Overview

URLhbmonte.com/wp-includes/rest-api/endpoints/netflix/Login
IP 162.241.230.119 (United States)
ASN#46606 UNIFIEDLAYER-AS-1
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-27 03:25:20 UTC
StatusLoading report..
IDS alerts0
Blocklist alert38
urlquery alerts No alerts detected
Tags None

Domain Summary (13)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-26 05:33:20 UTC 34.102.187.140
hbmonte.com (58) 0 2018-05-05 15:18:27 UTC 2022-11-27 02:11:09 UTC 162.241.230.119 Unknown ranking
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-26 05:33:16 UTC 34.117.237.239
e1.o.lencr.org (2) 6159 No data No data 23.36.76.226
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 52.41.201.177
oqwih.winprizesplace.info (1) 0 2022-11-01 04:15:19 UTC 2022-11-26 10:19:23 UTC 104.21.31.91 Unknown ranking
r3.o.lencr.org (8) 344 No data No data 23.36.77.32
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-11-26 07:22:52 UTC 142.250.74.10
cdnjs.cloudflare.com (4) 235 2015-04-17 20:46:33 UTC 2022-11-26 09:48:30 UTC 104.17.25.14
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
fonts.gstatic.com (1) 0 2014-09-09 00:40:21 UTC 2022-11-26 10:10:14 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-27 2 hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login Malware
2022-11-27 2 hbmonte.com/wp-includes/css/dist/block-library/style.min.css?ver=5.7.8 Malware
2022-11-27 2 hbmonte.com/wp-content/plugins/essential-grid/public/assets/css/settings.cs (...) Malware
2022-11-27 2 hbmonte.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.cs (...) Malware
2022-11-27 2 hbmonte.com/wp-content/themes/fwrd/css/fancybox.css?ver=5.7.8 Malware
2022-11-27 2 hbmonte.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.5.1 Malware
2022-11-27 2 hbmonte.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/buil (...) Malware
2022-11-27 2 hbmonte.com/wp-content/themes/fwrd/classic-menu/css/classic.css?ver=5.7.8 Malware
2022-11-27 2 hbmonte.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?v (...) Malware
2022-11-27 2 hbmonte.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 Malware
2022-11-27 2 hbmonte.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-ad (...) Malware
2022-11-27 2 hbmonte.com/wp-content/plugins/iron-music/js/ironMusic.js?ver=5.7.8 Malware
2022-11-27 2 hbmonte.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ve (...) Malware
2022-11-27 2 hbmonte.com/wp-content/plugins/iron-music/js/objectFittPolyfill.min.js?ver=1 Malware
2022-11-27 2 hbmonte.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.4.4 Malware
2022-11-27 2 hbmonte.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.mi (...) Malware
2022-11-27 2 hbmonte.com/wp-content/themes/fwrd/js/utilities.js Malware
2022-11-27 2 hbmonte.com/wp-content/themes/fwrd/js/jquery.parallax.js Malware
2022-11-27 2 hbmonte.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6.1 Malware
2022-11-27 2 hbmonte.com/wp-content/themes/fwrd/js/barba.min.js Malware
2022-11-27 2 hbmonte.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front (...) Malware
2022-11-27 2 hbmonte.com/wp-content/themes/fwrd/js/plugins.all.min.js Malware
2022-11-27 2 hbmonte.com/wp-content/themes/fwrd/js/iron-parallax.js Malware
2022-11-27 2 hbmonte.com/wp-content/themes/fwrd/classic-menu/js/classic.js?ver=5.7.8 Malware
2022-11-27 2 hbmonte.com/wp-content/plugins/iron-music/js/countdown/jquery.plugin.min.js Malware
2022-11-27 2 hbmonte.com/wp-content/plugins/iron-music/js/countdown/jquery.countdown.min.js Malware
2022-11-27 2 hbmonte.com/wp-content/themes/fwrd/js/iron-audioplayer.js Malware
2022-11-27 2 hbmonte.com/wp-content/plugins/iron-music/js/twitter/jquery.tweet.min.js Malware
2022-11-27 2 hbmonte.com/wp-includes/js/wp-embed.min.js?ver=5.7.8 Malware
2022-11-27 2 hbmonte.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.15 Malware
2022-11-27 2 hbmonte.com/wp-content/plugins/essential-grid/public/assets/font/fontello/c (...) Malware
2022-11-27 2 hbmonte.com/wp-content/themes/fwrd/js/main.js Malware
2022-11-27 2 hbmonte.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscre (...) Malware
2022-11-27 2 hbmonte.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6.1 Malware
2022-11-27 2 hbmonte.com/wp-content/themes/fwrd/fonts/fontawesome-webfont.woff2?v=4.7.0 Malware
2022-11-27 2 hbmonte.com/wp-content/themes/fwrd/js/assets/default.wav Malware
2022-11-27 2 hbmonte.com/?wc-ajax=get_refreshed_fragments Malware
2022-11-27 2 oqwih.winprizesplace.info/ndhrkdds.js Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 162.241.230.119
Date UQ / IDS / BL URL IP
2023-01-09 12:56:29 +0000 0 - 6 - 0 pandaidx.com/ 162.241.230.119
2022-11-27 03:25:20 +0000 0 - 0 - 38 hbmonte.com/wp-includes/rest-api/endpoints/ne (...) 162.241.230.119
2022-11-23 20:03:20 +0000 0 - 0 - 28 bardasht.org.pk/ 162.241.230.119
2022-09-20 15:33:26 +0000 0 - 0 - 1 orgobootcamp.com/.privatkunden.html-vr 162.241.230.119
2022-09-15 05:35:25 +0000 0 - 0 - 2 thevisonllc.com/ 162.241.230.119


Last 5 reports on ASN: UNIFIEDLAYER-AS-1
Date UQ / IDS / BL URL IP
2023-01-28 11:00:19 +0000 0 - 1 - 3 js-hurling.com/webcpcontent/webcontenthdt.exe 192.185.113.96
2023-01-28 10:59:32 +0000 0 - 0 - 6 tuffftiff.com/404/Bofa/verify.php 162.241.169.27
2023-01-28 10:59:04 +0000 0 - 0 - 3 e-orderinghk.com/stleo.exe 50.87.177.163
2023-01-28 10:56:17 +0000 0 - 0 - 1 assura.jadecreative.co.nz/wire/nsc/r3m/kcd/cn (...) 192.185.162.33
2023-01-28 10:54:59 +0000 0 - 0 - 2 datarenty.com/dpllgkm.exe 192.185.28.7


Last 1 reports on domain: hbmonte.com
Date UQ / IDS / BL URL IP
2022-11-27 03:25:20 +0000 0 - 0 - 38 hbmonte.com/wp-includes/rest-api/endpoints/ne (...) 162.241.230.119


No other reports with similar screenshot

JavaScript

Executed Scripts (48)

Executed Evals (1)
#1 JavaScript::Eval (size: 203) - SHA256: 1ad253873eeeb949c8e845b111d86dd2c00c352a431b765fe927f6a41873390f
$('h5').each(function() {
    $(this).html($(this).html().replace(/(\�)/g, '<span style="font-size: 0.3em; vertical-align: super; font-weight: 300;   margin-left: -0.5em;">�</span>'));
});

Executed Writes (2)
#1 JavaScript::Write (size: 52) - SHA256: 588b76a9b1105baaf542f84c3c315313f9fdf8a56b2fa463d04f1fe95cd52485
< div id = "em"
style = "width:100em;height:10px;" > < /div>
#2 JavaScript::Write (size: 204) - SHA256: 7a483044b64ec096e3741c123b19742f25bad156cb9dacd7d063c1e47aee9974
< script > window.onload = function() {
    var em = document.getElementById("em");
    window.onresize = function() {
        if (parent.jQuery.onFontResize) {
            parent.jQuery.onFontResize.trigger(em.offsetWidth / 100);
        }
    }
}; < /script>


HTTP Transactions (88)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4681
Expires: Sun, 27 Nov 2022 04:43:10 GMT
Date: Sun, 27 Nov 2022 03:25:09 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6146
Cache-Control: max-age=118105
Date: Sun, 27 Nov 2022 03:25:09 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 12:13:34 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 03:19:20 GMT
cache-control: public,max-age=3600
age: 349
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    d130218d0e2841f39c99610fe1a2ab90
Sha1:   29fbe1e177ee55c7a61ae0a206afff271cf5f945
Sha256: 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7474
Expires: Sun, 27 Nov 2022 05:29:43 GMT
Date: Sun, 27 Nov 2022 03:25:09 GMT
Connection: keep-alive

                                        
                                            GET /wp-includes/rest-api/endpoints/netflix/Login HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 27 Nov 2022 03:25:08 GMT
Server: nginx/1.21.6
Content-Length: 8984
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Server-Cache: true
X-Proxy-Cache: HIT


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1820), with CRLF, LF line terminators
Size:   8984
Md5:    da788f8f27e7c0d612804bc7e0aa670e
Sha1:   b71a1cd09a7d6cba46995d9a6bbd53ef85a88581
Sha256: f881bfeec37e5c8dcbe00313a33290c67de220b1fb33389c517a7b1c7afed7a5

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: AVsv73Gj/XhmMoB+eO9ElW34hLs5WxwH/2wMVMxMqQxaKe61MEFJGQCKbFFslsv0YBP2NMBU+U4=
x-amz-request-id: EFE14X06ZC6G2PT4
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 02:44:28 GMT
age: 2441
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sun, 27 Nov 2022 03:25:09 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /css?family=Josefin+Sans%3A400%2C600%2C700%7COpen+Sans%3A300%2C300italic%2C400%2C600%2C600italic%2C700&subset=latin%2Clatin-ext&ver=5.7.8 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/

search
                                         142.250.74.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 27 Nov 2022 03:25:09 GMT
Date: Sun, 27 Nov 2022 03:25:09 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   980
Md5:    fef08286bedd7aa4b6884bf4e93c406c
Sha1:   a0ab649903857ab4a18e97765755d6409b74025a
Sha256: 7973005c0fd5c083b9081277218864c0bacf122f23f2c20e7fb0e6a5acda2a0d
                                        
                                            GET /ajax/libs/velocity/1.4.3/velocity.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/

search
                                         104.17.25.14
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Sun, 27 Nov 2022 03:25:09 GMT
Content-Length: 16064
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=30672000
Content-Encoding: gzip
ETag: "5eb0401a-ad85"
Last-Modified: Mon, 04 May 2020 16:17:30 GMT
cf-cdnjs-via: cfworker/kv
Cross-Origin-Resource-Policy: cross-origin
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
CF-Cache-Status: MISS
Expires: Fri, 17 Nov 2023 03:25:09 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hfo91fBoUcstTrCCwxZ7LQEIt%2FYjZ2rmwkeMevpNuqcgKYzP9XpW800XxFm793qLyYFtMwP%2FseKNE%2Bqg991C9z37ELFAAiiWnvy4l3vfZ3G%2FfFxxw0YRdM7eKbMCpysTHsGTG46F"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7707c148dc0eb524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400


--- Additional Info ---
Magic:  ASCII text, with very long lines (32012)
Size:   16064
Md5:    abbb62e43cf961f2820d07ce32d8ac79
Sha1:   9bd6d48935b17f36ad9f4780070989305389c1ec
Sha256: f8200fa79e819dc58a6e1c7ac17d7a1735b012cb7f7833836c6210f9bc4c4b1e
                                        
                                            GET /ajax/libs/wavesurfer.js/1.2.8/wavesurfer.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/

search
                                         104.17.25.14
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Sun, 27 Nov 2022 03:25:09 GMT
Content-Length: 7772
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=30672000
Content-Encoding: gzip
ETag: "5eb0402f-74fa"
Last-Modified: Mon, 04 May 2020 16:17:51 GMT
cf-cdnjs-via: cfworker/kv
Cross-Origin-Resource-Policy: cross-origin
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
CF-Cache-Status: MISS
Expires: Fri, 17 Nov 2023 03:25:09 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8EljbfRVVg7EKtrcdEwCC73vz4aByehWr%2BpldP5XREoOJ%2BWUCvT7SqAAnTD0hv5dGLcOG7MPN6u1snVM5AMkXXwcFKwlNBpfzGqmG1tX0wAXLkoSfZegjuoYyFF3M4qtsSjbwTcY"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7707c148dceeb4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400


--- Additional Info ---
Magic:  ASCII text, with very long lines (29778)
Size:   7772
Md5:    5d1df53c896b1f168d58f862bd3b3b5b
Sha1:   3030979ac23a08c17037b92554cf261eb4607b74
Sha256: 15461a618588c4d86f65594790665cc948080eb737832d1f7be0f6c6135ec5b3
                                        
                                            GET /ajax/libs/moment.js/2.11.2/moment.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/

search
                                         104.17.25.14
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Sun, 27 Nov 2022 03:25:09 GMT
Content-Length: 14116
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=30672000
Content-Encoding: gzip
ETag: "5eb03f26-9f21"
Last-Modified: Mon, 04 May 2020 16:13:26 GMT
cf-cdnjs-via: cfworker/kv
Cross-Origin-Resource-Policy: cross-origin
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
CF-Cache-Status: MISS
Expires: Fri, 17 Nov 2023 03:25:09 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oepq7aBGrXY%2FU5GWYE%2Ff9yPDmePcfEb2khalydz6pqKvTkBL6CESOMcVI039LQbw6oWA4gqYhkCM5St5IN6zoa6QW12KRjPp6JllGWPMNOGdIuRbEg7LSHH%2BtN4iUcOyVqWeprpr"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7707c148dc18b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400


--- Additional Info ---
Magic:  ASCII text, with very long lines (32015)
Size:   14116
Md5:    385a34e5a9783c3b260753c4fe5f6b56
Sha1:   d435834ec67fd829b401a22651267e9380b33aaf
Sha256: 0826a3791dd0a80b407793b611183190fd2b9a189af609a1cc0394693c08e51a
                                        
                                            GET /ajax/libs/animejs/2.0.0/anime.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/

search
                                         104.17.25.14
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Sun, 27 Nov 2022 03:25:09 GMT
Content-Length: 4808
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=30672000
Content-Encoding: gzip
ETag: "5eb03d2a-2a9a"
Last-Modified: Mon, 04 May 2020 16:04:58 GMT
cf-cdnjs-via: cfworker/kv
Cross-Origin-Resource-Policy: cross-origin
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
CF-Cache-Status: MISS
Expires: Fri, 17 Nov 2023 03:25:09 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P5tPgZgGAV5ZEQvzYOXuckddqW8EwvQxSUc9YBzTy0deUXp8glQT5eiuxrPisTpZk6VloAq3Q3pD2khbxo5thBxkLDlJ5X9U04NMxHXR3IizZMpB8JlmFxhrX60euSFf04bFqvmk"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7707c148db0e0afa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400


--- Additional Info ---
Magic:  ASCII text, with very long lines (525)
Size:   4808
Md5:    fae7ed0dba452ac4e853df4f8512832c
Sha1:   13be197d6a25ba8c6714ad57596f31d0ca3b00e1
Sha256: ceab786e2de22919b56ca8480e745b7e9229021909f8a34f0135f7cff03cd2a7
                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.4.3 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 03:25:09 GMT
Server: Apache
Last-Modified: Fri, 13 May 2022 17:40:20 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 1637


--- Additional Info ---
Magic:  ASCII text, with very long lines (4933), with no line terminators
Size:   1637
Md5:    971cfc62ecc92ebe1174a2c80671a10f
Sha1:   86989b6ba38041063eab75516aa10bfc3fc9a55f
Sha256: e51fd87d27a0dedfe4afb52aab0d8708d369be1e16ff09b90245c145bd8847ba
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=5.7.8 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 03:25:09 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Thu, 15 Apr 2021 05:54:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 11763


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (29677)
Size:   11763
Md5:    6539ab5ee2e6ce41ce90332ae53a59cf
Sha1:   9b382f6e6fcc1ad15c0cc5964be243a1eeda4418
Sha256: 162eefc63d682dd03fc355b58332614c5a0f701d57d7c899cc76326eaa2136f8

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=2.3.6.1 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Thu, 20 Aug 2020 05:46:01 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 8425


--- Additional Info ---
Magic:  ASCII text, with very long lines (33230), with no line terminators
Size:   8425
Md5:    26448e34aeb9208575e55af095e5727f
Sha1:   e122c4fbaf66085275630341afa59e6b25e1afd9
Sha256: d28eb9983475f0ff8e399dc861719842ec2fa5eb6f99af96daf5bcd5e55182ad

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.5.1 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Fri, 13 May 2022 17:40:21 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 3086


--- Additional Info ---
Magic:  ASCII text, with very long lines (17809), with no line terminators
Size:   3086
Md5:    97f3e7860b3e0d99f3c0327b0045363a
Sha1:   885af5049143e765b7fd0f3a0a860613b05d12d1
Sha256: ff05d291dd422f8bee80e816eb1480c67fb3e0d6071bebd8f04c86de87a70080

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/fwrd-child/style.css?ver=5.7.8 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Last-Modified: Wed, 15 Jul 2015 10:48:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 367


--- Additional Info ---
Magic:  ASCII text
Size:   367
Md5:    74df83b05378b4be5264459c29761be0
Sha1:   7a9fb5e1d4863b5eaa03bd095bd61f4d537e0ebd
Sha256: b6462753fa460879b3fd4b21a38078dc22b9dc2bd800970efb8d7d4eaa4b6e4d
                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "5D1C46B8FC61938A0765A77914170E7E4658F046C78EFC211AA5D0900C9EFEC8"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8455
Expires: Sun, 27 Nov 2022 05:46:05 GMT
Date: Sun, 27 Nov 2022 03:25:10 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/themes/fwrd/css/fancybox.css?ver=5.7.8 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Last-Modified: Thu, 30 Jan 2020 12:01:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 1469


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1469
Md5:    52552ddcd7bb23b05408da323ec65a7b
Sha1:   d4b61acf66f25d6edae54c6b07dca79f05294ec2
Sha256: 416b958a3f6db39d596d32be69392e4264787cf6fc4f8073e4c280e10d70e7d0

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 03:11:12 GMT
cache-control: public,max-age=3600
age: 838
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /wp-content/themes/fwrd/css/font-awesome.min.css?ver=5.7.8 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Last-Modified: Thu, 30 Jan 2020 12:01:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 7120


--- Additional Info ---
Magic:  ASCII text, with very long lines (30837), with CRLF line terminators
Size:   7120
Md5:    fc92ffe8507c687546f0378486b3a75f
Sha1:   f76617639495439cc9ef3511e5a3e5f22ed78756
Sha256: 048b20985cfaf9fd74f91f33b0ba8ccfc7e5582064f20f233421c742d3d4b021
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.5.1 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Fri, 13 May 2022 17:40:21 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 13255


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (62753), with no line terminators
Size:   13255
Md5:    ebad0134e03078f66fa63f2a89d17d81
Sha1:   bccc743a9a5d015e06c7f622b4687142b2cd2fe5
Sha256: 42e7dbb97a0b72fa2bc44035d713982a7ff653cb63c0a7ef09e1fd4fe69c4d14

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/fwrd/style.css?ver=5.7.8 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2020 11:37:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  Nim source code, Unicode text, UTF-8 text, with CRLF line terminators
Size:   60283
Md5:    1f7d451c434f379efe0d074c7c44b513
Sha1:   d461a382504905aeadad357b8b5d94e5a6f53b29
Sha256: 8374d7ea7a9696b94f36c61e02673d55ed7df4712b57f8c0a79c1a8a25767e03
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5978
Cache-Control: 'max-age=158059'
Date: Sun, 27 Nov 2022 03:25:10 GMT
Last-Modified: Sun, 27 Nov 2022 01:45:33 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "5D1C46B8FC61938A0765A77914170E7E4658F046C78EFC211AA5D0900C9EFEC8"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8455
Expires: Sun, 27 Nov 2022 05:46:05 GMT
Date: Sun, 27 Nov 2022 03:25:10 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.4.3 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Fri, 13 May 2022 17:40:20 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size:   43941
Md5:    be4d656496676d138faaa5a9bf320cd9
Sha1:   bff15ecbaff5d2959785da5430cae4a5ed7ce7b9
Sha256: 411adbb734d6fc1e65a42803e30ff0f233c34703c1c24316da4db3b05bc411d3

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A5613600404CEDFC810E5A3AA88F2B2A3B98A6057ECEBB1A082F170AFB4B7C44"
Last-Modified: Fri, 25 Nov 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21581
Expires: Sun, 27 Nov 2022 09:24:51 GMT
Date: Sun, 27 Nov 2022 03:25:10 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "7687C7FF47269F8316D0D214F5E7FD8719B5506515A5319FA6E785CFE30B0BC1"
Last-Modified: Sun, 27 Nov 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21525
Expires: Sun, 27 Nov 2022 09:23:55 GMT
Date: Sun, 27 Nov 2022 03:25:10 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/themes/fwrd/classic-menu/css/classic.css?ver=5.7.8 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Last-Modified: Thu, 30 Jan 2020 12:01:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 2892


--- Additional Info ---
Magic:  ASCII text, with very long lines (684), with CRLF line terminators
Size:   2892
Md5:    4f524a80681671cf9bb6f4199420ace9
Sha1:   31bd5d2a24046f957a92ac910c33c57317fbd807
Sha256: 9c19deb48cb4dcedf94cae6dae88cd7e9a81c3d247d08c65391cced73c27647e

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "7687C7FF47269F8316D0D214F5E7FD8719B5506515A5319FA6E785CFE30B0BC1"
Last-Modified: Sun, 27 Nov 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21589
Expires: Sun, 27 Nov 2022 09:24:59 GMT
Date: Sun, 27 Nov 2022 03:25:10 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/themes/fwrd/css/page-banner.css HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Last-Modified: Thu, 30 Jan 2020 12:01:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 630


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   630
Md5:    17885466fdac621e88219d88c1ba62e5
Sha1:   ca4b65903c30dce0f0e6ac4f85b7526a328f1577
Sha256: 7d98842b2e7cfc539f1cdc09e40850e028229b7a88870c3f47b749e760b9c1e9
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "7687C7FF47269F8316D0D214F5E7FD8719B5506515A5319FA6E785CFE30B0BC1"
Last-Modified: Sun, 27 Nov 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21544
Expires: Sun, 27 Nov 2022 09:24:14 GMT
Date: Sun, 27 Nov 2022 03:25:10 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/themes/fwrd/css/iron-audioplayer.css?ver=5.7.8 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Last-Modified: Thu, 30 Jan 2020 12:01:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 2581


--- Additional Info ---
Magic:  ASCII text, with very long lines (10616), with CRLF line terminators
Size:   2581
Md5:    3751ad9254d58b932d7969df2eb20d7a
Sha1:   7c71b7911233c023020b515f28b34c8bbe3f74c0
Sha256: 539c5b37caeb4a5570e6ccc4cda9ba210921658caad388b83f0789b0a6c9ce0e
                                        
                                            GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.2.0 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Last-Modified: Thu, 20 Aug 2020 05:46:13 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (65358)
Size:   61902
Md5:    5e46eb3642d17a64484757a732f199eb
Sha1:   6096e5c5f4df6f67845e0e05e687278fd3a46716
Sha256: 0fb52ae1db1343b3e1e91ddd40f8b1319d4e5e2069ec21f69f6bb9d222f0c27b

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.5.1 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Last-Modified: Sun, 14 Mar 2021 16:26:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (65451)
Size:   39076
Md5:    42e9fa1757bc5326671ba7eae0acd9ed
Sha1:   67aef482c8b9b09528525d6388e4c3ef1fc711c7
Sha256: 09d42875fc76ec41061a4cae4e26c6e7e043bc7934ab7cf8184801d5c754ee38
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Last-Modified: Sun, 14 Mar 2021 16:26:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 4618


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   4618
Md5:    acdb97105af28a7066790c6748ae2e1e
Sha1:   65794d2c5a9d04f747faf370bc8bacd330e69e5a
Sha256: dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.5.1 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Last-Modified: Fri, 13 May 2022 17:40:21 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 3957


--- Additional Info ---
Magic:  ASCII text, with very long lines (9139)
Size:   3957
Md5:    5f3c95f97f566ce33b859d6b874d116d
Sha1:   e47be9178d33d8d8eefda83c853b560aaed71413
Sha256: a0cea478b83a24f0c90bfaf776ed62fe8747395838a92d8c9f06ceb79b3e5918
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.5.1 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Last-Modified: Fri, 13 May 2022 17:40:21 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 1200


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (3037), with no line terminators
Size:   1200
Md5:    57b5945094a547e06221f8f949e6d335
Sha1:   76fc7361f00684ea29ffbf4b7d46e5429b8c245a
Sha256: f9d0da987075df31cc4cf8aed46bc193467ce7165568d83c8016e6fe904e72c3
                                        
                                            GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.2.0 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Last-Modified: Thu, 20 Aug 2020 05:46:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 372


--- Additional Info ---
Magic:  ASCII text
Size:   372
Md5:    0507d06596355ea2efd09bb9c5b0e46c
Sha1:   9ae0e8f7847222b09264ada703c182fd89011126
Sha256: fefb5c10a704ffcb6c905a785ec2af387ff7169dbe548fa4784cc5782797d4c2

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JyYgmWR8qTJpKtx4mg3kXQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         52.41.201.177
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EYHPaDmA+FsOJkXcMF6jQzh8FaQ=

                                        
                                            GET /?display_custom_css=css&ver=5.7.8 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hbmonte.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         162.241.230.119
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Sun, 27 Nov 2022 03:25:10 GMT
server: Apache
content-length: 519
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-server-cache: true
x-proxy-cache: HIT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   519
Md5:    603f46b2f24a7d7d46111e98a84253a3
Sha1:   81884506851c3cd18a5a0a9fad53286ee7c64363
Sha256: 26db5c7f075b086127185d33cc54618d0af0d2abbc862096df62a7fc49c5a07f
                                        
                                            GET /wp-content/plugins/iron-music/js/ironMusic.js?ver=5.7.8 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Last-Modified: Thu, 20 Aug 2020 05:46:05 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 788


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   788
Md5:    a65f42ef42287301e26889b5bda7c0b3
Sha1:   d9cfdb7d65ae4e01c679da3341bb66ac624a9dd7
Sha256: 1195660be8bf00699a727c56f8a3efc645f0653f78ea8c7e5a2eab39a9acdead

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.15 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Last-Modified: Thu, 20 Aug 2020 05:46:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (41022), with CRLF line terminators
Size:   55035
Md5:    ea22a63a115112c3f278e1a3873eae92
Sha1:   a5acf5223509ded3f432c8b8cfa5f2d1c30e7e87
Sha256: 07f070f32ba73c9cd4a35f5d6d3f3ee55a94adf5483408b30ae44181991a2949

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/iron-music/js/objectFittPolyfill.min.js?ver=1 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Last-Modified: Thu, 20 Aug 2020 05:46:05 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 1131


--- Additional Info ---
Magic:  ASCII text, with very long lines (2660), with no line terminators
Size:   1131
Md5:    71e602fe10ed7ca7bd4573749103638e
Sha1:   0d18e90b3c03faba1a75ed444404e9fd6f9b7e5b
Sha256: 37ddca121ac61ac8e36c28e2b4403996e72ebefa3dc53dd9d6fcb784ef59b986

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.4.4 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Last-Modified: Thu, 20 Aug 2020 05:44:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (34729), with NEL line terminators
Size:   41870
Md5:    91b91e83fb0250b824b8c2e5a8856131
Sha1:   8f8eed572c0212659299c663deb5d78fa75f8969
Sha256: 79379170e07b70895b22058df39eec6194f34dfeccc8bcc1a215c06a99c4b189

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.5.1 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Last-Modified: Fri, 13 May 2022 17:40:20 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 1000


--- Additional Info ---
Magic:  ASCII text, with very long lines (1668)
Size:   1000
Md5:    0bebfb5722cbc8ac04e62aa40698be49
Sha1:   3bc5e4f29cb19a2d80d46dee242dabf7e42c0fd3
Sha256: 70d02eabbadbe176455a2bb53d8d567feca69847c067a5274987a8bdc65e3c05

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.5.1 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Last-Modified: Fri, 13 May 2022 17:40:21 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 792


--- Additional Info ---
Magic:  ASCII text, with very long lines (2139), with no line terminators
Size:   792
Md5:    1ca3f41c13e0027acc45f0601f8b640f
Sha1:   cced34af0c6a59e9cee4229faa66ab39c7031506
Sha256: d3bc5eaf4c6be9473dbba690825cce9a1a6f4accb6721dae7875efef54942f41
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.15 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Last-Modified: Thu, 20 Aug 2020 05:46:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (56675)
Size:   109683
Md5:    33911807eb67f123d790fc3f8637095f
Sha1:   ba041d6f0fbc6c62b2cbc74d55c74e899c20728d
Sha256: 5c87865275b980eabb8c93491c26e4e6d11face5fb13006a332e437971f828e7
                                        
                                            GET /wp-content/themes/fwrd/js/utilities.js HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:11 GMT
Server: Apache
Last-Modified: Thu, 30 Jan 2020 12:01:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document, ASCII text, with CRLF line terminators
Size:   20188
Md5:    6f6187f4258afa026bdee0276d362458
Sha1:   c7ce1a5cfaeb0c62b009aed5dd9d1832cf5b64b7
Sha256: 601e87260a3600c463e20db72c4295094a127b1aad52f3b00a082573be2ef5ba

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/fwrd/js/jquery.parallax.js HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:11 GMT
Server: Apache
Last-Modified: Thu, 30 Jan 2020 12:01:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 925


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   925
Md5:    bed0d314d8663c78148d90a3d679e6f0
Sha1:   c490dd70ec7aa1b916fd3e94fecb69ef5faa5fa2
Sha256: 977d592b432d2047d18f6538b350dfca46463197cac8f8758a06575366c1c12c

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6.1 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 409 Conflict
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sun, 27 Nov 2022 03:25:10 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document, ASCII text, with no line terminators
Size:   83
Md5:    26267cd8990f15d3bbea71684a6d5995
Sha1:   ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
Sha256: 769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/fwrd/js/barba.min.js HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:11 GMT
Server: Apache
Last-Modified: Thu, 30 Jan 2020 12:01:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 4880


--- Additional Info ---
Magic:  ASCII text, with very long lines (12563), with no line terminators
Size:   4880
Md5:    dec89119f65fe92ced45fbb47d320ace
Sha1:   b1f29044a5d365ace15525d921c102fcdf833b7a
Sha256: cf15b59ebbc8073cb25b733ca8eb4e6b514b5415ba3123681a108521f62be049

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/underscore.min.js?ver=1.8.3 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:11 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 05:54:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 6378


--- Additional Info ---
Magic:  ASCII text, with very long lines (16010)
Size:   6378
Md5:    96bea734708712077251c5329641f1c6
Sha1:   5a37dc74b5532c8905fd02a17771199e78d1d880
Sha256: a1e8bb45168c7805dd39f1e2fdecda8f10e30132f9d935841c063281be341e4a
                                        
                                            GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.2.0 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:11 GMT
Server: Apache
Last-Modified: Thu, 20 Aug 2020 05:46:13 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 7279


--- Additional Info ---
Magic:  ASCII text, with very long lines (20378)
Size:   7279
Md5:    91b65cf0bd6608fbcf08d4852a3be992
Sha1:   08c5b6c535209e69fd1b35819ea5b037a68fddc1
Sha256: 4c3dd42b8dd99acefef76ddd18b290ab3f93a37875947e93a7a315fca91db3c2

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/fwrd/js/plugins.all.min.js HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:11 GMT
Server: Apache
Last-Modified: Thu, 30 Jan 2020 12:01:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (29738), with CRLF line terminators
Size:   73684
Md5:    39af23a158d9718be2c5d3ea0a69e5dd
Sha1:   a0b65b746e5a88ecc1b09ec009b24e3fd7d35405
Sha256: 73a33649f32fc244a8afb7e6cc2a6b681aedf7bb1130dfeedb082bee14e3e56f

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/fwrd/js/iron-parallax.js HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:11 GMT
Server: Apache
Last-Modified: Thu, 30 Jan 2020 12:01:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 352


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   352
Md5:    85c50fa1aa6c2f419fb55b138045996c
Sha1:   1b13712a0f1e54c3088b9ad28f8331e40e86b48e
Sha256: 8acc2a52059bc7ce7e08ac412fdcaf169d8dcff717024d6110867a4f9d8c6de8

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/fwrd/classic-menu/js/classic.js?ver=5.7.8 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:11 GMT
Server: Apache
Last-Modified: Tue, 12 May 2020 11:09:14 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 2947


--- Additional Info ---
Magic:  ASCII text, with very long lines (338), with CRLF line terminators
Size:   2947
Md5:    4cf01fd371e2c04e86f085f9ea951c06
Sha1:   899e7fde10ea8bb045dd7866c60ab3b0c99c475c
Sha256: dcdee9c3fe9a40ff1b6715d2b77a390fc057bbb7aa8f8a8cde6fb6cf3052d46d

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/iron-music/js/countdown/jquery.plugin.min.js HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:11 GMT
Server: Apache
Last-Modified: Thu, 20 Aug 2020 05:46:05 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 1414


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (2986)
Size:   1414
Md5:    5554cb5473ed8112237a9d68d295f8f5
Sha1:   424876a9d5bda339b489f1db460ad6e3d9e21caa
Sha256: bd20df48800794e66275d9e6129d80669bdd7b99655a8ec155cf359f76487cb4

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/iron-music/js/countdown/jquery.countdown.min.js HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:11 GMT
Server: Apache
Last-Modified: Thu, 20 Aug 2020 05:46:05 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 5210


--- Additional Info ---
Magic:  ASCII text, with very long lines (13647)
Size:   5210
Md5:    f7ca406907c1677375e746667eae30e7
Sha1:   be35116b8c344604f939515dcc4087e5c8eb6bbf
Sha256: ea3a8c9447daf81f963d38b62f80877d1fd0deed43bb3fadb876c88988b97a46

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/fwrd/js/iron-audioplayer.js HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:11 GMT
Server: Apache
Last-Modified: Thu, 30 Jan 2020 12:01:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 2493


--- Additional Info ---
Magic:  ASCII text, with very long lines (392), with CRLF line terminators
Size:   2493
Md5:    dc0898c66133c9fa041984ce6e00d0f1
Sha1:   e8bebe5644d5353d44fa891b8dca418e43675905
Sha256: a88f8827d18fd5d1f5e82ad4884b2fdbd08996656f3ee0a9b5298132385fd37e

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/iron-music/js/twitter/jquery.tweet.min.js HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:11 GMT
Server: Apache
Last-Modified: Thu, 20 Aug 2020 05:46:05 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 5299


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   5299
Md5:    0c5b22a57ce130c31523ee9927078c17
Sha1:   48f194d271846bdce7bcbe34c308895b8ab2539e
Sha256: 96d6fba8ec3d159e6837d84833ebab27aa5e77c3bf11f3ca8ade484b52af9524

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=5.7.8 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:11 GMT
Server: Apache
Last-Modified: Sun, 14 Mar 2021 16:26:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 777


--- Additional Info ---
Magic:  ASCII text, with very long lines (1391)
Size:   777
Md5:    06ece4d01ee88297957c9f4cdcaa4df5
Sha1:   2b3321654a8ead1e1493eac9b5f1fdfb65e2037f
Sha256: 0b17eb6ab02e69f50ac52ca157375bd69853ae4f4796eb48a35eb4a12fc7af8b

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.15 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 03:25:11 GMT
Server: Apache
Last-Modified: Thu, 20 Aug 2020 05:46:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 16800


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Size:   16800
Md5:    dd51edf690a16a5e067a25d8874e8489
Sha1:   10279f3155cb0eaffd55303ec459ef9a41ef0ddb
Sha256: 70eaa58b53a3269fab91ae897a3fc4f6d5ebc17171df2396159e1d3daeee1d40

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=2.3.6.1 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 03:25:11 GMT
Server: Apache
Last-Modified: Thu, 20 Aug 2020 05:46:01 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 2441


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   2441
Md5:    c4793d4c5f37223118865b6a8b93d546
Sha1:   ac6045f732cd75b8218df26ee33bd099aa2fd3bb
Sha256: c4d3046b4ee1e66a3363225cb0ffb5d7d4400c19f15d39d8b2f41c12555c5dc4

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/fwrd/style.css HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-content/themes/fwrd-child/style.css?ver=5.7.8

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 03:25:11 GMT
Server: Apache
Last-Modified: Fri, 14 Aug 2020 11:37:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  Nim source code, Unicode text, UTF-8 text, with CRLF line terminators
Size:   60283
Md5:    1f7d451c434f379efe0d074c7c44b513
Sha1:   d461a382504905aeadad357b8b5d94e5a6f53b29
Sha256: 8374d7ea7a9696b94f36c61e02673d55ed7df4712b57f8c0a79c1a8a25767e03
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=5.7.8 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:11 GMT
Server: Apache
Last-Modified: Sun, 14 Mar 2021 16:26:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 4942


--- Additional Info ---
Magic:  ASCII text, with very long lines (11272)
Size:   4942
Md5:    365a77ff4ecd6f029c81de14e2522c73
Sha1:   2a817a1e1091bdf10e562b746e7e9619ed5ef5d5
Sha256: a46d0e1f9b302519b11da0266586429a4d6eaf6fb2914c29f0e9208f7d2eb355
                                        
                                            GET /wp-content/themes/fwrd/js/main.js HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 03:25:11 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Thu, 30 Apr 2020 06:17:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 13854


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (380), with CRLF line terminators
Size:   13854
Md5:    6c0c0ad0962dbcab9c65ffa97d53997d
Sha1:   256005b7293aff160f3b265e4fd5d67d6904e8aa
Sha256: 8ec21c1636e32fb2952c358b26122c04da3dfcbe40b303ba66a20757fbc36356

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8208
Expires: Sun, 27 Nov 2022 05:41:59 GMT
Date: Sun, 27 Nov 2022 03:25:11 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8207
Expires: Sun, 27 Nov 2022 05:41:59 GMT
Date: Sun, 27 Nov 2022 03:25:12 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57bc6cf-beaa-443b-9756-cf26e4fe3767.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6954
x-amzn-requestid: af6ab88e-884f-4c3f-a2ba-241d8bd04670
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8I_xG2SIAMF3xQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b21fe-573bfad8002144b7637e80f0;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:00:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: icdx5uaiqsWXMMoKgOwAV4sOfVhAw7oLi79yfweIw5_1pTTzI_qm_w==
via: 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 08:41:17 GMT
age: 67435
etag: "4b4a8c8e8aeccfff25d2748720dcef8fed287126"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6954
Md5:    2212cf75f99dc67fd45db47f7101d754
Sha1:   4b4a8c8e8aeccfff25d2748720dcef8fed287126
Sha256: 7b2d2e302faba8f273b51031fa48b444cb7839733b90e8c9d077ca63637320d8
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:37 GMT
age: 20015
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4803
Md5:    cc0a257323f882caff067adb86d906e4
Sha1:   cedf2f21be7cd366bd46055b62b5513db3011dfc
Sha256: c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15290721-a62e-49b8-80c6-967680cff24f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6883
x-amzn-requestid: 9e3878c9-1817-427e-b121-969a8cbc7ad8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cL1ySF0tIAMFY4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638169a8-5143ffea77b70cf67ef60ad7;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 01:19:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: agN3iI99V_lKDGyKTEkZg_jgR8P6nrI53d-fXsHGHkQP55suaCC2xA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 05:30:06 GMT
age: 78906
etag: "590c34be54c9889eec4ff7993e070fda836f711f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6883
Md5:    f7f16c0f8a8e710210ce77c0e4c1c2a2
Sha1:   590c34be54c9889eec4ff7993e070fda836f711f
Sha256: 4224287ba765da59c877ac4f1dec65accc5bec934b7598d9cbbee669ba4ab12e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8817
x-amzn-requestid: 31bd21c7-1d75-4159-af51-52035da16da4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-krGE6AIAMF2Kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c1b13-32a7b9c6642592c70783a0cf;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 00:42:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6v42KU65wdKKPvjE7TRA3Li3o2dvrdPH7oGVDZGPPsAepqFFjQJkkA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 16:15:20 GMT
age: 40192
etag: "308c08784ce4a0757cbd112807555b83e17a1d56"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8817
Md5:    741ddfb19764ac9a77509e7e87cfbfb2
Sha1:   308c08784ce4a0757cbd112807555b83e17a1d56
Sha256: e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa78e81d9-dbc4-4911-9711-219f64026531.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10944
x-amzn-requestid: ed714e4a-0f80-4b2d-ae82-b28d617fe927
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b42xTGpSoAMF9Vw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6379d1a1-1235a4ad16a6bfee50615fbb;Sampled=0
x-amzn-remapped-date: Sun, 20 Nov 2022 07:05:05 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: UzVSiMniBPN9LTEIutLmWn7BZX7d5RWIxtH0H-RpLfIGqdIBTovGMg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 28fdf6e146f70e7372911f118404fb20.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 22:36:11 GMT
age: 17341
etag: "a23fd98701ac35cd8740d1f7a832118c770e20c8"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10944
Md5:    5e586c141835f4ac8819c55dcb811b4d
Sha1:   a23fd98701ac35cd8740d1f7a832118c770e20c8
Sha256: 4296f391f755a649897a2211f9072c69a0510e43a313674908bb0a771b12650e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31dafe91-0b1b-40e9-927c-c01863516712.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9073
x-amzn-requestid: 6cf20b75-6b27-4a34-97a8-017d7169f31b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8JuVHY7IAMFtRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b2328-1ca76b3537613fb26358b8f2;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:05:12 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: lg8rdnHT_ndB-9CMrHcVN8a2xZCubuTEpUQ2m6i77l-NfdNfhfITEQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 cca7d60248a961ff8fc8c5640024b652.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 16:41:41 GMT
age: 38611
etag: "c9a5ab962bfdd174aecd4809d770f0fe305ab8e4"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9073
Md5:    ccb536b51f31391c89fb2abe3be6c749
Sha1:   c9a5ab962bfdd174aecd4809d770f0fe305ab8e4
Sha256: b4b6f70603ab79399aeda1d8b7e8f2662da37b51a2d076b8e754c812b6fa5b47
                                        
                                            GET /?loadIronMusic=iron_feature.css HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hbmonte.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         162.241.230.119
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 589
date: Sun, 27 Nov 2022 03:25:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (306), with CRLF line terminators
Size:   589
Md5:    cce3abf181ea1fbb496f467ae64780f5
Sha1:   9da1bf3aca2d21c586d47b369d3e9af1f5fb0d56
Sha256: f92e71a06e61b46a6c43a9a90ea8573e16bb431cdf64ccf975e241963d03ef16
                                        
                                            GET /?load=custom-style.css&ver=5.7.8 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hbmonte.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         162.241.230.119
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 7231
date: Sun, 27 Nov 2022 03:25:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- assembler source text\012- assembler source, Unicode text, UTF-8 text, with very long lines (326), with CRLF line terminators
Size:   7231
Md5:    6b28d004d9fcb83fad58a9d477b4576b
Sha1:   d75a20ed98d7b5900e02a8f4ac112d0654e94d5a
Sha256: 67c87ef661ad602ed8dec17b6ea54f85fffb81d05715e693024aab30ed881736
                                        
                                            GET /?loadIronMusic=iron_feature_event.css HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hbmonte.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         162.241.230.119
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 580
date: Sun, 27 Nov 2022 03:25:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- assembler source, ASCII text, with CRLF line terminators
Size:   580
Md5:    46c63fa4e987791811c871ace8944a12
Sha1:   ea3919ef41afaf6faf511a46e33453dadd57be89
Sha256: 32f99ced3c5a26d7af477ac7b93f41133d7cde99c874278f13827eb55efe3b3b
                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://hbmonte.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

search
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 21 Nov 2022 21:39:58 GMT
Expires: Tue, 21 Nov 2023 21:39:58 GMT
Cache-Control: public, max-age=31536000
Age: 452715
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size:   44856
Md5:    565ce506190ad3af920b40baf1794cec
Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d
Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.5.1 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 03:25:13 GMT
Server: Apache
Last-Modified: Fri, 13 May 2022 17:40:21 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 1294


--- Additional Info ---
Magic:  ASCII text, with very long lines (7043), with no line terminators
Size:   1294
Md5:    23030da399d26bb36e2effda3c58d488
Sha1:   2480e4b14c65a29b6013515cea8a55a6646aa85a
Sha256: 026d41f0bbec9c4116e05c06d43d3bbae4e9ec0975f84140565760431eaa88d7

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6.1 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 409 Conflict
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sun, 27 Nov 2022 03:25:13 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document, ASCII text, with no line terminators
Size:   83
Md5:    26267cd8990f15d3bbea71684a6d5995
Sha1:   ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
Sha256: 769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/fwrd/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://hbmonte.com/wp-content/themes/fwrd/css/font-awesome.min.css?ver=5.7.8

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Date: Sun, 27 Nov 2022 03:25:13 GMT
Server: Apache
Last-Modified: Thu, 30 Jan 2020 12:01:26 GMT
Accept-Ranges: bytes
Content-Length: 77160
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size:   77160
Md5:    af7ae505a9eed503f8b8e6982036873e
Sha1:   d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
Sha256: 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/fwrd/js/assets/default.wav HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 206 Partial Content
Content-Type: audio/x-wav
                                        
Date: Sun, 27 Nov 2022 03:25:13 GMT
Server: Apache
Last-Modified: Thu, 30 Jan 2020 12:01:26 GMT
Accept-Ranges: bytes
Content-Length: 88244
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Range: bytes 0-88243/88244


--- Additional Info ---
Magic:  RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, mono 44100 Hz\012- data
Size:   88244
Md5:    a365eef99aaa26c0f30e7bcfb68e33ae
Sha1:   1410d8ca05f9281a6d9a44fccd00caccc432fd47
Sha256: a5ae81670a76b0f444d032591de30e58e3cedc7de012a4afd067d1fd729aaf34

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/uploads/2021/03/cropped-hb-2019-facbook-profile2-32x32.jpg HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hbmonte.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.241.230.119
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Sun, 28 Mar 2021 23:43:21 GMT
accept-ranges: bytes
content-length: 18928
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
date: Sun, 27 Nov 2022 03:25:13 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Macintosh), datetime=2019:02:10 16:19:51], baseline, precision 8, 32x32, components 1\012- data
Size:   18928
Md5:    738e08c93f690e71eb36fc1897e8e49b
Sha1:   1034cf76ff46ec2a53037b2135952ba4a5e6bfec
Sha256: 3f2c4a600c882b6474b9d65ecae48e46a21d8911420a83cf8c9ab6b2bda8b432
                                        
                                            GET /wp-content/uploads/2021/03/cropped-hb-2019-facbook-profile2-192x192.jpg HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hbmonte.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.241.230.119
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Sun, 28 Mar 2021 23:43:21 GMT
accept-ranges: bytes
content-length: 28938
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
date: Sun, 27 Nov 2022 03:25:13 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Macintosh), datetime=2019:02:10 16:19:51], baseline, precision 8, 192x192, components 1\012- data
Size:   28938
Md5:    31b4b2dfe829de89d37fb80657a44fcf
Sha1:   ef40f3dc5214a5fd189cfdae265d39657352550d
Sha256: 36d584caa62d4b8ca62cda3e5d233f9c835fe42ff8ff0e82dea6e5df3f6931e4
                                        
                                            GET /wp-content/uploads/2020/08/HB-MONTE_LOGO_white-e1597908966694.png HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 27 Nov 2022 03:25:14 GMT
Server: Apache
Last-Modified: Thu, 20 Aug 2020 07:36:06 GMT
Accept-Ranges: bytes
Content-Length: 13553
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==


--- Additional Info ---
Magic:  PNG image data, 300 x 194, 8-bit/color RGBA, non-interlaced\012- data
Size:   13553
Md5:    c39454aafcbb475d17c744c98ce6edfe
Sha1:   e8e72506dbc926242f87d30c5f597bbfa3a87c1c
Sha256: f3ed676dc7a221562afdae5bbdefdad69f2f2558c87772db559ada1b986fb71b
                                        
                                            POST /?wc-ajax=get_refreshed_fragments HTTP/1.1 
Host: hbmonte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: http://hbmonte.com
Connection: keep-alive
Referer: http://hbmonte.com/wp-includes/rest-api/endpoints/netflix/Login

search
                                         162.241.230.119
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 27 Nov 2022 03:25:13 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 447


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (559), with CRLF line terminators
Size:   447
Md5:    0a2801539f6c9869a776778be61d4c97
Sha1:   6f6ecd00f9986dcf70b0d5858608948d586f6797
Sha256: eb5b821ac13cf4ed6a03e709d6d14c21ac71de0139fbb85f75c31d814ab7c157

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /ndhrkdds.js HTTP/1.1 
Host: oqwih.winprizesplace.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hbmonte.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.21.31.91
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 27 Nov 2022 03:25:10 GMT
last-modified: Wed, 09 Nov 2022 23:25:24 GMT
etag: W/"636c36e4-26d"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WgCFWgeWfqnD5R%2FDlQ11hkhKP8XJpwZ%2FaHmEb8p0saEvGCPghLtcJ3%2BwoCsDdG7Lr9PolD9pfq0nAhLSinj6VpZhTnIKQ3DiXI2b4GH7AsY95t12w%2FBlnkwQ6oYeoIGKJJa4Wm6fT6YncJ5G"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7707c14bddffb4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing