no line terminators
Hash eec13de5d91c66b3f0a6a0b3145f323e
97995dc74eede92f442ccd28e57e225f44722a37
1af7f1d343960a94a0b8adeef6a3ef8a2fc3925f2f06b5085c60dd084819ea0d
GET /c/6.1.1/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 10:50:39 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
content-encoding: br
expires: Sat, 18 Nov 2023 10:50:39 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15102
Expires: Fri, 18 Nov 2022 15:02:21 GMT
Date: Fri, 18 Nov 2022 10:50:39 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:50:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://primatexpertise.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 21:48:50 GMT
expires: Thu, 16 Nov 2023 21:48:50 GMT
cache-control: public, max-age=31536000
age: 133309
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15102
Expires: Fri, 18 Nov 2022 15:02:21 GMT
Date: Fri, 18 Nov 2022 10:50:39 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:50:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15102
Expires: Fri, 18 Nov 2022 15:02:21 GMT
Date: Fri, 18 Nov 2022 10:50:39 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d0b6106f00f9fd8b89c2d484a559a1a
399ac393209dcdac7d2188d7aa8d95f04570ef7c
5d8151c9eb558f4a2b8bd2952c6845606ddb0c27e36f6e49aca7e60908cd9fe4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3759
x-amzn-requestid: 8c91ac59-89dc-4218-b69f-0cebb29f301b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-wJHgxoAMF-hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab33-4dac305614a92bc52c038222;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mb2-PTjNmt06Wd5jOjQ5WoLY-0NgI80CKPXtwgzBt4n5km8Pu_WN0Q==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:08:54 GMT
age: 45705
etag: "399ac393209dcdac7d2188d7aa8d95f04570ef7c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://primatexpertise.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 14:43:52 GMT
expires: Wed, 15 Nov 2023 14:43:52 GMT
cache-control: public, max-age=31536000
age: 245207
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd5bdc050716bb76afe8090fc81617e7
5109c156b180727767fc03c411190ccc0d3fb5fc
9b13e7838946c6654dda17886c2ca8d42de934acb93f4bddb1008dfa1bd1ea99
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11715
x-amzn-requestid: 20e508bd-6568-4225-9bee-c683a49d44f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUHkpIAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-7dc726b94a37fc667e2e6646;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: X3SUo1LP97TxraRav0ftskBhzWkTJInHaS44PW26yloF-dgD-bHBuA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 00:26:57 GMT
age: 37422
etag: "5109c156b180727767fc03c411190ccc0d3fb5fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84053cb2-edec-465e-8700-6af61bae8236.jpeg
200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84053cb2-edec-465e-8700-6af61bae8236.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 676b1603008690786aa36dc3113b7581
cbdc425467a5d41aba5e8e5c54354b4f03cd194a
7e5e7bf695ff31df6c97e502a44f4fa9197c6579b0c7a7c590457ea067d1cf1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84053cb2-edec-465e-8700-6af61bae8236.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8155
x-amzn-requestid: 5650af50-eb93-47d9-8322-8a2e263e12ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-7vFU5IAMFYGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab7e-759bbd5b5a22e07c1c181c0a;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XzJcm_AlMH4hb2urV7RORAjz7LR7NXZ2pAMEhx1foW2VJgj4mxVxJw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:05:52 GMT
age: 45887
etag: "cbdc425467a5d41aba5e8e5c54354b4f03cd194a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9672fb80-baaa-4ab8-b080-dc8c1ce94400.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9672fb80-baaa-4ab8-b080-dc8c1ce94400.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 05289172c1455c4134e496c6f4606efd
ce1bb33256b0754f9acc01e7e9f3e5dc85f89244
a8b4411a0310cc376efe2aec7c0830b8d3b63b8827631b0ff43ec092f1f80f82
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9672fb80-baaa-4ab8-b080-dc8c1ce94400.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12065
x-amzn-requestid: 45c97153-71c7-4985-a1ad-fc21a509d153
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-K5FyVIAMFtDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376aa45-0f9d22dd544a4580570f3089;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:40:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: dxT2WJB7m5tUhgBn2PwTIN4Zskzm3X7CW-29hl1nCyNPbKt5j6q5iA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:02:57 GMT
age: 46062
etag: "ce1bb33256b0754f9acc01e7e9f3e5dc85f89244"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd2b71261-68cc-40d8-9fce-033095c5889d.jpeg
200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd2b71261-68cc-40d8-9fce-033095c5889d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f22c78eb5d83b4a108e0fff0806ff1a1
7e246b0b4697140ae7429aeff92aa16ab88dd6f6
1afadc1fb89b5a321e067893609c154b6d7dbd39123d15883c799aab6214cd4a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd2b71261-68cc-40d8-9fce-033095c5889d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9661
x-amzn-requestid: dcff71d8-a6ac-45f2-acc1-e14314334495
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-7RHGAIAMFSOA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab7b-3598a746247615de161878e3;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:45:31 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nNm3mly0cy8etL6Tg2gC2jpSc37d77L8rNny7C5fSTG2jn4zRo04lg==
via: 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:49:45 GMT
age: 46854
etag: "7e246b0b4697140ae7429aeff92aa16ab88dd6f6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://primatexpertise.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 08:32:10 GMT
expires: Thu, 16 Nov 2023 08:32:10 GMT
cache-control: public, max-age=31536000
age: 181109
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d9d6315-de31-43b3-8c19-dc3528c7eefe.jpeg
200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d9d6315-de31-43b3-8c19-dc3528c7eefe.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 158a07cdb0174c0cf0c2473cb069a459
46753b0476f8a272a047b07070db272a0fd3b42e
40bacc15755d920085e52af0bc9f6e8eac0379a31765f6ba72cf53546e296a2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d9d6315-de31-43b3-8c19-dc3528c7eefe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5917
x-amzn-requestid: 47ec37aa-10ef-4e35-a76c-301d34e4a102
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw9VaHt9oAMFpIg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376a8ef-6eb9776b4df9facd0f19c974;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:34:39 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qReov2_mDTOantzcbI8dBALwKBsq58MGL2yHuJwk0DxNL7um6T_M1g==
via: 1.1 76dcc62b68091cc715d50b5017be77fc.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:55:57 GMT
age: 46482
etag: "46753b0476f8a272a047b07070db272a0fd3b42e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.themetechmount.com/wordpress/wilddale/wp-content/uploads/2021/11/404-img.png
200 OK 46 kB URL HTTP/1.1 www.themetechmount.com/wordpress/wilddale/wp-content/uploads/2021/11/404-img.png
IP
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 659 x 467, 8-bit/color RGBA, non-interlaced\012- data
Hash d0a4f62db768c7503b502b213061e8fb
2a98aa91b6112278f4cc220063f1ae73fcb5094e
2a169e0157f2f76facddc2e27ffb2c2b98940cc939907ee4e63061050d573627
GET /wordpress/wilddale/wp-content/uploads/2021/11/404-img.png HTTP/1.1
Host: www.themetechmount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Mon, 01 Nov 2021 03:49:15 GMT
ETag: "b4d2-5cfb20f883520"
Accept-Ranges: bytes
Content-Length: 46290
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:50:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c0.wp.com/p/jetpack/11.5.1/_inc/build/carousel/jetpack-carousel.min.js
200 OK 8.3 kB URL HTTP/2 c0.wp.com/p/jetpack/11.5.1/_inc/build/carousel/jetpack-carousel.min.js
IP
File type ASCII text, with very long lines (24378), with no line terminators
Hash d2431708b7b512a6f2cffdad66e496d9
14300fcbce0071a5059de839e8865bc1a6ee55d3
a181e2482329dc9ccc8646ea7da4de9e5b16084c82dedc905f87cc900d44617b
GET /p/jetpack/11.5.1/_inc/build/carousel/jetpack-carousel.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 10:50:39 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 06 Sep 2022 17:22:56 GMT
content-encoding: br
expires: Sat, 18 Nov 2023 10:50:39 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
downloads.mailchimp.com/js/signup-forms/popup/unique-methods/embed.js
200 OK 68 kB URL HTTP/1.1 downloads.mailchimp.com/js/signup-forms/popup/unique-methods/embed.js
IP
File type ASCII text, with very long lines (65526)
Hash 58de46afbd2af706374a27c9752068c9
8066200bdd4dd41de2ca47f619328b612494e4aa
9cbb1ddf6520354b1d32d7ac9d33a32c49e6977bc25c78feca0fa190a43e8632
GET /js/signup-forms/popup/unique-methods/embed.js HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 21 Oct 2022 17:13:45 GMT
Server: AmazonS3
Content-Encoding: br
Date: Fri, 18 Nov 2022 01:04:35 GMT
ETag: W/"7034aa8051914b0b6ed5f15067df5fb3"
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: SpfqIwTS0t3Ct3frflI0ltyqTa1UZcEtc12KR6h9Rf1ylDFnjotQBw==
Age: 35286
Vary: Accept-Encoding, Origin
i0.wp.com/primatexpertise.com/wp-content/uploads/2022/10/cropped-logo-PEx_.jpg?fit=32%2C32&ssl=1
200 OK 490 B URL HTTP/2 i0.wp.com/primatexpertise.com/wp-content/uploads/2022/10/cropped-logo-PEx_.jpg?fit=32%2C32&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 32x32, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 74f2333befc518bf406fc237c53f77f7
656077acaabbaa62144b6ba691a8c0dcb7f50363
46a048e561f3754733966fa3932960a8748dd050a0fa6b4df9e5d42384858497
GET /primatexpertise.com/wp-content/uploads/2022/10/cropped-logo-PEx_.jpg?fit=32%2C32&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 10:50:40 GMT
content-type: image/webp
content-length: 490
last-modified: Wed, 19 Oct 2022 16:01:12 GMT
expires: Sat, 19 Oct 2024 04:01:12 GMT
cache-control: public, max-age=63115200
link: <https://primatexpertise.com/wp-content/uploads/2022/10/cropped-logo-PEx_.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "1c47355195aaed77"
vary: Accept
x-nc: HIT arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash eaa6a3200eda9bf5788df6d9eb04d84c
12efbb66692df6d76c1103b152808d751c0e49f1
6d815027ae40ea2603c0ed5adac0821cd5526f11c2eeb0ada5294b6f2ec3492d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:50:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i0.wp.com/primatexpertise.com/wp-content/uploads/2022/10/cropped-logo-PEx_.jpg?fit=192%2C192&ssl=1
200 OK 4.9 kB URL HTTP/2 i0.wp.com/primatexpertise.com/wp-content/uploads/2022/10/cropped-logo-PEx_.jpg?fit=192%2C192&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 192x192, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e56a5ad5680971c5f129a21fb7a72c4a
492000b4b68f7f1157035bc42b7b454a4687a99c
f88598c9a32671ab20b9ff2ab05446a78e6c718f526533ed3d6baef296f16eeb
GET /primatexpertise.com/wp-content/uploads/2022/10/cropped-logo-PEx_.jpg?fit=192%2C192&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 10:50:40 GMT
content-type: image/webp
content-length: 4918
last-modified: Wed, 19 Oct 2022 16:14:06 GMT
expires: Sat, 19 Oct 2024 04:14:06 GMT
cache-control: public, max-age=63115200
link: <https://primatexpertise.com/wp-content/uploads/2022/10/cropped-logo-PEx_.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "d0ef72deea65e428"
vary: Accept
x-nc: HIT arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-1539284632180767
200 OK 49 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-1539284632180767
IP
File type ASCII text, with very long lines (4885)
Hash 53529804cccbca05ddfb8be29411fa6c
ae911d9a6fc84d1434dbb6dbca204de656e4b4ac
8f70b8a8f5fb8d946ea5963cc3c678ad022535436964de41a5771b5679320019
GET /pagead/js/adsbygoogle.js?client=ca-pub-1539284632180767 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://primatexpertise.com
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 18 Nov 2022 10:50:40 GMT
expires: Fri, 18 Nov 2022 10:50:40 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 10300183405886869812
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49151
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash eaa6a3200eda9bf5788df6d9eb04d84c
12efbb66692df6d76c1103b152808d751c0e49f1
6d815027ae40ea2603c0ed5adac0821cd5526f11c2eeb0ada5294b6f2ec3492d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:50:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc.us6.list-manage.com/subscribe/form-settings?u=7aafb76637df3392205c7b387&id=60fa8848bb&u=7aafb76637df3392205c7b387&id=60fa8848bb&c=dojo_request_script_callbacks.dojo_request_script0
200 OK 6.1 kB URL HTTP/2 mc.us6.list-manage.com/subscribe/form-settings?u=7aafb76637df3392205c7b387&id=60fa8848bb&u=7aafb76637df3392205c7b387&id=60fa8848bb&c=dojo_request_script_callbacks.dojo_request_script0
IP
File type ASCII text, with very long lines (12610), with no line terminators
Hash dec7ed3d76a45dece5550b720063a43d
ea7f70e182785454a2c42c6204aec01f75f434d8
37799c66b6611604db79a528d55fc456f0482aa9dcafe80ba3cf0fd280b96fa9
GET /subscribe/form-settings?u=7aafb76637df3392205c7b387&id=60fa8848bb&u=7aafb76637df3392205c7b387&id=60fa8848bb&c=dojo_request_script_callbacks.dojo_request_script0 HTTP/1.1
Host: mc.us6.list-manage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
content-type: application/json; charset=utf-8
content-length: 6078
x-ua-compatible: IE=edge,chrome=1
referrer-policy: same-origin
content-encoding: gzip
cache-control: max-age=300
expires: Fri, 18 Nov 2022 10:55:40 GMT
date: Fri, 18 Nov 2022 10:50:40 GMT
vary: Accept-Encoding
set-cookie: _mcid=1.31c588fe2c537c9f3280a761b23ff945.6ab0a4492bf0950add82493bfad2b95d53ac2d2d54704b5ffd498a3e95c4a050; expires=Sat, 18-Nov-2023 10:50:40 GMT; Max-Age=31536000; path=/
_mc_anon_id=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
_abck=8D64EF2ADC224A5DD29AA84704D5D17F~-1~YAAQrU0kFxp043+EAQAAHK5ciggnL3Q1AG25f7D7JR2xp9sSDUqGZ5HHobya6QNQuXk2tIHjQkQ6/BLh8t0Lug2+5kxp1kkLEBr5N5ikXTFKHVeQKo9URXMQeONedInpvQ3i69JUZMcOxAaj5TsnPHuTbU/mbcw7ZBv7TfBZ0uJKraqQsLDaA82xiYI6E1ezAZFPQn859IZuTGe1UiuHR3DdFJbbhOmx9/rtSY1BfSlkBCTizwdIm9gOZBc7BpYW9u+tKYF2oqpk3p0mi3f7Kvknz4yPxhfrOpisHWjyMo2QKzzeqrRQ/TVSp0LH4lyczR68V4C8EqJr5jhIpNqntd+y8UTOLNIdZbPPpNO/ZArBovr2daz//ieK9LPWrG0y7WM=~-1~-1~-1; Domain=.list-manage.com; Path=/; Expires=Sat, 18 Nov 2023 10:50:40 GMT; Max-Age=31536000; SameSite=None; Secure
ak_bmsc=DC6113F9EA94DFFBB11FC3D5CBC853A8~000000000000000000000000000000~YAAQrU0kFxt043+EAQAAHK5cihF4r+J0L22CwGDrfS23g6GjnTrkKJVR5Todi21zZjSGVErpMoHyfWjq4FDvKbaeCgiHeOAC1cx5jv/vE0z8lX2rNM+Z8DA9ffMgW/S1aX8q5Fsr9VMleih1pvTJGVBoj4uTOZkqmqBnaPkInGqheMlOVnWSC/uzpnaYvyPV2ByZ14qRqf6p8p2cAG38LlBuedCae2nfGiXodklFW+4WBls2XvMwAeNAUHxOT2cLWZn/r3L77pJnPmtnBzb56NxbkUYMtlGr4RVYQqNAWIqbN+dCXTN2+KdYxyZVLCxO8/1MdttbVSKdlADlGsbXoflQo5uE0778vLaNZfyfi4SLLDchm+nF9S+iuEf9Jncq4ZUq9SDXWkl2hktJ5pPbDHNy; Domain=.us6.list-manage.com; Path=/; Expires=Fri, 18 Nov 2022 12:50:40 GMT; Max-Age=7200; SameSite=None; Secure; HttpOnly
bm_sz=A72C1C6AE350251ADF26C0A1A853120D~YAAQrU0kFxx043+EAQAAHK5cihHcoXjzaMvutj1h6jcz1tfKT+4IlZ7k/fFssPC+6bWWifq84rSkP/+pGwBtXPPjL49aKPRbM6xHCXfO9S6/cfH5K7p4zw/ILAzXWKiahBiSUCoCy7P4Mw/NpsIFdNM0JneYyzj96AaBizAOwLyvn+3yxhuP3zBxmkPLloMSv4992WGTR5M4xM8oSBj8/lp+e3yeqHz3kghLHQ9138RBpGsyz2T27J/mwBtcF7tj6A8Alej9siIbG/6JscdoamgomZlC/aX7f66gVss33n8ppw2esCRhjA==~4605252~3223861; Domain=.list-manage.com; Path=/; Expires=Fri, 18 Nov 2022 14:50:40 GMT; Max-Age=14400; SameSite=None; Secure
X-Firefox-Spdy: h2
primatexpertise.com/wp-admin/admin-ajax.php
200 OK 0 B URL HTTP/1.1 primatexpertise.com/wp-admin/admin-ajax.php
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: primatexpertise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primatexpertise.com/stnf/mo327.zip
Content-type: application/x-www-form-urlencoded
Content-Length: 255
Origin: https://primatexpertise.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 10:50:39 GMT
Server: Apache
Access-Control-Allow-Origin: https://primatexpertise.com
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Frame-Options: SAMEORIGIN
Vary: User-Agent
Referrer-Policy: strict-origin-when-cross-origin, no-referrer-when-downgrade
Content-Length: 0
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 8bd74b7ad2725f15396907ce2070e9a9
c624c31552aeb494b5a630db33054ad03cbd5a0e
a20baa5c9be0ccc20d8bcd78680101f96dc0f6a69427bd9f56436982288b72f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:50:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c15be7bf1c6987951ddd348d6f6b4db1
9faac1fb81abc8fce6d4ae81777c76b8bc11e9b0
7f1d01e3fc0b69e331fd30326ea8fd9b1e3e06a0a93ae4768e7addd03a121025
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:50:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=primatexpertise.com
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=primatexpertise.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=primatexpertise.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 18 Nov 2022 10:50:40 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=primatexpertise.com
200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=primatexpertise.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=primatexpertise.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 18 Nov 2022 10:50:40 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
downloads.mailchimp.com/js/signup-forms/popup/unique-methods/73bf20a8fe762dee6abd0173cd576e53d748a0df/popup.js
200 OK 104 kB URL HTTP/1.1 downloads.mailchimp.com/js/signup-forms/popup/unique-methods/73bf20a8fe762dee6abd0173cd576e53d748a0df/popup.js
IP
File type ASCII text, with very long lines (65526)
Size 104 kB (104181 bytes)
Hash d3149280c831cbf6538770c71a916f43
e72b88e8691c7fde33671cd95670f5378a7877ce
b0755de9edee41abdef304a877ee3174f92c3429feaf7c06437822970addbb4f
GET /js/signup-forms/popup/unique-methods/73bf20a8fe762dee6abd0173cd576e53d748a0df/popup.js HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 104181
Connection: keep-alive
Last-Modified: Thu, 29 Sep 2022 15:39:29 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Fri, 18 Nov 2022 09:49:10 GMT
ETag: W/"d3149280c831cbf6538770c71a916f43"
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: K7s6CJlxtECyEdJs1LFBx3jsiFqHmsvVwfr2Cszasi8vKZIvOAjjqA==
Age: 3691
Vary: Accept-Encoding, Origin
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c15be7bf1c6987951ddd348d6f6b4db1
9faac1fb81abc8fce6d4ae81777c76b8bc11e9b0
7f1d01e3fc0b69e331fd30326ea8fd9b1e3e06a0a93ae4768e7addd03a121025
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:50:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash eb5405ca08a5b1038b26ae8f2e3788f3
3341c3d5bed51686ed6c8d85aa59c59a27c652a3
6ffea4a38a9fc074321b874bce4a78eefbf657f1f2a05897fb32d0a9bffa08a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:50:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2763bec344cb95973157cf6c9cf07ee4
ce65e30fd5b73cb79d01fab7072d53aa60b873a2
6856e1f453e9660a823ccd084229268b257c8f86af7c0962ed751e8b175afc6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:50:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/common.css
200 OK 2.6 kB URL HTTP/1.1 downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/common.css
IP
Hash 5e4789e49ab7f14e47d25f6d47c3d2ac
2365e3104a719fb8b01dc4f0e24b727002374585
32fc8a30611eebc0b9e794adc8a0b505b61c4ad088d3fae7459657a6716ffc72
GET /css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/common.css HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 29 Sep 2022 15:39:29 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Fri, 18 Nov 2022 02:28:52 GMT
ETag: W/"82e72d627b04e1654282023cca1d1e69"
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: dsExuEcfGRiG-HvkXR6nyHTpTy25cqmOMe8Qv_SmvnQ13WymEmQAMg==
Age: 30113
Vary: Accept-Encoding, Origin
downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/banner.css
200 OK 439 B URL HTTP/1.1 downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/banner.css
IP
Hash bab44801ec505a80a429748752285898
a8917d5696408a2c4d6bdd84e717765f8b26a3e4
784ca688890c4757427ee02c906c7dcf1b115ce4ff78307e170e75ee664d20b0
GET /css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/banner.css HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Date: Thu, 17 Nov 2022 18:45:02 GMT
Last-Modified: Thu, 29 Sep 2022 15:39:29 GMT
ETag: W/"78d1bdd981816cfbeb6954a85f9efa58"
Server: AmazonS3
Content-Encoding: gzip
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: yt3x1OClaeol8eBD_4bRknmdCR5EzYruWEHy8c6Y-wc_5ruErWZSNA==
Age: 57939
Vary: Accept-Encoding, Origin
downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/layout-2.css
200 OK 378 B URL HTTP/1.1 downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/layout-2.css
IP
Hash cf3f32b87e7db0bc75850ee6a3971b0a
f2cd301fb0f02e3f0268ff23b654a239113e4fb2
79357138bcdc91233e5196ca82ef83bed0fdcb2468b4cd1a433c9cb859ac5fdd
GET /css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/layout-2.css HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 29 Sep 2022 15:39:29 GMT
Server: AmazonS3
Content-Encoding: br
Date: Fri, 18 Nov 2022 09:49:10 GMT
ETag: W/"38f50a83c6d5d15facb231447fa1ac56"
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: rzdPsLMIgLajo-01lAOmGTXNsFRhjWRFBK-acchjMDmB6GsOTKKQVA==
Age: 3690
Vary: Accept-Encoding, Origin
downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/modal.css
200 OK 831 B URL HTTP/1.1 downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/modal.css
IP
Hash 1a1623889286bcd5c001f4b01b6c4023
0d0642ffea4688b5208fed975b58f0ae90021d17
e13ee61a53cc976ff4395692fc0579ae44f25c29bea6024f76adc718fa3ba0c6
GET /css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/modal.css HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 29 Sep 2022 15:39:29 GMT
Server: AmazonS3
Content-Encoding: br
Date: Fri, 18 Nov 2022 01:04:45 GMT
ETag: W/"aa6f4416185bd7f299dd89e11dac117f"
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ptudvcto7-QkH6_OgrFghR41ubyWGXnPu3IO1WszLXjFdBE__CQKDQ==
Age: 71396
Vary: Accept-Encoding, Origin
partner.googleadservices.com/gampad/cookie.js?domain=primatexpertise.com&callback=_gfp_s_&client=ca-pub-1539284632180767&gpid_exp=1
200 OK 258 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=primatexpertise.com&callback=_gfp_s_&client=ca-pub-1539284632180767&gpid_exp=1
IP
File type ASCII text, with very long lines (405), with no line terminators
Hash ebd622c35196546bc21bbcbe7731ddd7
6dec908d0d95e41d6742fcd7dd4dc13d5f905d39
ef1f8f798043d65956f56925bca42675d0c2f4ae39ce76dc21fb78f7d80ca667
GET /gampad/cookie.js?domain=primatexpertise.com&callback=_gfp_s_&client=ca-pub-1539284632180767&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 18 Nov 2022 10:50:40 GMT
server: cafe
cache-control: private
content-length: 258
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2763bec344cb95973157cf6c9cf07ee4
ce65e30fd5b73cb79d01fab7072d53aa60b873a2
6856e1f453e9660a823ccd084229268b257c8f86af7c0962ed751e8b175afc6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:50:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3dfa5c59213820271e21911d9dfb5e81
d89f3f254f1306e21361edc5e8dc693cd3dff939
95e971e2a1fe5e6783e774639e553d89a39b68ba9be08b0d1b3be3517764ced4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:50:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Fri, 18 Nov 2022 10:50:40 GMT
expires: Fri, 18 Nov 2022 10:50:40 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 17:59:25 GMT
expires: Wed, 15 Nov 2023 17:59:25 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 233475
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5d0f26aabc1e6822799c7b2a0088c7c8
1fe0c1482425fd80388943a097e4bedd549cba84
2f946e377939664b21778a7453b114262582cca8484d148a16c24ca1710370fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:50:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d3ba0eba720a8e5904bee6e804873c24
df1f9c79e39f777ab12225af0af60b9f26af6485
76500b32cbac4ad40e3f42c7dfd46832f3854ba88c3a6d5a9d2b5633e8e1f27b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:50:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
200 OK 510 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash b8aafce9450b91f232393d9c3ab7dc9c
ea02f677745dfa8930bb2672169d234fe39724d9
829343b53d1256181ff712fa0c50ccbb3e6ced21c466acc2f1ffb88032e539ae
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Fri, 18 Nov 2022 10:50:41 GMT
date: Fri, 18 Nov 2022 10:50:41 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-ldf9wHdrbnvOqllse0RXyg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 510
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/4W3rfGbx6fc
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/4W3rfGbx6fc
IP
Hash 7e0bd3d49ae9cee4d3d40f2ddbf59fcc
f39684d52a9d913010b54cbb2b29f3aa9253460c
57b4b77acbb483abf442c149b3844f136090628f204545f6b6fcea56d81d82b4
POST /s/gts1d4/4W3rfGbx6fc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:50:45 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
downloads.mailchimp.com/images/signup-forms/popup/textBadge.svg
200 OK 2.8 kB URL HTTP/1.1 downloads.mailchimp.com/images/signup-forms/popup/textBadge.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 89af446ba10523e2b040d82ecc7a3ebf
890fda79b49b75c7dfae834712fed0dd7b1f5968
b3b902322a75460f9e237fb9d89520ca8c674d1c4e3a6941c3bfc0f1b0c41cac
GET /images/signup-forms/popup/textBadge.svg HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/common.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 21 Oct 2022 17:13:46 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Fri, 18 Nov 2022 10:04:57 GMT
ETag: W/"08dce9f767c64a8247f61eb5897a5a7f"
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: aJZfxeBjr-hJE7q1v5TDULtNDRBYlfiqfl0tm0r6Ikj0KZVnD7HhMg==
Age: 2749
Vary: Accept-Encoding, Origin
mcusercontent.com/7aafb76637df3392205c7b387/images/d34ca113-255f-4dc2-3438-f3e2cca547e6.png
200 OK 1.9 MB URL HTTP/2 mcusercontent.com/7aafb76637df3392205c7b387/images/d34ca113-255f-4dc2-3438-f3e2cca547e6.png
IP
File type PNG image data, 1081 x 439, 8-bit/color RGBA, non-interlaced\012- data
Size 1.9 MB (1913480 bytes)
Hash 627446f643ff05c9065aa278c79b3613
b0b0750e263c4438f52af2ef0701f8ce23c5e922
e05bf1938e11e36e52b4a22ca259535c1a2bef23279c90f24da963fff2210744
GET /7aafb76637df3392205c7b387/images/d34ca113-255f-4dc2-3438-f3e2cca547e6.png HTTP/1.1
Host: mcusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsqveVYIpAQnIR-OEqURGA9JTZCqdVW8Vcis-fmOYiHNPq3zygMClULqNNhvCYq6VMBJdaiJ-6fpTVfBj1yw6NwIw
x-goog-generation: 1622027342872180
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1913480
x-goog-hash: crc32c=R7GeRA==, md5=YnRG9kP/BckGWqJ4x5s2Ew==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
server: UploadServer
date: Fri, 18 Nov 2022 10:50:45 GMT
expires: Fri, 18 Nov 2022 11:50:45 GMT
cache-control: public, max-age=3600
last-modified: Wed, 26 May 2021 11:09:02 GMT
etag: "627446f643ff05c9065aa278c79b3613"
content-type: image/png
content-length: 1913480
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/4W3rfGbx6fc
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/4W3rfGbx6fc
IP
Hash 7e0bd3d49ae9cee4d3d40f2ddbf59fcc
f39684d52a9d913010b54cbb2b29f3aa9253460c
57b4b77acbb483abf442c149b3844f136090628f204545f6b6fcea56d81d82b4
POST /s/gts1d4/4W3rfGbx6fc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 10:50:46 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Poppins%3A300%2C400%2C500%2C600%2C700
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Poppins%3A300%2C400%2C500%2C600%2C700
IP
GET /css?family=Poppins%3A300%2C400%2C500%2C600%2C700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 18 Nov 2022 10:50:39 GMT
date: Fri, 18 Nov 2022 10:50:39 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/css/dist/block-library/style.min.css
200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/css/dist/block-library/style.min.css
IP
GET /c/6.1.1/wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 10:50:39 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 11 Nov 2022 14:56:45 GMT
content-encoding: br
expires: Sat, 18 Nov 2023 10:50:39 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.5.1/css/jetpack.css
200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/11.5.1/css/jetpack.css
IP
GET /p/jetpack/11.5.1/css/jetpack.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 10:50:39 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 25 Oct 2022 13:51:34 GMT
content-encoding: br
expires: Sat, 18 Nov 2023 10:50:39 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/wp-mediaelement.min.css
200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/wp-mediaelement.min.css
IP
GET /c/6.1.1/wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 10:50:39 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
content-encoding: br
expires: Sat, 18 Nov 2023 10:50:39 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
stats.wp.com/e-202246.js
200 OK 0 B IP
GET /e-202246.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 10:50:39 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-3508"
content-encoding: br
expires: Sun, 05 Nov 2023 21:02:58 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.5.1/_inc/build/tiled-gallery/tiled-gallery/tiled-gallery.min.js
200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/11.5.1/_inc/build/tiled-gallery/tiled-gallery/tiled-gallery.min.js
IP
GET /p/jetpack/11.5.1/_inc/build/tiled-gallery/tiled-gallery/tiled-gallery.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 10:50:39 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 07 Dec 2021 16:56:47 GMT
content-encoding: br
expires: Sat, 18 Nov 2023 10:50:39 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery.min.js
200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery.min.js
IP
GET /c/6.1.1/wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 10:50:39 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 19 Sep 2022 14:16:24 GMT
content-encoding: br
expires: Sat, 18 Nov 2023 10:50:39 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.5.1/_inc/build/photon/photon.min.js
200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/11.5.1/_inc/build/photon/photon.min.js
IP
GET /p/jetpack/11.5.1/_inc/build/photon/photon.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://primatexpertise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 10:50:39 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 07 Dec 2021 16:56:47 GMT
content-encoding: br
expires: Sat, 18 Nov 2023 10:50:39 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
188.34.205.234
192.0.77.37
23.36.76.226
93.184.220.29
0.0.0.0