r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfb72f04bd7a4410640c0543bb4bd402
7c63b7e220b337b6a4f39864e11d6aa9e26c38ac
b7f7a4d355ed3b847a5e28f16030d5cbc715d47326aea20f292cd76dcaf59794
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794"
Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5437
Expires: Thu, 24 Nov 2022 02:02:30 GMT
Date: Thu, 24 Nov 2022 00:31:53 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 770d09773b5f304acf141fd66a4862b4
5ddc46ab75de26c858a9a6f6d1beaaec9bb181f5
c7bcc6928fa1c0bb225ce8a2f6badd6cb1bd6ea002fb808ed34e8dafbd7b3b26
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3382
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 00:31:53 GMT
Last-Modified: Wed, 23 Nov 2022 23:35:32 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 00:17:13 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 880
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8a6c553d89cb6fd1de4787fee2a0e0dc
b974e022ea8675c0a09f58864cc99df05b5b1241
a62ecedcb0953814f982237818a3d902fdca501f82b675629d28b5d476e0fbfa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A62ECEDCB0953814F982237818A3D902FDCA501F82B675629D28B5D476E0FBFA"
Last-Modified: Mon, 21 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3608
Expires: Thu, 24 Nov 2022 01:32:01 GMT
Date: Thu, 24 Nov 2022 00:31:53 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: A3Z4sQ9zk2rcCVH2QA2lr9hcSIXhX5tSOoIGOgPpXedeM4cDzcIfQsBPIqtwAxqOjpjCFeui+UA=
x-amz-request-id: 4XA5XTWDJP3TDR6V
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 23 Nov 2022 23:43:10 GMT
age: 2923
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 00:31:53 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 00:11:11 GMT
cache-control: public,max-age=3600
age: 1242
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
144.91.88.248301 Moved Permanently 0 B URL HTTP/1.1 elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
IP 144.91.88.248:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW HTTP/1.1
Host: elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
X-Powered-By: PHP/8.0.15
Set-Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=524662bd14484b9dcaa86589803be4d4%7C%7C1669422713%7C%7C0811652660b396e151f55e0d1b6c4215; expires=Sat, 26-Nov-2022 00:31:53 GMT; Max-Age=172800; path=/; secure; HttpOnly
PHPSESSID=2uuo6f6i7ni7j2puabmikn6321; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Redirect-By: WordPress
Location: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Date: Thu, 24 Nov 2022 00:31:53 GMT
Server: LiteSpeed
Referrer-Policy: no-referrer-when-downgrade
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash eb52164d651f5f45416e873aec29eb04
405b29bb7e7cd4367cf82988f8603e53db65f139
ed885e05db822ff30fe951e10b6d4f21e574d053939afca792992a1549a15301
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5246
Cache-Control: max-age=122545
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 00:31:54 GMT
Etag: "637de2ad-1d7"
Expires: Fri, 25 Nov 2022 10:34:19 GMT
Last-Modified: Wed, 23 Nov 2022 09:06:53 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.223.160.237101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.223.160.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8f029Knhgk2R/GI1qVWKTA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: iBlPxO3Hsq+vuW344dfBhuoPiJc=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2926
Expires: Thu, 24 Nov 2022 01:20:41 GMT
Date: Thu, 24 Nov 2022 00:31:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2926
Expires: Thu, 24 Nov 2022 01:20:41 GMT
Date: Thu, 24 Nov 2022 00:31:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2926
Expires: Thu, 24 Nov 2022 01:20:41 GMT
Date: Thu, 24 Nov 2022 00:31:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2926
Expires: Thu, 24 Nov 2022 01:20:41 GMT
Date: Thu, 24 Nov 2022 00:31:55 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9ad1430-c833-4f58-99a3-6a959cced2fe.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9ad1430-c833-4f58-99a3-6a959cced2fe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 891d19eb042be6fd5d021ff08db2dfcc
c35c0a9bf6ad7f53e3aadaffb8f3a03c4f9457e3
3efff3d6a8bfa358652bf73ae26ab233ed8c2ca37dab1ff2f2298cd805b88bc1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9ad1430-c833-4f58-99a3-6a959cced2fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9099
x-amzn-requestid: d828c8f5-3ff1-4e20-822f-32d9ad7a0d7a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cExDeGjKIAMFQHw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9549-71d957297c3ec4b01633b1ce;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:48:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ZXi-qHYx7QoMQZAsZzEW099laTRSyxjhe8stloZ5ZhlRfw4W8sebjw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:23 GMT
etag: "c35c0a9bf6ad7f53e3aadaffb8f3a03c4f9457e3"
content-type: image/jpeg
age: 9272
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18708671-8ed1-458b-a0a3-fba50832ecb7.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18708671-8ed1-458b-a0a3-fba50832ecb7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash af618f978f520f4f15acd660f5e91ad4
fcbe3938574e2a3b0d303b7464ae6f414d7dc356
6f8c21090c99c98e8ae89f60b1cf1cd882194dc83db96808a0b5bd553ece8a56
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18708671-8ed1-458b-a0a3-fba50832ecb7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9119
x-amzn-requestid: 0321de47-3dae-4ad5-86e7-fd766326c6c8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvClGQWoAMFWqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9210-5bc883d93cedf8ec36517fe3;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gvEmzs6OvdD0s03wFTgS0RYBkikZ9VHk0eOArDVQwZ1vNSMBcJ97mQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:44:50 GMT
etag: "fcbe3938574e2a3b0d303b7464ae6f414d7dc356"
content-type: image/jpeg
age: 10025
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 92c78302bcce1568eb6a5563100b932c
43d1dec7fc06879988c9c3cadd800cc8145df988
0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:06 GMT
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
age: 9889
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a16068e-5377-48a5-aaf5-19e46c86681d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a16068e-5377-48a5-aaf5-19e46c86681d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e091109c8f54cf23b221d8d0a35d6914
a67bdea6358146f7de38d6be37e9f69a8edd5f22
362dc1665e27a4307a7ce832019a6e5e3d8edb0d18db084e4dc9dd026ea68df4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a16068e-5377-48a5-aaf5-19e46c86681d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11447
x-amzn-requestid: fb600f6e-d936-4255-b79f-528d9cb8e729
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYTEqyIAMFalg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-2bc3102e268ccdff7f960289;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: flF0yRgk5BMItKbudaEq7iQgLJcCHd6WNsvqFr1uDAvI_EKyVkc4_w==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 07:15:20 GMT
etag: "a67bdea6358146f7de38d6be37e9f69a8edd5f22"
content-type: image/jpeg
age: 62195
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe021fc4e-f76c-4fe9-9470-b59452c93459.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe021fc4e-f76c-4fe9-9470-b59452c93459.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eb94ecb5881a7e49d964e4287d11e7a4
4b131a189db1b615e2519a28cad83d78297ab67f
f3693e29eb7b72361093434142e3f18969c1a0b02350fab430fa29c7c127bd1a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe021fc4e-f76c-4fe9-9470-b59452c93459.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11401
x-amzn-requestid: 3bc374eb-7d70-4b95-94a7-2ad06cae4726
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCtHcmoAMFxgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-333793987245ff9e741b9aed;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kkI9Vh2vZeJPwz2JVL5MErsBBwk8-2Jo49yc0sFqv5pxIyBi6azFIw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:23 GMT
age: 9272
etag: "4b131a189db1b615e2519a28cad83d78297ab67f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8f6118fc03f31862ff68fef8a2b9a7f
318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73
cdd4d44f05cc524d7f2b1d6d792ecd8a9a933e52ecb7685a7d7ea786a510ef39
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8089
x-amzn-requestid: f4b5f150-a5dc-40bf-93b9-394c294a51cb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEmkRFSnIAMF5vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e8481-74454bee1a1ec6d506f3d75b;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 20:37:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ZVv8iTGCYV-IiBJ6KwNSG1ZWSEwClaQopUejSqZq0S1wd782lRoyKA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:19 GMT
age: 9276
etag: "318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/learnpress-course-review/assets/css/course-review.css?ver=6.1.1
144.91.88.248200 OK 1.5 kB URL HTTP/2 www.elmersity.com/wp-content/plugins/learnpress-course-review/assets/css/course-review.css?ver=6.1.1
IP 144.91.88.248:0
Hash 0c6d34c68ecc7c92f7aa507184398959
9a5aeafb789cce3c806d4f1ef5f29f6ca30134f4
aed56196e8758e619f1df08e78b8e2857d7833025efd6b24a39f886a180dfaf9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/learnpress-course-review/assets/css/course-review.css?ver=6.1.1 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:55 GMT
content-type: text/css
last-modified: Sun, 20 Nov 2022 08:19:27 GMT
etag: "1bf1-6379e30f-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1451
date: Thu, 24 Nov 2022 00:31:55 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/w3-total-cache/pub/js/lazyload.min.js
144.91.88.248200 OK 2.2 kB URL HTTP/2 www.elmersity.com/wp-content/plugins/w3-total-cache/pub/js/lazyload.min.js
IP 144.91.88.248:0
File type ASCII text, with very long lines (6274)
Hash aea00c48ca48bfc8112caa462b8410a1
42c8616ffb81f59627fb899f564e751943cf0719
b52641a9b71f7682ecc864cb3140d637db389ac0919674f067f4b8e9496f32e1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/w3-total-cache/pub/js/lazyload.min.js HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:55 GMT
content-type: application/x-javascript
last-modified: Wed, 23 Nov 2022 11:01:01 GMT
etag: "1883-637dfd6d-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2233
date: Thu, 24 Nov 2022 00:31:55 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
144.91.88.248200 OK 12 kB URL HTTP/2 www.elmersity.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 144.91.88.248:0
File type ASCII text, with very long lines (47826)
Hash c4d7cc056b49b00e05cc29cc59aa3d5a
48c426bec60099d2a8628df430ed682c72aab42a
8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:55 GMT
content-type: text/css
last-modified: Sun, 20 Nov 2022 07:24:12 GMT
etag: "172a9-6379d61c-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11616
date: Thu, 24 Nov 2022 00:31:55 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5
144.91.88.248200 OK 1.8 kB URL HTTP/2 www.elmersity.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5
IP 144.91.88.248:0
File type ASCII text, with very long lines (10435), with no line terminators
Hash f7237084ac82ea6a4f5bf1448c3a2148
60457635a5e809ee1199c61090d8e33b91e8e1f2
18a1cb7f08c1ace52a79f46d73461ed03bf8cf5c9e8a3687eacc3e04f08e7a09
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:55 GMT
content-type: text/css
last-modified: Sun, 20 Nov 2022 08:08:36 GMT
etag: "28c3-6379e084-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1754
date: Thu, 24 Nov 2022 00:31:55 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5
144.91.88.248200 OK 23 kB URL HTTP/2 www.elmersity.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5
IP 144.91.88.248:0
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 0c6730c96c60030ddaf42fcf5daf3b17
feb4c0071f27718582e58d365022a1b559de5765
d996bec53b493bc579754f29f7d6d0b5332f3354c860a3787e2365a79c44f995
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:55 GMT
content-type: text/css
last-modified: Sun, 20 Nov 2022 08:08:34 GMT
etag: "39996-6379e082-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 22871
date: Thu, 24 Nov 2022 00:31:55 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-includes/css/classic-themes.min.css?ver=1
144.91.88.248200 OK 144 B URL HTTP/2 www.elmersity.com/wp-includes/css/classic-themes.min.css?ver=1
IP 144.91.88.248:0
Hash fcbd239f30d9a6dd1f3637f291143d37
2871bf7d98af3f43e42f7fa32808048e7134fabf
c2f98e9d71f782b7a3266cd337c61ae6c8dcbb7203669c07852aa2ab65ab6144
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: text/css
last-modified: Sun, 20 Nov 2022 07:24:14 GMT
etag: "d9-6379d61e-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 144
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
144.91.88.248200 OK 848 B URL HTTP/2 www.elmersity.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 144.91.88.248:0
Hash c962ba8e7d42ff9da18392b41dad5151
7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: text/css
last-modified: Sun, 20 Nov 2022 08:09:09 GMT
etag: "aab-6379e0a5-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 848
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/paid-memberships-pro/css/frontend.css?ver=2.9.6
144.91.88.248200 OK 3.7 kB URL HTTP/2 www.elmersity.com/wp-content/plugins/paid-memberships-pro/css/frontend.css?ver=2.9.6
IP 144.91.88.248:0
File type ASCII text, with CRLF line terminators
Hash b4fb9e0aaf19871dbfa9ecf12dc713e7
d087c465c32344dd8a3aadd5386fb2f0bfe6473d
9dac64fb937802da61633be62aa72b54e88634feeca1987ec1f824751f01265c
GET /wp-content/plugins/paid-memberships-pro/css/frontend.css?ver=2.9.6 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: text/css
last-modified: Sun, 20 Nov 2022 08:10:19 GMT
etag: "4d3b-6379e0eb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3673
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.1.0
144.91.88.248200 OK 2.3 kB URL HTTP/2 www.elmersity.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.1.0
IP 144.91.88.248:0
File type ASCII text, with very long lines (17809), with no line terminators
Hash 09d93f4de720fc11a2944fea38fcafcd
e46cf6a8d3373c7fa5feba0b30cd9b9983f719b2
cf900721be13309b96cf6c6f56b1c0a40194e8aea1b0a0361739219c9c0f9998
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.1.0 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: text/css
last-modified: Sun, 20 Nov 2022 08:08:52 GMT
etag: "4591-6379e094-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2329
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.1.0
144.91.88.248200 OK 8.4 kB URL HTTP/2 www.elmersity.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.1.0
IP 144.91.88.248:0
File type Unicode text, UTF-8 text, with very long lines (62781), with no line terminators
Hash 6688cf6da7f8e77fce4b23ecd4fa64d4
b787949222758071c1a6221f698cad9bf9b1db2e
1b0db771c94b550d2e2eb123523a8357529aa8ec8869be9e8aabb2595055f438
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.1.0 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: text/css
last-modified: Sun, 20 Nov 2022 08:08:52 GMT
etag: "f53f-6379e094-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8434
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/wp-events-manager/inc/libraries//countdown/css/jquery.countdown.css?ver=6.1.1
144.91.88.248200 OK 275 B URL HTTP/2 www.elmersity.com/wp-content/plugins/wp-events-manager/inc/libraries//countdown/css/jquery.countdown.css?ver=6.1.1
IP 144.91.88.248:0
File type ASCII text, with CRLF line terminators
Hash a2a75d0cf9b1cd5bc865cecb3a5a47dd
da86a623f0b6f3669cc1482537f290c60c74cd77
92d9b451309af6872532938559152a195a3999a8b24b89cc027947465da79689
GET /wp-content/plugins/wp-events-manager/inc/libraries//countdown/css/jquery.countdown.css?ver=6.1.1 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: text/css
last-modified: Sun, 20 Nov 2022 08:09:16 GMT
etag: "3a5-6379e0ac-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 275
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/wp-events-manager/assets//css/frontend/events.min.css?ver=6.1.1
144.91.88.248200 OK 1.2 kB URL HTTP/2 www.elmersity.com/wp-content/plugins/wp-events-manager/assets//css/frontend/events.min.css?ver=6.1.1
IP 144.91.88.248:0
File type ASCII text, with very long lines (3687), with no line terminators
Hash bce90fc5142a07f3772cb88af95c17b1
f246c09c539855b95b82aa808908f5db5a987f80
2407c6a4e65b88f85c190350598dccbbb4aa9018a079ce6e37b4ff2079ad7cd0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-events-manager/assets//css/frontend/events.min.css?ver=6.1.1 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: text/css
last-modified: Sun, 20 Nov 2022 08:09:16 GMT
etag: "e67-6379e0ac-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1171
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 065495ec7a963a205abd9c8dbc75cb5d
ea416d0df4f6706150bda5da2077174f5cdd986b
1b2a2afee887651b23a849f14ace89b330329f6bf61c331545a3f6d12037aee5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 00:31:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.elmersity.com/wp-content/themes/course-builder/assets/css/libs/awesome/font-awesome.css?ver=6.1.1
144.91.88.248200 OK 6.5 kB URL HTTP/2 www.elmersity.com/wp-content/themes/course-builder/assets/css/libs/awesome/font-awesome.css?ver=6.1.1
IP 144.91.88.248:0
File type Unicode text, UTF-8 text, with very long lines (28104)
Hash f8545da2426117829fcca966d053a57d
58cd43e5aedc4acba18000ca84761f83c92ae3d7
5676d81131946723d315b3f0ea255c98380e0221cffe38c68db3c4ed0f3a9f43
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/course-builder/assets/css/libs/awesome/font-awesome.css?ver=6.1.1 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: text/css
last-modified: Sun, 20 Nov 2022 08:01:01 GMT
etag: "73c1-6379debd-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6517
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/themes/course-builder/assets/css/libs/ionicons/ionicons.css?ver=6.1.1
144.91.88.248200 OK 7.6 kB URL HTTP/2 www.elmersity.com/wp-content/themes/course-builder/assets/css/libs/ionicons/ionicons.css?ver=6.1.1
IP 144.91.88.248:0
File type Unicode text, UTF-8 text, with very long lines (47874)
Hash f2364842c23e6521b97f528da07a4a52
3f31cdb40ca7eafaffd17340b700b5dfdfec8e4f
111ed6760fb042330ae24be29c14d7191e69dc4d3ca5dc0a8548487305d61ddb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/course-builder/assets/css/libs/ionicons/ionicons.css?ver=6.1.1 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: text/css
last-modified: Sun, 20 Nov 2022 08:01:01 GMT
etag: "c298-6379debd-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7637
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/themes/course-builder/assets/css/libs/magnific-popup/main.css?ver=6.1.1
144.91.88.248200 OK 1.4 kB URL HTTP/2 www.elmersity.com/wp-content/themes/course-builder/assets/css/libs/magnific-popup/main.css?ver=6.1.1
IP 144.91.88.248:0
File type ASCII text, with very long lines (5204), with no line terminators
Hash c881e8bef5650ffc8dbcd816bba045ea
8e9b30331fb334b3b7f027e184f56143658afc6d
5cc8fa3d913e9bdb0f8b40b89cd74e875af94af45dd9e51fb16d7612c6f36bc1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/course-builder/assets/css/libs/magnific-popup/main.css?ver=6.1.1 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: text/css
last-modified: Sun, 20 Nov 2022 08:01:01 GMT
etag: "1454-6379debd-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1424
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/themes/course-builder/assets/css/libs/owl-carousel/owl.carousel.css?ver=6.1.1
144.91.88.248200 OK 903 B URL HTTP/2 www.elmersity.com/wp-content/themes/course-builder/assets/css/libs/owl-carousel/owl.carousel.css?ver=6.1.1
IP 144.91.88.248:0
File type ASCII text, with very long lines (3473), with no line terminators
Hash 6791ce39c8e0a02021ff44f1c7683c9f
ba3a3dcabef2288cb2c2869df680ce6f95c78593
b0bce302c2c8a9e5f6fc0adb3dc87b2ad3d9e48f46155f930332c5f2b35fa9da
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/course-builder/assets/css/libs/owl-carousel/owl.carousel.css?ver=6.1.1 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: text/css
last-modified: Sun, 20 Nov 2022 08:01:01 GMT
etag: "d91-6379debd-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 903
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/learnpress/assets/css/widgets.min.css?ver=4.1.7.3.2
144.91.88.248200 OK 1.5 kB URL HTTP/2 www.elmersity.com/wp-content/plugins/learnpress/assets/css/widgets.min.css?ver=4.1.7.3.2
IP 144.91.88.248:0
File type Unicode text, UTF-8 text, with very long lines (12693), with no line terminators
Hash f274f35ef38fc65d4d4f3888c99d44b0
05d8e7acf9b82f285b71a490ab37c7389e7bf5b8
64985f3608e60646c75ab608a434a873be10bb4ad99ca457f4bbb185fcab20c5
GET /wp-content/plugins/learnpress/assets/css/widgets.min.css?ver=4.1.7.3.2 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: text/css
last-modified: Sun, 20 Nov 2022 08:06:20 GMT
etag: "319b-6379dffc-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1469
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
144.91.88.248200 OK 4.0 kB URL HTTP/2 www.elmersity.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 144.91.88.248:0
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Wed, 18 Nov 2020 08:36:06 GMT
etag: "2bd8-5fb4dcf6-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
144.91.88.248200 OK 3.2 kB URL HTTP/2 www.elmersity.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
IP 144.91.88.248:0
File type ASCII text, with very long lines (9111)
Hash 078e27719ab2b91e57a3d06d05bf24d8
ee2c8af72d9dbb148d4101a374f6026d0c9c3044
1c8b599f3f7bfa8d7950d95a171f2c873d051960a91c91e22304293596e5b890
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 08:08:54 GMT
etag: "2521-6379e096-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3247
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
144.91.88.248200 OK 972 B URL HTTP/2 www.elmersity.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
IP 144.91.88.248:0
File type HTML document, ASCII text, with very long lines (3029), with no line terminators
Hash 5ed77e0c59800f40061b5c322cff21fa
ced9d401d300dd1fc676a673bbf7e6360beb402d
3b284b8a096256e6cd0d9cbf2cb4b36505e71c0d7b2227fcd3132dddbeea18cc
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 08:08:54 GMT
etag: "bd5-6379e096-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 972
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.10.0
144.91.88.248200 OK 321 B URL HTTP/2 www.elmersity.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.10.0
IP 144.91.88.248:0
Hash 159e4731a0ffba6862ee2a1bbcc8a805
7fb2a5ca7a80d96187fda406d0a1b7db23867fa7
c6f102a76dc397d94cfbadcd292d64bb45acaa29b0391b41a9f1cc68c2274ae2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.10.0 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 08:07:26 GMT
etag: "3e0-6379e03e-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 321
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.7
144.91.88.248200 OK 12 kB URL HTTP/2 www.elmersity.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.7
IP 144.91.88.248:0
File type Unicode text, UTF-8 text, with very long lines (12602)
Hash cdb90190b5ea021c4ef8063197c44cde
bdfe193197018331389d1fbf71f86142e896628b
7c1f2dc0d2badaa024cf7257448f42bf37ec0d160366d65ff15832ba5fae03e9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.7 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: text/css
last-modified: Sun, 20 Nov 2022 08:11:19 GMT
etag: "e394-6379e127-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11947
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
144.91.88.248404 Not Found 16 kB URL HTTP/2 www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
IP 144.91.88.248:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (9601), with CRLF, LF line terminators
Hash 6f04934c200883c3997e05aaa9e5bfd7
25d0573e41b165c609ccc0338c48a7b91085ac4a
587931a03c79def37a3ddc6c2e56a994c0ab6803c61e0f2caeca7bb40ce5d5af
Analyzer Verdict Alert fortinet Phishing
GET /public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
x-powered-by: PHP/8.0.15
set-cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; expires=Sat, 26-Nov-2022 00:31:54 GMT; Max-Age=172799; path=/; secure; HttpOnly
PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; path=/; secure
_wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; expires=Thu, 24-Nov-2022 01:31:55 GMT; Max-Age=3600; path=/; secure
pmpro_visit=1; path=/; secure; HttpOnly
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://www.elmersity.com/wp-json/>; rel="https://api.w.org/"
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Nov 2022 00:31:55 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
144.91.88.248200 OK 3.7 kB URL HTTP/2 www.elmersity.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 144.91.88.248:0
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash dc6411bfa6891b75944f0074c945752d
03c1a8b686c287068c61ab90f58d905496d65085
96abeabc9cc7b4c2b7d46579f2827c67ccd02fbaef0343ae052f71accd381b0d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 08:09:09 GMT
etag: "3016-6379e0a5-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3706
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
144.91.88.248200 OK 899 B URL HTTP/2 www.elmersity.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
IP 144.91.88.248:0
File type ASCII text, with very long lines (1668)
Hash 22d65ba38528349e705d912ce26bf8ac
c89ba006009043d93b88ff155b4fec8797330550
6253bcb85e4267ad3ba843145534e729ee2c1d7e85e5b4ab5b2e074ae636bca3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 08:08:54 GMT
etag: "72a-6379e096-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 899
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
144.91.88.248200 OK 677 B URL HTTP/2 www.elmersity.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
IP 144.91.88.248:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash a43fc0dde8fdd69656ad0957e62849c7
4b07cf702ac8a770c8cbffc22b9a788b6e5389ba
1ce3d0493424870c81deec0ec41de0592d2af9f91cd8081cd40a1d7ea89b614f
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 08:08:56 GMT
etag: "85b-6379e098-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 677
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
144.91.88.248200 OK 934 B URL HTTP/2 www.elmersity.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
IP 144.91.88.248:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash cf25dd071a208312bdc07f34d2cee027
76119563119eaae392ecc8903c989d98d0b93002
8635ba2cad8f887e72779bd526f8738ff6343c74cba715caf2eddea383ba7ce6
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 08:08:54 GMT
etag: "b7a-6379e096-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 934
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
144.91.88.248200 OK 6.8 kB URL HTTP/2 www.elmersity.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 144.91.88.248:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 3d0ff0f6731d9cef860af9a5a0e3ce62
13aed444304d782039e261475c8b4450b83e743e
e8d05db77732c71843ced6f386ea82eb32243ac36e7ca3e071cb7f53e2ffbce5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 07:24:35 GMT
etag: "53c0-6379d633-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6800
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/themes/course-builder/assets/css/libs/bootstrap/bootstrap.css?ver=6.1.1
144.91.88.248200 OK 16 kB URL HTTP/2 www.elmersity.com/wp-content/themes/course-builder/assets/css/libs/bootstrap/bootstrap.css?ver=6.1.1
IP 144.91.88.248:0
File type ASCII text, with very long lines (65317)
Hash 924c0ca8ccf716ab13c001614170f8f5
6a3f561bb8aa2d9d0af958204cb4012533af7fe0
827d3a5f454ce7bc209d711a172d4808a63b32519d494b44889a80fb46a64a76
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/course-builder/assets/css/libs/bootstrap/bootstrap.css?ver=6.1.1 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: text/css
last-modified: Sun, 20 Nov 2022 08:01:01 GMT
etag: "1b156-6379debd-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 16523
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
144.91.88.248200 OK 30 kB URL HTTP/2 www.elmersity.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 144.91.88.248:0
File type ASCII text, with very long lines (65447)
Hash 3a1740685bd5c0bbd5f2b812e1eb7fb4
488e07695da787fed18361c50292aef35abb5e81
4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 07:24:35 GMT
etag: "15e54-6379d633-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30324
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-includes/js/underscore.min.js?ver=1.13.4
144.91.88.248200 OK 7.2 kB URL HTTP/2 www.elmersity.com/wp-includes/js/underscore.min.js?ver=1.13.4
IP 144.91.88.248:0
File type ASCII text, with very long lines (18798)
Hash f4bb18d2e152ba945cb63980362f40e9
925f93a6c4ee411e97d8dc3186f9d66c4b5169ab
16ab496a6c74f5f272f7a5c31e9cb69c753fea994396ef6deacf641180ad317b
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 07:24:33 GMT
etag: "4991-6379d631-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7179
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-includes/js/wp-util.min.js?ver=6.1.1
144.91.88.248200 OK 690 B URL HTTP/2 www.elmersity.com/wp-includes/js/wp-util.min.js?ver=6.1.1
IP 144.91.88.248:0
File type ASCII text, with very long lines (1391)
Hash ebe552e54e3815c6867913d252ff2a79
4982bd9ba944833e821be18419ad8408290f5d75
8b0aedc73b1d41ab59c0ad42553259c90458cfb72b149946a3bae3298c012e40
GET /wp-includes/js/wp-util.min.js?ver=6.1.1 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 07:24:36 GMT
etag: "592-6379d634-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 690
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/wp-events-manager/inc/libraries//countdown/js/jquery.plugin.min.js?ver=6.1.1
144.91.88.248200 OK 1.3 kB URL HTTP/2 www.elmersity.com/wp-content/plugins/wp-events-manager/inc/libraries//countdown/js/jquery.plugin.min.js?ver=6.1.1
IP 144.91.88.248:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (2986), with CRLF line terminators
Hash 728b392615cfa27a7d9c5218cb895ee3
3f2f90b5bd23a14309b7b469e5034f0e9440e38d
f91bb747571f639696f9d3742462831f0a6f28c3580db498df11a771b9536280
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-events-manager/inc/libraries//countdown/js/jquery.plugin.min.js?ver=6.1.1 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 08:09:16 GMT
etag: "c70-6379e0ac-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1253
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/wp-events-manager/inc/libraries//countdown/js/jquery.countdown.min.js?ver=6.1.1
144.91.88.248200 OK 4.3 kB URL HTTP/2 www.elmersity.com/wp-content/plugins/wp-events-manager/inc/libraries//countdown/js/jquery.countdown.min.js?ver=6.1.1
IP 144.91.88.248:0
File type ASCII text, with very long lines (13714), with CRLF line terminators
Hash 5e8d45fd155e8d33e98b74eb77603503
fbfc67031f2dd8ba1bc50c51802e8d6f82edbf36
76b1c89b3ff4342df27897fb5440d878eb24c06f24a98a4fab21239ae6a17c14
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-events-manager/inc/libraries//countdown/js/jquery.countdown.min.js?ver=6.1.1 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 08:09:16 GMT
etag: "369c-6379e0ac-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4290
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/wp-events-manager/assets//js/frontend/events.min.js?ver=6.1.1
144.91.88.248200 OK 1.4 kB URL HTTP/2 www.elmersity.com/wp-content/plugins/wp-events-manager/assets//js/frontend/events.min.js?ver=6.1.1
IP 144.91.88.248:0
File type Unicode text, UTF-8 text, with very long lines (3899), with no line terminators
Hash 3eb5a291835332aa39ce7b853c094105
5dd1801fd51c7e4b6fbd750dd1965b933375d7e3
291ced26f82832f4603e89b576b2c8e197112771c24908ac597d4558a8edc910
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-events-manager/assets//js/frontend/events.min.js?ver=6.1.1 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 08:09:18 GMT
etag: "f3f-6379e0ae-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1400
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/themes/course-builder/assets/js/libs/bootstrap.min.js?ver=3.3.9
144.91.88.248200 OK 12 kB URL HTTP/2 www.elmersity.com/wp-content/themes/course-builder/assets/js/libs/bootstrap.min.js?ver=3.3.9
IP 144.91.88.248:0
File type ASCII text, with very long lines (48664)
Hash a63a69105df71934aadab10897f1bd06
43794acd496794dd877134acab7a728158818402
bd80f250468f988208b0c04c31d2c27a53a11b45a018638b57d60648bc63eff6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/course-builder/assets/js/libs/bootstrap.min.js?ver=3.3.9 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 08:01:06 GMT
etag: "bf06-6379dec2-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12513
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/themes/course-builder/assets/js/libs/jquery.cookie.js?ver=3.3.9
144.91.88.248200 OK 1.2 kB URL HTTP/2 www.elmersity.com/wp-content/themes/course-builder/assets/js/libs/jquery.cookie.js?ver=3.3.9
IP 144.91.88.248:0
Hash bcd42e1316e4c874cf67c2906e896559
dcf13fc95b18fa39220817839dd9374e281b5742
0849c270b5989c8a2b86aff6bda0b16c651e6b4acf0adc07cd80daf9dff79a9b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/course-builder/assets/js/libs/jquery.cookie.js?ver=3.3.9 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 08:01:06 GMT
etag: "c44-6379dec2-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1235
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/themes/course-builder/assets/js/libs/owl.carousel.min.js?ver=3.3.9
144.91.88.248200 OK 11 kB URL HTTP/2 www.elmersity.com/wp-content/themes/course-builder/assets/js/libs/owl.carousel.min.js?ver=3.3.9
IP 144.91.88.248:0
File type ASCII text, with very long lines (32012)
Hash e7f534d7847d30ce1f023300bdedccde
025369b6684d983e230bedbdc430aea6d82fdda7
67d07203123b203687b3e2a9c8aabdb06e0d0f16142548f7ba08d43a33045963
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/course-builder/assets/js/libs/owl.carousel.min.js?ver=3.3.9 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 08:01:06 GMT
etag: "a766-6379dec2-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10691
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/themes/course-builder/assets/js/libs/theia-sticky-sidebar.js?ver=3.3.9
144.91.88.248200 OK 3.1 kB URL HTTP/2 www.elmersity.com/wp-content/themes/course-builder/assets/js/libs/theia-sticky-sidebar.js?ver=3.3.9
IP 144.91.88.248:0
File type HTML document text\012- HTML document, ASCII text
Hash 313c8135853905aa18fef477aac1edbb
15c23ef80558a4a9e0639988640dbac37947f73d
545bd50dafeca4f06c998fd909c9d14be7c5621a5df0d08c2b45603b2d4f8eda
GET /wp-content/themes/course-builder/assets/js/libs/theia-sticky-sidebar.js?ver=3.3.9 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 08:01:06 GMT
etag: "3a49-6379dec2-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3094
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/themes/course-builder/assets/js/main.min.js?ver=3.3.9
144.91.88.248200 OK 15 kB URL HTTP/2 www.elmersity.com/wp-content/themes/course-builder/assets/js/main.min.js?ver=3.3.9
IP 144.91.88.248:0
File type ASCII text, with very long lines (55080)
Hash 211f3e59666c671392da597f1011feac
631ddb453e9d76cce0b34202cc76f260dfcec2ff
cbe1e1d2d8813c7bacbd587fbf266169e1f04d52d30e1c20d3b172ac4d1b7f74
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/course-builder/assets/js/main.min.js?ver=3.3.9 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 08:01:06 GMT
etag: "d79e-6379dec2-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 14774
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/themes/course-builder/assets/js/libs/smoothscroll.min.js?ver=3.3.9
144.91.88.248200 OK 3.0 kB URL HTTP/2 www.elmersity.com/wp-content/themes/course-builder/assets/js/libs/smoothscroll.min.js?ver=3.3.9
IP 144.91.88.248:0
File type ASCII text, with very long lines (7422), with no line terminators
Hash 17e2bf3041e1c55c0f2ec60e5882bc07
3ed40a924a441aff289ff09a64f4525bb1537271
e8eafd3ab311dce59ef32ee1f0b04e643f435c36272d144d0f73ab07043d9d7e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/course-builder/assets/js/libs/smoothscroll.min.js?ver=3.3.9 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 08:01:06 GMT
etag: "1cfe-6379dec2-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3003
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-includes/css/dashicons.min.css?ver=6.1.1
144.91.88.248200 OK 35 kB URL HTTP/2 www.elmersity.com/wp-includes/css/dashicons.min.css?ver=6.1.1
IP 144.91.88.248:0
File type ASCII text, with very long lines (58981)
Hash 54c5bfb8a890d87139d9abfe01662c83
f9eddf5b8a3269e6d6fa40b4f13083705e6267c6
9685e5cabe4efc8c85e986725af8009b306416aad3ecc9086ca5bb12b84ce4ef
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.min.css?ver=6.1.1 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: text/css
last-modified: Wed, 03 Mar 2021 20:46:22 GMT
etag: "e688-603ff59e-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 35110
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.10.0
144.91.88.248200 OK 40 kB URL HTTP/2 www.elmersity.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.10.0
IP 144.91.88.248:0
File type ASCII text, with very long lines (65358)
Hash 3fe54710cf7cf76519015faebd57e01f
b890d0692d2fd0b9d541e696554d4d2e1f648212
fbb840e992a73b4745d10dd99c01352a062e13722d4ae84e738a776996111adc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.10.0 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: text/css
last-modified: Sun, 20 Nov 2022 08:07:14 GMT
etag: "70ee5-6379e032-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 40525
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.10.0
144.91.88.248200 OK 5.4 kB URL HTTP/2 www.elmersity.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.10.0
IP 144.91.88.248:0
File type ASCII text, with very long lines (19831)
Hash 52316721be4db657717d0c667ba55540
afd4ec2397021ff303d011701bf5119594f2e05c
5165618543f71526000fd07ba28d7398286102153eac72129b9096f5efffe513
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.10.0 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 08:07:26 GMT
etag: "4e52-6379e03e-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5359
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/thim-course-builder/elements/course-search/assets/js/course-search.js?ver=3.2.8
144.91.88.248200 OK 1.2 kB URL HTTP/2 www.elmersity.com/wp-content/plugins/thim-course-builder/elements/course-search/assets/js/course-search.js?ver=3.2.8
IP 144.91.88.248:0
Hash 4355f83e325baddaae3ccd9777c83829
53523ee37fbd7f5e1f8dabdbc44dcb65ffcacb38
e9593b38ec595b80c9c373e68c8f15cd3ccc502db5dbfc5c186542aec7f71d41
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/thim-course-builder/elements/course-search/assets/js/course-search.js?ver=3.2.8 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 08:06:31 GMT
etag: "17ba-6379e007-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1225
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/themes/course-builder/style.css?ver=3.3.9
144.91.88.248200 OK 157 kB URL HTTP/2 www.elmersity.com/wp-content/themes/course-builder/style.css?ver=3.3.9
IP 144.91.88.248:0
File type ASCII text, with very long lines (64804)
Size 157 kB (157168 bytes)
Hash 9c3ef4f69dd59bd84f78cfa0031c91ac
152e4f2351f22b32add10b0700de848fd4189d2b
89e771c9e64e3617128c6333e57cdb54a17821ca513d279f3c1e5a76ab9f06f4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/course-builder/style.css?ver=3.3.9 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: text/css
last-modified: Sun, 20 Nov 2022 08:00:56 GMT
etag: "142c46-6379deb8-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 157168
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 065495ec7a963a205abd9c8dbc75cb5d
ea416d0df4f6706150bda5da2077174f5cdd986b
1b2a2afee887651b23a849f14ace89b330329f6bf61c331545a3f6d12037aee5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 00:31:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.elmersity.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.1.0
144.91.88.248200 OK 1.1 kB URL HTTP/2 www.elmersity.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.1.0
IP 144.91.88.248:0
File type ASCII text, with very long lines (7043), with no line terminators
Hash 398489038b789364a5c83f044e11974d
d5caf5f64c45693de65b5c0a801bfbf83a325485
32365dde0c909abbb02d8b6a8d9938056ba47f325d51e75082e3d265ce5f76d5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.1.0 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: text/css
last-modified: Sun, 20 Nov 2022 08:08:52 GMT
etag: "1b83-6379e094-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1058
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/paid-memberships-pro/css/print.css?ver=2.9.6
144.91.88.248200 OK 86 B URL HTTP/2 www.elmersity.com/wp-content/plugins/paid-memberships-pro/css/print.css?ver=2.9.6
IP 144.91.88.248:0
Hash e77387958ae617db5ccdb69b2cb54496
a9b4ba56928f44121201c000967e5407425cd844
914cb6fe13efdf97379c1a2910d677144821201ff3f41b67a5a6ddb367e1a27b
GET /wp-content/plugins/paid-memberships-pro/css/print.css?ver=2.9.6 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: text/css
last-modified: Sun, 20 Nov 2022 08:10:19 GMT
etag: "56-6379e0eb-0;;;"
accept-ranges: bytes
content-length: 86
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/themes/course-builder/assets/images/header2-bg.png
144.91.88.248200 OK 148 B URL HTTP/2 www.elmersity.com/wp-content/themes/course-builder/assets/images/header2-bg.png
IP 144.91.88.248:0
File type PNG image data, 1 x 181, 8-bit gray+alpha, non-interlaced\012- data
Hash a7429ff358d4362c60fdab43d406aec0
058da2ac8568dc0b3f2bb9183967d292d6c6284b
a8038cbe0a5edda8bdaa11a2e24cb725928fefff0576c93bfac9f512ab6a29b7
GET /wp-content/themes/course-builder/assets/images/header2-bg.png HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/wp-content/themes/course-builder/style.css?ver=3.3.9
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: image/png
last-modified: Sun, 20 Nov 2022 08:01:01 GMT
etag: "94-6379debd-0;;;"
accept-ranges: bytes
content-length: 148
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/themes/course-builder/assets/fonts/awesome/fontawesome-webfont.woff2?v=4.7.0
144.91.88.248200 OK 77 kB URL HTTP/2 www.elmersity.com/wp-content/themes/course-builder/assets/fonts/awesome/fontawesome-webfont.woff2?v=4.7.0
IP 144.91.88.248:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/course-builder/assets/fonts/awesome/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.elmersity.com/wp-content/themes/course-builder/assets/css/libs/awesome/font-awesome.css?ver=6.1.1
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/font-woff2
last-modified: Sun, 20 Nov 2022 08:01:06 GMT
etag: "12d68-6379dec2-0;;;"
accept-ranges: bytes
content-length: 77160
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4f22437494cab8f3b1de6d48c3677f43
42461557365b59e300ae356c37b95f652e10dacd
420bc8cc7c6624d9201c6e12fb6478f4a9cf77e90aad033b4d12687968003ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 00:31:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4f22437494cab8f3b1de6d48c3677f43
42461557365b59e300ae356c37b95f652e10dacd
420bc8cc7c6624d9201c6e12fb6478f4a9cf77e90aad033b4d12687968003ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 00:31:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.elmersity.com/wp-content/themes/course-builder/assets/fonts/ionicons/ionicons.ttf
144.91.88.248200 OK 104 kB URL HTTP/2 www.elmersity.com/wp-content/themes/course-builder/assets/fonts/ionicons/ionicons.ttf
IP 144.91.88.248:0
File type TrueType Font data, 15 tables, 1st "FFTM", 14 names, Macintosh\012- data
Size 104 kB (104496 bytes)
Hash 3ee3bf3abeeef52156cf1c73458bca6b
8cf9229332430bb909171e982f16512750ca4c26
7ec8d0289521feef66cc787d60ffbe23050dee813c9a9d6e41741abafad15578
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/course-builder/assets/fonts/ionicons/ionicons.ttf HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/wp-content/themes/course-builder/assets/css/libs/ionicons/ionicons.css?ver=6.1.1
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-font-ttf
last-modified: Sun, 20 Nov 2022 08:01:04 GMT
etag: "2e05c-6379dec0-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 104496
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.elmersity.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:21 GMT
expires: Thu, 23 Nov 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 17855
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.elmersity.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:08 GMT
expires: Thu, 23 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 17868
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 00:31:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.elmersity.com/favicon.ico
144.91.88.248404 Not Found 1.2 kB URL HTTP/2 www.elmersity.com/favicon.ico
IP 144.91.88.248:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash de7225068c8ecb2c24a41d00bf84c1b9
02144152cd8a4423ea135d82c7259e05e9656d3d
79ce4e2bbf25c4a4d91458d191d6ef268b4592169ae6586ba52242f412670b5d
GET /favicon.ico HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1237
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
wordpresslms.thimpress.com/demo-elearning-2/wp-content/themes/wordpress-lms//assets/images/404.png
104.26.5.142301 Moved Permanently 0 B URL HTTP/1.1 wordpresslms.thimpress.com/demo-elearning-2/wp-content/themes/wordpress-lms//assets/images/404.png
IP 104.26.5.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /demo-elearning-2/wp-content/themes/wordpress-lms//assets/images/404.png HTTP/1.1
Host: wordpresslms.thimpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Thu, 24 Nov 2022 00:31:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 24 Nov 2022 01:31:56 GMT
Location: https://corptrain.thimpress.com/demo-elearning-2/wp-content/themes/wordpress-lms/assets/images/404.png
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aPLYwjG5SJQPQvHcUMKoXc3MIDJzz4P%2BXlePBeXRJ2H4%2FpPTZCUDe4%2FH%2BIQLRiUMRVw5xXYAt2FQAb0u42%2Frsr6s4FwHroJSIJVGxg0Tl0ISqFWCX4oFGc%2Fei3I6LkR1WT6PTff3SiwJjVmq"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ee0b6cab60b515-OSL
alt-svc: h2=":443"; ma=60
wordpresslms.thimpress.com/demo-elearning-2/wp-content/themes/wordpress-lms//assets/images/page-title/bg.jpg
104.26.5.142301 Moved Permanently 0 B URL HTTP/1.1 wordpresslms.thimpress.com/demo-elearning-2/wp-content/themes/wordpress-lms//assets/images/page-title/bg.jpg
IP 104.26.5.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /demo-elearning-2/wp-content/themes/wordpress-lms//assets/images/page-title/bg.jpg HTTP/1.1
Host: wordpresslms.thimpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Thu, 24 Nov 2022 00:31:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 24 Nov 2022 01:31:56 GMT
Location: https://corptrain.thimpress.com/demo-elearning-2/wp-content/themes/wordpress-lms/assets/images/page-title/bg.jpg
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VWJba2MtQ4A0s7BFvx2t8wC%2BJQfnFhi26qGu9dcfkK5BbyRpD9amym4dccpvIyP%2FCHaiziWF4qEg0Gbq8AICCQjxPfAIuMGJCqpMAHQXbRAvbKu9wigOkKyau%2BzKM%2FTDkjQBzJN3cwWw%2BKh%2B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ee0b6cbd0db524-OSL
alt-svc: h2=":443"; ma=60
www.elmersity.com/wp-content/uploads/2017/09/logo-2-1.png
144.91.88.248200 OK 2.1 kB URL HTTP/2 www.elmersity.com/wp-content/uploads/2017/09/logo-2-1.png
IP 144.91.88.248:0
File type PNG image data, 131 x 45, 8-bit colormap, non-interlaced\012- data
Hash 09a82c649423bf0acf63c5f56345aeef
cd6094a00834ee709a4ccbc49e6d56535cddf23a
88a760047d1d529e598578215d402bed2695267196557398cfbd9089e84a6d12
GET /wp-content/uploads/2017/09/logo-2-1.png HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: image/png
last-modified: Sun, 20 Nov 2022 08:35:31 GMT
etag: "80b-6379e6d3-0;;;"
accept-ranges: bytes
content-length: 2059
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/uploads/2017/12/login-popup-background.jpg
144.91.88.248200 OK 69 kB URL HTTP/2 www.elmersity.com/wp-content/uploads/2017/12/login-popup-background.jpg
IP 144.91.88.248:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 853x1280, components 3\012- data
Hash 136838e7a4f24090c95ba450d109dc0b
d3d3816a096ecf2084f84c00702c009b6d6f3d4c
93c7c53b55ac6d9e6055b4b85267064a3619e909e5a34faec0430b0fcf4c4c9c
GET /wp-content/uploads/2017/12/login-popup-background.jpg HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: image/jpeg
last-modified: Sun, 20 Nov 2022 08:35:35 GMT
etag: "10cf6-6379e6d7-0;;;"
accept-ranges: bytes
content-length: 68854
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
wordpresslms.thimpress.com/wp-content/uploads/2017/06/layer-138.png
104.26.5.142301 Moved Permanently 0 B URL HTTP/1.1 wordpresslms.thimpress.com/wp-content/uploads/2017/06/layer-138.png
IP 104.26.5.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2017/06/layer-138.png HTTP/1.1
Host: wordpresslms.thimpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Thu, 24 Nov 2022 00:31:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 24 Nov 2022 01:31:56 GMT
Location: https://corptrain.thimpress.com/wp-content/uploads/2017/06/layer-138.png
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WIdtcf8kHdHXApSPtOVvzJMF2m%2FsEz6r1etgzO8hgO0qCsbv3mzKW4v1aNeglu6QMlmUSgPON2ff42ffi%2BxTsbCF2tCpWObzlzuQ4yVYGFIT4Gt3ZrE23ymMc%2B2uur8RDfwIXq2oSPh%2BH421"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ee0b6d1ba1b515-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash ebe204f10973a82054f875476ed46855
03356283e448ea0db8e15d50b2c2bccaecddee39
98b9bcfe7c50ee00042e5f5c9c89babf25cf8d03a48cc70163f79cbae19baa87
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=93170
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 00:31:56 GMT
Etag: "637d846e-116"
Expires: Fri, 25 Nov 2022 02:24:46 GMT
Last-Modified: Wed, 23 Nov 2022 02:24:46 GMT
Server: nginx
Content-Length: 278
corptrain.thimpress.com/demo-elearning-2/wp-content/themes/wordpress-lms/assets/images/404.png
172.67.74.95200 OK 7.8 kB URL HTTP/2 corptrain.thimpress.com/demo-elearning-2/wp-content/themes/wordpress-lms/assets/images/404.png
IP 172.67.74.95:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash d29ce84971c1615748dfb4bff409fd19
fc6dc38d03809d72c1861606de0065625daebf38
ab1ede904eccd3781ae0c5f9c4d650fd3967ff6ad589962eac49aeaf83d45e28
GET /demo-elearning-2/wp-content/themes/wordpress-lms/assets/images/404.png HTTP/1.1
Host: corptrain.thimpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 00:31:57 GMT
content-type: image/webp
content-length: 7750
cache-control: max-age=315360000
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=32790
content-disposition: inline; filename="404.webp"
vary: Accept
access-control-allow-origin: *
etag: "6278d778-8016"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 09 May 2022 08:57:28 GMT
x-powered-by: EasyEngine v4.1.5
cf-cache-status: HIT
age: 47577
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NaLmLH04edoS7JEGEzAIS4XgfKzMfeUWtOCtmlArfQuhvfPkqXwrDGcLxR3gkeCHwTQXhjrEPSPBsU9PuoXMhkZIyfnIZwz5ItDKu0z%2FrOBo4kciGX9Ac2kTVMwx2JXVaV%2FcuxRjMReL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76ee0b6d6a56b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash ebe204f10973a82054f875476ed46855
03356283e448ea0db8e15d50b2c2bccaecddee39
98b9bcfe7c50ee00042e5f5c9c89babf25cf8d03a48cc70163f79cbae19baa87
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 548
Cache-Control: max-age=93717
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 00:31:57 GMT
Etag: "637d846e-116"
Expires: Fri, 25 Nov 2022 02:33:54 GMT
Last-Modified: Wed, 23 Nov 2022 02:24:46 GMT
Server: ECS (amb/6B8A)
X-Cache: HIT
Content-Length: 278
wordpresslms.thimpress.com/wp-content/uploads/2017/06/layer-131.png
104.26.5.142301 Moved Permanently 0 B URL HTTP/1.1 wordpresslms.thimpress.com/wp-content/uploads/2017/06/layer-131.png
IP 104.26.5.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2017/06/layer-131.png HTTP/1.1
Host: wordpresslms.thimpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Thu, 24 Nov 2022 00:31:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 24 Nov 2022 01:31:57 GMT
Location: https://corptrain.thimpress.com/wp-content/uploads/2017/06/layer-131.png
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aWs4QLWCjE5NZXALdWdcoxZfwYC4Ob5yKQa4uBNFZebzExqepGwSgZBxjrGmTVamFigVNTi378EyMcs1bWioKjh8pybcC%2BRcAEU58DhXApSuSpixFHUhGqQiHzRUKl3jRyUAjPmWdXr%2FfawS"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ee0b6d8daeb524-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash ebe204f10973a82054f875476ed46855
03356283e448ea0db8e15d50b2c2bccaecddee39
98b9bcfe7c50ee00042e5f5c9c89babf25cf8d03a48cc70163f79cbae19baa87
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=93169
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 00:31:57 GMT
Etag: "637d846e-116"
Expires: Fri, 25 Nov 2022 02:24:46 GMT
Last-Modified: Wed, 23 Nov 2022 02:24:46 GMT
Server: nginx
Content-Length: 278
corptrain.thimpress.com/wp-content/uploads/2017/06/layer-138.png
172.67.74.95200 OK 1.2 kB URL HTTP/2 corptrain.thimpress.com/wp-content/uploads/2017/06/layer-138.png
IP 172.67.74.95:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9f6013134b5d248403a6baaf5d300879
0cdad578203f588ba6143c57d4088970efdc1fcc
ea26ae84f70160438026d1c1ca120c2989475e4854e20052a302142d6e92ec96
GET /wp-content/uploads/2017/06/layer-138.png HTTP/1.1
Host: corptrain.thimpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 00:31:57 GMT
content-type: image/webp
content-length: 1198
cache-control: max-age=315360000
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=1557
content-disposition: inline; filename="layer-138.webp"
vary: Accept
access-control-allow-origin: *
etag: "5b63c37e-615"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 03 Aug 2018 02:52:46 GMT
x-powered-by: EasyEngine v4.1.5
cf-cache-status: HIT
age: 54937
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cLfQ8HBdW1NaxbpoLPLs2XDJVvaCh923YFxrplMDOp2htQX0%2BovJmkbXRNAfS3bbwdEqIB%2FXutFBHQP0Abwl6NBrO1RR5Eb4OxScbHaV94h968lPkJOxD6ERxzOavsk5XvIbG4pLnMSd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76ee0b6d9a6db529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash ebe204f10973a82054f875476ed46855
03356283e448ea0db8e15d50b2c2bccaecddee39
98b9bcfe7c50ee00042e5f5c9c89babf25cf8d03a48cc70163f79cbae19baa87
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=93170
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 00:31:57 GMT
Etag: "637d846e-116"
Expires: Fri, 25 Nov 2022 02:24:47 GMT
Last-Modified: Wed, 23 Nov 2022 02:24:46 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 278
corptrain.thimpress.com/wp-content/uploads/2017/06/layer-131.png
172.67.74.95200 OK 1.6 kB URL HTTP/2 corptrain.thimpress.com/wp-content/uploads/2017/06/layer-131.png
IP 172.67.74.95:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3f3a6ea7ffc1aed665334b6f00e7ff63
ae3cfc670ead8b453038df8828806b74fbe78ed0
09780cc9d15492121bb1ba0d270e7c1a0b3a8d50f1f23274368a0a4225a5a5e8
GET /wp-content/uploads/2017/06/layer-131.png HTTP/1.1
Host: corptrain.thimpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 00:31:57 GMT
content-type: image/webp
content-length: 1600
cache-control: max-age=315360000
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=2349
content-disposition: inline; filename="layer-131.webp"
vary: Accept
access-control-allow-origin: *
etag: "5b63c37e-92d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 03 Aug 2018 02:52:46 GMT
x-powered-by: EasyEngine v4.1.5
cf-cache-status: HIT
age: 54937
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0xMyWtSWaRof6%2F2m9rg6TUscyoqREp0xmcX7Mw6Xp8iPCyWekQ1iCgzVv8QUbopaXwdI98NSc1UXx15bsTBKiNxDo7RHT4hUOHLb1IEPdBSzKz7l5os7tciXHEXciX3xRSdFOlkaORqd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76ee0b6d9a73b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
corptrain.thimpress.com/demo-elearning-2/wp-content/themes/wordpress-lms/assets/images/page-title/bg.jpg
172.67.74.95200 OK 117 kB URL HTTP/2 corptrain.thimpress.com/demo-elearning-2/wp-content/themes/wordpress-lms/assets/images/page-title/bg.jpg
IP 172.67.74.95:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 2560x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 117 kB (116584 bytes)
Hash 882328bec68a6c650cc7d4439976168f
c3f1545ee4e39a51e4ae2a1be7712cff512f5f82
5a1912071eeacb6eb5c953ba967e5fd4b3d54b705f3ab43e64fc2b887b1a864d
GET /demo-elearning-2/wp-content/themes/wordpress-lms/assets/images/page-title/bg.jpg HTTP/1.1
Host: corptrain.thimpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 00:31:57 GMT
content-type: image/webp
content-length: 116584
cache-control: max-age=315360000
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=223172
content-disposition: inline; filename="bg.webp"
vary: Accept
access-control-allow-origin: *
etag: "6278d778-367c4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 09 May 2022 08:57:28 GMT
x-powered-by: EasyEngine v4.1.5
cf-cache-status: HIT
age: 47577
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Lb0QX47MJY8VP3TFeBzXX2wfZn0LgEy0WF1lzWmhvFt3LrmFzfKq9acTgAxy2qJrsd0K7yIsoqcJ5EejqkfD2%2Bu3TeLDZNK%2Fk8MKTYe4WdWTBdS5l6U%2FdeFnYVhzOrEZOYJ6gU2pU1Fa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76ee0b6d9a75b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.elmersity.com/?wc-ajax=get_refreshed_fragments
144.91.88.248200 OK 168 B URL HTTP/2 www.elmersity.com/?wc-ajax=get_refreshed_fragments
IP 144.91.88.248:0
File type JSON data\012- , ASCII text, with very long lines (304), with no line terminators
Hash 1a3149029e845082f7d8bd085399df02
c113011ed0e5ba2fbe0ce23564c03d244eb93b10
8e635c7adea8331d7cfd743847eab47d2cc197a3b7b0ea6634c2e28525cc0264
Analyzer Verdict Alert fortinet Phishing
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://www.elmersity.com
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/8.0.15
pragma: no-cache
access-control-allow-origin: https://www.elmersity.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
content-type: application/json; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 168
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Nov 2022 00:31:58 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.elmersity.com/wp-includes/js/backbone.min.js?ver=1.4.1
144.91.88.248200 OK 0 B URL HTTP/2 www.elmersity.com/wp-includes/js/backbone.min.js?ver=1.4.1
IP 144.91.88.248:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/backbone.min.js?ver=1.4.1 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 07:24:36 GMT
etag: "5d28-6379d634-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7691
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.7
144.91.88.248200 OK 0 B URL HTTP/2 www.elmersity.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.7
IP 144.91.88.248:0
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.7 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 08:11:30 GMT
etag: "63b18-6379e132-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 102099
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?display=swap&family=Roboto:wght@300;400
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?display=swap&family=Roboto:wght@300;400
IP 142.250.74.10:0
GET /css2?display=swap&family=Roboto:wght@300;400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.elmersity.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Nov 2022 00:31:56 GMT
date: Thu, 24 Nov 2022 00:31:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.elmersity.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.7
144.91.88.248200 OK 0 B URL HTTP/2 www.elmersity.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.7
IP 144.91.88.248:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.7 HTTP/1.1
Host: www.elmersity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elmersity.com/public/aNf1Tq7fcPPeyKM586jBHZueSoX3aSXW
Connection: keep-alive
Cookie: _learn_press_session_ad4c38e4735d68a86d5927532d21fb76=904ded6bdab327365ac5c72021de3a0f%7C%7C1669422714%7C%7C57de274083f8e470b0874d2f93d70d71; PHPSESSID=bnc1h3lgq1cch4afrkckvco9lf; _wordpress_lp_guest=461ba296b7b820cec362338e1bc8c73d; pmpro_visit=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Fri, 24 Nov 2023 00:31:56 GMT
content-type: application/x-javascript
last-modified: Sun, 20 Nov 2022 08:11:30 GMT
etag: "285db-6379e132-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 59937
date: Thu, 24 Nov 2022 00:31:56 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
X-Firefox-Spdy: h2