Overview

URLelmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
IP 144.91.88.248 (Germany)
ASN#51167 Contabo GmbH
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-24 00:32:04 UTC
StatusLoading report..
IDS alerts0
Blocklist alert41
urlquery alerts No alerts detected
Tags None

Domain Summary (14)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-23 05:36:46 UTC 34.117.237.239
fonts.gstatic.com (2) 0 2014-09-09 00:40:21 UTC 2022-11-23 10:12:01 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-11-23 10:22:58 UTC 142.250.74.10
ocsp.digicert.com (6) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
www.elmersity.com (58) 0 2022-05-13 05:25:32 UTC 2022-05-13 05:25:33 UTC 144.91.88.248 Unknown ranking
corptrain.thimpress.com (4) 0 2021-05-28 04:01:13 UTC 2022-11-23 13:30:52 UTC 172.67.74.95 Domain (thimpress.com) ranked at: 169889
r3.o.lencr.org (6) 344 No data No data 23.36.76.226
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-23 05:36:31 UTC 34.102.187.140
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 34.223.160.237
ocsp.pki.goog (5) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.35
wordpresslms.thimpress.com (4) 0 2017-10-04 10:34:32 UTC 2022-11-23 13:30:52 UTC 104.26.5.142 Domain (thimpress.com) ranked at: 169889
elmersity.com (1) 0 2022-05-13 05:25:32 UTC 2022-11-23 11:19:10 UTC 144.91.88.248 Unknown ranking
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-10-24 2 elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW DHL Airways, Inc.

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-24 2 elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW Phishing
2022-11-24 2 www.elmersity.com/wp-content/plugins/learnpress-course-review/assets/css/co (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/plugins/w3-total-cache/pub/js/lazyload.min.js Phishing
2022-11-24 2 www.elmersity.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 Phishing
2022-11-24 2 www.elmersity.com/wp-content/plugins/woocommerce/packages/woocommerce-block (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/plugins/contact-form-7/includes/css/styles.css (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/plugins/woocommerce/assets/css/woocommerce-lay (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/plugins/wp-events-manager/assets//css/frontend (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/themes/course-builder/assets/css/libs/awesome/ (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/themes/course-builder/assets/css/libs/ionicons (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/themes/course-builder/assets/css/libs/magnific (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/themes/course-builder/assets/css/libs/owl-caro (...) Phishing
2022-11-24 2 www.elmersity.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 Phishing
2022-11-24 2 www.elmersity.com/wp-content/plugins/js_composer/assets/js/vendors/woocomme (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ve (...) Phishing
2022-11-24 2 www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW Phishing
2022-11-24 2 www.elmersity.com/wp-content/plugins/contact-form-7/includes/js/index.js?ve (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.coo (...) Phishing
2022-11-24 2 www.elmersity.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 Phishing
2022-11-24 2 www.elmersity.com/wp-content/themes/course-builder/assets/css/libs/bootstra (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/plugins/wp-events-manager/inc/libraries//count (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/plugins/wp-events-manager/inc/libraries//count (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/plugins/wp-events-manager/assets//js/frontend/ (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/themes/course-builder/assets/js/libs/bootstrap (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/themes/course-builder/assets/js/libs/jquery.co (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/themes/course-builder/assets/js/libs/owl.carou (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/themes/course-builder/assets/js/main.min.js?ve (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/themes/course-builder/assets/js/libs/smoothscr (...) Phishing
2022-11-24 2 www.elmersity.com/wp-includes/css/dashicons.min.css?ver=6.1.1 Phishing
2022-11-24 2 www.elmersity.com/wp-content/plugins/js_composer/assets/css/js_composer.min (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/plugins/js_composer/assets/js/dist/js_composer (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/plugins/thim-course-builder/elements/course-se (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/themes/course-builder/style.css?ver=3.3.9 Phishing
2022-11-24 2 www.elmersity.com/wp-content/plugins/woocommerce/assets/css/woocommerce-sma (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/themes/course-builder/assets/fonts/awesome/fon (...) Phishing
2022-11-24 2 www.elmersity.com/wp-content/themes/course-builder/assets/fonts/ionicons/io (...) Phishing
2022-11-24 2 www.elmersity.com/?wc-ajax=get_refreshed_fragments Phishing
2022-11-24 2 www.elmersity.com/wp-includes/js/backbone.min.js?ver=1.4.1 Phishing
2022-11-24 2 www.elmersity.com/wp-content/plugins/revslider/public/assets/js/rbtools.min (...) Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 144.91.88.248
Date UQ / IDS / BL URL IP
2023-01-28 02:38:18 +0000 0 - 2 - 3 elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZue (...) 144.91.88.248
2022-11-24 00:32:04 +0000 0 - 0 - 41 elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZue (...) 144.91.88.248
2022-11-23 03:58:48 +0000 0 - 0 - 41 elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZue (...) 144.91.88.248
2022-10-27 03:04:53 +0000 0 - 0 - 53 elmersity.com/public/KZHEyWJchR65DSKxMP17aQHK (...) 144.91.88.248
2022-10-26 02:43:40 +0000 0 - 0 - 48 elmersity.com/public/3k5Ip8aPP0vFY6rzoGGQgHXm (...) 144.91.88.248


Last 5 reports on ASN: Contabo GmbH
Date UQ / IDS / BL URL IP
2023-01-29 16:48:44 +0000 0 - 5 - 1 75.119.139.66/p.exe 75.119.139.66
2023-01-29 16:47:07 +0000 0 - 1 - 1 updates.ultimate-fakkers.co.network/upd/Loade (...) 173.249.27.120
2023-01-29 16:43:55 +0000 0 - 2 - 2 178.18.250.52/a/mirai.arm5 178.18.250.52
2023-01-29 16:29:42 +0000 0 - 2 - 2 178.18.250.52/a/mirai.arm6 178.18.250.52
2023-01-29 16:26:16 +0000 0 - 0 - 4 berlinelevators.com/auth 213.136.93.164


Last 5 reports on domain: elmersity.com
Date UQ / IDS / BL URL IP
2023-01-28 02:38:18 +0000 0 - 2 - 3 elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZue (...) 144.91.88.248
2022-11-24 00:32:04 +0000 0 - 0 - 41 elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZue (...) 144.91.88.248
2022-11-23 03:58:48 +0000 0 - 0 - 41 elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZue (...) 144.91.88.248
2022-10-27 03:04:53 +0000 0 - 0 - 53 elmersity.com/public/KZHEyWJchR65DSKxMP17aQHK (...) 144.91.88.248
2022-10-26 02:43:40 +0000 0 - 0 - 48 elmersity.com/public/3k5Ip8aPP0vFY6rzoGGQgHXm (...) 144.91.88.248


Last 2 reports with similar screenshot
Date UQ / IDS / BL URL IP
2022-11-23 03:58:48 +0000 0 - 0 - 41 elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZue (...) 144.91.88.248
2023-01-28 02:38:18 +0000 0 - 2 - 3 elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZue (...) 144.91.88.248

JavaScript

Executed Scripts (38)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (98)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794"
Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5437
Expires: Thu, 24 Nov 2022 02:02:30 GMT
Date: Thu, 24 Nov 2022 00:31:53 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3382
Cache-Control: 'max-age=158059'
Date: Thu, 24 Nov 2022 00:31:53 GMT
Last-Modified: Wed, 23 Nov 2022 23:35:32 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 00:17:13 GMT
cache-control: public,max-age=3600
age: 880
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    567df7db606cf5d0871aa5bc9311b6da
Sha1:   4263faac7cbab2fcaf6661911dcad5091c06be17
Sha256: e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A62ECEDCB0953814F982237818A3D902FDCA501F82B675629D28B5D476E0FBFA"
Last-Modified: Mon, 21 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3608
Expires: Thu, 24 Nov 2022 01:32:01 GMT
Date: Thu, 24 Nov 2022 00:31:53 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: A3Z4sQ9zk2rcCVH2QA2lr9hcSIXhX5tSOoIGOgPpXedeM4cDzcIfQsBPIqtwAxqOjpjCFeui+UA=
x-amz-request-id: 4XA5XTWDJP3TDR6V
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 23 Nov 2022 23:43:10 GMT
age: 2923
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 24 Nov 2022 00:31:53 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 00:11:11 GMT
cache-control: public,max-age=3600
age: 1242
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW HTTP/1.1 
Host: elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         144.91.88.248
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
X-Powered-By: PHP/8.0.15
Set-Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=524662bd14484b9dcaa86589803be4d4%7C%7C1669422713%7C%7C0811652660b396e151f55e0d1b6c4215; expires=Sat, 26-Nov-2022 00:31:53 GMT; Max-Age=172800; path=/; secure; HttpOnly PHPSESSID=2uuo6f6i7ni7j2puabmikn6321; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Redirect-By: WordPress
Location: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Content-Length: 0
Date: Thu, 24 Nov 2022 00:31:53 GMT
Server: LiteSpeed
Referrer-Policy: no-referrer-when-downgrade


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - openphish: DHL Airways, Inc.
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5246
Cache-Control: max-age=122545
Date: Thu, 24 Nov 2022 00:31:54 GMT
Etag: "637de2ad-1d7"
Expires: Fri, 25 Nov 2022 10:34:19 GMT
Last-Modified: Wed, 23 Nov 2022 09:06:53 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8f029Knhgk2R/GI1qVWKTA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         34.223.160.237
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: iBlPxO3Hsq+vuW344dfBhuoPiJc=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2926
Expires: Thu, 24 Nov 2022 01:20:41 GMT
Date: Thu, 24 Nov 2022 00:31:55 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2926
Expires: Thu, 24 Nov 2022 01:20:41 GMT
Date: Thu, 24 Nov 2022 00:31:55 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2926
Expires: Thu, 24 Nov 2022 01:20:41 GMT
Date: Thu, 24 Nov 2022 00:31:55 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2926
Expires: Thu, 24 Nov 2022 01:20:41 GMT
Date: Thu, 24 Nov 2022 00:31:55 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9ad1430-c833-4f58-99a3-6a959cced2fe.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9099
x-amzn-requestid: d828c8f5-3ff1-4e20-822f-32d9ad7a0d7a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cExDeGjKIAMFQHw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9549-71d957297c3ec4b01633b1ce;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:48:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ZXi-qHYx7QoMQZAsZzEW099laTRSyxjhe8stloZ5ZhlRfw4W8sebjw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:23 GMT
etag: "c35c0a9bf6ad7f53e3aadaffb8f3a03c4f9457e3"
age: 9272
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9099
Md5:    891d19eb042be6fd5d021ff08db2dfcc
Sha1:   c35c0a9bf6ad7f53e3aadaffb8f3a03c4f9457e3
Sha256: 3efff3d6a8bfa358652bf73ae26ab233ed8c2ca37dab1ff2f2298cd805b88bc1
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18708671-8ed1-458b-a0a3-fba50832ecb7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9119
x-amzn-requestid: 0321de47-3dae-4ad5-86e7-fd766326c6c8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvClGQWoAMFWqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9210-5bc883d93cedf8ec36517fe3;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gvEmzs6OvdD0s03wFTgS0RYBkikZ9VHk0eOArDVQwZ1vNSMBcJ97mQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:44:50 GMT
etag: "fcbe3938574e2a3b0d303b7464ae6f414d7dc356"
age: 10025
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9119
Md5:    af618f978f520f4f15acd660f5e91ad4
Sha1:   fcbe3938574e2a3b0d303b7464ae6f414d7dc356
Sha256: 6f8c21090c99c98e8ae89f60b1cf1cd882194dc83db96808a0b5bd553ece8a56
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:06 GMT
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
age: 9889
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7993
Md5:    92c78302bcce1568eb6a5563100b932c
Sha1:   43d1dec7fc06879988c9c3cadd800cc8145df988
Sha256: 0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a16068e-5377-48a5-aaf5-19e46c86681d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11447
x-amzn-requestid: fb600f6e-d936-4255-b79f-528d9cb8e729
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYTEqyIAMFalg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-2bc3102e268ccdff7f960289;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: flF0yRgk5BMItKbudaEq7iQgLJcCHd6WNsvqFr1uDAvI_EKyVkc4_w==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 07:15:20 GMT
etag: "a67bdea6358146f7de38d6be37e9f69a8edd5f22"
age: 62195
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11447
Md5:    e091109c8f54cf23b221d8d0a35d6914
Sha1:   a67bdea6358146f7de38d6be37e9f69a8edd5f22
Sha256: 362dc1665e27a4307a7ce832019a6e5e3d8edb0d18db084e4dc9dd026ea68df4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe021fc4e-f76c-4fe9-9470-b59452c93459.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11401
x-amzn-requestid: 3bc374eb-7d70-4b95-94a7-2ad06cae4726
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCtHcmoAMFxgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-333793987245ff9e741b9aed;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kkI9Vh2vZeJPwz2JVL5MErsBBwk8-2Jo49yc0sFqv5pxIyBi6azFIw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:23 GMT
age: 9272
etag: "4b131a189db1b615e2519a28cad83d78297ab67f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11401
Md5:    eb94ecb5881a7e49d964e4287d11e7a4
Sha1:   4b131a189db1b615e2519a28cad83d78297ab67f
Sha256: f3693e29eb7b72361093434142e3f18969c1a0b02350fab430fa29c7c127bd1a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8089
x-amzn-requestid: f4b5f150-a5dc-40bf-93b9-394c294a51cb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEmkRFSnIAMF5vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e8481-74454bee1a1ec6d506f3d75b;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 20:37:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ZVv8iTGCYV-IiBJ6KwNSG1ZWSEwClaQopUejSqZq0S1wd782lRoyKA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:19 GMT
age: 9276
etag: "318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8089
Md5:    c8f6118fc03f31862ff68fef8a2b9a7f
Sha1:   318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73
Sha256: cdd4d44f05cc524d7f2b1d6d792ecd8a9a933e52ecb7685a7d7ea786a510ef39
                                        
                                            GET /wp-content/plugins/learnpress-course-review/assets/css/course-review.css?ver=6.1.1 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:55 GMT
last-modified: Sun, 20 Nov 2022 08:19:27 GMT
etag: "1bf1-6379e30f-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1451
date: Thu, 24 Nov 2022 00:31:55 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1451
Md5:    0c6d34c68ecc7c92f7aa507184398959
Sha1:   9a5aeafb789cce3c806d4f1ef5f29f6ca30134f4
Sha256: aed56196e8758e619f1df08e78b8e2857d7833025efd6b24a39f886a180dfaf9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/w3-total-cache/pub/js/lazyload.min.js HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:55 GMT
last-modified: Wed, 23 Nov 2022 11:01:01 GMT
etag: "1883-637dfd6d-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2233
date: Thu, 24 Nov 2022 00:31:55 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6274)
Size:   2233
Md5:    aea00c48ca48bfc8112caa462b8410a1
Sha1:   42c8616ffb81f59627fb899f564e751943cf0719
Sha256: b52641a9b71f7682ecc864cb3140d637db389ac0919674f067f4b8e9496f32e1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:55 GMT
last-modified: Sun, 20 Nov 2022 07:24:12 GMT
etag: "172a9-6379d61c-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11616
date: Thu, 24 Nov 2022 00:31:55 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (47826)
Size:   11616
Md5:    c4d7cc056b49b00e05cc29cc59aa3d5a
Sha1:   48c426bec60099d2a8628df430ed682c72aab42a
Sha256: 8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:55 GMT
last-modified: Sun, 20 Nov 2022 08:08:36 GMT
etag: "28c3-6379e084-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1754
date: Thu, 24 Nov 2022 00:31:55 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10435), with no line terminators
Size:   1754
Md5:    f7237084ac82ea6a4f5bf1448c3a2148
Sha1:   60457635a5e809ee1199c61090d8e33b91e8e1f2
Sha256: 18a1cb7f08c1ace52a79f46d73461ed03bf8cf5c9e8a3687eacc3e04f08e7a09
                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:55 GMT
last-modified: Sun, 20 Nov 2022 08:08:34 GMT
etag: "39996-6379e082-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 22871
date: Thu, 24 Nov 2022 00:31:55 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size:   22871
Md5:    0c6730c96c60030ddaf42fcf5daf3b17
Sha1:   feb4c0071f27718582e58d365022a1b559de5765
Sha256: d996bec53b493bc579754f29f7d6d0b5332f3354c860a3787e2365a79c44f995

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 07:24:14 GMT
etag: "d9-6379d61e-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 144
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   144
Md5:    fcbd239f30d9a6dd1f3637f291143d37
Sha1:   2871bf7d98af3f43e42f7fa32808048e7134fabf
Sha256: c2f98e9d71f782b7a3266cd337c61ae6c8dcbb7203669c07852aa2ab65ab6144
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:09:09 GMT
etag: "aab-6379e0a5-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 848
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   848
Md5:    c962ba8e7d42ff9da18392b41dad5151
Sha1:   7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
Sha256: 322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/paid-memberships-pro/css/frontend.css?ver=2.9.6 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:10:19 GMT
etag: "4d3b-6379e0eb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3673
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   3673
Md5:    b4fb9e0aaf19871dbfa9ecf12dc713e7
Sha1:   d087c465c32344dd8a3aadd5386fb2f0bfe6473d
Sha256: 9dac64fb937802da61633be62aa72b54e88634feeca1987ec1f824751f01265c
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.1.0 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:08:52 GMT
etag: "4591-6379e094-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2329
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (17809), with no line terminators
Size:   2329
Md5:    09d93f4de720fc11a2944fea38fcafcd
Sha1:   e46cf6a8d3373c7fa5feba0b30cd9b9983f719b2
Sha256: cf900721be13309b96cf6c6f56b1c0a40194e8aea1b0a0361739219c9c0f9998

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.1.0 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:08:52 GMT
etag: "f53f-6379e094-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8434
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (62781), with no line terminators
Size:   8434
Md5:    6688cf6da7f8e77fce4b23ecd4fa64d4
Sha1:   b787949222758071c1a6221f698cad9bf9b1db2e
Sha256: 1b0db771c94b550d2e2eb123523a8357529aa8ec8869be9e8aabb2595055f438

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/wp-events-manager/inc/libraries//countdown/css/jquery.countdown.css?ver=6.1.1 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:09:16 GMT
etag: "3a5-6379e0ac-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 275
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   275
Md5:    a2a75d0cf9b1cd5bc865cecb3a5a47dd
Sha1:   da86a623f0b6f3669cc1482537f290c60c74cd77
Sha256: 92d9b451309af6872532938559152a195a3999a8b24b89cc027947465da79689
                                        
                                            GET /wp-content/plugins/wp-events-manager/assets//css/frontend/events.min.css?ver=6.1.1 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:09:16 GMT
etag: "e67-6379e0ac-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1171
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3687), with no line terminators
Size:   1171
Md5:    bce90fc5142a07f3772cb88af95c17b1
Sha1:   f246c09c539855b95b82aa808908f5db5a987f80
Sha256: 2407c6a4e65b88f85c190350598dccbbb4aa9018a079ce6e37b4ff2079ad7cd0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 00:31:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/course-builder/assets/css/libs/awesome/font-awesome.css?ver=6.1.1 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:01:01 GMT
etag: "73c1-6379debd-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6517
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (28104)
Size:   6517
Md5:    f8545da2426117829fcca966d053a57d
Sha1:   58cd43e5aedc4acba18000ca84761f83c92ae3d7
Sha256: 5676d81131946723d315b3f0ea255c98380e0221cffe38c68db3c4ed0f3a9f43

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/course-builder/assets/css/libs/ionicons/ionicons.css?ver=6.1.1 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:01:01 GMT
etag: "c298-6379debd-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7637
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (47874)
Size:   7637
Md5:    f2364842c23e6521b97f528da07a4a52
Sha1:   3f31cdb40ca7eafaffd17340b700b5dfdfec8e4f
Sha256: 111ed6760fb042330ae24be29c14d7191e69dc4d3ca5dc0a8548487305d61ddb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/course-builder/assets/css/libs/magnific-popup/main.css?ver=6.1.1 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:01:01 GMT
etag: "1454-6379debd-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1424
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5204), with no line terminators
Size:   1424
Md5:    c881e8bef5650ffc8dbcd816bba045ea
Sha1:   8e9b30331fb334b3b7f027e184f56143658afc6d
Sha256: 5cc8fa3d913e9bdb0f8b40b89cd74e875af94af45dd9e51fb16d7612c6f36bc1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/course-builder/assets/css/libs/owl-carousel/owl.carousel.css?ver=6.1.1 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:01:01 GMT
etag: "d91-6379debd-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 903
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3473), with no line terminators
Size:   903
Md5:    6791ce39c8e0a02021ff44f1c7683c9f
Sha1:   ba3a3dcabef2288cb2c2869df680ce6f95c78593
Sha256: b0bce302c2c8a9e5f6fc0adb3dc87b2ad3d9e48f46155f930332c5f2b35fa9da

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/learnpress/assets/css/widgets.min.css?ver=4.1.7.3.2 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:06:20 GMT
etag: "319b-6379dffc-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1469
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (12693), with no line terminators
Size:   1469
Md5:    f274f35ef38fc65d4d4f3888c99d44b0
Sha1:   05d8e7acf9b82f285b71a490ab37c7389e7bf5b8
Sha256: 64985f3608e60646c75ab608a434a873be10bb4ad99ca457f4bbb185fcab20c5
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Wed, 18 Nov 2020 08:36:06 GMT
etag: "2bd8-5fb4dcf6-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   3995
Md5:    7e058b51f939eacfa31cdface14dded5
Sha1:   9d732e5afdeb42edef9e1b9631b7e95e054787cc
Sha256: 4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:08:54 GMT
etag: "2521-6379e096-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3247
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9111)
Size:   3247
Md5:    078e27719ab2b91e57a3d06d05bf24d8
Sha1:   ee2c8af72d9dbb148d4101a374f6026d0c9c3044
Sha256: 1c8b599f3f7bfa8d7950d95a171f2c873d051960a91c91e22304293596e5b890
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:08:54 GMT
etag: "bd5-6379e096-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 972
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (3029), with no line terminators
Size:   972
Md5:    5ed77e0c59800f40061b5c322cff21fa
Sha1:   ced9d401d300dd1fc676a673bbf7e6360beb402d
Sha256: 3b284b8a096256e6cd0d9cbf2cb4b36505e71c0d7b2227fcd3132dddbeea18cc
                                        
                                            GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.10.0 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:07:26 GMT
etag: "3e0-6379e03e-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 321
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   321
Md5:    159e4731a0ffba6862ee2a1bbcc8a805
Sha1:   7fb2a5ca7a80d96187fda406d0a1b7db23867fa7
Sha256: c6f102a76dc397d94cfbadcd292d64bb45acaa29b0391b41a9f1cc68c2274ae2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.7 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:11:19 GMT
etag: "e394-6379e127-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11947
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (12602)
Size:   11947
Md5:    cdb90190b5ea021c4ef8063197c44cde
Sha1:   bdfe193197018331389d1fbf71f86142e896628b
Sha256: 7c1f2dc0d2badaa024cf7257448f42bf37ec0d160366d65ff15832ba5fae03e9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         144.91.88.248
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
x-powered-by: PHP/8.0.15
set-cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; expires=Sat, 26-Nov-2022 00:31:54 GMT; Max-Age=172799; path=/; secure; HttpOnly PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; path=/; secure _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; expires=Thu, 24-Nov-2022 01:31:55 GMT; Max-Age=3600; path=/; secure pmpro_visit=1; path=/; secure; HttpOnly
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.elmersity.com/wp-json/>; rel="https://api.w.org/"
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Nov 2022 00:31:55 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (9601), with CRLF, LF line terminators
Size:   16494
Md5:    6f04934c200883c3997e05aaa9e5bfd7
Sha1:   25d0573e41b165c609ccc0338c48a7b91085ac4a
Sha256: 587931a03c79def37a3ddc6c2e56a994c0ab6803c61e0f2caeca7bb40ce5d5af

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:09:09 GMT
etag: "3016-6379e0a5-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3706
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (12310), with no line terminators
Size:   3706
Md5:    dc6411bfa6891b75944f0074c945752d
Sha1:   03c1a8b686c287068c61ab90f58d905496d65085
Sha256: 96abeabc9cc7b4c2b7d46579f2827c67ccd02fbaef0343ae052f71accd381b0d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:08:54 GMT
etag: "72a-6379e096-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 899
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1668)
Size:   899
Md5:    22d65ba38528349e705d912ce26bf8ac
Sha1:   c89ba006009043d93b88ff155b4fec8797330550
Sha256: 6253bcb85e4267ad3ba843145534e729ee2c1d7e85e5b4ab5b2e074ae636bca3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:08:56 GMT
etag: "85b-6379e098-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 677
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2139), with no line terminators
Size:   677
Md5:    a43fc0dde8fdd69656ad0957e62849c7
Sha1:   4b07cf702ac8a770c8cbffc22b9a788b6e5389ba
Sha256: 1ce3d0493424870c81deec0ec41de0592d2af9f91cd8081cd40a1d7ea89b614f
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:08:54 GMT
etag: "b7a-6379e096-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 934
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2938), with no line terminators
Size:   934
Md5:    cf25dd071a208312bdc07f34d2cee027
Sha1:   76119563119eaae392ecc8903c989d98d0b93002
Sha256: 8635ba2cad8f887e72779bd526f8738ff6343c74cba715caf2eddea383ba7ce6
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 07:24:35 GMT
etag: "53c0-6379d633-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6800
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (8189)
Size:   6800
Md5:    3d0ff0f6731d9cef860af9a5a0e3ce62
Sha1:   13aed444304d782039e261475c8b4450b83e743e
Sha256: e8d05db77732c71843ced6f386ea82eb32243ac36e7ca3e071cb7f53e2ffbce5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/course-builder/assets/css/libs/bootstrap/bootstrap.css?ver=6.1.1 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:01:01 GMT
etag: "1b156-6379debd-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 16523
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65317)
Size:   16523
Md5:    924c0ca8ccf716ab13c001614170f8f5
Sha1:   6a3f561bb8aa2d9d0af958204cb4012533af7fe0
Sha256: 827d3a5f454ce7bc209d711a172d4808a63b32519d494b44889a80fb46a64a76

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 07:24:35 GMT
etag: "15e54-6379d633-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30324
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   30324
Md5:    3a1740685bd5c0bbd5f2b812e1eb7fb4
Sha1:   488e07695da787fed18361c50292aef35abb5e81
Sha256: 4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef
                                        
                                            GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 07:24:33 GMT
etag: "4991-6379d631-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7179
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18798)
Size:   7179
Md5:    f4bb18d2e152ba945cb63980362f40e9
Sha1:   925f93a6c4ee411e97d8dc3186f9d66c4b5169ab
Sha256: 16ab496a6c74f5f272f7a5c31e9cb69c753fea994396ef6deacf641180ad317b
                                        
                                            GET /wp-includes/js/wp-util.min.js?ver=6.1.1 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 07:24:36 GMT
etag: "592-6379d634-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 690
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1391)
Size:   690
Md5:    ebe552e54e3815c6867913d252ff2a79
Sha1:   4982bd9ba944833e821be18419ad8408290f5d75
Sha256: 8b0aedc73b1d41ab59c0ad42553259c90458cfb72b149946a3bae3298c012e40
                                        
                                            GET /wp-content/plugins/wp-events-manager/inc/libraries//countdown/js/jquery.plugin.min.js?ver=6.1.1 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:09:16 GMT
etag: "c70-6379e0ac-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1253
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (2986), with CRLF line terminators
Size:   1253
Md5:    728b392615cfa27a7d9c5218cb895ee3
Sha1:   3f2f90b5bd23a14309b7b469e5034f0e9440e38d
Sha256: f91bb747571f639696f9d3742462831f0a6f28c3580db498df11a771b9536280

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/wp-events-manager/inc/libraries//countdown/js/jquery.countdown.min.js?ver=6.1.1 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:09:16 GMT
etag: "369c-6379e0ac-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4290
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13714), with CRLF line terminators
Size:   4290
Md5:    5e8d45fd155e8d33e98b74eb77603503
Sha1:   fbfc67031f2dd8ba1bc50c51802e8d6f82edbf36
Sha256: 76b1c89b3ff4342df27897fb5440d878eb24c06f24a98a4fab21239ae6a17c14

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/wp-events-manager/assets//js/frontend/events.min.js?ver=6.1.1 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:09:18 GMT
etag: "f3f-6379e0ae-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1400
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (3899), with no line terminators
Size:   1400
Md5:    3eb5a291835332aa39ce7b853c094105
Sha1:   5dd1801fd51c7e4b6fbd750dd1965b933375d7e3
Sha256: 291ced26f82832f4603e89b576b2c8e197112771c24908ac597d4558a8edc910

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/course-builder/assets/js/libs/bootstrap.min.js?ver=3.3.9 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:01:06 GMT
etag: "bf06-6379dec2-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12513
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (48664)
Size:   12513
Md5:    a63a69105df71934aadab10897f1bd06
Sha1:   43794acd496794dd877134acab7a728158818402
Sha256: bd80f250468f988208b0c04c31d2c27a53a11b45a018638b57d60648bc63eff6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/course-builder/assets/js/libs/jquery.cookie.js?ver=3.3.9 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:01:06 GMT
etag: "c44-6379dec2-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1235
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1235
Md5:    bcd42e1316e4c874cf67c2906e896559
Sha1:   dcf13fc95b18fa39220817839dd9374e281b5742
Sha256: 0849c270b5989c8a2b86aff6bda0b16c651e6b4acf0adc07cd80daf9dff79a9b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/course-builder/assets/js/libs/owl.carousel.min.js?ver=3.3.9 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:01:06 GMT
etag: "a766-6379dec2-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10691
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32012)
Size:   10691
Md5:    e7f534d7847d30ce1f023300bdedccde
Sha1:   025369b6684d983e230bedbdc430aea6d82fdda7
Sha256: 67d07203123b203687b3e2a9c8aabdb06e0d0f16142548f7ba08d43a33045963

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/course-builder/assets/js/libs/theia-sticky-sidebar.js?ver=3.3.9 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:01:06 GMT
etag: "3a49-6379dec2-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3094
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text
Size:   3094
Md5:    313c8135853905aa18fef477aac1edbb
Sha1:   15c23ef80558a4a9e0639988640dbac37947f73d
Sha256: 545bd50dafeca4f06c998fd909c9d14be7c5621a5df0d08c2b45603b2d4f8eda
                                        
                                            GET /wp-content/themes/course-builder/assets/js/main.min.js?ver=3.3.9 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:01:06 GMT
etag: "d79e-6379dec2-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 14774
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (55080)
Size:   14774
Md5:    211f3e59666c671392da597f1011feac
Sha1:   631ddb453e9d76cce0b34202cc76f260dfcec2ff
Sha256: cbe1e1d2d8813c7bacbd587fbf266169e1f04d52d30e1c20d3b172ac4d1b7f74

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/course-builder/assets/js/libs/smoothscroll.min.js?ver=3.3.9 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:01:06 GMT
etag: "1cfe-6379dec2-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3003
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7422), with no line terminators
Size:   3003
Md5:    17e2bf3041e1c55c0f2ec60e5882bc07
Sha1:   3ed40a924a441aff289ff09a64f4525bb1537271
Sha256: e8eafd3ab311dce59ef32ee1f0b04e643f435c36272d144d0f73ab07043d9d7e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/css/dashicons.min.css?ver=6.1.1 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Wed, 03 Mar 2021 20:46:22 GMT
etag: "e688-603ff59e-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 35110
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (58981)
Size:   35110
Md5:    54c5bfb8a890d87139d9abfe01662c83
Sha1:   f9eddf5b8a3269e6d6fa40b4f13083705e6267c6
Sha256: 9685e5cabe4efc8c85e986725af8009b306416aad3ecc9086ca5bb12b84ce4ef

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.10.0 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:07:14 GMT
etag: "70ee5-6379e032-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 40525
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65358)
Size:   40525
Md5:    3fe54710cf7cf76519015faebd57e01f
Sha1:   b890d0692d2fd0b9d541e696554d4d2e1f648212
Sha256: fbb840e992a73b4745d10dd99c01352a062e13722d4ae84e738a776996111adc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.10.0 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:07:26 GMT
etag: "4e52-6379e03e-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5359
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19831)
Size:   5359
Md5:    52316721be4db657717d0c667ba55540
Sha1:   afd4ec2397021ff303d011701bf5119594f2e05c
Sha256: 5165618543f71526000fd07ba28d7398286102153eac72129b9096f5efffe513

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/thim-course-builder/elements/course-search/assets/js/course-search.js?ver=3.2.8 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:06:31 GMT
etag: "17ba-6379e007-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1225
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1225
Md5:    4355f83e325baddaae3ccd9777c83829
Sha1:   53523ee37fbd7f5e1f8dabdbc44dcb65ffcacb38
Sha256: e9593b38ec595b80c9c373e68c8f15cd3ccc502db5dbfc5c186542aec7f71d41

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/course-builder/style.css?ver=3.3.9 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:00:56 GMT
etag: "142c46-6379deb8-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 157168
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64804)
Size:   157168
Md5:    9c3ef4f69dd59bd84f78cfa0031c91ac
Sha1:   152e4f2351f22b32add10b0700de848fd4189d2b
Sha256: 89e771c9e64e3617128c6333e57cdb54a17821ca513d279f3c1e5a76ab9f06f4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 00:31:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.1.0 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:08:52 GMT
etag: "1b83-6379e094-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1058
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7043), with no line terminators
Size:   1058
Md5:    398489038b789364a5c83f044e11974d
Sha1:   d5caf5f64c45693de65b5c0a801bfbf83a325485
Sha256: 32365dde0c909abbb02d8b6a8d9938056ba47f325d51e75082e3d265ce5f76d5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/paid-memberships-pro/css/print.css?ver=2.9.6 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:10:19 GMT
etag: "56-6379e0eb-0;;;"
accept-ranges: bytes
content-length: 86
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   86
Md5:    e77387958ae617db5ccdb69b2cb54496
Sha1:   a9b4ba56928f44121201c000967e5407425cd844
Sha256: 914cb6fe13efdf97379c1a2910d677144821201ff3f41b67a5a6ddb367e1a27b
                                        
                                            GET /wp-content/themes/course-builder/assets/images/header2-bg.png HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/wp-content/themes/course-builder/style.css?ver=3.3.9
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:01:01 GMT
etag: "94-6379debd-0;;;"
accept-ranges: bytes
content-length: 148
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1 x 181, 8-bit gray+alpha, non-interlaced\012- data
Size:   148
Md5:    a7429ff358d4362c60fdab43d406aec0
Sha1:   058da2ac8568dc0b3f2bb9183967d292d6c6284b
Sha256: a8038cbe0a5edda8bdaa11a2e24cb725928fefff0576c93bfac9f512ab6a29b7
                                        
                                            GET /wp-content/themes/course-builder/assets/fonts/awesome/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.elmersity.com/wp-content/themes/course-builder/assets/css/libs/awesome/font-awesome.css?ver=6.1.1
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/font-woff2
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:01:06 GMT
etag: "12d68-6379dec2-0;;;"
accept-ranges: bytes
content-length: 77160
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size:   77160
Md5:    af7ae505a9eed503f8b8e6982036873e
Sha1:   d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
Sha256: 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 00:31:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 00:31:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/course-builder/assets/fonts/ionicons/ionicons.ttf HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/wp-content/themes/course-builder/assets/css/libs/ionicons/ionicons.css?ver=6.1.1
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-font-ttf
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:01:04 GMT
etag: "2e05c-6379dec0-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 104496
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, 15 tables, 1st "FFTM", 14 names, Macintosh\012- data
Size:   104496
Md5:    3ee3bf3abeeef52156cf1c73458bca6b
Sha1:   8cf9229332430bb909171e982f16512750ca4c26
Sha256: 7ec8d0289521feef66cc787d60ffbe23050dee813c9a9d6e41741abafad15578

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.elmersity.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:21 GMT
expires: Thu, 23 Nov 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 17855
last-modified: Wed, 11 May 2022 19:24:56 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Size:   15740
Md5:    b9c29351c46f3e8c8631c4002457f48a
Sha1:   e57e59c5780995ff2937ab2b511a769212974a87
Sha256: f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.elmersity.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:08 GMT
expires: Thu, 23 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 17868
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 00:31:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 404 Not Found
content-type: text/html
                                        
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-length: 1237
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   1237
Md5:    de7225068c8ecb2c24a41d00bf84c1b9
Sha1:   02144152cd8a4423ea135d82c7259e05e9656d3d
Sha256: 79ce4e2bbf25c4a4d91458d191d6ef268b4592169ae6586ba52242f412670b5d
                                        
                                            GET /demo-elearning-2/wp-content/themes/wordpress-lms//assets/images/404.png HTTP/1.1 
Host: wordpresslms.thimpress.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

search
                                         104.26.5.142
HTTP/1.1 301 Moved Permanently
                                        
Date: Thu, 24 Nov 2022 00:31:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 24 Nov 2022 01:31:56 GMT
Location: https://corptrain.thimpress.com/demo-elearning-2/wp-content/themes/wordpress-lms/assets/images/404.png
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aPLYwjG5SJQPQvHcUMKoXc3MIDJzz4P%2BXlePBeXRJ2H4%2FpPTZCUDe4%2FH%2BIQLRiUMRVw5xXYAt2FQAb0u42%2Frsr6s4FwHroJSIJVGxg0Tl0ISqFWCX4oFGc%2Fei3I6LkR1WT6PTff3SiwJjVmq"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ee0b6cab60b515-OSL
alt-svc: h2=":443"; ma=60

                                        
                                            GET /demo-elearning-2/wp-content/themes/wordpress-lms//assets/images/page-title/bg.jpg HTTP/1.1 
Host: wordpresslms.thimpress.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

search
                                         104.26.5.142
HTTP/1.1 301 Moved Permanently
                                        
Date: Thu, 24 Nov 2022 00:31:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 24 Nov 2022 01:31:56 GMT
Location: https://corptrain.thimpress.com/demo-elearning-2/wp-content/themes/wordpress-lms/assets/images/page-title/bg.jpg
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VWJba2MtQ4A0s7BFvx2t8wC%2BJQfnFhi26qGu9dcfkK5BbyRpD9amym4dccpvIyP%2FCHaiziWF4qEg0Gbq8AICCQjxPfAIuMGJCqpMAHQXbRAvbKu9wigOkKyau%2BzKM%2FTDkjQBzJN3cwWw%2BKh%2B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ee0b6cbd0db524-OSL
alt-svc: h2=":443"; ma=60

                                        
                                            GET /wp-content/uploads/2017/09/logo-2-1.png HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:35:31 GMT
etag: "80b-6379e6d3-0;;;"
accept-ranges: bytes
content-length: 2059
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 131 x 45, 8-bit colormap, non-interlaced\012- data
Size:   2059
Md5:    09a82c649423bf0acf63c5f56345aeef
Sha1:   cd6094a00834ee709a4ccbc49e6d56535cddf23a
Sha256: 88a760047d1d529e598578215d402bed2695267196557398cfbd9089e84a6d12
                                        
                                            GET /wp-content/uploads/2017/12/login-popup-background.jpg HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:35:35 GMT
etag: "10cf6-6379e6d7-0;;;"
accept-ranges: bytes
content-length: 68854
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 853x1280, components 3\012- data
Size:   68854
Md5:    136838e7a4f24090c95ba450d109dc0b
Sha1:   d3d3816a096ecf2084f84c00702c009b6d6f3d4c
Sha256: 93c7c53b55ac6d9e6055b4b85267064a3619e909e5a34faec0430b0fcf4c4c9c
                                        
                                            GET /wp-content/uploads/2017/06/layer-138.png HTTP/1.1 
Host: wordpresslms.thimpress.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

search
                                         104.26.5.142
HTTP/1.1 301 Moved Permanently
                                        
Date: Thu, 24 Nov 2022 00:31:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 24 Nov 2022 01:31:56 GMT
Location: https://corptrain.thimpress.com/wp-content/uploads/2017/06/layer-138.png
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WIdtcf8kHdHXApSPtOVvzJMF2m%2FsEz6r1etgzO8hgO0qCsbv3mzKW4v1aNeglu6QMlmUSgPON2ff42ffi%2BxTsbCF2tCpWObzlzuQ4yVYGFIT4Gt3ZrE23ymMc%2B2uur8RDfwIXq2oSPh%2BH421"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ee0b6d1ba1b515-OSL
alt-svc: h2=":443"; ma=60

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=93170
Date: Thu, 24 Nov 2022 00:31:56 GMT
Etag: "637d846e-116"
Expires: Fri, 25 Nov 2022 02:24:46 GMT
Last-Modified: Wed, 23 Nov 2022 02:24:46 GMT
Server: nginx
Content-Length: 278

                                        
                                            GET /demo-elearning-2/wp-content/themes/wordpress-lms/assets/images/404.png HTTP/1.1 
Host: corptrain.thimpress.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         172.67.74.95
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 24 Nov 2022 00:31:57 GMT
content-length: 7750
cache-control: max-age=315360000
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=32790
content-disposition: inline; filename="404.webp"
vary: Accept
access-control-allow-origin: *
etag: "6278d778-8016"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 09 May 2022 08:57:28 GMT
x-powered-by: EasyEngine v4.1.5
cf-cache-status: HIT
age: 47577
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NaLmLH04edoS7JEGEzAIS4XgfKzMfeUWtOCtmlArfQuhvfPkqXwrDGcLxR3gkeCHwTQXhjrEPSPBsU9PuoXMhkZIyfnIZwz5ItDKu0z%2FrOBo4kciGX9Ac2kTVMwx2JXVaV%2FcuxRjMReL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76ee0b6d6a56b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   7750
Md5:    d29ce84971c1615748dfb4bff409fd19
Sha1:   fc6dc38d03809d72c1861606de0065625daebf38
Sha256: ab1ede904eccd3781ae0c5f9c4d650fd3967ff6ad589962eac49aeaf83d45e28
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 548
Cache-Control: max-age=93717
Date: Thu, 24 Nov 2022 00:31:57 GMT
Etag: "637d846e-116"
Expires: Fri, 25 Nov 2022 02:33:54 GMT
Last-Modified: Wed, 23 Nov 2022 02:24:46 GMT
Server: ECS (amb/6B8A)
X-Cache: HIT
Content-Length: 278

                                        
                                            GET /wp-content/uploads/2017/06/layer-131.png HTTP/1.1 
Host: wordpresslms.thimpress.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

search
                                         104.26.5.142
HTTP/1.1 301 Moved Permanently
                                        
Date: Thu, 24 Nov 2022 00:31:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 24 Nov 2022 01:31:57 GMT
Location: https://corptrain.thimpress.com/wp-content/uploads/2017/06/layer-131.png
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aWs4QLWCjE5NZXALdWdcoxZfwYC4Ob5yKQa4uBNFZebzExqepGwSgZBxjrGmTVamFigVNTi378EyMcs1bWioKjh8pybcC%2BRcAEU58DhXApSuSpixFHUhGqQiHzRUKl3jRyUAjPmWdXr%2FfawS"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ee0b6d8daeb524-OSL
alt-svc: h2=":443"; ma=60

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=93169
Date: Thu, 24 Nov 2022 00:31:57 GMT
Etag: "637d846e-116"
Expires: Fri, 25 Nov 2022 02:24:46 GMT
Last-Modified: Wed, 23 Nov 2022 02:24:46 GMT
Server: nginx
Content-Length: 278

                                        
                                            GET /wp-content/uploads/2017/06/layer-138.png HTTP/1.1 
Host: corptrain.thimpress.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         172.67.74.95
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 24 Nov 2022 00:31:57 GMT
content-length: 1198
cache-control: max-age=315360000
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=1557
content-disposition: inline; filename="layer-138.webp"
vary: Accept
access-control-allow-origin: *
etag: "5b63c37e-615"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 03 Aug 2018 02:52:46 GMT
x-powered-by: EasyEngine v4.1.5
cf-cache-status: HIT
age: 54937
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cLfQ8HBdW1NaxbpoLPLs2XDJVvaCh923YFxrplMDOp2htQX0%2BovJmkbXRNAfS3bbwdEqIB%2FXutFBHQP0Abwl6NBrO1RR5Eb4OxScbHaV94h968lPkJOxD6ERxzOavsk5XvIbG4pLnMSd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76ee0b6d9a6db529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   1198
Md5:    9f6013134b5d248403a6baaf5d300879
Sha1:   0cdad578203f588ba6143c57d4088970efdc1fcc
Sha256: ea26ae84f70160438026d1c1ca120c2989475e4854e20052a302142d6e92ec96
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=93170
Date: Thu, 24 Nov 2022 00:31:57 GMT
Etag: "637d846e-116"
Expires: Fri, 25 Nov 2022 02:24:47 GMT
Last-Modified: Wed, 23 Nov 2022 02:24:46 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 278

                                        
                                            GET /wp-content/uploads/2017/06/layer-131.png HTTP/1.1 
Host: corptrain.thimpress.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.67.74.95
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 24 Nov 2022 00:31:57 GMT
content-length: 1600
cache-control: max-age=315360000
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=2349
content-disposition: inline; filename="layer-131.webp"
vary: Accept
access-control-allow-origin: *
etag: "5b63c37e-92d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 03 Aug 2018 02:52:46 GMT
x-powered-by: EasyEngine v4.1.5
cf-cache-status: HIT
age: 54937
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0xMyWtSWaRof6%2F2m9rg6TUscyoqREp0xmcX7Mw6Xp8iPCyWekQ1iCgzVv8QUbopaXwdI98NSc1UXx15bsTBKiNxDo7RHT4hUOHLb1IEPdBSzKz7l5os7tciXHEXciX3xRSdFOlkaORqd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76ee0b6d9a73b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   1600
Md5:    3f3a6ea7ffc1aed665334b6f00e7ff63
Sha1:   ae3cfc670ead8b453038df8828806b74fbe78ed0
Sha256: 09780cc9d15492121bb1ba0d270e7c1a0b3a8d50f1f23274368a0a4225a5a5e8
                                        
                                            GET /demo-elearning-2/wp-content/themes/wordpress-lms/assets/images/page-title/bg.jpg HTTP/1.1 
Host: corptrain.thimpress.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         172.67.74.95
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 24 Nov 2022 00:31:57 GMT
content-length: 116584
cache-control: max-age=315360000
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=223172
content-disposition: inline; filename="bg.webp"
vary: Accept
access-control-allow-origin: *
etag: "6278d778-367c4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 09 May 2022 08:57:28 GMT
x-powered-by: EasyEngine v4.1.5
cf-cache-status: HIT
age: 47577
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Lb0QX47MJY8VP3TFeBzXX2wfZn0LgEy0WF1lzWmhvFt3LrmFzfKq9acTgAxy2qJrsd0K7yIsoqcJ5EejqkfD2%2Bu3TeLDZNK%2Fk8MKTYe4WdWTBdS5l6U%2FdeFnYVhzOrEZOYJ6gU2pU1Fa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76ee0b6d9a75b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 2560x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   116584
Md5:    882328bec68a6c650cc7d4439976168f
Sha1:   c3f1545ee4e39a51e4ae2a1be7712cff512f5f82
Sha256: 5a1912071eeacb6eb5c953ba967e5fd4b3d54b705f3ab43e64fc2b887b1a864d
                                        
                                            POST /?wc-ajax=get_refreshed_fragments HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://www.elmersity.com
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
                                        
x-powered-by: PHP/8.0.15
pragma: no-cache
access-control-allow-origin: https://www.elmersity.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 168
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Nov 2022 00:31:58 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (304), with no line terminators
Size:   168
Md5:    1a3149029e845082f7d8bd085399df02
Sha1:   c113011ed0e5ba2fbe0ce23564c03d244eb93b10
Sha256: 8e635c7adea8331d7cfd743847eab47d2cc197a3b7b0ea6634c2e28525cc0264

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/backbone.min.js?ver=1.4.1 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 07:24:36 GMT
etag: "5d28-6379d634-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7691
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.7 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:11:30 GMT
etag: "63b18-6379e132-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 102099
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css2?display=swap&family=Roboto:wght@300;400 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.elmersity.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Nov 2022 00:31:56 GMT
date: Thu, 24 Nov 2022 00:31:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.7 HTTP/1.1 
Host: www.elmersity.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         144.91.88.248
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
last-modified: Sun, 20 Nov 2022 08:11:30 GMT
etag: "285db-6379e132-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 59937
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing