Overview

URL 3piltd.com/eft/G@Y4.zip
IP72.167.222.75
ASNAS-26496-GO-DADDY-COM-LLC
Location United States
Report completed2022-09-09 02:30:33 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-09 2 3piltd.com/wp-includes/js/wp-emoji-release.min.js?ver=5.5.10 Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/modern-events-calendar-lite/assets/packages/t (...) Phishing
2022-09-09 2 3piltd.com/eft/G@Y4.zip Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/modern-events-calendar-lite/assets/packages/s (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/modern-events-calendar-lite/assets/css/iconfo (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/modern-events-calendar-lite/assets/packages/f (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/modern-events-calendar-lite/assets/packages/l (...) Phishing
2022-09-09 2 3piltd.com/wp-content/themes/jupiterx/lib/assets/dist/css/icons-admin.css?v (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/menu-icons/css/extra.min.css?ver=0.12.5 Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/jet-engine/assets/css/frontend.css?ver=2.5.4 Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/motopress-hotel-booking-lite/vendors/kbwood/d (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/motopress-hotel-booking-lite/assets/css/mphb. (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/recent-tweets-widget/tp_twitter_plugin.css?ver=1.0 Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/modern-events-calendar-lite/assets/css/fronte (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/jet-menu/assets/public/lib/font-awesome/css/v (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/jet-menu/assets/public/css/public.css?ver=2.0.6 Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/jet-popup/assets/css/jet-popup-frontend.css?v (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/masterslider/public/assets/css/masterslider.m (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/jet-elements/assets/css/jet-elements-skin.css (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-ico (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/jet-menu/assets/public/lib/font-awesome/css/a (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/jet-elements/assets/css/jet-elements.css?ver=2.3.3 Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/menu-icons/vendor/codeinwp/icon-picker/css/ty (...) Phishing
2022-09-09 2 3piltd.com/wp-content/uploads/elementor/css/post-1811.css?ver=1607186597 Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.0.5 Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/jet-tricks/assets/css/jet-tricks-frontend.css (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/elementor/assets/lib/flatpickr/flatpickr.min. (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/raven/assets/css/frontend.min.css?ver=1.11.0 Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands. (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawe (...) Phishing
2022-09-09 2 3piltd.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/masterslider/includes/modules/elementor/asset (...) Phishing
2022-09-09 2 3piltd.com/wp-content/themes/jupiterx/lib/admin/assets/lib/webfont/webfont. (...) Phishing
2022-09-09 2 3piltd.com/wp-content/themes/jupiterx/lib/assets/dist/js/utils.min.js?ver=1.17.0 Phishing
2022-09-09 2 3piltd.com/wp-content/uploads/elementor/css/post-15.css?ver=1605764490 Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/modern-events-calendar-lite/assets/js/fronten (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/modern-events-calendar-lite/assets/js/jquery. (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/modern-events-calendar-lite/assets/packages/f (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/modern-events-calendar-lite/assets/packages/c (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/modern-events-calendar-lite/assets/packages/l (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/modern-events-calendar-lite/assets/packages/o (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3 Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/motopress-hotel-booking-lite/vendors/canjs/ca (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/motopress-hotel-booking-lite/vendors/kbwood/d (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/motopress-hotel-booking-lite/vendors/kbwood/d (...) Phishing
2022-09-09 2 3piltd.com/wp-includes/js/underscore.min.js?ver=1.8.3 Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/motopress-hotel-booking-lite/assets/js/public (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/jet-menu/assets/public/js/vue.min.js?ver=2.6.11 Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/jet-menu/assets/public/js/jet-menu-public-scr (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/raven/assets/lib/smartmenus/jquery.smartmenus (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/raven/assets/lib/url-polyfill/url-polyfill.mi (...) Phishing
2022-09-09 2 3piltd.com/wp-includes/js/jquery/ui/position.min.js?ver=1.11.4 Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?v (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.mi (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ve (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/jet-elements/assets/js/lib/anime-js/anime.min (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/jet-tabs/assets/js/jet-tabs-frontend.min.js?v (...) Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/jet-tricks/assets/js/jet-tricks-frontend.js?v (...) Phishing
2022-09-09 2 3piltd.com/wp-includes/js/wp-util.min.js?ver=5.5.10 Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/raven/assets/js/frontend.min.js?ver=1.11.0 Phishing
2022-09-09 2 3piltd.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa (...) Phishing
2022-09-09 2 3piltd.com/wp-content/themes/jupiterx/lib/assets/fonts/jupiterx.woff Phishing
2022-09-09 2 3piltd.com/wp-content/themes/jupiterx/lib/assets/dist/js/frontend.min.js?ve (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-09-09 2 y4.zip Sinkholed


Files

No files detected



Passive DNS (15)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS ocsp.pki.goog (14) 175 2017-06-14 07:23:31 UTC 2022-09-08 04:58:43 UTC 142.250.74.3
mnemonic passive DNS img-getpocket.cdn.mozilla.net (5) 1631 2017-09-01 03:40:57 UTC 2022-09-08 13:33:23 UTC 34.120.237.76
mnemonic passive DNS fonts.gstatic.com (41) 0 2014-08-29 13:43:22 UTC 2022-09-08 04:58:44 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-08 22:24:39 UTC 142.250.74.164
mnemonic passive DNS khms0.googleapis.com (1) 4926 2015-09-23 11:34:17 UTC 2022-09-08 21:21:39 UTC 142.250.74.42
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-08 04:57:07 UTC 23.36.77.32
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-08 05:16:49 UTC 143.204.55.25
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-08 22:22:20 UTC 93.184.220.29
mnemonic passive DNS jupiterx.artbees.net (1) 441403 2019-03-01 15:04:17 UTC 2022-09-08 08:01:56 UTC 172.67.75.223
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-08 04:58:06 UTC 34.117.237.239
mnemonic passive DNS 3piltd.com (96) 0 2016-11-21 19:52:47 UTC 2022-09-02 02:40:03 UTC 72.167.222.75 Unknown ranking
mnemonic passive DNS maps.google.com (1) 1899 2016-05-21 18:40:38 UTC 2022-09-08 06:44:48 UTC 216.58.211.14
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-09 00:24:47 UTC 143.204.55.27
mnemonic passive DNS fonts.googleapis.com (3) 8877 2014-07-21 13:19:55 UTC 2022-09-08 17:06:08 UTC 142.250.74.10
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-08 05:41:25 UTC 35.163.196.193


Recent reports on same IP/ASN/Domain/Screenshot

Last 3 reports on IP: 72.167.222.75

Date UQ / IDS / BL URL IP
2022-11-09 03:08:44 +0000
0 - 0 - 63 3piltd.com/eft/G@Y4.zip 72.167.222.75
2022-10-09 03:44:22 +0000
0 - 0 - 64 3piltd.com/eft/G@Y4.zip 72.167.222.75
2022-09-09 02:30:33 +0000
0 - 0 - 64 3piltd.com/eft/G@Y4.zip 72.167.222.75

Last 5 reports on ASN: AS-26496-GO-DADDY-COM-LLC

Date UQ / IDS / BL URL IP
2022-12-08 08:20:13 +0000
0 - 0 - 12 mb.vin/vin/8754df765c47a9dc71d2bf7e3a4174b3/ 107.180.41.226
2022-12-08 07:04:19 +0000
0 - 0 - 7 ctrldesigns.com/wp-content/plugins/x/patior/p (...) 107.180.41.154
2022-12-08 06:43:02 +0000
0 - 0 - 1 preverjaboticabal.com.br/assets/uploads/canal (...) 107.180.57.13
2022-12-08 06:43:01 +0000
0 - 0 - 1 preverjaboticabal.com.br/assets/uploads/canal (...) 107.180.57.13
2022-12-08 05:32:25 +0000
0 - 0 - 5 bukharasuwanee.com/ 50.63.7.214

Last 3 reports on domain: 3piltd.com

Date UQ / IDS / BL URL IP
2022-11-09 03:08:44 +0000
0 - 0 - 63 3piltd.com/eft/G@Y4.zip 72.167.222.75
2022-10-09 03:44:22 +0000
0 - 0 - 64 3piltd.com/eft/G@Y4.zip 72.167.222.75
2022-09-09 02:30:33 +0000
0 - 0 - 64 3piltd.com/eft/G@Y4.zip 72.167.222.75

Last 2 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-09 03:08:44 +0000
0 - 0 - 63 3piltd.com/eft/G@Y4.zip 72.167.222.75
2022-10-09 03:44:22 +0000
0 - 0 - 64 3piltd.com/eft/G@Y4.zip 72.167.222.75


JavaScript

Executed Scripts (80)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (174)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6568
Expires: Fri, 09 Sep 2022 04:19:50 GMT
Date: Fri, 09 Sep 2022 02:30:22 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 09 Sep 2022 02:05:40 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: IaOCYh4XgZM7Vnqy1xGhWCha3OFV2rGCrdlU0FS9yysgCLOBTFz39A==
Age: 1482


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    99b7d23c1748d0526782b9ff9ea45f09
Sha1:   eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
Sha256: 48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tIbLDoPeuWeDFMo8fck56s6PY4ibAg7qZTSmt3H3LuYDo5RLseb0Ng==
age: 81828
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 09 Sep 2022 02:30:22 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 09 Sep 2022 01:56:07 GMT
Expires: Fri, 09 Sep 2022 02:21:07 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: rBmPwkTnr9KYd6z-8rEoM-3tAxc4oF87Oxg8g-zbtOJbvpyOlQkGvw==
Age: 2056


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6208
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 02:30:23 GMT
Last-Modified: Fri, 09 Sep 2022 00:46:55 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=5.5.10 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:23 GMT
Server: Apache
Last-Modified: Fri, 16 Apr 2021 01:01:10 GMT
Accept-Ranges: bytes
Content-Length: 14229
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (11272)
Size:   14229
Md5:    878184c5d285d4d52d926d36ef19b718
Sha1:   dd260ffe0f8e3f38f58efd23cac8a1e5c788dad9
Sha256: 07e4203b9f313b587b1d53f896e63771ec85f9b0d4c2ac5fa64089457784d847

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /css?family=Montserrat%3A400%2C700%7CRoboto%3A100%2C300%2C400%2C700&ver=5.5.10 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/

                                         
                                         142.250.74.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 09 Sep 2022 02:30:23 GMT
Date: Fri, 09 Sep 2022 02:30:23 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   833
Md5:    a59784d5bff5e2657be5e7032ac004ae
Sha1:   9cb277105e35fac2316ec4c7c52c205d31986338
Sha256: 0a351583a0da954cd2aee83043c58d7585a77870964d3ef1edc3dc3d175ddbea
                                        
                                            GET /wp-content/plugins/modern-events-calendar-lite/assets/packages/tooltip/tooltipster-sideTip-shadow.min.css?ver=5.5.10 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:23 GMT
Server: Apache
Last-Modified: Thu, 19 Nov 2020 03:50:00 GMT
Accept-Ranges: bytes
Content-Length: 1684
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1684), with no line terminators
Size:   1684
Md5:    963b1810e2903311c299866636e46062
Sha1:   46287cdb4aaa5cd840e3a7b16ad4e331c29db271
Sha256: 970fb3515835fc779193ba0f88531ff29972b3c9cd76aba2fb1222fb97beeab6
                                        
                                            GET /wp-content/plugins/modern-events-calendar-lite/assets/packages/tooltip/tooltip.css?ver=5.5.10 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:23 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:32 GMT
Accept-Ranges: bytes
Content-Length: 6495
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (6495), with no line terminators
Size:   6495
Md5:    b15ef24270546e5fe896d3ea387ea134
Sha1:   63910103e8cc5e4bdeb2c289cfbf41f89966ea5b
Sha256: 41ce2509fa9959868717986010e16b6334885fd46bc64d0d3c745a73ed3c41e4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /eft/G@Y4.zip HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 09 Sep 2022 02:30:22 GMT
Server: Apache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2758), with CRLF, LF line terminators
Size:   62233
Md5:    0b9e0ed5f312462512c65c172f1fbb09
Sha1:   8e9ec62b74e17f557e4636c978ba9373d978e7d7
Sha256: 9c939223dcb4b8a9fc0a62cd098a75c95c5b8657e351590805bef3c2e64ca8bd

Alerts:
  Blocklists:
    - fortinet: Phishing
    - quad9: Sinkholed
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 835W4DmlMqSt5QALvbaE3Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.163.196.193
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: oqMRQ9qADL/EQvMBHwGpJ4VZf/w=

                                        
                                            GET /wp-content/plugins/modern-events-calendar-lite/assets/packages/select2/select2.min.css?ver=5.13.6 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:23 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:32 GMT
Accept-Ranges: bytes
Content-Length: 14967
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (14965), with CRLF line terminators
Size:   14967
Md5:    ba5948c0bda0f5f26bd3068ce565deaa
Sha1:   6d28595693ce13f1a79db7d5c73bd82b13cf63b5
Sha256: c2a282dd6dac10a3fbf469b4e67f489608777854e6d157bf11233dfbaa16851e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/modern-events-calendar-lite/assets/css/iconfonts.css?ver=5.5.10 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:23 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 41459
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   41459
Md5:    351215e684a1d9ddc85ff89dd0db4645
Sha1:   d2244a4b07a619e6b15646d35ddfc7a04e9183c8
Sha256: 482c5169117c7346bc495964e23ab5190db8fb8b1a09e6edf8494f9bef869eda

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/modern-events-calendar-lite/assets/packages/featherlight/featherlight.css?ver=5.5.10 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:23 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:32 GMT
Accept-Ranges: bytes
Content-Length: 4046
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   4046
Md5:    513382a9289a46f26896cd7c42ae34dc
Sha1:   54f0a49c4d013d801e0c53b23f93a461c3418e08
Sha256: 3bb51227d2ff534e4834ff3137f722a77dc2a8a9c6f1fda503116c0d7f9f7b47

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/modern-events-calendar-lite/assets/packages/lity/lity.min.css?ver=5.5.10 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:23 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:32 GMT
Accept-Ranges: bytes
Content-Length: 3469
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (3469), with no line terminators
Size:   3469
Md5:    5ce2a01b43625d65e4417b43208c99c9
Sha1:   a6c6b5d298c2783e02a4ef56bebacb765b7d054c
Sha256: 19fb1c3c4a52d399f2b32a80c3fa35d97dde81f33e20bb7da6d95d4087c49ed6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/jupiterx/lib/assets/dist/css/icons-admin.css?ver=1.17.0 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:23 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:36 GMT
Accept-Ranges: bytes
Content-Length: 6600
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF, CR line terminators
Size:   6600
Md5:    c87768f9ea10b3e00aba87d693ba9610
Sha1:   6797e09214b0acc0e7fc14432852de25ea1880fc
Sha256: 80111259751e4f93d6a536e2080c74b1db4603b7288bfa9c68d3a1e59a64361f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/menu-icons/css/extra.min.css?ver=0.12.5 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:23 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 815
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (815), with no line terminators
Size:   815
Md5:    27fa14302689f7f32e20359095766e4d
Sha1:   1f3db901d6f8746008838a7e5f2be30feeaeef83
Sha256: 968ab8ae6f33119ee267a11ce60920934e0d5e9d4714a3eb6b47cb9f05e42a0f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/css/dist/block-library/theme.min.css?ver=5.5.10 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:23 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:32 GMT
Accept-Ranges: bytes
Content-Length: 2218
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2218), with no line terminators
Size:   2218
Md5:    9bd313fbce9688ed85c407ad4d0a7c13
Sha1:   e1253db86329a7d257b2f653b288b425992a284d
Sha256: 5d5575c28819cc80d5cf47729e998387ddc2d510a6adf37ce5a19b8f2127ee05
                                        
                                            GET /wp-content/plugins/jet-engine/assets/css/frontend.css?ver=2.5.4 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:23 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 43591
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (43590)
Size:   43591
Md5:    0edeeb5d76d505e33d2cc8984f3e8f29
Sha1:   de802a6d97d03f5413b918bacabe4520ce38e5c7
Sha256: 89870cfacdd6af762e28743648a5ead8973b69bd4237bc6d0e9fe6ab2a86e5fc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/css/dashicons.min.css?ver=5.5.10 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:23 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 03:16:55 GMT
Accept-Ranges: bytes
Content-Length: 59015
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (58980)
Size:   59015
Md5:    b4ac0603c1a204a16b9069713e765cb7
Sha1:   f0d0f36de34b08f93e9ce8bff66f36574884a37d
Sha256: b7203ef7f18e8e70e9991515982b3bbd43524cf048e9591b7aab1e80db938774
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.3 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:23 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 1920
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   1920
Md5:    a2e915fb21387a23a3578cb1b2b5a724
Sha1:   c3601301dacf90fc9eede9363f2698d922c05327
Sha256: fbf8ab57db7f9981bd71d79c7daaa01a3c578ffa0aa8e9b4a9b2bfe2e9927427
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=5.5.10 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:23 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:32 GMT
Accept-Ranges: bytes
Content-Length: 53907
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (27100)
Size:   53907
Md5:    2e7e1d1c1d4d446a1b6b63295757d859
Sha1:   27a1d9dcbdc4aff486016b5c9f3ece6ad0c028c1
Sha256: 8c626f0f9b5c109539b256b73e72c02b300a184f46b4535c2eb86599215c78af
                                        
                                            GET /wp-content/plugins/motopress-hotel-booking-lite/vendors/kbwood/datepick/jquery.datepick.css?ver=3.8.7 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:23 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 4438
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   4438
Md5:    89ef37b89beeee5055aa28173d7c6937
Sha1:   ca2c4e05347d4b9ed003ca4e08564b1d90f251f9
Sha256: 26a56d3bbfe55c7dcfa254eda8a3b43d00545fdcd3a2e3ed98a43a5ad9d78d27

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/motopress-hotel-booking-lite/assets/css/mphb.min.css?ver=3.8.7 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:23 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 9753
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (9753), with no line terminators
Size:   9753
Md5:    b2a442c92f0dd1b9fdda169bbc454215
Sha1:   8d49a5a21ace0e7229efee47a2f6a18c50103f5a
Sha256: 0b4d728c7110420d1c00562fff545b18b3750fe8e580461cf0b7eafb7c3bc462

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/recent-tweets-widget/tp_twitter_plugin.css?ver=1.0 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:23 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 529
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   529
Md5:    b655ad4016c052d438708a50654f7957
Sha1:   046aa8f2e76f9f0c7412b5f6e7a52b8ceed20421
Sha256: 3109fef8b2a9ab71fca698483d2bae36d8fed772517c259dacce872e739bb690

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/stripe-payments/public/assets/css/public.css?ver=2.0.37 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:23 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 4648
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   4648
Md5:    1f02e275eacc700f5e393c22466d60f2
Sha1:   1c82ca9af467fd6f1eba2c0d3cc12bc9a2f8c0bd
Sha256: 8cc63bbc0909c61913044fcb995664904cf4f4fdbd91853ea3a4c58a810d93bc
                                        
                                            GET /wp-content/plugins/modern-events-calendar-lite/assets/css/frontend.min.css?ver=5.13.6 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:23 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 345447
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   345447
Md5:    7f541bd3b2ef7bdcf10a0e364b5eb80f
Sha1:   0e2082b766a4de0810a61226e6545719cd6aeee7
Sha256: 7f69add4bf8f5764e5ed86e05087b2b36fc563f0cdef0b2692ffed5d8e0014e9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/jet-menu/assets/public/lib/font-awesome/css/v4-shims.min.css?ver=5.12.0 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:23 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 26702
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (26516)
Size:   26702
Md5:    55ab7f65f6025cf7f088dd2e5897bb29
Sha1:   66b2c37c3f7be5f83f33ab07087645168fc1851f
Sha256: 4b8b06e8edfab1dd4475c13ee021e4f582b075677a9018e2f0ba56cc3fc2f0b6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 02:30:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/jet-menu/assets/public/css/public.css?ver=2.0.6 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 30393
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (30392)
Size:   30393
Md5:    50797b1bb1428ee0d4958f8d3c1ae5c2
Sha1:   6316c5b2babf9bbbf7da2b5c74ebf2dcedd30235
Sha256: a6df7e1a54840782a0438e0e6beaebdc988cb5d818ef566765f776292bde510b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/jet-popup/assets/css/jet-popup-frontend.css?ver=1.4.1 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 15940
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (15939)
Size:   15940
Md5:    4d2047d3be02b3e372bf986457073250
Sha1:   ff8dde206ed700357c90ef1ef6db445de3ef88eb
Sha256: 89c4d75c7cf410456dec27b30d28708b5b152c14725021bb7e3561f02f4db8f2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/jupiterx/compiler/jupiterx/c26855e.css?ver=1.17.0 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:23 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:36 GMT
Accept-Ranges: bytes
Content-Length: 140006
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   140006
Md5:    bf8e74a12fdd21f17a6f4b6017cdec10
Sha1:   a553b7c1852ffd9fc0ebe6038f3ad73367f156ef
Sha256: 488c04f08487b5901747258bd95645d5915a99266af46aaa238592ab797b21e6
                                        
                                            GET /wp-content/uploads/masterslider/custom.css?ver=1.1 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:36 GMT
Accept-Ranges: bytes
Content-Length: 266
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   266
Md5:    48a9f5734939f50e785f554f2ceb6cb8
Sha1:   5d42633b640833ebf15fd09f6b15b2d74536aa94
Sha256: 1b4e2c3b84fe75916b109ac323d0eb39e3881a892f7b7a21970a0cb9e694b3d7
                                        
                                            GET /wp-content/plugins/masterslider/public/assets/css/masterslider.main.css?ver=3.2.14 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:36 GMT
Accept-Ranges: bytes
Content-Length: 81249
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF, LF line terminators
Size:   81249
Md5:    a268097794c650a0d7b3eeea6f9e1594
Sha1:   9aaf6c0c2b6f6950ffd4d645a94c669655068963
Sha256: 89b3bb667432bca678f0d2529dafe50eb8670bfdc4d5ce12f91d314b087508b8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/jet-elements/assets/css/jet-elements-skin.css?ver=2.3.3 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 17382
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (17381)
Size:   17382
Md5:    fb7eff2c1dd15b3c4f9f36c91bdaa110
Sha1:   8e7f2915216ef9e957d576a164f452ef44a37202
Sha256: b95b30ea27294933157b928bc2b187e07edd98976bcf1db1b2e1ef36d7388cbd

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 16593
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (16548)
Size:   16593
Md5:    0153d4a2981f275b4aed2081ab9126a1
Sha1:   5f4622e2b51398457b64943cd6cf2f37345274c2
Sha256: 7c1462e18c5243921d0647e86db29600d07cdbae381fad166ca93ae2b8c1e054

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.5 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 18468
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (10019)
Size:   18468
Md5:    4601ba55044413706c2022cb6c1c3d05
Sha1:   5103ec2fbb389568ebf5cfe4fd721f3df2ff7aec
Sha256: fe513ef974b767510d0a2b9f1b4d3afa53185b89ab617c869e5e3d6db960192c
                                        
                                            GET /wp-content/plugins/jet-menu/assets/public/lib/font-awesome/css/all.min.css?ver=5.12.0 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:23 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 57120
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (56934)
Size:   57120
Md5:    36527bed3df95c7522b710ebf312f2be
Sha1:   45b5e725d5b9b05ed2c54f7543a9f625067d80d9
Sha256: f92ad7384f67b19ba46d117b79c363fda5fc7cdae461a52b4ba3632845f8694f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.0.5 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 3854
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (3815)
Size:   3854
Md5:    20fc6e4af9bf80771064a7698c92e525
Sha1:   85f3c50dbe5a267cbfdd9ab6613ec3a8e763c9e2
Sha256: de5051d947d1911b19b0ee770b6d12fa92bb54053f96a22d2af36d8ab2c9232e
                                        
                                            GET /wp-content/plugins/jet-elements/assets/css/jet-elements.css?ver=2.3.3 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 228400
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   228400
Md5:    b477ce55b4620f7755625bcffeb023cf
Sha1:   6a4d130f32ad67e00c0570c312dd2f92e12a26cb
Sha256: 153cbaad01fc89f7761f2272d503a007f457fb0c64299f0d192e5fee10463d8d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/menu-icons/vendor/codeinwp/icon-picker/css/types/font-awesome.min.css?ver=4.7.0 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 30774
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (30612)
Size:   30774
Md5:    f60e27add026636bbed248d63f7b1a63
Sha1:   b9873493080ac1d92f6e806aee0e53486d1d42aa
Sha256: 7aec749fb92fe9fb2e6c35a3a5f9eed8a9bd0c9e1e9389fe89c2dea58a699d28

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/elementor/css/post-1811.css?ver=1607186597 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:36 GMT
Accept-Ranges: bytes
Content-Length: 949
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (949), with no line terminators
Size:   949
Md5:    82bbfefe3774724114bc58f6c083f974
Sha1:   2b0008f6bca6d3662739278f0443436ce6e7f823
Sha256: 000f1eb077a3c2da0dca2323c68cf900fb07e4a432b584cc233360b1c61c969c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/jet-tabs/assets/css/jet-tabs-frontend.css?ver=2.1.8 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:36 GMT
Accept-Ranges: bytes
Content-Length: 38324
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (38323)
Size:   38324
Md5:    535c74e22bbfc7495357e3091f3beabc
Sha1:   28d5198182d18bb2cd1a277284fefab598003ff2
Sha256: c9eff5844e473ec3f4d0924ad52b295d00d3c25d756e7d17aa2e6db9c4828e2b
                                        
                                            GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.0.5 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 112468
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65497)
Size:   112468
Md5:    f46239e92431cb2025f9b6e249dda6ea
Sha1:   3798af937db4024d8a1304b79b6cd1bd7f671ac7
Sha256: 5522f3679aaf104928506eb78516c27f3e08aa80a08ddbec4b851420b1f8d3c9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/jet-tricks/assets/css/jet-tricks-frontend.css?ver=1.3.0 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:36 GMT
Accept-Ranges: bytes
Content-Length: 21756
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (21755)
Size:   21756
Md5:    3126da068a68d83b6f13530ba4d8fb37
Sha1:   3f993a347b044a443ebfd65ecd3d9235ea87c1d0
Sha256: e5b2ed0b03408ba4e86b76231e36d5f396d1054cb2b35d2ec6dc6310325079af

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/flatpickr/flatpickr.min.css?ver=4.1.4 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 17222
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (13854)
Size:   17222
Md5:    1f2d2303bc2c3905b9b891e45b3db53c
Sha1:   a6cb16992379fcea85265f2583d5ee570d5fca9f
Sha256: 8de1252af1f9de4f2c30be2cea5a2a94db91aadb6cf6d0da24c962c9bc07279f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/raven/assets/css/frontend.min.css?ver=1.11.0 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:36 GMT
Accept-Ranges: bytes
Content-Length: 102586
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   102586
Md5:    af043f904f24592fb5a26a919516b9aa
Sha1:   9a3ad58c025301b802effbcb6bba35d28ead24dc
Sha256: 1fabcbe539bf43eaffd85b75bba158a98e2863994898ff42bba5b3acff9d7509

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/elementor/css/post-213.css?ver=1607608627 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:36 GMT
Accept-Ranges: bytes
Content-Length: 14475
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (14475), with no line terminators
Size:   14475
Md5:    0a6e6d4cbaf16aba6ad3f969b45ad15a
Sha1:   d8f054dd47d936a51b4f027d264e5906004c4e1b
Sha256: 644cd71968e898eb6e61a61b41d7dd9ceb5b5e15fe3527cee171475ff569a195
                                        
                                            GET /wp-content/uploads/elementor/css/post-193.css?ver=1605759239 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:36 GMT
Accept-Ranges: bytes
Content-Length: 13792
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (13792), with no line terminators
Size:   13792
Md5:    3dea250c2cb7e25d42991fb904259d0a
Sha1:   d588ed55556dd043d948d8dcc0622a2e49da9c8f
Sha256: 0af1418b4cc7224e68e98545d6563d9bee761b312be2942e320867b3dec0a57a
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 641
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (455)
Size:   641
Md5:    5762e75dce3b687e51c06b265b11d456
Sha1:   f1e4676649dc7e0d06abfd7fe17b39dcf84c1736
Sha256: 44ecaa4f235929ddef5555d93359d7b8ceccee13ee773edaf15db86d5b38b8f1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.12.0 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 55753
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (55567)
Size:   55753
Md5:    fc6ece0b999d414f53c25c3999397fee
Sha1:   c114a2225aa88cdd1bd3f6f58e22047709eab086
Sha256: 8a814f594ba0f0aa1b298a89c192f7afe2e7d22bfa6b5016d01fce2ce2941996

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:32 GMT
Accept-Ranges: bytes
Content-Length: 96873
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (31997)
Size:   96873
Md5:    49edccea2e7ba985cadc9ba0531cbed1
Sha1:   f8747f8ee704d9af31d0950015e01d3f9635b070
Sha256: 1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/masterslider/includes/modules/elementor/assets/js/elementor-widgets.js?ver=3.2.14 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:36 GMT
Accept-Ranges: bytes
Content-Length: 711
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   711
Md5:    6075968a977fbd0224f902b67698e475
Sha1:   cf9a5fedb2b7f80e19eb64be86e09c400fac94d5
Sha256: 67a3e2d573652c0b3f7d1100dceff7803df9ea1fddec4d724eacfde163d6567d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/modern-events-calendar-lite/assets/js/events.js?ver=5.13.6 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 22580
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   22580
Md5:    ebdad5537507534cdf38ed02e39ade5b
Sha1:   2ec98738d3638937c34fc07f3317d23439f36bc0
Sha256: c52684f4d01182fb48089b8ec870448eb023f4afa60a628429bf01a3e4b755cc
                                        
                                            GET /wp-content/themes/jupiterx/lib/admin/assets/lib/webfont/webfont.min.js?ver=1.6.26 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:36 GMT
Accept-Ranges: bytes
Content-Length: 12358
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (12335), with no line terminators
Size:   12358
Md5:    64d8dc89295dffadb3b0b2e319aecadc
Sha1:   4319346908ccef2fe4dd8c711cecc4ef3ca3d806
Sha256: bac9ef0fea3a4c2100500b28e1ac9f652a4249117e055dc05fc3900505fe7f0b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/jupiterx/lib/assets/dist/js/utils.min.js?ver=1.17.0 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:36 GMT
Accept-Ranges: bytes
Content-Length: 354
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (354), with no line terminators
Size:   354
Md5:    b66a9b7056dd7c8555b992cfd7375910
Sha1:   c19e9987b2b63334be46fcc121b251bef73dfaca
Sha256: aa9c59d0cf5ba30915b06e02b5b779e93ceb253c49ba934998e660d2db82a9e9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/elementor/css/post-15.css?ver=1605764490 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Thu, 19 Nov 2020 05:41:30 GMT
Accept-Ranges: bytes
Content-Length: 3505
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (3505), with no line terminators
Size:   3505
Md5:    e3aa13a801baa7bae44852aa2bc7f4a3
Sha1:   af3039adb0b8f0449a29e5eb4ce154be0dd2c60c
Sha256: cc8f8216a09089e97b8fc319e9c28cec22ebcf463e3c209fb4b3702a3324ced8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/modern-events-calendar-lite/assets/js/frontend.js?ver=5.13.6 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 206037
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (411), with CRLF line terminators
Size:   206037
Md5:    f93b396224e2b008703c66dc91061095
Sha1:   9fd0935fcd46242943d86fd5aec7084dc4cb5bfa
Sha256: 69df6794e4850b77fca5b2e88950f98b75e3f00f58f83fae95d3f1aa5a5426c1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:32 GMT
Accept-Ranges: bytes
Content-Length: 3929
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (3704)
Size:   3929
Md5:    e6784d91bf2c668bc4093063c5b15113
Sha1:   687e1d2e957a821280dbd205ae66182f16dfdc30
Sha256: 194ebae85ff853319e8668f23a4c5bf371a7d9f5d550a40980ab53026ddaaa17
                                        
                                            GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:32 GMT
Accept-Ranges: bytes
Content-Length: 36172
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (35947)
Size:   36172
Md5:    a236bd4097fcbfb009f64238dc4443a1
Sha1:   ddbeeaa10749e4a74fe624ced0531b9243235dd2
Sha256: 2c3f3b95a692312d9b75815ecb949a40c2a701ff148fe865fde55556c810a22c
                                        
                                            GET /wp-content/plugins/modern-events-calendar-lite/assets/js/jquery.typewatch.js?ver=5.13.6 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 3013
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   3013
Md5:    b54528a5397b9522a0886b4733cbaca9
Sha1:   2afb4116097dd2b1b5f35d7d1ea67ef7b7e98a4c
Sha256: 28aa95a989d5e46ee060bb0d443fcd699d31db7320673379fad857f77fc776a8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/modern-events-calendar-lite/assets/packages/featherlight/featherlight.js?ver=5.13.6 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:32 GMT
Accept-Ranges: bytes
Content-Length: 30811
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   30811
Md5:    11c182e0f84b20b8f7f97d228d77dd56
Sha1:   4d387661d534f50cb58de1469634bdfad2ade25f
Sha256: 87a4d24f8fb09eae43f4e07568e22c9f714ad5a86296516dd3721d7328922d71

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /css?family=Barlow:100,200,300,400,500,600,700,800,900,100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic%7CRubik:100,200,300,400,500,600,700,800,900,100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/

                                         
                                         142.250.74.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 09 Sep 2022 02:30:24 GMT
Date: Fri, 09 Sep 2022 02:30:24 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   1408
Md5:    857c3bcecbc83fd360fd6ce7a0d23259
Sha1:   2ad9fc0212f90d01780ea499e03c3edb018025c5
Sha256: 86b225f23e0023bbb2030329046310c3fd89799f5dba2618cb462cf9bc055759
                                        
                                            GET /wp-content/plugins/modern-events-calendar-lite/assets/packages/select2/select2.full.min.js?ver=5.13.6 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:32 GMT
Accept-Ranges: bytes
Content-Length: 78557
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (64130), with CRLF line terminators
Size:   78557
Md5:    5d60184be7813e6a51b6a7f929aaf50a
Sha1:   7eca639e5048fbb8952ba6d1b72ad7ce9b7e75ea
Sha256: fe5f91e8750420e8c460358e4ddf588f781c252c2426741e59132f238d6e6203
                                        
                                            GET /wp-content/plugins/modern-events-calendar-lite/assets/packages/tooltip/tooltip.js?ver=5.13.6 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:32 GMT
Accept-Ranges: bytes
Content-Length: 39901
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (32056), with CRLF line terminators
Size:   39901
Md5:    e63e72beda2a9b4113814de083867f0a
Sha1:   62a13e9e707cebea9232b208b0e56c3c4730261d
Sha256: b763b49b4a8f7afccef98cc8a40f450a31d6c69150d30acb3438d81331222d41
                                        
                                            GET /wp-content/plugins/modern-events-calendar-lite/assets/packages/colorbrightness/colorbrightness.min.js?ver=5.13.6 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Thu, 19 Nov 2020 03:50:00 GMT
Accept-Ranges: bytes
Content-Length: 942
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (677), with CRLF line terminators
Size:   942
Md5:    c3a249307f1f750df1c56de3953c1845
Sha1:   9078186ebd5f6a6bfe51b224b89c1506b4e52f13
Sha256: 1396662705b0c8e4aece9ae751982e526b27e9e1271276d3bc02168d3491361e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/modern-events-calendar-lite/assets/packages/lity/lity.min.js?ver=5.13.6 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:32 GMT
Accept-Ranges: bytes
Content-Length: 6287
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (6169), with CRLF line terminators
Size:   6287
Md5:    fe8ca85f2ef23ed06b3b53c870d4cf05
Sha1:   246692a381377536145113f0ecc2c8d9208821e9
Sha256: 3b1ae6cec7f06d999f0695e08022868275f74821104092579bc1a848db0f34de

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9212
Expires: Fri, 09 Sep 2022 05:03:56 GMT
Date: Fri, 09 Sep 2022 02:30:24 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9212
Expires: Fri, 09 Sep 2022 05:03:56 GMT
Date: Fri, 09 Sep 2022 02:30:24 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9212
Expires: Fri, 09 Sep 2022 05:03:56 GMT
Date: Fri, 09 Sep 2022 02:30:24 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9212
Expires: Fri, 09 Sep 2022 05:03:56 GMT
Date: Fri, 09 Sep 2022 02:30:24 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/plugins/modern-events-calendar-lite/assets/packages/owl-carousel/owl.carousel.min.js?ver=5.13.6 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Thu, 19 Nov 2020 03:50:00 GMT
Accept-Ranges: bytes
Content-Length: 109930
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   109930
Md5:    6927b61fe343d41bb968ce61dff2f67e
Sha1:   81ef5259cb46a2da7cfb29ef25ebab447de1d367
Sha256: 2253d28cf7e038400244b19b4fe87d90240a0388e16f0a145deeff4eaf47b14a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F199c07a4-22c1-436c-8d21-dbe4aabccb89.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9286
x-amzn-requestid: f1cd10c2-4fa8-4185-ac74-bfb1c37def32
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X0erUGE7oAMFgNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6311ab15-0268d80b4cdb00061486ce8f;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 07:04:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: i0ZLp_GSxfhcDzsTxZKJOOZoVOTIZk1eOrl8eW0RwUKzeA2jAJS63w==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 09:14:11 GMT
age: 62173
etag: "2c3a975d23df9c99efa4c7297aea7b7abb4eddbb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9286
Md5:    c011a5ce03c74a3140378c1138a6544d
Sha1:   2c3a975d23df9c99efa4c7297aea7b7abb4eddbb
Sha256: a4c8fb763dadd8ebc6815f4ec7761b33740e112d66e89754cabdb48cbcf2bcb1
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 14280
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   14280
Md5:    f89263c0c2f24398a1df52eead69f5f8
Sha1:   850e9cfb1680eb1df4365889724e69f38df7bb9e
Sha256: 125ec330f66081e7dc9f2814e9ec18f4e2d0baa1936d497375eedfda7ac12e5c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fe67ce8-0dbe-46fe-b313-0e2a78618af6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8308
x-amzn-requestid: 3610a034-9015-43b5-9ff7-321d7629e77d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YKQ6-EiIIAMFaJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631a61df-23a8a01717f7e19d5fd6233b;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 21:42:55 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: uMVbhDzCFBjAYRJsfox5aEW5HJ9muukQRjIJDVXMp_y48cposGzt-w==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 76dcc62b68091cc715d50b5017be77fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 21:45:51 GMT
etag: "467e3fee064805e08a9e6e3c86b195f6aa68c433"
age: 17073
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8308
Md5:    6b210b0740e1eb42fcbd3aba71ceb8b4
Sha1:   467e3fee064805e08a9e6e3c86b195f6aa68c433
Sha256: d5ecaf9ae06ff984c86bee5005c534e3c65255e6faeb5c3837fa601740a2c5ae
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c7c5434-1873-4130-a7ce-78209ce54bf0.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10950
x-amzn-requestid: 435fc2f4-fbcb-4eec-81d8-a23154dcec61
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YFUwZEfvIAMFjCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63186802-2348a4000430702d4e9ea132;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 09:44:34 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ORlM8dFTc_iThvJghFakY86D3ToJ5TCmP8Ip2PcvXCCkSKKHpWQ0Zw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 22:02:59 GMT
age: 16045
etag: "f930fcb22325e28592bc39b0b1974f5197c19afd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10950
Md5:    15249f3dafdd1690bc87ebb4fa6d518d
Sha1:   f930fcb22325e28592bc39b0b1974f5197c19afd
Sha256: a0b9e88c78e85a037363e0b0e4e03478718f8715fe69e72bfd159922eca28301
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/motopress-hotel-booking-lite/vendors/canjs/can.custom.min.js?ver=3.8.7 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 25385
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (3717), with CRLF line terminators
Size:   25385
Md5:    e5d8abfc6ee6be26c08e3f8055cf752c
Sha1:   808a425ea016767becce479e34fb1fb0a91c17e3
Sha256: fb9bebcae4fd227b83b1828ee0ebe5a69130c063e07c94ea6696e1ba99d75ec4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f23cc94-7224-4460-ac1e-e6f178c3e961.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6348
x-amzn-requestid: 6b54628a-cdef-4171-af77-eb009325c973
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YHDxVHZvoAMFpqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631919a1-40d667983dfd5f417f4ed81b;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 22:22:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: yFe_U0RoPs2NwEjNoiHb1WJorfK6eVyJIGlTL5mlB0pU1C-Yc78-Xg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 9b21fd56256eda6d1379e32829c4c446.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 21:45:51 GMT
age: 64037
etag: "646332f967868d58c2afa6a268677b3ea717f4f0"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6348
Md5:    3e2cb929798304af6df37283057249ad
Sha1:   646332f967868d58c2afa6a268677b3ea717f4f0
Sha256: d490b6d3c084c92c92f34007b7f254f7d815a16d2442bbb75c8bae437d3565e1
                                        
                                            GET /wp-content/plugins/motopress-hotel-booking-lite/vendors/kbwood/datepick/jquery.plugin.min.js?ver=3.8.7 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Thu, 19 Nov 2020 03:44:13 GMT
Accept-Ranges: bytes
Content-Length: 3184
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (2986), with CRLF line terminators
Size:   3184
Md5:    8f84414b05f6548c7fb0ba714f2290fc
Sha1:   90294fbfdbe6c7c74b8025d57a1d7bbf5aa896fc
Sha256: 2def6264ea6df3e6a162ddfae71a8dc978dd03cf5316492e30f2fda4d58fb983

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/motopress-hotel-booking-lite/vendors/kbwood/datepick/jquery.datepick.min.js?ver=3.8.7 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 37715
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (37442), with CRLF line terminators
Size:   37715
Md5:    38183b0b3dc654615cf7739159f520b3
Sha1:   8f115ad6af00a1e06e1408fb915be6b82a801ba9
Sha256: 3290d7caff002e9c425bdd1e86ed41e82942aa7d0a885518ca5348d39c096dc6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F793f20c6-757e-47e5-8ab6-4d73ceae75af.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4002
x-amzn-requestid: ea2f5309-e220-4b7e-b718-9339b9444cc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YKQ6hHM8IAMFeJQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631a61dc-7d45fd9253b7b7fa732b6f8d;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 21:42:52 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: VD7SlrM2RwFk5cfQvul2bTJA__GPYd5_UPY0D0_5NGLHoBj3yur7PA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 5abfab33f248090bb0f31ca137ce9464.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 22:05:15 GMT
age: 15909
etag: "cec8428d159a5bde29e89c64cfb04146f759d52b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4002
Md5:    c9590b525c8b07a297c8784f02b161a1
Sha1:   cec8428d159a5bde29e89c64cfb04146f759d52b
Sha256: d309772ce79d36f7b1df0a3ea85a01f8278db2909c860721d105b772efed82ed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /maps?q=103%20Woodford%20Street%2C%20Newtown%20Port-Of%3DSpain%20Trinidad&t=m&z=10&output=embed&iwloc=near HTTP/1.1 
Host: maps.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://3piltd.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.14
HTTP/2 301 Moved Permanently
content-type: text/html; charset=UTF-8
                                        
date: Fri, 09 Sep 2022 02:30:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s103+Woodford+Street,+Newtown+Port-Of%3DSpain+Trinidad!5e0!6i10
server: mafe
content-length: 322
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=3
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size:   322
Md5:    f28e7b75f22af8aa6d9dc8757623f30e
Sha1:   f9efbc6c545159575d751f9b201911bafe637f2d
Sha256: 3890713fd5be6af18e3ea83f8622c47fe00faf087c398faa17a5619d3ed19cf4
                                        
                                            GET /s/barlow/v12/7cHrv4kjgoGqM7E3b_s7wH8.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 20424
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 08 Sep 2022 16:20:04 GMT
Expires: Fri, 08 Sep 2023 16:20:04 GMT
Cache-Control: public, max-age=31536000
Age: 36620
Last-Modified: Tue, 19 Apr 2022 19:18:18 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 20424, version 1.0\012- data
Size:   20424
Md5:    de9b3aab0cd838dac94553f2f4aaf6f5
Sha1:   5355facde197f12fc2578381566f04c4b5f36cbf
Sha256: f91f44c1f7fbae5c1e92b83989432a43fb43bdaf5b3054f5acb95aa01e476aed
                                        
                                            GET /wp-content/plugins/stripe-payments/public/assets/js/stripe-handler-ng.js?ver=2.0.37 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 7971
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (365)
Size:   7971
Md5:    6f1564fa1cc6178a83b74ae2c4e8fb7e
Sha1:   ce8545e93d13d9b9808bdd9436c18f8cbc7c0f6b
Sha256: a66cbbea906904aa710185244c0b2dc3e216a4eac2e81894e80c3e81afa2557e
                                        
                                            GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 21:08:19 GMT
expires: Tue, 05 Sep 2023 21:08:19 GMT
cache-control: public, max-age=31536000
age: 278525
last-modified: Mon, 18 Jul 2022 19:32:55 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data
Size:   33580
Md5:    848cd2ecd011428969dc6b90431bc482
Sha1:   6b1a7b562a56bd54510e0f6f95e26babca331a1b
Sha256: 981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9
                                        
                                            GET /s/barlow/v12/7cHqv4kjgoGqM7E3w-os51os.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20712
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 02:28:23 GMT
expires: Thu, 07 Sep 2023 02:28:23 GMT
cache-control: public, max-age=31536000
age: 172921
last-modified: Tue, 19 Apr 2022 18:55:56 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 20712, version 1.0\012- data
Size:   20712
Md5:    70bad2e5fa320f5ebc4f640be04ac2d9
Sha1:   4cd93511cb4b3ba0a957865fd2a5c607a3a729d3
Sha256: 815f02681d0fd52b5f52e8c3fca5e754fefb3c83c2eed47b63fd3c3228628cd6
                                        
                                            GET /s/barlow/v12/7cHqv4kjgoGqM7E3w-os51os.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 20712
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Sep 2022 13:10:33 GMT
Expires: Wed, 06 Sep 2023 13:10:33 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 18:55:56 GMT
Age: 220791


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 20712, version 1.0\012- data
Size:   20712
Md5:    70bad2e5fa320f5ebc4f640be04ac2d9
Sha1:   4cd93511cb4b3ba0a957865fd2a5c607a3a729d3
Sha256: 815f02681d0fd52b5f52e8c3fca5e754fefb3c83c2eed47b63fd3c3228628cd6
                                        
                                            GET /s/barlow/v12/7cHrv4kjgoGqM7E3b_s7wH8.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20424
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 20:19:49 GMT
expires: Thu, 07 Sep 2023 20:19:49 GMT
cache-control: public, max-age=31536000
age: 108635
last-modified: Tue, 19 Apr 2022 19:18:18 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 20424, version 1.0\012- data
Size:   20424
Md5:    de9b3aab0cd838dac94553f2f4aaf6f5
Sha1:   5355facde197f12fc2578381566f04c4b5f36cbf
Sha256: f91f44c1f7fbae5c1e92b83989432a43fb43bdaf5b3054f5acb95aa01e476aed
                                        
                                            GET /wp-includes/js/underscore.min.js?ver=1.8.3 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:32 GMT
Accept-Ranges: bytes
Content-Length: 16045
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (16010)
Size:   16045
Md5:    203eeb8dd53e84fb53b7aeffb562d825
Sha1:   b4b4361a61ee78717bdcffe5c46ea79cdc3e04ae
Sha256: 6cd0d6897b3d4779f7d88ce72531f22fbf75851b195fb14e6f3f23d051b3d1e9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/barlow/v12/7cHqv4kjgoGqM7E3p-ks51os.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20992
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:43:41 GMT
expires: Thu, 07 Sep 2023 19:43:41 GMT
cache-control: public, max-age=31536000
age: 110803
last-modified: Tue, 19 Apr 2022 19:13:23 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 20992, version 1.0\012- data
Size:   20992
Md5:    9bbb36e16c6af8205e564346df9579c0
Sha1:   8dc297321f4b344e6ea16b549734b10097594860
Sha256: 6563f08627fa2cd60c0c300318405b6f545f0d7f469df6ba87c9e31ecc987217
                                        
                                            GET /s/barlow/v12/7cHqv4kjgoGqM7E3t-4s51os.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21724
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 22:36:55 GMT
expires: Wed, 06 Sep 2023 22:36:55 GMT
cache-control: public, max-age=31536000
age: 186809
last-modified: Tue, 19 Apr 2022 19:29:44 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 21724, version 1.0\012- data
Size:   21724
Md5:    c3609c36a150ce088ea4dcab92b7c00b
Sha1:   0c18236a183e962533a4f61bff3ae2581313561a
Sha256: 65a47caa5183b035bf78d0f93adbe5cea500333410259c54abf2de356740df7e
                                        
                                            GET /s/barlow/v12/7cHqv4kjgoGqM7E3q-0s51os.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 22:44:04 GMT
expires: Tue, 05 Sep 2023 22:44:04 GMT
cache-control: public, max-age=31536000
age: 272780
last-modified: Tue, 19 Apr 2022 19:05:17 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 22052, version 1.0\012- data
Size:   22052
Md5:    f27acc0d33d769a3da576516ca236c41
Sha1:   a678c0f6905303906a2537c1ff983258286a9263
Sha256: 1f132510bc7b665bbe5fb9227b0d2daafa5513296a72f88f88d38179eded9277
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/barlow/v12/7cHqv4kjgoGqM7E3p-ks51os.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 20992
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 05 Sep 2022 12:27:15 GMT
Expires: Tue, 05 Sep 2023 12:27:15 GMT
Cache-Control: public, max-age=31536000
Age: 309789
Last-Modified: Tue, 19 Apr 2022 19:13:23 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 20992, version 1.0\012- data
Size:   20992
Md5:    9bbb36e16c6af8205e564346df9579c0
Sha1:   8dc297321f4b344e6ea16b549734b10097594860
Sha256: 6563f08627fa2cd60c0c300318405b6f545f0d7f469df6ba87c9e31ecc987217
                                        
                                            GET /s/barlow/v12/7cHqv4kjgoGqM7E3j-ws51os.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21416
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 03:09:39 GMT
expires: Thu, 07 Sep 2023 03:09:39 GMT
cache-control: public, max-age=31536000
age: 170445
last-modified: Tue, 19 Apr 2022 18:56:36 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 21416, version 1.0\012- data
Size:   21416
Md5:    d258461a8f2c53d244500969828bdd3f
Sha1:   c796103e6ca328dd6a92bfecf72cda8f0a143158
Sha256: f9bfb04a18c8be687fadacd7f67647b65113ee8d1aabcb0f410eac21681fa7ef
                                        
                                            GET /manufacture/wp-content/uploads/sites/392/2020/04/404-style.png HTTP/1.1 
Host: jupiterx.artbees.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://3piltd.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.75.223
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 09 Sep 2022 02:30:24 GMT
content-length: 55862
cache-control: max-age=2592000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=63165
content-disposition: inline; filename="404-style.webp"
access-control-allow-origin: *
etag: "5f474495-f6bd"
expires: Sat, 08 Oct 2022 21:06:20 GMT
last-modified: Thu, 27 Aug 2020 05:28:53 GMT
vary: Accept
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HLYRa11ENpF7rGF73711wqNQA8vl2ZnPTlNEFvBrqPi5kXCUdCdEmF9AuoS7NkaWO67xGg3SoRKl8OHnZ6zQm%2FH52Yz1MzJWvUfTlKFPXGJkaWhN2G6xPA1HLvLJeIzZ3QvfLdPG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 747c8074bda8b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   55862
Md5:    877e452e4554d3406cddc98078462f7f
Sha1:   8e8f8ef79608a95f7addab2526c275514c4c3ef2
Sha256: 9064b87f18d2706e8abfe7f480334c1b7f91789f07a546842a3fd3112a135d81
                                        
                                            GET /s/barlow/v12/7cHtv4kjgoGqM7E_CfNY8H0JmA.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 06:17:20 GMT
expires: Fri, 08 Sep 2023 06:17:20 GMT
cache-control: public, max-age=31536000
age: 72784
last-modified: Tue, 19 Apr 2022 19:18:13 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 22852, version 1.0\012- data
Size:   22852
Md5:    8f3186b6c380e6636e7441514e299772
Sha1:   9fa8e2bb2e4028556db61b88b2a98f8780611639
Sha256: 41f20fc90d5fbe2fc00e83034dbc98796323199196453c7302462f3b9a73195f
                                        
                                            GET /wp-content/plugins/motopress-hotel-booking-lite/assets/js/public/mphb.min.js?ver=3.8.7 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 63209
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (63209), with no line terminators
Size:   63209
Md5:    707925593e4cab0813fdc6dea97e4575
Sha1:   f0c1d5b0b381f57c6d9b3469ab7ddadc032d4036
Sha256: e5d78c9ad98b5790a7acf25fc49a573e30cadd04762fc606f4806484884711b3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Sep 2022 02:02:22 GMT
expires: Sun, 03 Sep 2023 02:02:22 GMT
cache-control: public, max-age=31536000
age: 520082
last-modified: Wed, 11 May 2022 19:24:45 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size:   15920
Md5:    3a44e06eb954b96aa043227f3534189d
Sha1:   23cef6993ddb2b2979e8e7647fc3763694e2ba7d
Sha256: b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
                                        
                                            GET /s/barlow/v12/7cHsv4kjgoGqM7E_CfP04WouvTo.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23120
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 23:44:00 GMT
expires: Thu, 07 Sep 2023 23:44:00 GMT
cache-control: public, max-age=31536000
age: 96384
last-modified: Tue, 19 Apr 2022 19:40:24 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23120, version 1.0\012- data
Size:   23120
Md5:    928cdeb3df698908a5e67ee3b6e7d3d7
Sha1:   d08bcdd338624d33415ca972b7305c17f2f22f8e
Sha256: 333c8986d1ba8412b2e111826ccee7f74c121ad7bbd3c415193503b3fe73f810
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/barlow/v12/7cHrv4kjgoGqM7E_Cfs7wH8.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 23564
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 08 Sep 2022 06:47:27 GMT
Expires: Fri, 08 Sep 2023 06:47:27 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 19:09:09 GMT
Age: 70977


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23564, version 1.0\012- data
Size:   23564
Md5:    382a3f64145254f4ff2bc4319435f167
Sha1:   30f7aa4199ffc48563c666bc6e78664191a660a6
Sha256: 51d0115090b2cfd0cb581cbf62ee79bb94fdcb3f9c2432d39d3adacd8888ccef
                                        
                                            GET /s/barlow/v12/7cHsv4kjgoGqM7E_CfOQ4mouvTo.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23388
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 06:22:41 GMT
expires: Thu, 07 Sep 2023 06:22:41 GMT
cache-control: public, max-age=31536000
age: 158863
last-modified: Tue, 19 Apr 2022 19:13:34 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23388, version 1.0\012- data
Size:   23388
Md5:    4f481ce97affe17d0f92169395d7f399
Sha1:   c9da82947c38d68a54d1d5388872d2ea5384f8e8
Sha256: 7db7907222218c6679ef11fac3adaef38ccc2c08b10e42864d665f4bd1baba10
                                        
                                            GET /wp-content/plugins/jet-menu/assets/public/js/vue.min.js?ver=2.6.11 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 93670
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65449)
Size:   93670
Md5:    6c81f02ad0bf8e12a66c18cab188d029
Sha1:   abd239f02966b2d324b0512c203bdbaf82a4ed7a
Sha256: 9e0156dd49c03744e79bbea60eebbbb94b5811c1b71b91f5fb38a8270dedfbaf

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/jet-menu/assets/public/js/jet-menu-public-script.js?ver=2.0.6 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 41147
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with very long lines (2070)
Size:   41147
Md5:    735b0eb61f12c20e06456f324d0cadf7
Sha1:   f55b8476c71f9dc7e13f00fcdd94d4e4c10dbd55
Sha256: 19114f4aa56ffd642784138c178e926f7481b497e14111a431496ca8972b473f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/barlow/v12/7cHrv4kjgoGqM7E_Cfs7wH8.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23564
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 01:10:55 GMT
expires: Thu, 07 Sep 2023 01:10:55 GMT
cache-control: public, max-age=31536000
age: 177569
last-modified: Tue, 19 Apr 2022 19:09:09 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23564, version 1.0\012- data
Size:   23564
Md5:    382a3f64145254f4ff2bc4319435f167
Sha1:   30f7aa4199ffc48563c666bc6e78664191a660a6
Sha256: 51d0115090b2cfd0cb581cbf62ee79bb94fdcb3f9c2432d39d3adacd8888ccef
                                        
                                            GET /s/barlow/v12/7cHsv4kjgoGqM7E_CfPI42ouvTo.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23424
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 11:13:19 GMT
expires: Thu, 07 Sep 2023 11:13:19 GMT
cache-control: public, max-age=31536000
age: 141425
last-modified: Tue, 19 Apr 2022 19:28:59 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23424, version 1.0\012- data
Size:   23424
Md5:    d790fd3d8f9d343eb58d5694433bc750
Sha1:   512e26f17c5b3e6bdd86b7af3288af831214be4b
Sha256: cca6c2dd9540ac7b8194f52ad49c3e6312705d4aa25c4cc29d68e9dbb8a3a118
                                        
                                            GET /s/barlow/v12/7cHsv4kjgoGqM7E_CfPk5GouvTo.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23456
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 06:25:02 GMT
expires: Thu, 07 Sep 2023 06:25:02 GMT
cache-control: public, max-age=31536000
age: 158722
last-modified: Tue, 19 Apr 2022 19:13:55 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23456, version 1.0\012- data
Size:   23456
Md5:    91efb416cebcc25bb87dfed8182a1d96
Sha1:   48f907856f9b97ee4ae14eb993383fbd7fb7c63c
Sha256: 432dfedeee5ed05e0cc879da4003c304ac55cc0b9370ef84dd8066dc82226e40
                                        
                                            GET /s/barlow/v12/7cHsv4kjgoGqM7E_CfOA5WouvTo.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 20:06:35 GMT
expires: Tue, 05 Sep 2023 20:06:35 GMT
cache-control: public, max-age=31536000
age: 282229
last-modified: Tue, 19 Apr 2022 19:11:25 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23368, version 1.0\012- data
Size:   23368
Md5:    638375e573fd65784db505c40a27c433
Sha1:   94eaa1567979680b6888870d4cd4408298684b13
Sha256: fb5b9606af67dddd2d12d66ae06688d5b57725f9774d68a7c7c4fb409b54efa3
                                        
                                            GET /s/barlow/v12/7cHsv4kjgoGqM7E_CfOc5mouvTo.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23348
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 06:49:46 GMT
expires: Fri, 08 Sep 2023 06:49:46 GMT
cache-control: public, max-age=31536000
age: 70838
last-modified: Tue, 19 Apr 2022 19:18:55 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23348, version 1.0\012- data
Size:   23348
Md5:    8425234c7e384ca71bbe50f6ce0f935f
Sha1:   c9aaa6ab3fab2a8e7cdf1aef27a98649125c145c
Sha256: 735b5706e7a1ae8e5de9de2771504421a3e66df6d15cadb15ab16d625b681479
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=5.5.10 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:32 GMT
Accept-Ranges: bytes
Content-Length: 1426
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1391)
Size:   1426
Md5:    905225d5711b559d3092387d5ffbedbd
Sha1:   6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d
Sha256: 5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991
                                        
                                            GET /s/rubik/v21/iJWEBXyIfDnIV7nEnX661A.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 34500
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 03 Sep 2022 20:50:00 GMT
Expires: Sun, 03 Sep 2023 20:50:00 GMT
Cache-Control: public, max-age=31536000
Age: 452424
Last-Modified: Mon, 18 Jul 2022 19:24:57 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 34500, version 1.0\012- data
Size:   34500
Md5:    faff0ee016116a366390902ac4445672
Sha1:   f0392ff9fc0b9fd3169662810504bb0108857e4a
Sha256: 7537368c23adecd664ec589e81d5279bbc5ff02c09d52247daf460e2046c4cdc
                                        
                                            GET /s/barlow/v12/7cHsv4kjgoGqM7E_CfOA5WouvTo.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 23368
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Sep 2022 13:10:33 GMT
Expires: Wed, 06 Sep 2023 13:10:33 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 19:11:25 GMT
Age: 220791


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23368, version 1.0\012- data
Size:   23368
Md5:    638375e573fd65784db505c40a27c433
Sha1:   94eaa1567979680b6888870d4cd4408298684b13
Sha256: fb5b9606af67dddd2d12d66ae06688d5b57725f9774d68a7c7c4fb409b54efa3
                                        
                                            GET /s/barlow/v12/7cHsv4kjgoGqM7E_CfO452ouvTo.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22804
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 20:23:18 GMT
expires: Tue, 05 Sep 2023 20:23:18 GMT
cache-control: public, max-age=31536000
age: 281226
last-modified: Tue, 19 Apr 2022 19:06:15 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 22804, version 1.0\012- data
Size:   22804
Md5:    71b57d91ed80e4304cb673449d70010d
Sha1:   1c513b87fb3a60bb8be582afbae76eda08bf7673
Sha256: 003c13928a978425cdff47fcac9aaf82af882f227f45bbd6da80871d16c29209
                                        
                                            GET /s/rubik/v21/iJWEBXyIfDnIV7nEnX661A.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34500
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 03:35:04 GMT
expires: Wed, 06 Sep 2023 03:35:04 GMT
cache-control: public, max-age=31536000
age: 255320
last-modified: Mon, 18 Jul 2022 19:24:57 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 34500, version 1.0\012- data
Size:   34500
Md5:    faff0ee016116a366390902ac4445672
Sha1:   f0392ff9fc0b9fd3169662810504bb0108857e4a
Sha256: 7537368c23adecd664ec589e81d5279bbc5ff02c09d52247daf460e2046c4cdc
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/raven/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.1.0 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:36 GMT
Accept-Ranges: bytes
Content-Length: 24315
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (24315), with no line terminators
Size:   24315
Md5:    17b985f20d718f8d7bd0d9efc4260a00
Sha1:   321ca1801128ba6b4006ea7160eb261acfdc211e
Sha256: 34da25bb178a44425393bc37e0e0892c906de7ea3ba9f280b49f8ee0d18f4558

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 21144
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 08 Sep 2022 15:03:29 GMT
Expires: Fri, 08 Sep 2023 15:03:29 GMT
Cache-Control: public, max-age=31536000
Age: 41215
Last-Modified: Tue, 19 Apr 2022 19:43:23 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 21144, version 1.0\012- data
Size:   21144
Md5:    2bc7630144496092dc786ce63109e560
Sha1:   723df3658078cfed03c85e47f15fc439eb4331be
Sha256: 7c9c80a6c32c0619d61c28f28723e68c5f8f75163e77ee5cf64c39e640e0d71e
                                        
                                            GET /s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21144
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 22:36:53 GMT
expires: Wed, 06 Sep 2023 22:36:53 GMT
cache-control: public, max-age=31536000
age: 186811
last-modified: Tue, 19 Apr 2022 19:43:23 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 21144, version 1.0\012- data
Size:   21144
Md5:    2bc7630144496092dc786ce63109e560
Sha1:   723df3658078cfed03c85e47f15fc439eb4331be
Sha256: 7c9c80a6c32c0619d61c28f28723e68c5f8f75163e77ee5cf64c39e640e0d71e
                                        
                                            GET /s/barlow/v12/7cHqv4kjgoGqM7E3_-gs51os.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 20960
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sun, 04 Sep 2022 19:38:02 GMT
Expires: Mon, 04 Sep 2023 19:38:02 GMT
Cache-Control: public, max-age=31536000
Age: 370342
Last-Modified: Tue, 19 Apr 2022 19:18:28 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 20960, version 1.0\012- data
Size:   20960
Md5:    d312d179276a175029c56c50e9bc9d0b
Sha1:   aa9285dd6183c696fc39ec31c221581e2d4959c1
Sha256: 7c0597b1b0c771139c958982210f05b275993037f0f3ba20d7a9300a0741dc80
                                        
                                            GET /s/barlow/v12/7cHqv4kjgoGqM7E30-8s51os.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 21796
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 02 Sep 2022 10:08:46 GMT
Expires: Sat, 02 Sep 2023 10:08:46 GMT
Cache-Control: public, max-age=31536000
Age: 577298
Last-Modified: Tue, 19 Apr 2022 19:35:19 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 21796, version 1.0\012- data
Size:   21796
Md5:    8074c760fbdd366fc1c33ce702911abf
Sha1:   b68cdebfb413c4ad60fa131dc29e36da4b3ce45c
Sha256: 2b14e8397d552f351a4396dec25ec5da1348865683100e94c4ab0faea4a9a254
                                        
                                            GET /s/barlow/v12/7cHqv4kjgoGqM7E30-8s51os.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 22:37:05 GMT
expires: Wed, 06 Sep 2023 22:37:05 GMT
cache-control: public, max-age=31536000
age: 186799
last-modified: Tue, 19 Apr 2022 19:35:19 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 21796, version 1.0\012- data
Size:   21796
Md5:    8074c760fbdd366fc1c33ce702911abf
Sha1:   b68cdebfb413c4ad60fa131dc29e36da4b3ce45c
Sha256: 2b14e8397d552f351a4396dec25ec5da1348865683100e94c4ab0faea4a9a254
                                        
                                            GET /wp-content/plugins/raven/assets/lib/url-polyfill/url-polyfill.min.js?ver=1.1.7 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:36 GMT
Accept-Ranges: bytes
Content-Length: 6241
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (6241), with no line terminators
Size:   6241
Md5:    ebd287afc5ef2fd741602dcf5bb4b62d
Sha1:   8ef0c6b3eda857600272b744e6091f307bcfdfa2
Sha256: 65001aec283e0668be83e9d8af7761f7c5a29d3cc00f213786725d16cc279173

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/barlow/v12/7cHqv4kjgoGqM7E3t-4s51os.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 21724
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 07 Sep 2022 18:48:55 GMT
Expires: Thu, 07 Sep 2023 18:48:55 GMT
Cache-Control: public, max-age=31536000
Age: 114089
Last-Modified: Tue, 19 Apr 2022 19:29:44 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 21724, version 1.0\012- data
Size:   21724
Md5:    c3609c36a150ce088ea4dcab92b7c00b
Sha1:   0c18236a183e962533a4f61bff3ae2581313561a
Sha256: 65a47caa5183b035bf78d0f93adbe5cea500333410259c54abf2de356740df7e
                                        
                                            GET /wp-content/plugins/raven/assets/lib/parallax-scroll/jquery.parallax-scroll.min.js?ver=1.0.0 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:36 GMT
Accept-Ranges: bytes
Content-Length: 3134
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (3133)
Size:   3134
Md5:    884372f9593d9c105a36f61f1ff7e7f2
Sha1:   3288cc99feefbf992e4fe034dcbeb9be2f636085
Sha256: 140c417e6e52ea65c3e5e012d6c4b0c0523d4944f09fabfa1c8ada5c34b9bb1f
                                        
                                            GET /s/barlow/v12/7cHqv4kjgoGqM7E3_-gs51os.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 00:05:42 GMT
expires: Thu, 07 Sep 2023 00:05:42 GMT
cache-control: public, max-age=31536000
age: 181482
last-modified: Tue, 19 Apr 2022 19:18:28 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 20960, version 1.0\012- data
Size:   20960
Md5:    d312d179276a175029c56c50e9bc9d0b
Sha1:   aa9285dd6183c696fc39ec31c221581e2d4959c1
Sha256: 7c0597b1b0c771139c958982210f05b275993037f0f3ba20d7a9300a0741dc80
                                        
                                            GET /s/barlow/v12/7cHqv4kjgoGqM7E3q-0s51os.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 22052
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Sep 2022 13:10:33 GMT
Expires: Wed, 06 Sep 2023 13:10:33 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 19:05:17 GMT
Age: 220791


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 22052, version 1.0\012- data
Size:   22052
Md5:    f27acc0d33d769a3da576516ca236c41
Sha1:   a678c0f6905303906a2537c1ff983258286a9263
Sha256: 1f132510bc7b665bbe5fb9227b0d2daafa5513296a72f88f88d38179eded9277
                                        
                                            GET /s/barlow/v12/7cHqv4kjgoGqM7E3j-ws51os.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 21416
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Sep 2022 13:10:33 GMT
Expires: Wed, 06 Sep 2023 13:10:33 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 18:56:36 GMT
Age: 220792


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 21416, version 1.0\012- data
Size:   21416
Md5:    d258461a8f2c53d244500969828bdd3f
Sha1:   c796103e6ca328dd6a92bfecf72cda8f0a143158
Sha256: f9bfb04a18c8be687fadacd7f67647b65113ee8d1aabcb0f410eac21681fa7ef
                                        
                                            GET /wp-includes/js/jquery/ui/position.min.js?ver=1.11.4 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:32 GMT
Accept-Ranges: bytes
Content-Length: 6438
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (6217)
Size:   6438
Md5:    d1c2e97eeca08ca067ccf2c5736f0390
Sha1:   5281985542fcc8c5a651d1991296e12c39bfcb82
Sha256: 0ce51090b148a45a0e3d652719ed6ef7f1a38e5d272dbf874f86a49664e897a3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/barlow/v12/7cHtv4kjgoGqM7E_CfNY8H0JmA.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 22852
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Sep 2022 13:10:33 GMT
Expires: Wed, 06 Sep 2023 13:10:33 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 19:18:13 GMT
Age: 220792


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 22852, version 1.0\012- data
Size:   22852
Md5:    8f3186b6c380e6636e7441514e299772
Sha1:   9fa8e2bb2e4028556db61b88b2a98f8780611639
Sha256: 41f20fc90d5fbe2fc00e83034dbc98796323199196453c7302462f3b9a73195f
                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.5 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:24 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 64115
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (47301), with LF, NEL line terminators
Size:   64115
Md5:    df1b5191f27d5c524c55103cc3ba7de6
Sha1:   800beb443e1171f0918075ccabc217c2df0fac1d
Sha256: 2db95f954c76f0f48b6bd034572e46d393a31cd2f0d364c99c441a95d8e5dc05

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/barlow/v12/7cHsv4kjgoGqM7E_CfP04WouvTo.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 23120
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Sep 2022 13:10:33 GMT
Expires: Wed, 06 Sep 2023 13:10:33 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 19:40:24 GMT
Age: 220792


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23120, version 1.0\012- data
Size:   23120
Md5:    928cdeb3df698908a5e67ee3b6e7d3d7
Sha1:   d08bcdd338624d33415ca972b7305c17f2f22f8e
Sha256: 333c8986d1ba8412b2e111826ccee7f74c121ad7bbd3c415193503b3fe73f810
                                        
                                            GET /s/barlow/v12/7cHsv4kjgoGqM7E_CfOQ4mouvTo.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 23388
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 02 Sep 2022 22:06:11 GMT
Expires: Sat, 02 Sep 2023 22:06:11 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 19:13:34 GMT
Age: 534254


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23388, version 1.0\012- data
Size:   23388
Md5:    4f481ce97affe17d0f92169395d7f399
Sha1:   c9da82947c38d68a54d1d5388872d2ea5384f8e8
Sha256: 7db7907222218c6679ef11fac3adaef38ccc2c08b10e42864d665f4bd1baba10
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:25 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 10863
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (10725)
Size:   10863
Md5:    58baf0f238d7afc7ab926b8d51e5b559
Sha1:   8515e5f578269e29c048450f78c107935d325dff
Sha256: 2989e0b9e836cb9de3274d641ec6a58c2052f039e790ddd59b22303930bfdeeb
                                        
                                            GET /s/barlow/v12/7cHsv4kjgoGqM7E_CfPI42ouvTo.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 23424
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 02 Sep 2022 22:06:11 GMT
Expires: Sat, 02 Sep 2023 22:06:11 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 19:28:59 GMT
Age: 534254


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23424, version 1.0\012- data
Size:   23424
Md5:    d790fd3d8f9d343eb58d5694433bc750
Sha1:   512e26f17c5b3e6bdd86b7af3288af831214be4b
Sha256: cca6c2dd9540ac7b8194f52ad49c3e6312705d4aa25c4cc29d68e9dbb8a3a118
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:25 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 12198
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (12198), with no line terminators
Size:   12198
Md5:    3819c3569da71daec283a75483735f7e
Sha1:   ecd40a5cc6f0b76200c454ca880210dc301cfab8
Sha256: 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0
                                        
                                            GET /s/barlow/v12/7cHsv4kjgoGqM7E_CfOc5mouvTo.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 23348
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Sep 2022 13:10:33 GMT
Expires: Wed, 06 Sep 2023 13:10:33 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 19:18:55 GMT
Age: 220792


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23348, version 1.0\012- data
Size:   23348
Md5:    8425234c7e384ca71bbe50f6ce0f935f
Sha1:   c9aaa6ab3fab2a8e7cdf1aef27a98649125c145c
Sha256: 735b5706e7a1ae8e5de9de2771504421a3e66df6d15cadb15ab16d625b681479
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.5 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:25 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 2635
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2634)
Size:   2635
Md5:    40b7fbab8b1a9cd4d500fe48a3de90db
Sha1:   a3562e9b54db671903c0c0f05f0cc946d34af643
Sha256: 20d67dc1d22cadd6326639e1510929bd3bfdefe7a3a4bd2d78160514b3aa6f50

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1 
Host: 3piltd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3piltd.com/eft/G@Y4.zip

                                         
                                         72.167.222.75
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 09 Sep 2022 02:30:25 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 01:10:34 GMT
Accept-Ranges: bytes
Content-Length: 139151
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65280)
Size:   139151
Md5:    189d11221485db0f979bc459acd37c4d
Sha1:   d8d6495b60c26bbf1270f0ea5b4b18399df4c18f
Sha256: 97dfc2d1b067f431b1a34f54f9426ba50a3e1b6bd23049d4e1dccb23831f00a8
                                        
                                            GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 33580
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Sep 2022 14:30:38 GMT
Expires: Wed, 06 Sep 2023 14:30:38 GMT
Cache-Control: public, max-age=31536000
Age: 215987
Last-Modified: Mon, 18 Jul 2022 19:32:55 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data
Size:   33580
Md5:    848cd2ecd011428969dc6b90431bc482
Sha1:   6b1a7b562a56bd54510e0f6f95e26babca331a1b
Sha256: 981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9
                                        
                                            GET /s/barlow/v12/7cHsv4kjgoGqM7E_CfPk5GouvTo.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://3piltd.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 23456
Date: Fri, 09 Sep 2022 02:30:25 GMT
Expires: Sat, 09 Sep 2023 02:30:25 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 19:13:55 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0


--- Additional Info ---