r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 37284a837312d6586460a3b86bbe7bd0
6ac0847abd48eb8607597218aaa2cb2d434c012b
6a0e11bb042555d72b397ae0cc3d5e242d3a3fe04418e28ffd222decca7d16ca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A0E11BB042555D72B397AE0CC3D5E242D3A3FE04418E28FFD222DECCA7D16CA"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3426
Expires: Fri, 20 Jan 2023 18:48:13 GMT
Date: Fri, 20 Jan 2023 17:51:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8a5e416451617846248067d72b675125
995b0346adefaf5f2e167d1b81e60cc9afc4f19e
c5fafb9127b71cbd4f7b1a44f755fc4aa0e2f47bbc50de4b15c870a22bf160d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5FAFB9127B71CBD4F7B1A44F755FC4AA0E2F47BBC50DE4B15C870A22BF160D9"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12791
Expires: Fri, 20 Jan 2023 21:24:19 GMT
Date: Fri, 20 Jan 2023 17:51:08 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 20 Jan 2023 17:49:34 GMT
content-type: application/json
age: 94
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 38c102db4bcfb9c4fb19174986950fd3
51c2cc8a3aca4da5c9ab3438467c29203fc0b0c3
dad6b64bc9f4dd827471ccc2e5273fceee574685376083aaa80f9d2f918037f2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DAD6B64BC9F4DD827471CCC2E5273FCEEE574685376083AAA80F9D2F918037F2"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5214
Expires: Fri, 20 Jan 2023 19:18:02 GMT
Date: Fri, 20 Jan 2023 17:51:08 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: eC2jvpDEA/BAbkgkcqdK7l7acucZtOiTgGdaInBW7oTI/736MBQ5tgwa2BqfP4+NNcpBqwjtfmARNkXDcU96dQ==
x-amz-request-id: MJJAHE8YRFMQMXA5
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 20 Jan 2023 17:17:41 GMT
age: 2007
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ams-solutions.com/lakie/d/
151.101.66.159301 Moved Permanently 162 B URL HTTP/1.1 ams-solutions.com/lakie/d/
IP 151.101.66.159:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert openphish SBB
phishtank Other
fortinet Phishing
GET /lakie/d/ HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: keep-alive
Content-Length: 162
Content-Type: text/html
Location: https://ams-solutions.com/lakie/d/
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer-when-downgrade
X-FW-Server: Flywheel/5.1.0
X-FW-Hash: kc4x1z3g9o
X-FW-Version: 5.0.0
Server: Flywheel/5.1.0
Accept-Ranges: bytes
Date: Fri, 20 Jan 2023 17:51:08 GMT
X-Served-By: cache-bma1653-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1674237068.942699,VS0,VE126
Vary: Authorization
X-FW-Serve: TRUE
X-FW-Static: NO
X-FW-Type: VISIT
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 20 Jan 2023 17:51:08 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 20 Jan 2023 17:48:58 GMT
age: 130
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bdb8a13dfce39d6e151a9ef185a772a1
037a680510f9dbce3c7cc3c0f9115fd587dbcd1d
98c8b7f269b9aad73b73fd946788ebfd7a4d7afbdd5347b56c67f73b947f5ff6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6389
Cache-Control: max-age=147736
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 17:51:08 GMT
Etag: "63ca59af-1d7"
Expires: Sun, 22 Jan 2023 10:53:24 GMT
Last-Modified: Fri, 20 Jan 2023 09:06:55 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ams-solutions.com/lakie/d/
151.101.66.159301 Moved Permanently 0 B URL HTTP/2 ams-solutions.com/lakie/d/
IP 151.101.66.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert openphish SBB
phishtank Other
fortinet Phishing
GET /lakie/d/ HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
content-type: text/html; charset=UTF-8
cache-control: max-age=3600
x-redirect-by: WordPress
location: https://ams-solutions.com/?elementor_library=default-kit
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-dynamic: TRUE
x-fw-hash: kc4x1z3g9o
x-fw-version: 5.0.0
server: Flywheel/5.1.0
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:08 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237068.155427,VS0,VE550
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.200.77.111101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.200.77.111:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: szbxeDYfsPhXEhE/xEdhbw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IYeofHxw1VAXqgsQoE8Y/JIRGpI=
ams-solutions.com/?elementor_library=default-kit
151.101.66.159301 Moved Permanently 0 B URL HTTP/2 ams-solutions.com/?elementor_library=default-kit
IP 151.101.66.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /?elementor_library=default-kit HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 301 Moved Permanently
content-type: text/html; charset=UTF-8
cache-control: max-age=3600
x-redirect-by: WordPress
location: https://ams-solutions.com
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-dynamic: TRUE
x-fw-hash: kc4x1z3g9o
x-fw-version: 5.0.0
server: Flywheel/5.1.0
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.725208,VS0,VE329
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2
ams-solutions.com/
151.101.66.159200 OK 42 kB IP 151.101.66.159:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32598)
Hash 66af050d4e91122d9e1a2adc3dd89023
52fb324866fba70ae71fe3fc9665a1c37db32951
eae0aacd5c8aba89b18ad266efbc09ab1d359e7f9c750065beb9583a50595b6a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://ams-solutions.com/wp-json/>; rel="https://api.w.org/", <https://ams-solutions.com/wp-json/wp/v2/pages/491>; rel="alternate"; type="application/json", <https://ams-solutions.com/>; rel=shortlink
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-dynamic: TRUE
x-fw-hash: kc4x1z3g9o
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.071874,VS0,VE1
vary: Accept-Encoding
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 41773
X-Firefox-Spdy: h2
ams-solutions.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
151.101.66.159200 OK 14 kB URL HTTP/2 ams-solutions.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP 151.101.66.159:0
File type ASCII text, with very long lines (43771)
Hash 1047dd6779111ec73736abd71a40fef9
e08643922ce9a1a488f2a72c0341807f59f7528e
d85287eacda4e97356cf1b53ec765e34c8913558d6fb485b334debf78c89a3bf
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-15b64"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kc4x1z3g9o
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.194176,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 13906
X-Firefox-Spdy: h2
ams-solutions.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
151.101.66.159200 OK 2.9 kB URL HTTP/2 ams-solutions.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
IP 151.101.66.159:0
File type ASCII text, with very long lines (11256), with no line terminators
Hash fb368bbe71fa1b870e4faaa08e0e480d
fb1d98a028de9afb2356c9e9543e0ec83cc9db3c
f28edbf24ba549420a79c49b421902928c8521d2b3bcb4070975e40e36e9a84d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-2bf8"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kc4x1z3g9o
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.194756,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 2865
X-Firefox-Spdy: h2
ams-solutions.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3
151.101.66.159200 OK 1.3 kB URL HTTP/2 ams-solutions.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3
IP 151.101.66.159:0
File type ASCII text, with very long lines (4186), with no line terminators
Hash 03a555a725babd3469688ac7a1a11e23
3cca490396dc08d1ec484e431ba3efe876c5fa25
a9159931c913ec5fa911b8db4a52fadb74689b598fd7a60d0cab24406175c9d7
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-105a"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kc4x1z3g9o
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.195682,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1265
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/themes/medify/style.css?ver=6.0.3
151.101.66.159200 OK 394 B URL HTTP/2 ams-solutions.com/wp-content/themes/medify/style.css?ver=6.0.3
IP 151.101.66.159:0
File type ASCII text, with very long lines (354), with CRLF line terminators
Hash 720d41264fc74b2c428a601982e32e9b
ae33918ad731f6b8cdad8cd307d3ce3e87b97e0a
e13f9fa95c7c6b18a62fdc3a734ffe9ec4168a64733c0d5c4bc61071c0560c16
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/medify/style.css?ver=6.0.3 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 21 Feb 2022 16:38:23 GMT
etag: W/"6213bfff-273"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.197526,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 394
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/themes/medify/fonts/flaticon/flaticon.css?ver=6.0.3
151.101.66.159200 OK 1.2 kB URL HTTP/2 ams-solutions.com/wp-content/themes/medify/fonts/flaticon/flaticon.css?ver=6.0.3
IP 151.101.66.159:0
File type ASCII text, with CRLF line terminators
Hash 5d703b698c8e300acfeaa55550d502d5
9d9a93b6bee35478c13a357ed832fc6069183971
f3884d6977a9beb66826b786b88d5fda5a539cf18307090c1c1a6f1215b34529
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/medify/fonts/flaticon/flaticon.css?ver=6.0.3 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 21 Feb 2022 16:39:57 GMT
etag: W/"6213c05d-153a"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.198537,VS0,VE3
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1196
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/elementor/css/custom-frontend-legacy.min.css?ver=3.10.1
151.101.66.159200 OK 803 B URL HTTP/2 ams-solutions.com/wp-content/uploads/elementor/css/custom-frontend-legacy.min.css?ver=3.10.1
IP 151.101.66.159:0
File type ASCII text, with very long lines (9901), with no line terminators
Hash 3ec15dec95589c9a3625f3b66fb84090
23d0a9101953dfd43b17566fc1a57b28a55d4229
5f1bfde3ad6f311266eac84a8f21cf7f5a075a6687e2833e74c12fde16fce0e6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/custom-frontend-legacy.min.css?ver=3.10.1 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 19 Jan 2023 23:42:12 GMT
etag: W/"63c9d554-26ad"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.201469,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 803
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/themes/medify/css/main.css?ver=6.0.3
151.101.66.159200 OK 73 kB URL HTTP/2 ams-solutions.com/wp-content/themes/medify/css/main.css?ver=6.0.3
IP 151.101.66.159:0
File type ASCII text, with very long lines (486)
Hash 6e85785d091f91e1e4b26a10675b0889
ce40a6d3f4b4f390c2b32851fafd08b6e6b461e5
cdfa1e178a3acc5ad3edc1235d6ec483d3d294542d6009f28cea539e97043044
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/medify/css/main.css?ver=6.0.3 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 21 Feb 2022 16:38:46 GMT
etag: W/"6213c016-6b5c3"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.199937,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 72867
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.17.0
151.101.66.159200 OK 4.4 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.17.0
IP 151.101.66.159:0
File type ASCII text, with very long lines (19277)
Hash 0bc0938abce83a98ecaa8cdd414c2d4c
1f4e970b62494f636b77065e4b2fcb1ca84a7956
13f6660abf8c9032134be1ca626c2844ea33e34b9dc00e8876aaf90499cac97b
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.17.0 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 19 Jan 2023 14:21:20 GMT
etag: W/"63c951e0-4b7b"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.201317,VS0,VE3
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 4354
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
151.101.66.159200 OK 7.8 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 151.101.66.159:0
File type ASCII text, with very long lines (30837)
Hash 73e38ca778aab03265ab5c8c5922b3d3
d55aa22c1227719a6a5239b5f2c0251fc563d7e0
0d49cde3035dbb3baf30ac0e801b8a21175072224f0192675dabeda3b7159814
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 19 Jan 2023 14:21:20 GMT
etag: W/"63c951e0-7917"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.199217,VS0,VE11
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 7780
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.10.1
151.101.66.159200 OK 4.6 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.10.1
IP 151.101.66.159:0
File type ASCII text, with very long lines (26516)
Hash 374f31e96b90b8ae2792847d6f03ad7a
70735fd696d11f13de395e43c81b026d9c86528e
1192a2e289e37356ef9077427b1cd1ca3b950dd95f163459bc9c16f679989088
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.10.1 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 19 Jan 2023 14:21:21 GMT
etag: W/"63c951e1-684e"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.211961,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 4632
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/elementor/css/global.css?ver=1674171734
151.101.66.159200 OK 2.5 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/elementor/css/global.css?ver=1674171734
IP 151.101.66.159:0
File type ASCII text, with very long lines (7299)
Hash e8ae8d5a862af8d833f22b13220b2fd0
66ec8bcbc45c517be2d22fb46fd72f9503d1e37f
9e3ce24d0961ca3121a49a77a1cb9a7a95486359cd7443361859be7b1eb13abc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/global.css?ver=1674171734 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 19 Jan 2023 23:42:14 GMT
etag: W/"63c9d556-4b0b"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.211947,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 2450
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/elementor/css/post-109.css?ver=1674171735
151.101.66.159200 OK 1.2 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/elementor/css/post-109.css?ver=1674171735
IP 151.101.66.159:0
File type ASCII text, with very long lines (9674), with no line terminators
Hash 91ad920ab09fc866d41ed0d8525efeb2
1a59db116baf4f6ca599cbe9a3685081b9e5aa6d
f78124fde254acdc258bb5f72f2c3228c703f9697c9ce434c1e8624923a0dee4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-109.css?ver=1674171735 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 19 Jan 2023 23:42:15 GMT
etag: W/"63c9d557-25ca"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.211867,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1237
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/elementor/css/custom-pro-frontend-lite.min.css?ver=1674171732
151.101.66.159200 OK 1.6 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/elementor/css/custom-pro-frontend-lite.min.css?ver=1674171732
IP 151.101.66.159:0
File type ASCII text, with very long lines (8733), with no line terminators
Hash 7bf5fb011418df007b87102970506ce0
e022777583953ab323e9494a5b55692e648218e5
da40056b85e902f63a890f39b7888e34c6053d5c8b5ebdf9f2093578ec742271
GET /wp-content/uploads/elementor/css/custom-pro-frontend-lite.min.css?ver=1674171732 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 19 Jan 2023 23:42:12 GMT
etag: W/"63c9d554-221d"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.212001,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1592
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.8.1
151.101.66.159200 OK 3.7 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.8.1
IP 151.101.66.159:0
File type ASCII text, with very long lines (30283), with no line terminators
Hash 1b4c9b16d75ec6e02b06acc5a5898957
236e5981c2cb498fc93f717e40aba610323c0f37
a54da00a34825c0c5147babc8b16771a052f9e8d6025b797a4514288ac1c416a
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.8.1 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 19 Jan 2023 14:24:06 GMT
etag: W/"63c95286-764b"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.212450,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 3656
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.8.1
151.101.66.159200 OK 16 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.8.1
IP 151.101.66.159:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 459d82c145093a1d3ccd8dd248816e47
d50fb309c39b9daefff30746d600435c04f8816e
eb5d244d117cdcabc6cab009a13a1a5309aa0dfc248913b2c38490d37b4c95ae
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.8.1 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 19 Jan 2023 14:24:05 GMT
etag: W/"63c95285-1e7a5"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.211815,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 16155
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/elementor/css/custom-frontend-lite.min.css?ver=1674171732
151.101.66.159200 OK 16 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/elementor/css/custom-frontend-lite.min.css?ver=1674171732
IP 151.101.66.159:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash bd2cd961c4e0cf2c43f75d0c2c4eb505
0d21e2a20ca04705691bc602a8ad2a05a66e08e4
d407574ca9c100fc5a0b9418bb6d9abd158b56d507297a17d628fc45ad6216c4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/custom-frontend-lite.min.css?ver=1674171732 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 19 Jan 2023 23:42:12 GMT
etag: W/"63c9d554-17839"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.212347,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 15905
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.8.1
151.101.66.159200 OK 61 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.8.1
IP 151.101.66.159:0
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash a914687614c9c45111db6929d5618751
e0f13749e7af85a211521656da610b4adff0ebbd
e3afc1788197c4424ee5fb1580c6bd9f97258df2adcb3d6a4a49174c7df454ee
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.8.1 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 19 Jan 2023 14:24:07 GMT
etag: W/"63c95287-6d86e"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.212488,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 61374
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.5.2
151.101.66.159200 OK 891 B URL HTTP/2 ams-solutions.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.5.2
IP 151.101.66.159:0
File type ASCII text, with very long lines (3508)
Hash 3d158c3405272deb5a71aac8f6df0de6
2aeaf35b54220ba41cb05f845f1e2df7c7276f6e
47e1e0c20e94c1af43760f22e34807bc7c1103f2e45caf7765beb67101df4f12
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.5.2 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 29 Dec 2022 00:11:02 GMT
etag: W/"63acdb16-db5"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.213156,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 891
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/elementor/css/post-6.css?ver=1674171732
151.101.66.159200 OK 467 B URL HTTP/2 ams-solutions.com/wp-content/uploads/elementor/css/post-6.css?ver=1674171732
IP 151.101.66.159:0
File type ASCII text, with very long lines (1386), with no line terminators
Hash 1762f87a57eec0ab78dcf496b297d87f
ae0029877eddcd4174ee0d3944bf91be6ffa6b90
1ed5ba00d32d197e31b0d73f7ce4dd73d1fd6803fca8a43760233e1c38e6616a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-6.css?ver=1674171732 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 19 Jan 2023 23:42:12 GMT
etag: W/"63c9d554-56a"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.212023,VS0,VE3
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 467
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.10.1
151.101.66.159200 OK 14 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.10.1
IP 151.101.66.159:0
File type ASCII text, with very long lines (59158)
Hash 25b37bc500e807c9f09d41f36d06a3ad
008541e3bc221a9e0cfa873248ee4dc05b563d8e
1033a30450338e77b9c322f9ae9ad68b50f801272bef293933d6135f9126aa13
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.10.1 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 19 Jan 2023 14:21:20 GMT
etag: W/"63c951e0-e7d0"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.212018,VS0,VE5
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 14284
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
151.101.66.159200 OK 14 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 151.101.66.159:0
File type ASCII text, with very long lines (57726)
Hash 2f0b07689b34366c1b04e9c84cc2b54c
0a49469573f7add891658c75253a4b68953925e5
6bddc997475f4020265128478b59384b44792a0f986d6a04cd79722b99f2f55f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 19 Jan 2023 14:21:20 GMT
etag: W/"63c951e0-e238"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.215885,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 13975
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
151.101.66.159200 OK 311 B URL HTTP/2 ams-solutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 151.101.66.159:0
File type ASCII text, with very long lines (489)
Hash c58b23e189e3c7cf45cb7014e704d05b
e6850968edf763aafe862a226a0a3380f4827488
6ba81ab0941a10e6bb1a48b83f30ddaedba974c6609bec7210d9a27e4b3ef38d
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 19 Jan 2023 14:21:20 GMT
etag: W/"63c951e0-2a3"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.217144,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 311
X-Firefox-Spdy: h2
ams-solutions.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
151.101.66.159200 OK 34 kB URL HTTP/2 ams-solutions.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 151.101.66.159:0
File type ASCII text, with very long lines (65447)
Hash 22b0253c0ecce70e41e296d176b0d972
a161c363d2092739db21bfeb2cf23c980ec71580
181967b7928e133789c8edbb8bdcb73d44a0328d884b613f8ebfb182b4c3c52e
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-15db1"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kc4x1z3g9o
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.217627,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 34060
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/jetpack/css/jetpack.css?ver=11.7.1
151.101.66.159200 OK 19 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/jetpack/css/jetpack.css?ver=11.7.1
IP 151.101.66.159:0
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash f57657d7fb032c1192abf609dba75c4d
66e24cfdd4f4ab5e19626dfa90d4d5da299abd3b
cf1eb82c093a182f3749ebaaeb817d92833c35caea1ac1fe228c880055c12162
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jetpack/css/jetpack.css?ver=11.7.1 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 19 Jan 2023 23:50:48 GMT
etag: W/"63c9d758-15257"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.217265,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 19211
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/themes/medify/js/perfect-scrollbar.min.js?ver=6.0.3
151.101.66.159200 OK 5.8 kB URL HTTP/2 ams-solutions.com/wp-content/themes/medify/js/perfect-scrollbar.min.js?ver=6.0.3
IP 151.101.66.159:0
File type ASCII text, with very long lines (17959), with no line terminators
Hash 06e76d6bd0f9d9fd0174327a01c182eb
a99c75eddfa2caa41bc2842f90dc13fd8a3b95f6
19953dc98c079b1256cd1334559206b9f481ecb13800dc3a17df24b0e6b30fc8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/medify/js/perfect-scrollbar.min.js?ver=6.0.3 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 16:38:53 GMT
etag: W/"6213c01d-4627"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.219349,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 5785
X-Firefox-Spdy: h2
ams-solutions.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
151.101.66.159200 OK 4.4 kB URL HTTP/2 ams-solutions.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 151.101.66.159:0
File type ASCII text, with very long lines (11126)
Hash 24957bc8161f979c6e661f46fdc3974f
fa1237ffe8b3745baa78ac481239038e133fcc17
46acf87c90961d413ac24eace25b77a8d5236daf38799fec2daf0bc350cc6ebe
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-2bd8"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kc4x1z3g9o
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.218592,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 4405
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.10.1
151.101.66.159200 OK 4.6 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.10.1
IP 151.101.66.159:0
File type ASCII text, with very long lines (14869)
Hash 499ded81ca80920c1b3521598e259548
d6b47dce6475ee2b47e16ee211efab0e65b665ca
b7e9f78215fd2ffd092c2c5c456ade5e3f293b6411f6279caf40e3fb247b8fe1
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.10.1 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 14:21:21 GMT
etag: W/"63c951e1-3acf"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.220126,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 4631
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2022/01/ams-solutions-v3-01.webp
151.101.66.159200 OK 14 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/2022/01/ams-solutions-v3-01.webp
IP 151.101.66.159:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 467fc7430754574b7968c88824c4e5e3
8efa833a5da58592cc833ac14633d903a84ea2f0
a2ff4b06744a47dc494f19a401a2d8fc309848f7098ca7141b6284ec34e406ee
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/01/ams-solutions-v3-01.webp HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
last-modified: Mon, 21 Feb 2022 16:27:17 GMT
etag: "6213bd65-3846"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.227918,VS0,VE2
vary: Authorization
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 14406
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0d8d55791acc6bce29e4599c25afe522
596f02869a51de3f6d522585be0b1b841f880fbe
64c7b6f660a100f085af77eff4848a75239200c8af93382650c3defa1bfd2829
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 17:51:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ams-solutions.com/wp-content/uploads/2022/02/ams-solutions-v3-03.jpg
151.101.66.159200 OK 24 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/2022/02/ams-solutions-v3-03.jpg
IP 151.101.66.159:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 1055x200, components 3\012- data
Hash 80b0bb30ad0e886e1463ef2ac5851d5b
94735494de9757750ba24edf6836f6de654395cf
ff0b1931759319b3d348083c004890a2b362685936a91d348bfa06928981df79
GET /wp-content/uploads/2022/02/ams-solutions-v3-03.jpg HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 21 Feb 2022 16:27:53 GMT
etag: W/"6213bd89-624c"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.223958,VS0,VE8
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 24474
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2022/02/ams-solutions-v3-04.png
151.101.66.159200 OK 16 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/2022/02/ams-solutions-v3-04.png
IP 151.101.66.159:0
File type PNG image data, 1055 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 78c165cb72f873fa3e60bebe47137545
6dfe35e8b80cdd6c955561be069581b51546b2c8
43741b280db5bf6e5bac2e56cf8ce9101ef3e7383e7ea69940fd0d02cbea1f76
GET /wp-content/uploads/2022/02/ams-solutions-v3-04.png HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Mon, 21 Feb 2022 16:28:07 GMT
etag: W/"6213bd97-414c"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.228332,VS0,VE6
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 16312
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bd9ed9c3f88cda5456e13a134e27b268
aaa82eb935ce140174b2392ac7f7d80e2ddff1c5
a5621fa38dc23d545f834fc7331e59fc61825004b2c599c11c89628175333ca6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 17:51:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ams-solutions.com/wp-content/uploads/elementor/css/custom-widget-icon-list.min.css?ver=1674171736
151.101.66.159200 OK 1.0 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/elementor/css/custom-widget-icon-list.min.css?ver=1674171736
IP 151.101.66.159:0
File type ASCII text, with very long lines (9808), with no line terminators
Hash d003ed8b2fbac5b0f21a411a7c5edfdb
3cbdf78929aa6e1affc4414bcff4c365c69e6878
73c55792009cfac8ede331dee3a3996386a067683ca5a93f9ba523b3a104e3fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/custom-widget-icon-list.min.css?ver=1674171736 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 19 Jan 2023 23:42:16 GMT
etag: W/"63c9d558-2650"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.236619,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1030
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c82333f9a33a309c15d05fd11805df12
8dd5f20229a08900fd7f795e151f8caa9558ddfc
2c5c18efa4a58c40cc49553daf6fe206ed70fe17bd948cd5c09144a49db85401
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 17:51:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5422c49666fc195ae94aa0f5cf837bfc
e0f1dd926cd9328ccf9cc99389337056c62f1043
f639aad2dc85708fa922b793660f13ae597f275a8ebf61e7e72fb2bce257cc76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 17:51:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ams-solutions.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.14
151.101.66.159200 OK 14 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.14
IP 151.101.66.159:0
File type Unicode text, UTF-8 text, with very long lines (12602)
Hash a73f571be9a11df12b64c0ec05777737
1fef9ea4f784017b244ea4a626bae072a760d733
74761b88c3cfd8dd99e5c1f73e7b542d74e8c2bcb4906491c0a2bcb001c8bc0d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.14 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 21 Feb 2022 16:30:18 GMT
etag: W/"6213be1a-e168"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.252644,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 13901
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.14
151.101.66.159200 OK 53 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.14
IP 151.101.66.159:0
File type ASCII text, with very long lines (45108)
Hash 2a5bac428c68d21c6f229e529cccf7d5
8d58a16df49ba12b58d553c7aa144057cd04374a
48a7fb1131e21635d04fc587aac7a1f0c8a80371a684319e9cbb1240ecf546f9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.14 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 16:30:16 GMT
etag: W/"6213be18-1f69c"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.253269,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 52795
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/afl-wc-utm/public/js/afl-wc-utm-public.min.js?ver=2.7.3
151.101.66.159200 OK 3.2 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/afl-wc-utm/public/js/afl-wc-utm-public.min.js?ver=2.7.3
IP 151.101.66.159:0
File type ASCII text, with very long lines (6719)
Hash f317bde986b12d2684ebee31b29d334e
df3e54e6ab4c206058a95341a56b3be34262a536
c3ef50cc12a0d44bcc94de09cd9c2d4d8644714ee8ecbd22691aefbf41108601
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/afl-wc-utm/public/js/afl-wc-utm-public.min.js?ver=2.7.3 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 15 Dec 2022 03:52:21 GMT
etag: W/"639a99f5-2188"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.253904,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 3200
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/themes/medify/js/theme.js?ver=6.0.3
151.101.66.159200 OK 715 B URL HTTP/2 ams-solutions.com/wp-content/themes/medify/js/theme.js?ver=6.0.3
IP 151.101.66.159:0
File type ASCII text, with CRLF line terminators
Hash ed13fad9465ddc642990c21e7137f60d
620206be83b04bf828f68a8d6738c2458367103b
1d02ffa907dd3be473119e41ceefd857f7102f39c63950220740acf0f22859e0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/medify/js/theme.js?ver=6.0.3 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 16:38:54 GMT
etag: W/"6213c01e-751"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.254475,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 715
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/themes/medify/js/theme-addons.js?ver=6.0.3
151.101.66.159200 OK 22 kB URL HTTP/2 ams-solutions.com/wp-content/themes/medify/js/theme-addons.js?ver=6.0.3
IP 151.101.66.159:0
File type ASCII text, with very long lines (2053), with CRLF, LF line terminators
Hash e7430b2068b0cfb0a6460f7fde54e136
262c083ce354c2b3ea000e307044826390470e01
4f910444e06506b7fd133ab779c97ab39691cd23c42aa66b391654780ea6fdfa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/medify/js/theme-addons.js?ver=6.0.3 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 16:38:51 GMT
etag: W/"6213c01b-15519"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.254155,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 22447
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.8.1
151.101.66.159200 OK 60 B URL HTTP/2 ams-solutions.com/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.8.1
IP 151.101.66.159:0
File type ASCII text, with no line terminators
Hash 57feab81953d7d52016bab0cd7235fda
6c555774496602677a8efccef626ba0f0daea162
25842937fdf65fbdee997cbc32e23c9208662eba906984b054b41cedf8cdb960
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.8.1 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 14:24:04 GMT
etag: W/"63c95284-28"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.254830,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 60
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?hl=en&ver=6.0.3
216.58.207.228200 OK 555 B URL HTTP/2 www.google.com/recaptcha/api.js?hl=en&ver=6.0.3
IP 216.58.207.228:0
File type ASCII text, with very long lines (850), with no line terminators
Hash 4fcc8cffc198bb1436d5e909506b0b2a
a6269c7bf1d3614a78b9ba99cfec2b29e0b6ab7e
33b2950d981dcb3af46004be957506985ea0c185b5436fc6435efcdea7699d89
GET /recaptcha/api.js?hl=en&ver=6.0.3 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ams-solutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Fri, 20 Jan 2023 17:51:09 GMT
date: Fri, 20 Jan 2023 17:51:09 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 555
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ams-solutions.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
151.101.66.159200 OK 2.6 kB URL HTTP/2 ams-solutions.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 151.101.66.159:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash cba765ca076cb13c7678f0293fb8a3da
98430a0a3db9c19a16f6940750a6738c4d00f962
f68a3fba394baf3508e7987049a6037d9f3e212dc9698976df9fbeb5703379ab
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-194b"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kc4x1z3g9o
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.255439,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 2581
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.8.1
151.101.66.159200 OK 46 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.8.1
IP 151.101.66.159:0
File type ASCII text, with very long lines (45047)
Hash 88365ab4192aaa2153bb7d9f73f80839
1f089010f6323455ab952e312f8e37e42df9c880
b53c3b2b5096994ac8a224359df07e05f200be165c47911ec64ada7b6c87a3a0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.8.1 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 14:24:07 GMT
etag: W/"63c95287-2193f"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.254976,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 46516
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-JFD0YB47N6
142.250.74.40200 OK 77 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-JFD0YB47N6
IP 142.250.74.40:0
File type ASCII text, with very long lines (19574)
Hash 524865c976d4aec03968de8075965b83
c1031b2886bf7c768d923063f186524ed47d3048
488ed8b508ffabb4f864998481beabaa60184aa9d6b44e69baddac1510a0e792
GET /gtag/js?id=G-JFD0YB47N6 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ams-solutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 20 Jan 2023 17:51:09 GMT
expires: Fri, 20 Jan 2023 17:51:09 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77107
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ams-solutions.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
151.101.66.159200 OK 7.6 kB URL HTTP/2 ams-solutions.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 151.101.66.159:0
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 2059fe073bfc62ce84fe8fc1f42d35a9
68038ff5383ffde15542f57782d7a53c8de8bb48
543dbc6a5dd60032fb9d74beef1f7ac5f6cee543b6422b1f0928b9001d050eb8
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-4ac6"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kc4x1z3g9o
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.255727,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 7559
X-Firefox-Spdy: h2
ams-solutions.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
151.101.66.159200 OK 4.1 kB URL HTTP/2 ams-solutions.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
IP 151.101.66.159:0
Hash feb20fa17603ebf83bd29bb99298c82f
1944c6bf9ad5f4283fcb221ada39438b8528f5a2
eeffaf3cad83f30cadd4a89d66fcc4ea8e929330625ab40c6ac8a651e41eb595
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-27ee"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kc4x1z3g9o
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.256445,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 4059
X-Firefox-Spdy: h2
ams-solutions.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
151.101.66.159200 OK 1.7 kB URL HTTP/2 ams-solutions.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
IP 151.101.66.159:0
File type ASCII text, with very long lines (4875)
Hash 13d536181f99675ef7d13d91c86c24dd
c30ec279027b1dc05df149f3953b384f50a72a05
1192c8ec0e73df274d3ffb2302091f67d2a4fc15200a6fd138661dfd7cc2f222
GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-132e"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kc4x1z3g9o
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.256264,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1736
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.5.2
151.101.66.159200 OK 3.3 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.5.2
IP 151.101.66.159:0
File type ASCII text, with very long lines (8741), with no line terminators
Hash 0f5dc23db1ec015b9da933c2114de177
5d85b465e31d107ad1a9f24536baabf5a052eba7
15172f6a7df6c1b703ff11bd845acf1a9a123220205065fcbb4a4f58c8a9d79e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.5.2 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 29 Dec 2022 00:11:03 GMT
etag: W/"63acdb17-2225"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.258741,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 3279
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.10.2
151.101.66.159200 OK 2.5 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.10.2
IP 151.101.66.159:0
File type ASCII text, with very long lines (5315)
Hash 7c66184d96ca958a82636a3b7da22570
4fc91591767988f3b47c5bc550136fa50310e7e9
fe778b65d6aa80548900dbcb4bdbe10a2081322c3366127ff451d852365110ff
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.10.2 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 23:39:31 GMT
etag: W/"63c9d4b3-14ef"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.260511,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 2496
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.1
151.101.66.159200 OK 12 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.1
IP 151.101.66.159:0
File type Unicode text, UTF-8 text, with very long lines (35829)
Hash 8d0951b1a6687efcaea190175de02c46
f8e4fb64677a248f180aada506af2eb2ca06e263
f3372d74a8fcbb21342939b720f2dbcbc5097659c93af6959292679ec3c79263
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.1 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 14:21:20 GMT
etag: W/"63c951e0-8c1e"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.261825,VS0,VE3
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 12367
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.1
151.101.66.159200 OK 13 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.1
IP 151.101.66.159:0
File type ASCII text, with very long lines (40802)
Hash a73d8f7320149506d10c8e17f08d9273
532ed605629921c93cd1ba131357d2fef519ae67
c113124893259bd516d8aff184244b3c5dad5561f2d4801fc54b95a956d3dfdf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.1 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 14:21:20 GMT
etag: W/"63c951e0-9f8a"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.277966,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 13344
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
151.101.66.159200 OK 3.3 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 151.101.66.159:0
File type ASCII text, with very long lines (12198), with no line terminators
Hash e7e06a56acbe48a5e94540829d446734
a62e3d7ea0dbd0a3e771f419377882aee5512e67
42ba07f11715edb58a365296c32ae85230bb28f164a34f561f295cbceb1f5981
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 14:21:21 GMT
etag: W/"63c951e1-2fa6"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.277523,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 3281
X-Firefox-Spdy: h2
ams-solutions.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
151.101.66.159200 OK 7.4 kB URL HTTP/2 ams-solutions.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 151.101.66.159:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 7070cf6c839a09af2a84f926dd2f95e1
2ac5f6312b4cc85f39804d4a61eeb00c2cced58e
ed584ebba9826c2d9fb5078ca275ce47d05b2a9a1f075e7493526fe7fe458c4c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-50eb"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kc4x1z3g9o
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.277797,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 7442
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.10.2
151.101.66.159200 OK 7.0 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.10.2
IP 151.101.66.159:0
File type ASCII text, with very long lines (27417)
Hash 1f1ff05515b701a8778ec7adb907f4e8
f771c144fac233b914bbcada8a6dd55bb717c73e
c39181bee160bf744eacbb2685735e7baf1e772aa21c061ab2e5fa62fb06293b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.10.2 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 23:39:31 GMT
etag: W/"63c9d4b3-6b45"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.280784,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 6985
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.8.1
151.101.66.159200 OK 450 B URL HTTP/2 ams-solutions.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.8.1
IP 151.101.66.159:0
File type ASCII text, with very long lines (810), with no line terminators
Hash 16409c8432c5a66fcc3c1e50e3c936d5
3d815ca29ff6ab8acada5aaef766ed6e87a3cf03
021074755c7071a29a76714a8fed27994e6c17958aa405b7c29a06a3ec867557
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.8.1 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 14:24:07 GMT
etag: W/"63c95287-32a"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.280939,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 450
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.8.1
151.101.66.159200 OK 5.7 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.8.1
IP 151.101.66.159:0
File type ASCII text, with very long lines (18482), with no line terminators
Hash 7cfa826592101a92d2f726bf3fc900b4
e61d14a72fed35f134f876c86522a7ad64a69f7f
534f09b023be0381ef33cbeaf558835ebc1c47f09ea3cdda85516e3c876b8d3b
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.8.1 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 14:24:07 GMT
etag: W/"63c95287-4832"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.284157,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 5698
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.1
151.101.66.159200 OK 2.3 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.1
IP 151.101.66.159:0
File type ASCII text, with very long lines (4974)
Hash 01414dbfb5a33f91745bcb885ff9a826
c2a0d99c5d2f38b7cbc2635a7cf781a0376d39c3
01368ccfe48018fd66f8a674f515a8e6572b27767852c5331545bb610516d879
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.1 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 14:21:20 GMT
etag: W/"63c951e0-1396"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.260711,VS0,VE26
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 2283
X-Firefox-Spdy: h2
ams-solutions.com/wp-includes/js/underscore.min.js?ver=1.13.3
151.101.66.159200 OK 7.8 kB URL HTTP/2 ams-solutions.com/wp-includes/js/underscore.min.js?ver=1.13.3
IP 151.101.66.159:0
File type ASCII text, with very long lines (18876)
Hash a8f99c32a628461f9c7500e76e604567
88ab3c370bc896f5580065d601b7496a7b66bb56
9cf8b992dc38ff9be1ec3c2d5a31d69ec491db09eaa287a71f490df0edb1b139
GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-49df"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kc4x1z3g9o
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.286285,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 7791
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.8.1
151.101.66.159200 OK 40 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.8.1
IP 151.101.66.159:0
File type ASCII text, with very long lines (65280)
Hash 9ed258a936a3d2ce45e94a8db42f9d31
6165e240ceb0f3dffff99e006e4bde5a5039cc9e
2a21ec91e4a5790ad487670a13f80e62d6d17b6725d13d0e23c33e10ddda2311
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.8.1 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 14:21:21 GMT
etag: W/"63c951e1-21f91"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.286133,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 40188
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/wpforms-lite/assets/css/wpforms-full.min.css?ver=1.7.9.1
151.101.66.159200 OK 7.6 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/wpforms-lite/assets/css/wpforms-full.min.css?ver=1.7.9.1
IP 151.101.66.159:0
File type ASCII text, with very long lines (50936)
Hash 3dc618402dadd7d762651b510a20e138
8d44e6a32cf13b90a06b1e3de5ee0e21f3a6d5c5
863539e024989befda148b4a19a3af54b404b8ca2c78bc7b6b7af0104d367203
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpforms-lite/assets/css/wpforms-full.min.css?ver=1.7.9.1 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 12 Jan 2023 02:52:28 GMT
etag: W/"63bf75ec-c6f9"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.196447,VS0,VE126
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 7629
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a16b4b7be19ebcafa8448b403aa56cdc
cc2450e2301c6380a452a5d4744fb9fc07b73dea
2740da6c7331cfd931e53e1cf9c8131f7e9ed21c96d3e63470e8bc75e7ea76a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 17:51:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bd9ed9c3f88cda5456e13a134e27b268
aaa82eb935ce140174b2392ac7f7d80e2ddff1c5
a5621fa38dc23d545f834fc7331e59fc61825004b2c599c11c89628175333ca6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 17:51:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0d8d55791acc6bce29e4599c25afe522
596f02869a51de3f6d522585be0b1b841f880fbe
64c7b6f660a100f085af77eff4848a75239200c8af93382650c3defa1bfd2829
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 17:51:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ams-solutions.com/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.6.9
151.101.66.159200 OK 921 B URL HTTP/2 ams-solutions.com/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.6.9
IP 151.101.66.159:0
File type ASCII text, with very long lines (1836), with no line terminators
Hash 46142aaddf8b891f3b52cab8c6ef375c
29d627dd1ae857eacf986b62d72b7de2a8e7f6f9
4f98a5f8ab549a40c9328fc59575565007b7b20f3dead09ff59297c7cdddcc1c
GET /wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.6.9 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 23:39:55 GMT
etag: W/"63c9d4cb-72c"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.220959,VS0,VE123
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 921
X-Firefox-Spdy: h2
ams-solutions.com/wp-includes/js/wp-util.min.js?ver=6.0.3
151.101.66.159200 OK 718 B URL HTTP/2 ams-solutions.com/wp-includes/js/wp-util.min.js?ver=6.0.3
IP 151.101.66.159:0
File type ASCII text, with very long lines (1305)
Hash 31e7f275636fe6733bafba2b77ce9ec0
9e2f9b8bfc9bf8910f6cc7068ea83ef379c6696f
08685fe4df303f97dd8f256b468000568635d59480e36784a8908a2d18c641e7
GET /wp-includes/js/wp-util.min.js?ver=6.0.3 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-53c"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kc4x1z3g9o
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.344784,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 718
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/revslider/public/assets/assets/dummy.png
151.101.66.159200 OK 79 B URL HTTP/2 ams-solutions.com/wp-content/plugins/revslider/public/assets/assets/dummy.png
IP 151.101.66.159:0
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 444db5982c8fd26174c839ad4c23911d
63d57777a02863e4040ac4cb2f0eb006efe22a83
2faf1bfcc807f1d9cfc164bf772118a9ebee722f39fabff1a1166e4d24730692
GET /wp-content/plugins/revslider/public/assets/assets/dummy.png HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Mon, 21 Feb 2022 16:30:18 GMT
etag: W/"6213be1a-44"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.228550,VS0,VE124
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 79
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.9.1
151.101.66.159200 OK 391 B URL HTTP/2 ams-solutions.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.9.1
IP 151.101.66.159:0
File type ASCII text, with very long lines (771), with no line terminators
Hash ff639406d84b6d10638789c551348f25
17e39409021f215941326c3c29fa0b37c4cc94bc
6606bec30f76c7bcd4a84df1115ace5fa57910b15049dda01b53972c47f5bb86
GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.9.1 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 12 Jan 2023 02:52:29 GMT
etag: W/"63bf75ed-303"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.356611,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 391
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2019/08/home-2_section_01-01.png
151.101.66.159200 OK 7.5 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/2019/08/home-2_section_01-01.png
IP 151.101.66.159:0
File type PNG image data, 656 x 450, 8-bit/color RGBA, non-interlaced\012- data
Hash c80aecda42583ab8965ea739a7dbf127
de420116cf184b9bd71a5a85811421cd5c0adbf6
6841e661e83a2d05a5e690e6f399e8d5c0d4adcb7d2b68a411347d341d48cdc1
GET /wp-content/uploads/2019/08/home-2_section_01-01.png HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Mon, 21 Feb 2022 16:28:52 GMT
etag: W/"6213bdc4-22fb"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.234219,VS0,VE125
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 7526
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.10.1
151.101.66.159200 OK 2.9 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.10.1
IP 151.101.66.159:0
File type ASCII text, with very long lines (10019)
Hash 6a41a891222b20ffa888a263dadd9541
0a60e8f24954286903a61455c3b5dee0aed7893e
66f99b0608e47e9e1ecd50287f529a11b830d7e561b52da7f697fd91d7995db0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.10.1 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 19 Jan 2023 14:21:20 GMT
etag: W/"63c951e0-4824"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.252331,VS0,VE126
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 2945
X-Firefox-Spdy: h2
ams-solutions.com/wp-includes/js/dist/a11y.min.js?ver=a38319d7ba46c6e60f7f9d4c371222c5
151.101.66.159200 OK 1.0 kB URL HTTP/2 ams-solutions.com/wp-includes/js/dist/a11y.min.js?ver=a38319d7ba46c6e60f7f9d4c371222c5
IP 151.101.66.159:0
File type Unicode text, UTF-8 text, with very long lines (2472)
Hash 6a483246ab2d47d529f645dc00e51afe
b6a81599d8c9a4aa967e8b06893dbfe3eda276a4
446742d9c7f6005c3d8e4d7e8db03b8dfd6ab4d8336d68aba038b34e524670b0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/a11y.min.js?ver=a38319d7ba46c6e60f7f9d4c371222c5 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-9cc"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kc4x1z3g9o
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.256776,VS0,VE123
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1017
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/wpforms-lite/assets/lib/punycode.min.js?ver=1.0.0
151.101.66.159200 OK 883 B URL HTTP/2 ams-solutions.com/wp-content/plugins/wpforms-lite/assets/lib/punycode.min.js?ver=1.0.0
IP 151.101.66.159:0
File type ASCII text, with very long lines (1713), with no line terminators
Hash eb79ef47d6ef5a083dd7eede7026d9f4
e6643349b7e779efbd5892b519f2876daa7fa0b7
7061fa7f033b40dad17ed8c232846a0ce65d4722a272fde2e48c3dee99383ec3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpforms-lite/assets/lib/punycode.min.js?ver=1.0.0 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 12 Jan 2023 02:52:29 GMT
etag: W/"63bf75ed-6b1"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.362175,VS0,VE124
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 883
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/wpforms-lite/assets/js/utils.min.js?ver=1.7.9.1
151.101.66.159200 OK 150 B URL HTTP/2 ams-solutions.com/wp-content/plugins/wpforms-lite/assets/js/utils.min.js?ver=1.7.9.1
IP 151.101.66.159:0
File type ASCII text, with no line terminators
Hash 14e97c0bd8b30f6184d7b9b0de3b62dc
052e2d09afda94db181e7b410ef3c49567350896
cf50cfaa42eabf7e33d6b7214e8965573e33b17b60420352789410639c9c80aa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpforms-lite/assets/js/utils.min.js?ver=1.7.9.1 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 12 Jan 2023 02:52:29 GMT
etag: W/"63bf75ed-ae"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.363349,VS0,VE124
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 150
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/wpforms-lite/assets/js/wpforms.min.js?ver=1.7.9.1
151.101.66.159200 OK 11 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/wpforms-lite/assets/js/wpforms.min.js?ver=1.7.9.1
IP 151.101.66.159:0
File type ASCII text, with very long lines (32954), with no line terminators
Hash f725b074f39a46cfa0f250f899e18809
423530eacd8dc33cc5d0dbe913cfae27e6c09462
9a358fbc670a49e090fed7552dceb09edfd97c419904ef9be36dd0a58ca67554
GET /wp-content/plugins/wpforms-lite/assets/js/wpforms.min.js?ver=1.7.9.1 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 12 Jan 2023 02:52:29 GMT
etag: W/"63bf75ed-80ba"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.366769,VS0,VE127
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 10850
X-Firefox-Spdy: h2
ams-solutions.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
151.101.66.159200 OK 5.5 kB URL HTTP/2 ams-solutions.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 151.101.66.159:0
File type ASCII text, with very long lines (15660)
Hash 17db16eba9de064a60b18a592b36634a
82fc955209623803111e48d5be3cf345315be6f5
1144901adf4e1d54838e6e04a2b75314f3b95518ee654d8c1742af50e355b433
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-48b9"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kc4x1z3g9o
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237070.519899,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 5515
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/elementor/css/post-491.css?ver=1674171735
151.101.66.159200 OK 4.2 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/elementor/css/post-491.css?ver=1674171735
IP 151.101.66.159:0
File type Unicode text, UTF-8 text, with very long lines (38941), with CRLF line terminators
Hash fb9de388e85af4314073a24968c2a3da
018ec69b75d22eeb6a2a0f99ffa5ab0ff84fa7b5
0c80215b5f98e2e32757ea5756fa2ca97f17c107e361f0d0b76571a768ba62a2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-491.css?ver=1674171735 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 19 Jan 2023 23:42:15 GMT
etag: W/"63c9d557-9b65"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.211842,VS0,VE363
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 4184
X-Firefox-Spdy: h2
ams-solutions.com/wp-includes/js/dist/dom-ready.min.js?ver=d996b53411d1533a84951212ab6ac4ff
151.101.66.159200 OK 331 B URL HTTP/2 ams-solutions.com/wp-includes/js/dist/dom-ready.min.js?ver=d996b53411d1533a84951212ab6ac4ff
IP 151.101.66.159:0
File type ASCII text, with very long lines (463)
Hash a2e051b6ce20ce6168335d661b6ba5e0
af8bd425b3d5e516b1747d80a35d11efa00a1831
70bcd78e9b666c82c6eac1d50c6e893c385da96641f79bec2a92f075430131be
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/dom-ready.min.js?ver=d996b53411d1533a84951212ab6ac4ff HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-1f2"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kc4x1z3g9o
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.256123,VS0,VE363
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 331
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/gravityforms/assets/css/dist/basic.min.css?ver=2.6.9
151.101.66.159200 OK 8.5 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/gravityforms/assets/css/dist/basic.min.css?ver=2.6.9
IP 151.101.66.159:0
File type ASCII text, with very long lines (47167), with no line terminators
Hash f37eb9dc61f6b902199b698c8c1a1133
fe8c477cb21b1956254ee0a917550291a35372c7
29c33f2de70b37754adf85cfd8b1c3e6a071dd560432b4209788a0dcca2e8c8d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gravityforms/assets/css/dist/basic.min.css?ver=2.6.9 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 19 Jan 2023 23:39:50 GMT
etag: W/"63c9d4c6-b83f"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.211774,VS0,VE481
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 8465
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/gravityforms/assets/css/dist/theme.min.css?ver=2.6.9
151.101.66.159200 OK 6.0 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/gravityforms/assets/css/dist/theme.min.css?ver=2.6.9
IP 151.101.66.159:0
File type ASCII text, with very long lines (30590), with no line terminators
Hash 7baa3e37da82f7bf207997a5bb4d1417
d9527ec25e4dbf1c0d989ce4677736e54cc7858d
8e1ca00e4913848e0ab9d00b7ca141b6286b6c1140b9cb8fd71ab17986ef5769
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gravityforms/assets/css/dist/theme.min.css?ver=2.6.9 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 19 Jan 2023 23:39:50 GMT
etag: W/"63c9d4c6-777e"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.212514,VS0,VE483
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 6043
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.6.9
151.101.66.159200 OK 15 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.6.9
IP 151.101.66.159:0
File type ASCII text, with very long lines (44365), with no line terminators
Hash 95861f8a154c2099ab3e48adc447e2e2
81773214b52b544c853e09759d49c9dbf02656a7
7f819c9897795521d1f60a29213523fcff616717ba6570a81835a753de651d42
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.6.9 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 23:39:55 GMT
etag: W/"63c9d4cb-ad4d"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.221731,VS0,VE476
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 14739
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/gravityforms/assets/css/dist/theme-components.min.css?ver=2.6.9
151.101.66.159200 OK 0 B URL HTTP/2 ams-solutions.com/wp-content/plugins/gravityforms/assets/css/dist/theme-components.min.css?ver=2.6.9
IP 151.101.66.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gravityforms/assets/css/dist/theme-components.min.css?ver=2.6.9 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 19 Jan 2023 23:39:50 GMT
etag: "63c9d4c6-0"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.211799,VS0,VE486
vary: Authorization, Accept-Encoding
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2019/08/home-2_section_01-03.png
151.101.66.159200 OK 6.3 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/2019/08/home-2_section_01-03.png
IP 151.101.66.159:0
File type PNG image data, 656 x 450, 8-bit/color RGBA, non-interlaced\012- data
Hash 2c9180c45462d687c42b10896d941bb7
8257a3e97a756ae15c6879decb9d21070b0bf307
9c161f5a2eda1fd49f58e6039c1f47855b644d155eae130b5c11e7046c22fe5a
GET /wp-content/uploads/2019/08/home-2_section_01-03.png HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Mon, 21 Feb 2022 16:25:37 GMT
etag: W/"6213bd01-1e0a"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.234040,VS0,VE506
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 6278
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/themes/medify/js/jquery.appear.js?ver=1.0.0
151.101.66.159200 OK 1.5 kB URL HTTP/2 ams-solutions.com/wp-content/themes/medify/js/jquery.appear.js?ver=1.0.0
IP 151.101.66.159:0
File type ASCII text, with CRLF line terminators
Hash 7b18add169d9fc080650469899245b46
446f97f87b465d771a157ad3901fe29cb2f5676e
042ffca1e8338b71e38f6e38da41288033ee1cb8b5046a736f0ae289a0a7586e
GET /wp-content/themes/medify/js/jquery.appear.js?ver=1.0.0 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 16:38:53 GMT
etag: W/"6213c01d-11aa"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.258973,VS0,VE482
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1489
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementor-pro/assets/css/widget-posts.min.css
151.101.66.159200 OK 2.6 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementor-pro/assets/css/widget-posts.min.css
IP 151.101.66.159:0
File type Unicode text, UTF-8 text, with very long lines (14105)
Hash d46ac98f7dc9906ec281befb032ac55c
21837cb03c62677cc00ed3bd6e0f1951151fe726
402ab4c45223368fb2f24509f7e2ecaeb666944a3d41447e4a6e9d4f38d924a0
GET /wp-content/plugins/elementor-pro/assets/css/widget-posts.min.css HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 19 Jan 2023 23:39:30 GMT
etag: W/"63c9d4b2-374b"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.236400,VS0,VE507
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 2610
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/gravityforms/js/jquery.maskedinput.min.js?ver=2.6.9
151.101.66.159200 OK 1.9 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/gravityforms/js/jquery.maskedinput.min.js?ver=2.6.9
IP 151.101.66.159:0
File type ASCII text, with very long lines (4172), with no line terminators
Hash 710cfaade5395c644d4c42910d60e932
42b50952b59672bf0fa3b5ca0e547bf6faa0c0d7
e75abf0f17797f4161bd7b573ca8f39c0ede86fa377879ecf5002bdafea5e4c9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gravityforms/js/jquery.maskedinput.min.js?ver=2.6.9 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 23:39:55 GMT
etag: W/"63c9d4cb-104c"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.257053,VS0,VE486
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1901
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/gravityforms/js/placeholders.jquery.min.js?ver=2.6.9
151.101.66.159200 OK 1.8 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/gravityforms/js/placeholders.jquery.min.js?ver=2.6.9
IP 151.101.66.159:0
File type ASCII text, with very long lines (4610)
Hash e74f97134c58bae2b971ab0ab4a070c8
6ad78fd4129985b73f797f0920f13fd263c98399
9ae48ab63328d299e29d27c410d5d1739a1a92e8af6a0a040400bde0e155651c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gravityforms/js/placeholders.jquery.min.js?ver=2.6.9 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 23:39:55 GMT
etag: W/"63c9d4cb-121f"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.258412,VS0,VE486
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1816
X-Firefox-Spdy: h2
ams-solutions.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
151.101.66.159200 OK 1.9 kB URL HTTP/2 ams-solutions.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 151.101.66.159:0
File type ASCII text, with very long lines (5477)
Hash fcf12c7d3f5778470877aff26bdb3040
b8cc6b30eb49ef014651e6f22e4a33b74a3fde1e
2b6a1c6d97acd8b8f1460d8e4acbac8f911aa950c482ab794888f40c63fb2d6f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-15fd"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kc4x1z3g9o
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.259201,VS0,VE498
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1946
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2022/01/AdobeStock_139538976-scaled.jpeg
151.101.66.159200 OK 232 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/2022/01/AdobeStock_139538976-scaled.jpeg
IP 151.101.66.159:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, description=Doctor showing medical records on his computer to his patient, he is pointing at the screen, manufacturer=NIKON CORPORATION, model=NIKON D810, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2, software=Adobe Bridge 2022 (Macintosh), datetime=2022:01:28 13:19:14], baseline, precision 8, 2560x1708, components 3\012- data
Size 232 kB (232148 bytes)
Hash 595134b5528b0f802e43ca7ccf1b12bb
c999c74502b25de64aba76fe1da08aae4cca8eb4
2ea795466a8738061e5645a32089ff3d27f12928d903879ae52533a1a619feca
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/01/AdobeStock_139538976-scaled.jpeg HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 21 Feb 2022 16:26:20 GMT
etag: W/"6213bd2c-3b995"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.233660,VS0,VE608
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 232148
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/wpforms-lite/assets/lib/mailcheck.min.js?ver=1.1.2
151.101.66.159200 OK 1.7 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/wpforms-lite/assets/lib/mailcheck.min.js?ver=1.1.2
IP 151.101.66.159:0
File type C source, ASCII text, with very long lines (4014), with no line terminators
Hash 42cb5672bb2292dfd615ffa57962efc1
cdeeb2471bae2cb74ae416b0efd82d7ea6f4ade6
bb42c512f3e8476aff490bd2e9846ab2b0cf8aa7ca4f0d7ff43418f3b1464c63
GET /wp-content/plugins/wpforms-lite/assets/lib/mailcheck.min.js?ver=1.1.2 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 12 Jan 2023 02:52:29 GMT
etag: W/"63bf75ed-fae"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.361999,VS0,VE481
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1730
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/wpforms-lite/assets/lib/jquery.validate.min.js?ver=1.19.5
151.101.66.159200 OK 8.6 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/wpforms-lite/assets/lib/jquery.validate.min.js?ver=1.19.5
IP 151.101.66.159:0
File type Unicode text, UTF-8 text, with very long lines (24463)
Hash 284b491b73a0f84467e017528752e260
e89ed931e6bb8b133c41d2b009e9ea9f61d53386
92a6e4423ebb77511f15fda3df4af4be9f3b2f290e9b355749e710cc0eb13b62
GET /wp-content/plugins/wpforms-lite/assets/lib/jquery.validate.min.js?ver=1.19.5 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 12 Jan 2023 02:52:29 GMT
etag: W/"63bf75ed-601a"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.360128,VS0,VE488
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 8627
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
151.101.66.159200 OK 78 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 151.101.66.159:0
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://ams-solutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.10.1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Thu, 19 Jan 2023 14:21:21 GMT
etag: "63c951e1-13174"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
access-control-allow-origin: *
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237070.852217,VS0,VE3
vary: Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 78196
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 61162a42e6bf5415f3d80ceac5e25ad2
2c2a987ab75a008682a5defd50d20be737912b23
4260bef1cd37c1f0372c9a5aae4ca0a6564c6473f68a4f4181ed83ed3d6b2d48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 17:51:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e6d21eff1927f7a74984663b16cfe21a
b747f7d42cdf7cfea6900348cd257066b2634222
a4343acb5bda29aa0d6d64bbefd6bc07a1c5e0166646171be74f4a1d266e3c92
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 17:51:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 61162a42e6bf5415f3d80ceac5e25ad2
2c2a987ab75a008682a5defd50d20be737912b23
4260bef1cd37c1f0372c9a5aae4ca0a6564c6473f68a4f4181ed83ed3d6b2d48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 17:51:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 61162a42e6bf5415f3d80ceac5e25ad2
2c2a987ab75a008682a5defd50d20be737912b23
4260bef1cd37c1f0372c9a5aae4ca0a6564c6473f68a4f4181ed83ed3d6b2d48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 17:51:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
142.250.74.35200 OK 35 kB URL HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 34852, version 1.0\012- data
Hash 0e8eefb4549a2edf26c560cb9845952e
8d0b1718aacad934fd0043c87cbc54aa091396bf
7f653b3ce9d3277457fc6da4edb246ae2f6c913f088c42dcb8cd2e96267aa21a
GET /s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ams-solutions.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 16 Jan 2023 00:48:21 GMT
expires: Tue, 16 Jan 2024 00:48:21 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:31:23 GMT
content-type: font/woff2
age: 406968
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.wp.com/e-202303.js
192.0.76.3200 OK 33 kB IP 192.0.76.3:0
File type ASCII text, with very long lines (2690)
Hash 1a795f18f2ac9ccb8b41a54b31fa60d9
0cb06276ad94a0c5dcf84a9f7a7f28d7258ed7a0
5171e499a578e6f1631d35670cb7f168e94f65a1440d764a983475b3d6e31820
GET /e-202303.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ams-solutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 20 Jan 2023 17:51:09 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-3508"
content-encoding: br
expires: Mon, 15 Jan 2024 10:22:23 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
142.250.74.35200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 35904, version 1.0\012- data
Hash c26b97e7f5bb7a34d190703522d75e16
69d9e5aea0544dbaf9b78c1b65139c03eceece8f
96217f1d27fb909f92b4a6b35a0d3d6775f2f0b4d136d27aee88547d3ed87357
GET /s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ams-solutions.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35904
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 15 Jan 2023 07:32:15 GMT
expires: Mon, 15 Jan 2024 07:32:15 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 18 Jul 2022 19:34:47 GMT
content-type: font/woff2
age: 469134
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCjC3jsGyN.woff2
142.250.74.35200 OK 30 kB URL HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCjC3jsGyN.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 30480, version 1.0\012- data
Hash 0e7e5f9d3a8ef121149827180b790b5c
0e9f9333078e5df9245630ff6f68ba1d9da3c403
e8e147e15907f25cad69b2bcf060213efad4ed04e0d36374715cbca17b2afc1c
GET /s/ubuntu/v20/4iCv6KVjbNBYlgoCjC3jsGyN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ams-solutions.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30480
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 18 Jan 2023 20:08:19 GMT
expires: Thu, 18 Jan 2024 20:08:19 GMT
cache-control: public, max-age=31536000
age: 164570
last-modified: Wed, 27 Apr 2022 16:04:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 61162a42e6bf5415f3d80ceac5e25ad2
2c2a987ab75a008682a5defd50d20be737912b23
4260bef1cd37c1f0372c9a5aae4ca0a6564c6473f68a4f4181ed83ed3d6b2d48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 17:51:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ams-solutions.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/fonts/elementskit.woff?y24e1e
151.101.66.159200 OK 459 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/fonts/elementskit.woff?y24e1e
IP 151.101.66.159:0
File type Web Open Font Format, TrueType, length 459032, version 1.0\012- data
Size 459 kB (459032 bytes)
Hash ffc4461b7391fe3a63d1d937ccf672ee
b84ee70589510373b301718aec797f8afdc52fd0
15f9c01652834e0e609f6905095e57fd46d2dfd7075f88e354a5cae5d88f4b9b
GET /wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/fonts/elementskit.woff?y24e1e HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://ams-solutions.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.8.1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff
last-modified: Thu, 19 Jan 2023 14:24:05 GMT
etag: "63c95285-70118"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237070.922072,VS0,VE3
vary: Authorization
x-fw-serve: TRUE
x-fw-static: YES
access-control-allow-origin: *
x-fw-type: VISIT
content-length: 459032
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/themes/medify/fonts/flaticon/Flaticon.woff2
151.101.66.159200 OK 17 kB URL HTTP/2 ams-solutions.com/wp-content/themes/medify/fonts/flaticon/Flaticon.woff2
IP 151.101.66.159:0
File type Web Open Font Format (Version 2), TrueType, length 17436, version 1.0\012- data
Hash bee7aaab50e90f8296e46e95adc9a4cc
c168e7340eb4493d661adac0a71cf9e391c3134a
6d77998fda643217c72c4f1a5e0e34103f7f9f55cdc851f072e17add47e1f57b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/medify/fonts/flaticon/Flaticon.woff2 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://ams-solutions.com/wp-content/themes/medify/fonts/flaticon/flaticon.css?ver=6.0.3
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Mon, 21 Feb 2022 16:39:55 GMT
etag: "6213c05b-441c"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
access-control-allow-origin: *
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237070.864409,VS0,VE81
vary: Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 17436
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
151.101.66.159200 OK 77 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 151.101.66.159:0
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://ams-solutions.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Thu, 19 Jan 2023 14:21:21 GMT
etag: "63c951e1-12bdc"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
access-control-allow-origin: *
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237070.939375,VS0,VE21
vary: Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 76764
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2022/01/fav.png
151.101.66.159200 OK 2.3 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/2022/01/fav.png
IP 151.101.66.159:0
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash e0219be62898fcf55829a3ef71c6a86c
b5d201033b4dda4fdc2976c38d717cc9b332eb66
ef490c91e467da6ef647b9fe848f9f4db9b3c4d9931738ee1d7ba709fb4def00
GET /wp-content/uploads/2022/01/fav.png HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/wp-content/uploads/elementor/css/post-491.css?ver=1674171735
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Mon, 21 Feb 2022 16:26:00 GMT
etag: W/"6213bd18-8d7"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:10 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237070.912712,VS0,VE127
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 2287
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2968
Expires: Fri, 20 Jan 2023 18:40:38 GMT
Date: Fri, 20 Jan 2023 17:51:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2968
Expires: Fri, 20 Jan 2023 18:40:38 GMT
Date: Fri, 20 Jan 2023 17:51:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2968
Expires: Fri, 20 Jan 2023 18:40:38 GMT
Date: Fri, 20 Jan 2023 17:51:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2968
Expires: Fri, 20 Jan 2023 18:40:38 GMT
Date: Fri, 20 Jan 2023 17:51:10 GMT
Connection: keep-alive
cdn.callrail.com/companies/402066312/d115cce5354f04331fc7/12/swap.js
143.204.55.73200 OK 41 kB URL HTTP/2 cdn.callrail.com/companies/402066312/d115cce5354f04331fc7/12/swap.js
IP 143.204.55.73:0
Hash ca1bd6a208ab8e519bb0d82a3c535ef6
1d6e10259b3f620a0031719ebfa7977cd5f5b648
3ad280e33da0d016c75f608330bf5ff8564f56c683ec8b33cf6c5b14f30c9618
GET /companies/402066312/d115cce5354f04331fc7/12/swap.js HTTP/1.1
Host: cdn.callrail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ams-solutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Fri, 20 Jan 2023 17:51:09 GMT
cache-control: max-age=3600, public
etag: W/"6d82d2283716915911844cd9132749b7"
timing-allow-origin: *
x-request-id: 8c7e5e0d-d2b3-4844-b6bd-92dfbb32e187
x-runtime: 0.015114
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iLsV22945-DZjM-d0gQ2NGIXb8QtTHarWsL-sZ27v9HOepWZh-6WVA==
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03285c30-851a-4892-8ad6-994296dfce51.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03285c30-851a-4892-8ad6-994296dfce51.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1eff6cdee4c98a6f806c5b417b12cdf2
4b4b817055dc2c0699c6e01d85841638e63d9c0e
2f2fdd1e829e4175e8cf915794ffc16e24dac72ab425448cd0ac5165b1b87b2f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03285c30-851a-4892-8ad6-994296dfce51.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5351
x-amzn-requestid: 86ba43bc-0b0f-40ba-9015-463371baf673
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3foQFg_IAMFSZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61301-0c1461622a361a5d0ab35cbb;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6KG0FqyN4ShRqE3cdV81X749Tlas0mf5W7Elvt5WOMZ1BHc3LXXU1g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 07:21:11 GMT
age: 37799
etag: "4b4b817055dc2c0699c6e01d85841638e63d9c0e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:500%2C400%7CNunito:700%2C400%7CUbuntu:700&display=swap
142.250.74.106200 OK 7.4 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto:500%2C400%7CNunito:700%2C400%7CUbuntu:700&display=swap
IP 142.250.74.106:0
Hash 57931b09154c513d738ba57390a55119
70409288b787c41f3631ecc56863d118c87a2e76
8e0659eb3980413db4e4bb05bd2c432a4bcab563bc479c9915d562333dbe1c90
GET /css?family=Roboto:500%2C400%7CNunito:700%2C400%7CUbuntu:700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ams-solutions.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 20 Jan 2023 17:51:09 GMT
date: Fri, 20 Jan 2023 17:51:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa19e2681-f167-4577-b7db-9afc7bd1ccf2.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa19e2681-f167-4577-b7db-9afc7bd1ccf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d3af2d51fb89ef0261ba025d76169261
9b3f4e3f63b64030624e02ad6ab8ef43a676dd66
c3d5a6f829dc59db8ed27a92fcfc6d387633bb43388e2c19d68b89356a13b1cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa19e2681-f167-4577-b7db-9afc7bd1ccf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13812
x-amzn-requestid: 7e3de1bc-a850-4a6e-891c-094996ee4a76
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAmw2HldoAMF-Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b805-5443ffce123461b44b9815b2;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:37:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: EUm5z7VSHRCILWZmLR5u_EuVtfVDerCwgAO7R19fDJZqYmsPa6Vz3Q==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 22:02:03 GMT
etag: "9b3f4e3f63b64030624e02ad6ab8ef43a676dd66"
content-type: image/jpeg
age: 71347
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1122c75-908d-4e51-8a61-b64f7ab77c76.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1122c75-908d-4e51-8a61-b64f7ab77c76.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f5195ac5d83278bed049661c0d1aaa4a
74b3e81e1dfc9f0a50aa936ba02b357c0df3aa9e
30af8f591b2d4f7c8de7d52ea53bb170ca426ef0550001c7802a7f993a6344df
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1122c75-908d-4e51-8a61-b64f7ab77c76.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7111
x-amzn-requestid: d9b5e6b0-3995-4c70-be84-0b1b457b7143
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAmRlHtkIAMFiGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b73d-37d253ee68fe1b7e483097dd;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:33:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 86-hgCgiYN-PYLZgXJO79kM9Vm6DIiRixaz-kQZFaY0m5481x8GWlw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 22:04:16 GMT
etag: "74b3e81e1dfc9f0a50aa936ba02b357c0df3aa9e"
content-type: image/jpeg
age: 71214
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbb60a79-f6ba-46cb-8679-5da65b53c107.webp
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbb60a79-f6ba-46cb-8679-5da65b53c107.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3638dc76d0638625ac9a31c038df3a44
deff1903d591273a96d538ae77988d8a080e228c
8382af3843ebeca8e5c13fdd60f7fb92b479915416f36686fce40566fd87ce68
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbb60a79-f6ba-46cb-8679-5da65b53c107.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10867
x-amzn-requestid: 8d882e21-d4c5-49ac-b76a-198cec065377
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAnVTEfpoAMFgJA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b8ee-6579537e6a82269f4bc99395;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:41:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: U9KuaPBC5u3bWYidHridxyj8GEYB79yig6zD9FxGCGwXh6zvs7QokA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 22:01:55 GMT
age: 71355
etag: "deff1903d591273a96d538ae77988d8a080e228c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ams-solutions.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 18 Jan 2023 19:33:54 GMT
expires: Thu, 18 Jan 2024 19:33:54 GMT
cache-control: public, max-age=31536000
age: 166636
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2022/01/AdobeStock_144065270-scaled.jpeg
151.101.66.159200 OK 259 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/2022/01/AdobeStock_144065270-scaled.jpeg
IP 151.101.66.159:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, description=patient listening intently to a male doctor explaining patient symptoms or asking a question as they discuss paperwork together, manufacturer=FUJIFILM, model=X-T10, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2, software=Adobe Bridge 2022 (Macintosh), datetime=2022:01:28 13:19:14], baseline, precision 8, 2560x1707, components 3\012- data
Size 259 kB (259263 bytes)
Hash d02b77f1f109b3eac0b556e67cee7d18
236b8850307c1ab0935e19662077962d99518473
1f4c2fb6761f28ff4a1d6cf17b1aff3be80d7455631809a1777f9c52e340146d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/01/AdobeStock_144065270-scaled.jpeg HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 21 Feb 2022 16:27:44 GMT
etag: W/"6213bd80-42e87"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:10 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.233924,VS0,VE955
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 259263
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2022/01/AdobeStock_294312657-scaled.jpeg
151.101.66.159200 OK 256 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/2022/01/AdobeStock_294312657-scaled.jpeg
IP 151.101.66.159:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=9, manufacturer=NIKON CORPORATION, model=NIKON Z 6, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2, software=Adobe Bridge 2022 (Macintosh), datetime=2022:01:28 13:19:19], baseline, precision 8, 2560x1703, components 3\012- data
Size 256 kB (255674 bytes)
Hash 47d80a027738e5f33f31ef26d99eed19
fbf8a3ace712b92dde2de9843d9fd2d27183ce45
04090ab62ad03a7f9cb891db91c163146d9b1879f52c230495059b1b7030a278
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/01/AdobeStock_294312657-scaled.jpeg HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 21 Feb 2022 16:28:56 GMT
etag: W/"6213bdc8-412e4"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:10 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.230203,VS0,VE964
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 255674
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2022/01/AdobeStock_159523577-scaled.jpeg
151.101.66.159200 OK 288 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/2022/01/AdobeStock_159523577-scaled.jpeg
IP 151.101.66.159:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, description=Healthcare costs and fees concept.Hand of smart doctor used a calculator for medical costs in modern hospital , manufacturer=Canon, model=Canon EOS M3, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2, software=Adobe Bridge 2022 (Macintosh), datetime=2022:01:28 13:19:15], baseline, precision 8, 2560x1707, components 3\012- data
Size 288 kB (287760 bytes)
Hash 23947d14f259c0a592fbcb9455faa07e
94a409f485261aa97936ca0e07a45ba492973397
2c8b4abfd2c6e727423bbd927722b9f554200c2f0d4d71c8443afa824ce83418
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/01/AdobeStock_159523577-scaled.jpeg HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 21 Feb 2022 16:26:10 GMT
etag: W/"6213bd22-49050"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:10 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.228905,VS0,VE966
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 287760
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 5d965b1562bebb6ae79ea14f72b12ae2
3873fe5c227d767a70f06b460610adfeb284a98b
63e086ab2e11c13ea057941a22e3665cd2f878400ea6a47db2f4e4f0cb2a8eff
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 17:51:10 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 20 Jan 2023 14:49:11 GMT
Expires: Fri, 27 Jan 2023 14:49:10 GMT
Etag: "3873fe5c227d767a70f06b460610adfeb284a98b"
Cache-Control: max-age=593280,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78c9a8165eb8b515-OSL
ams-solutions.com/wp-content/uploads/2022/01/AdobeStock_159526313-scaled-e1643403511889.jpeg
151.101.66.159200 OK 310 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/2022/01/AdobeStock_159526313-scaled-e1643403511889.jpeg
IP 151.101.66.159:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, description=Healthcare costs and fees concept.Hand of smart doctor used a calculator for medical costs in modern hospital with VR icon diag, manufacturer=Canon, model=Canon EOS M3, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2, software=Adobe Bridge 2022 (Macintosh), datetime=2022:01:28 13:19:16], baseline, precision 8, 2560x1707, components 3\012- data
Size 310 kB (309468 bytes)
Hash 9b30abb3390d7a8a1c6fb2dd4b74764d
f5c7217ab5d371eb61cb928df29aecd48284bf2a
249a7258d412d81240795e9c4727c54ef5426201a770fffe2ef030beabe899ac
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/01/AdobeStock_159526313-scaled-e1643403511889.jpeg HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/wp-content/uploads/elementor/css/post-491.css?ver=1674171735
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 21 Feb 2022 16:28:18 GMT
etag: W/"6213bda2-4e8ba"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:10 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237070.911975,VS0,VE493
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 309468
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2019/08/home-2_section_05.jpg
151.101.66.159200 OK 19 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/2019/08/home-2_section_05.jpg
IP 151.101.66.159:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x800, components 3\012- data
Hash cfa1d4b5c28855653ebb0bfea882c282
83c30fe127cf1a44c9e24eac1e7df5eabd80558c
17f894714d54072f1595d1db420be0d7534585d843bea59f11ac15fa1f5c2b64
GET /wp-content/uploads/2019/08/home-2_section_05.jpg HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/wp-content/uploads/elementor/css/post-491.css?ver=1674171735
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 21 Feb 2022 16:26:25 GMT
etag: W/"6213bd31-9d39"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:10 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237070.911047,VS0,VE597
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 19294
X-Firefox-Spdy: h2
pixel.wp.com/g.gif?v=ext&blog=90226661&post=491&tz=0&srv=ams-solutions.com&j=1%3A11.7.1&host=ams-solutions.com&ref=&fcp=2196&rand=0.3695287961352467
192.0.76.3200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=ext&blog=90226661&post=491&tz=0&srv=ams-solutions.com&j=1%3A11.7.1&host=ams-solutions.com&ref=&fcp=2196&rand=0.3695287961352467
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&blog=90226661&post=491&tz=0&srv=ams-solutions.com&j=1%3A11.7.1&host=ams-solutions.com&ref=&fcp=2196&rand=0.3695287961352467 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ams-solutions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 20 Jan 2023 17:51:10 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2022/01/cropped-fav-32x32.png
151.101.66.159200 OK 965 B URL HTTP/2 ams-solutions.com/wp-content/uploads/2022/01/cropped-fav-32x32.png
IP 151.101.66.159:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash a386ff33dd0dcfb9108aea187cc360dd
26130ed46678b0c6bdf8e9b26568907c04058795
9e61d82d4418dadc0a9add35455cf6a2882f1bbd587fd2bf8131c6602e681ae5
GET /wp-content/uploads/2022/01/cropped-fav-32x32.png HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//ams-solutions.com/; _ga_JFD0YB47N6=GS1.1.1674237069.1.0.1674237069.0.0.0; _ga=GA1.1.1646440555.1674237070; _ga_1DDZH3H91W=GS1.1.1674237069.1.0.1674237069.0.0.0; gclid=undefined; calltrk_session_id=9331ddc1-f97a-41cc-9f76-77811ed081f0; afl_wc_utm_cookie_expiry=90; afl_wc_utm_sess_visit=1674237069; afl_wc_utm_sess_landing=https://ams-solutions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Mon, 21 Feb 2022 16:25:40 GMT
etag: W/"6213bd04-3ae"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:10 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237071.949532,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 965
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2022/01/cropped-fav-192x192.png
151.101.66.159200 OK 10 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/2022/01/cropped-fav-192x192.png
IP 151.101.66.159:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash bd92c756775ad3a79a6df39f169cec04
9b285a9f3ea5e13d7defff316d242e65b62382a9
ca71cee38d1a313e710cf287b43adb64a2067ae36af1c1ddc3e6472d52e5f2db
GET /wp-content/uploads/2022/01/cropped-fav-192x192.png HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//ams-solutions.com/; _ga_JFD0YB47N6=GS1.1.1674237069.1.0.1674237069.0.0.0; _ga=GA1.1.1646440555.1674237070; _ga_1DDZH3H91W=GS1.1.1674237069.1.0.1674237069.0.0.0; gclid=undefined; calltrk_session_id=9331ddc1-f97a-41cc-9f76-77811ed081f0; afl_wc_utm_cookie_expiry=90; afl_wc_utm_sess_visit=1674237069; afl_wc_utm_sess_landing=https://ams-solutions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Mon, 21 Feb 2022 16:28:45 GMT
etag: W/"6213bdbd-2704"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:10 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237071.949329,VS0,VE4
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 9981
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
151.101.66.159200 OK 676 B URL HTTP/2 ams-solutions.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP 151.101.66.159:0
File type ASCII text, with very long lines (1320)
Hash 41c56e71e09571c03e05f4380d7da78d
82030b0c8d313f73b9908f903c9752d127004c9e
dc161b9b9a27fc955d418907ce031decfccff25bee42d87a7db64c7abdcefde3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//ams-solutions.com/; _ga_JFD0YB47N6=GS1.1.1674237069.1.0.1674237069.0.0.0; _ga=GA1.1.1646440555.1674237070; _ga_1DDZH3H91W=GS1.1.1674237069.1.0.1674237069.0.0.0; gclid=undefined; calltrk_session_id=9331ddc1-f97a-41cc-9f76-77811ed081f0; afl_wc_utm_cookie_expiry=90; afl_wc_utm_sess_visit=1674237069; afl_wc_utm_sess_landing=https://ams-solutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 14:21:20 GMT
etag: W/"63c951e0-550"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:10 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237071.958217,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 676
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ams-solutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 20 Jan 2023 17:45:20 GMT
expires: Fri, 20 Jan 2023 19:45:20 GMT
cache-control: public, max-age=7200
age: 351
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bat.bing.com/bat.js
204.79.197.200200 OK 12 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39124), with no line terminators
Hash b77f77f4f821a11c0a501be8d6a19659
7bba3d65db27d7c0e050bbf2294021433221de5d
e80b6b1a2f792de4681310088abf8d9172a81ee10a54965c8eb602fae2d92319
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ams-solutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11472
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 05 Dec 2022 17:15:50 GMT
accept-ranges: bytes
etag: "027e538cd8d91:0"
vary: Accept-Encoding
set-cookie: MUID=3B89F1F6630866082B18E369625F6727; domain=.bing.com; expires=Wed, 14-Feb-2024 17:51:10 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 28F6CEE39F6843DABE67477562BD3BCB Ref B: OSL30EDGE0420 Ref C: 2023-01-20T17:51:10Z
date: Fri, 20 Jan 2023 17:51:10 GMT
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-JFD0YB47N6>m=2oe1i0&_p=1940643157&cid=1646440555.1674237070&ul=en-us&sr=1280x1024&_s=1&sid=1674237069&sct=1&seg=0&dl=https%3A%2F%2Fams-solutions.com%2F&dt=Trusted%20Medical%20Billing%20Company%20in%20Texas%20-%20AMS%20Billing%20Solutions&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-JFD0YB47N6>m=2oe1i0&_p=1940643157&cid=1646440555.1674237070&ul=en-us&sr=1280x1024&_s=1&sid=1674237069&sct=1&seg=0&dl=https%3A%2F%2Fams-solutions.com%2F&dt=Trusted%20Medical%20Billing%20Company%20in%20Texas%20-%20AMS%20Billing%20Solutions&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-JFD0YB47N6>m=2oe1i0&_p=1940643157&cid=1646440555.1674237070&ul=en-us&sr=1280x1024&_s=1&sid=1674237069&sct=1&seg=0&dl=https%3A%2F%2Fams-solutions.com%2F&dt=Trusted%20Medical%20Billing%20Company%20in%20Texas%20-%20AMS%20Billing%20Solutions&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ams-solutions.com
Connection: keep-alive
Referer: https://ams-solutions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://ams-solutions.com
date: Fri, 20 Jan 2023 17:51:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
js.callrail.com/group/0/d115cce5354f04331fc7/12/swap_session.json
143.204.55.59200 OK 39 kB URL HTTP/2 js.callrail.com/group/0/d115cce5354f04331fc7/12/swap_session.json
IP 143.204.55.59:0
Hash c2a90b714b4436f1d42cd880fb0b10a6
540bc1be2987c5755ac4d18cee34086838627ec0
3937c9b879a9f2f986d5182c2314d0369360ce22375375d49e5639c873d61557
POST /group/0/d115cce5354f04331fc7/12/swap_session.json HTTP/1.1
Host: js.callrail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 401
Origin: https://ams-solutions.com
Connection: keep-alive
Referer: https://ams-solutions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Fri, 20 Jan 2023 17:51:10 GMT
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
access-control-allow-origin: *
access-control-expose-headers:
access-control-max-age: 7200
cache-control: max-age=0, private, must-revalidate
etag: W/"a16c2bf1b21db196ddf564a979a6a1b8"
vary: Origin
x-request-id: ca5f61ac-e53c-41a7-b073-1f0ec20b1012
x-runtime: 0.045806
x-cache: Miss from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: I6v3YY6mdYqJDKe95r8PtRWcdBPAqbildSjrpxA-yhXggXSDtb0vGg==
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementor-pro/assets/js/posts.397aa4bedda9268558a6.bundle.min.js
151.101.66.159200 OK 1.3 kB URL HTTP/2 ams-solutions.com/wp-content/plugins/elementor-pro/assets/js/posts.397aa4bedda9268558a6.bundle.min.js
IP 151.101.66.159:0
File type ASCII text, with very long lines (3317)
Hash 23805332cf03e360a52817eda251381f
8741b3fbb19060145e9b12383c38a183cefb0781
8618d20672c6dbc0bd7c82496ec60a5688661ab62bfacf2f23ade8edc4b32e72
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/posts.397aa4bedda9268558a6.bundle.min.js HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//ams-solutions.com/; _ga_JFD0YB47N6=GS1.1.1674237069.1.0.1674237069.0.0.0; _ga=GA1.2.1646440555.1674237070; _ga_1DDZH3H91W=GS1.1.1674237069.1.0.1674237069.0.0.0; gclid=undefined; calltrk_session_id=9331ddc1-f97a-41cc-9f76-77811ed081f0; afl_wc_utm_cookie_expiry=90; afl_wc_utm_sess_visit=1674237069; afl_wc_utm_sess_landing=https://ams-solutions.com/; calltrk_fcid=99e682cb-eb38-4f88-9ac5-4d946acf09d6; _gid=GA1.2.241620328.1674237070; _gat_UA-161158277-2=1; _clck=3ea54o|1|f8f|0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 23:39:31 GMT
etag: W/"63c9d4b3-d21"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:11 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237071.454662,VS0,VE123
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1339
X-Firefox-Spdy: h2
www.clarity.ms/eus/s/0.7.1/clarity.js
13.107.237.53200 OK 21 kB URL HTTP/2 www.clarity.ms/eus/s/0.7.1/clarity.js
IP 13.107.237.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (56646)
Hash 09b7080f0c03199df9c06f519bc21fd8
e110c91fe7f08194083bae7e867403979b38aef5
9eddff077e91dc70da89637a7c7bb4dfb69704a0f44e04f6c9ff131b5d7a04e2
GET /eus/s/0.7.1/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ams-solutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d928dd7500799e"
server: Microsoft-IIS/10.0
x-cache: TCP_HIT
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
x-azure-ref-originshield: 0/o/JYwAAAAAuUQ6E6nMuTYoxGP/dcQvhRlJBMjMxMDUwNDE3MDI1ADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
x-azure-ref: 0j9TKYwAAAAC3nV3thyg9RoIndT7nJZYlQ1BIMzBFREdFMDQxNwA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Fri, 20 Jan 2023 17:51:10 GMT
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2019/08/home-2_slider_01_02.png
151.101.66.159200 OK 816 B URL HTTP/2 ams-solutions.com/wp-content/uploads/2019/08/home-2_slider_01_02.png
IP 151.101.66.159:0
File type PNG image data, 64 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 8111ccbebfd72dc731afb1c97be7741b
17c72324fc596edabbf63942e35be563787f188a
fe541efa28ec8b46dd8798786c00a6f5397926173aad001f8eaaf38a7eeba01c
GET /wp-content/uploads/2019/08/home-2_slider_01_02.png HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//ams-solutions.com/; _ga_JFD0YB47N6=GS1.1.1674237069.1.0.1674237069.0.0.0; _ga=GA1.2.1646440555.1674237070; _ga_1DDZH3H91W=GS1.1.1674237069.1.0.1674237069.0.0.0; gclid=undefined; calltrk_session_id=9331ddc1-f97a-41cc-9f76-77811ed081f0; afl_wc_utm_cookie_expiry=90; afl_wc_utm_sess_visit=1674237069; afl_wc_utm_sess_landing=https%3A%2F%2Fams-solutions.com%2F; calltrk_fcid=99e682cb-eb38-4f88-9ac5-4d946acf09d6; _gid=GA1.2.241620328.1674237070; _gat_UA-161158277-2=1; _clck=3ea54o|1|f8f|0; afl_wc_utm_main=%7B%22updated_ts%22%3A1674237071%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Mon, 21 Feb 2022 16:25:32 GMT
etag: W/"6213bcfc-499"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:11 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237072.549836,VS0,VE125
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 816
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2022/01/AdobeStock_125178725-300x200.jpeg
151.101.66.159200 OK 18 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/2022/01/AdobeStock_125178725-300x200.jpeg
IP 151.101.66.159:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, description=Doctor working with digital tablet and laptop computer with smart phone in medical workspace office and video conferance as con, manufacturer=Canon, model=Canon EOS M3, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2, software=Adobe Bridge 2022 (Macintosh), datetime=2022:01:28 13:19:12], baseline, precision 8, 300x200, components 3\012- data
Hash 333df1da7edc35c6d3e1b605a40ebdab
7248cff8b649729db777a9f0ca3e4cbe5755cbc7
65daac2f6bb496d8e396584a9d16a6e23a0094d656cd8d499cb057d4360c6ae9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/01/AdobeStock_125178725-300x200.jpeg HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//ams-solutions.com/; _ga_JFD0YB47N6=GS1.1.1674237069.1.0.1674237069.0.0.0; _ga=GA1.2.1646440555.1674237070; _ga_1DDZH3H91W=GS1.1.1674237069.1.0.1674237069.0.0.0; gclid=undefined; calltrk_session_id=9331ddc1-f97a-41cc-9f76-77811ed081f0; afl_wc_utm_cookie_expiry=90; afl_wc_utm_sess_visit=1674237069; afl_wc_utm_sess_landing=https%3A%2F%2Fams-solutions.com%2F; calltrk_fcid=99e682cb-eb38-4f88-9ac5-4d946acf09d6; _gid=GA1.2.241620328.1674237070; _gat_UA-161158277-2=1; _clck=3ea54o|1|f8f|0; afl_wc_utm_main=%7B%22updated_ts%22%3A1674237071%7D; _uetsid=064ef9b098eb11edab3627754d42aec2; _uetvid=064f10b098eb11edac49cbf36ff37a11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 21 Feb 2022 16:25:23 GMT
etag: W/"6213bcf3-6a2b"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:11 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237072.639926,VS0,VE241
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 18035
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2022/01/AdobeStock_172069097-scaled-e1643398821698.jpeg
151.101.66.159200 OK 221 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/2022/01/AdobeStock_172069097-scaled-e1643398821698.jpeg
IP 151.101.66.159:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, description=Cropped image of attractive young female doctor is working with laptop in light cabinet., manufacturer=NIKON CORPORATION, model=NIKON D810, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2, software=Adobe Bridge 2022 (Macintosh), datetime=2022:01:28 13:19:17], baseline, precision 8, 2560x1709, components 3\012- data
Size 221 kB (220904 bytes)
Hash caf5f48cf071acfd64a01f1ea1d384f0
42e332c995d27fb393e0f8e28f9992f8eef83a2b
2f319e652f9ec14f384847e30a0acc6c3576c70001bf0899e745ff802bf19f3e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/01/AdobeStock_172069097-scaled-e1643398821698.jpeg HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//ams-solutions.com/; _ga_JFD0YB47N6=GS1.1.1674237069.1.0.1674237069.0.0.0; _ga=GA1.2.1646440555.1674237070; _ga_1DDZH3H91W=GS1.1.1674237069.1.0.1674237069.0.0.0; gclid=undefined; calltrk_session_id=9331ddc1-f97a-41cc-9f76-77811ed081f0; afl_wc_utm_cookie_expiry=90; afl_wc_utm_sess_visit=1674237069; afl_wc_utm_sess_landing=https%3A%2F%2Fams-solutions.com%2F; calltrk_fcid=99e682cb-eb38-4f88-9ac5-4d946acf09d6; _gid=GA1.2.241620328.1674237070; _gat_UA-161158277-2=1; _clck=3ea54o|1|f8f|0; afl_wc_utm_main=%7B%22updated_ts%22%3A1674237071%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 21 Feb 2022 16:28:42 GMT
etag: W/"6213bdba-38d77"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:11 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237072.547683,VS0,VE362
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 220904
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2019/08/home-2_slider_01_03.png
151.101.66.159200 OK 823 B URL HTTP/2 ams-solutions.com/wp-content/uploads/2019/08/home-2_slider_01_03.png
IP 151.101.66.159:0
File type PNG image data, 49 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 7667784a52bd7d6a9882da2eb761c366
6471b89eab01a79f8940c78b8db3cdfcb4ec1c23
098d1f97687401fdcd11aee7de652d7d54ba8ad96286d22be1a4a2b4395cb386
GET /wp-content/uploads/2019/08/home-2_slider_01_03.png HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//ams-solutions.com/; _ga_JFD0YB47N6=GS1.1.1674237069.1.0.1674237069.0.0.0; _ga=GA1.2.1646440555.1674237070; _ga_1DDZH3H91W=GS1.1.1674237069.1.0.1674237069.0.0.0; gclid=undefined; calltrk_session_id=9331ddc1-f97a-41cc-9f76-77811ed081f0; afl_wc_utm_cookie_expiry=90; afl_wc_utm_sess_visit=1674237069; afl_wc_utm_sess_landing=https%3A%2F%2Fams-solutions.com%2F; calltrk_fcid=99e682cb-eb38-4f88-9ac5-4d946acf09d6; _gid=GA1.2.241620328.1674237070; _gat_UA-161158277-2=1; _clck=3ea54o|1|f8f|0; afl_wc_utm_main=%7B%22updated_ts%22%3A1674237071%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Mon, 21 Feb 2022 16:25:49 GMT
etag: W/"6213bd0d-477"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:12 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237072.550511,VS0,VE486
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 823
X-Firefox-Spdy: h2
www.clarity.ms/tag/dypqe2wtsh?ref=gtm
13.107.237.53200 OK 1.8 kB URL HTTP/2 www.clarity.ms/tag/dypqe2wtsh?ref=gtm
IP 13.107.237.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 846817d11a88b93668a58b6368586364
39eadbd0deacca770a0bd21acd7935a282abfdef
efb082749d29da6fd171ecf77e95991bcdedb4b6f8d707901eda93a6473a4863
GET /tag/dypqe2wtsh?ref=gtm HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ams-solutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=dde3858029f242e5aaae2ac27b16a48b.20230120.20240120; expires=Sat, 20 Jan 2024 17:51:11 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:e55edbbe-e22b-46b4-8313-9ee2a4e71d12
x-cache: CONFIG_NOCACHE
x-azure-ref: 0j9TKYwAAAAB3N/2nlGz6RowwlxVV4u3RQ1BIMzBFREdFMDQxNwA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Fri, 20 Jan 2023 17:51:10 GMT
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2022/01/AdobeStock_284766154-300x200.jpeg
151.101.66.159200 OK 17 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/2022/01/AdobeStock_284766154-300x200.jpeg
IP 151.101.66.159:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=11, description=Smart doctor hand using calculator for account about medical costs with stethoscope and computer notebook on the desk at modern, manufacturer=NIKON CORPORATION, model=NIKON D7200, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2, software=Adobe Bridge 2022 (Macintosh), datetime=2022:01:28 13:19:18, copyright=Nikcoa], baseline, precision 8, 300x200, components 3\012- data
Hash ec4fd6985ec289203df770a1761061f4
aeb4aa16819125abd327b0895cb6cdd0eabc2fde
c78f19630de31bde37e75892ee499b7b64d85541580a89d386e14581016ab84b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/01/AdobeStock_284766154-300x200.jpeg HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//ams-solutions.com/; _ga_JFD0YB47N6=GS1.1.1674237069.1.0.1674237069.0.0.0; _ga=GA1.2.1646440555.1674237070; _ga_1DDZH3H91W=GS1.1.1674237069.1.0.1674237069.0.0.0; gclid=undefined; calltrk_session_id=9331ddc1-f97a-41cc-9f76-77811ed081f0; afl_wc_utm_cookie_expiry=90; afl_wc_utm_sess_visit=1674237069; afl_wc_utm_sess_landing=https%3A%2F%2Fams-solutions.com%2F; calltrk_fcid=99e682cb-eb38-4f88-9ac5-4d946acf09d6; _gid=GA1.2.241620328.1674237070; _gat_UA-161158277-2=1; _clck=3ea54o|1|f8f|0; afl_wc_utm_main=%7B%22updated_ts%22%3A1674237071%7D; _uetsid=064ef9b098eb11edab3627754d42aec2; _uetvid=064f10b098eb11edac49cbf36ff37a11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 21 Feb 2022 16:25:49 GMT
etag: W/"6213bd0d-660b"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:12 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237072.637123,VS0,VE603
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 16880
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2022/09/shutterstock_577216435-300x215.jpg
151.101.66.159200 OK 15 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/2022/09/shutterstock_577216435-300x215.jpg
IP 151.101.66.159:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 300x215, components 3\012- data
Hash 4d1fc4ed34f56ed6cbe319d34b6da2ab
0fbab170d302f6dc3363f91d9260b2afedc44778
151b482afa84c03c8ec36d90a85ac7a47e69b4623524ce5ecf5fa22cfac88a33
GET /wp-content/uploads/2022/09/shutterstock_577216435-300x215.jpg HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//ams-solutions.com/; _ga_JFD0YB47N6=GS1.1.1674237069.1.0.1674237069.0.0.0; _ga=GA1.2.1646440555.1674237070; _ga_1DDZH3H91W=GS1.1.1674237069.1.0.1674237069.0.0.0; gclid=undefined; calltrk_session_id=9331ddc1-f97a-41cc-9f76-77811ed081f0; afl_wc_utm_cookie_expiry=90; afl_wc_utm_sess_visit=1674237069; afl_wc_utm_sess_landing=https%3A%2F%2Fams-solutions.com%2F; calltrk_fcid=99e682cb-eb38-4f88-9ac5-4d946acf09d6; _gid=GA1.2.241620328.1674237070; _gat_UA-161158277-2=1; _clck=3ea54o|1|f8f|0; afl_wc_utm_main=%7B%22updated_ts%22%3A1674237071%7D; _uetsid=064ef9b098eb11edab3627754d42aec2; _uetvid=064f10b098eb11edac49cbf36ff37a11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Fri, 30 Sep 2022 20:11:51 GMT
etag: W/"63374d87-477a"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:12 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237072.644998,VS0,VE635
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 15049
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2022/10/shutterstock_577216435-300x215.jpg
151.101.66.159200 OK 15 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/2022/10/shutterstock_577216435-300x215.jpg
IP 151.101.66.159:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 300x215, components 3\012- data
Hash 4d1fc4ed34f56ed6cbe319d34b6da2ab
0fbab170d302f6dc3363f91d9260b2afedc44778
151b482afa84c03c8ec36d90a85ac7a47e69b4623524ce5ecf5fa22cfac88a33
GET /wp-content/uploads/2022/10/shutterstock_577216435-300x215.jpg HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//ams-solutions.com/; _ga_JFD0YB47N6=GS1.1.1674237069.1.0.1674237069.0.0.0; _ga=GA1.2.1646440555.1674237070; _ga_1DDZH3H91W=GS1.1.1674237069.1.0.1674237069.0.0.0; gclid=undefined; calltrk_session_id=9331ddc1-f97a-41cc-9f76-77811ed081f0; afl_wc_utm_cookie_expiry=90; afl_wc_utm_sess_visit=1674237069; afl_wc_utm_sess_landing=https%3A%2F%2Fams-solutions.com%2F; calltrk_fcid=99e682cb-eb38-4f88-9ac5-4d946acf09d6; _gid=GA1.2.241620328.1674237070; _gat_UA-161158277-2=1; _clck=3ea54o|1|f8f|0; afl_wc_utm_main=%7B%22updated_ts%22%3A1674237071%7D; _uetsid=064ef9b098eb11edab3627754d42aec2; _uetvid=064f10b098eb11edac49cbf36ff37a11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Thu, 20 Oct 2022 21:41:57 GMT
etag: W/"6351c0a5-477a"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:12 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237072.640730,VS0,VE710
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 15049
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2022/05/shutterstock_726441562-300x200.jpg
151.101.66.159200 OK 15 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/2022/05/shutterstock_726441562-300x200.jpg
IP 151.101.66.159:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 300x200, components 3\012- data
Hash a1a00a65ec7235fad6f4bdff7c3c0f3e
ff3a1fefb1b58d8a0c17b0fed8bfc0c4f556d88c
c7124e0d77524da331a700b8a2fce357678d86ac106efa97f592958fdbd42826
GET /wp-content/uploads/2022/05/shutterstock_726441562-300x200.jpg HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//ams-solutions.com/; _ga_JFD0YB47N6=GS1.1.1674237069.1.0.1674237069.0.0.0; _ga=GA1.2.1646440555.1674237070; _ga_1DDZH3H91W=GS1.1.1674237069.1.0.1674237069.0.0.0; gclid=undefined; calltrk_session_id=9331ddc1-f97a-41cc-9f76-77811ed081f0; afl_wc_utm_cookie_expiry=90; afl_wc_utm_sess_visit=1674237069; afl_wc_utm_sess_landing=https%3A%2F%2Fams-solutions.com%2F; calltrk_fcid=99e682cb-eb38-4f88-9ac5-4d946acf09d6; _gid=GA1.2.241620328.1674237070; _gat_UA-161158277-2=1; _clck=3ea54o|1|f8f|0; afl_wc_utm_main=%7B%22updated_ts%22%3A1674237071%7D; _uetsid=064ef9b098eb11edab3627754d42aec2; _uetvid=064f10b098eb11edac49cbf36ff37a11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Fri, 13 May 2022 20:42:32 GMT
etag: W/"627ec2b8-3a73"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:12 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237072.645796,VS0,VE729
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 14958
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2019/08/home-2_slider_01_01.png
151.101.66.159200 OK 86 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/2019/08/home-2_slider_01_01.png
IP 151.101.66.159:0
File type PNG image data, 856 x 856, 8-bit/color RGBA, non-interlaced\012- data
Hash 787e1bd9de79b8398d0a238cefbff81a
917aeee2bcc25960266946d7378c7cf6f27f32b6
bb8e7a37453ef5b1ab08d489019aebd369590d29b5bea0ae1f4a91fb61e801c1
GET /wp-content/uploads/2019/08/home-2_slider_01_01.png HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//ams-solutions.com/; _ga_JFD0YB47N6=GS1.1.1674237069.1.0.1674237069.0.0.0; _ga=GA1.2.1646440555.1674237070; _ga_1DDZH3H91W=GS1.1.1674237069.1.0.1674237069.0.0.0; gclid=undefined; calltrk_session_id=9331ddc1-f97a-41cc-9f76-77811ed081f0; afl_wc_utm_cookie_expiry=90; afl_wc_utm_sess_visit=1674237069; afl_wc_utm_sess_landing=https%3A%2F%2Fams-solutions.com%2F; calltrk_fcid=99e682cb-eb38-4f88-9ac5-4d946acf09d6; _gid=GA1.2.241620328.1674237070; _gat_UA-161158277-2=1; _clck=3ea54o|1|f8f|0; afl_wc_utm_main=%7B%22updated_ts%22%3A1674237071%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Mon, 21 Feb 2022 16:27:59 GMT
etag: W/"6213bd8f-15fb8"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:12 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237072.548840,VS0,VE852
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 86376
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=136026329&tm=gtm002&Ver=2&mid=84f2ef6b-5e9e-49d8-b20b-6b2d4e8e462b&sid=064ef9b098eb11edab3627754d42aec2&vid=064f10b098eb11edac49cbf36ff37a11&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Trusted%20Medical%20Billing%20Company%20in%20Texas%20-%20AMS%20Billing%20Solutions&p=https%3A%2F%2Fams-solutions.com%2F&r=<=3621&evt=pageLoad&sv=1&rn=20477
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=136026329&tm=gtm002&Ver=2&mid=84f2ef6b-5e9e-49d8-b20b-6b2d4e8e462b&sid=064ef9b098eb11edab3627754d42aec2&vid=064f10b098eb11edac49cbf36ff37a11&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Trusted%20Medical%20Billing%20Company%20in%20Texas%20-%20AMS%20Billing%20Solutions&p=https%3A%2F%2Fams-solutions.com%2F&r=<=3621&evt=pageLoad&sv=1&rn=20477
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=136026329&tm=gtm002&Ver=2&mid=84f2ef6b-5e9e-49d8-b20b-6b2d4e8e462b&sid=064ef9b098eb11edab3627754d42aec2&vid=064f10b098eb11edac49cbf36ff37a11&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Trusted%20Medical%20Billing%20Company%20in%20Texas%20-%20AMS%20Billing%20Solutions&p=https%3A%2F%2Fams-solutions.com%2F&r=<=3621&evt=pageLoad&sv=1&rn=20477 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ams-solutions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=1F44E52FF6076C2F29DEF7B0F7506DC6; domain=.bing.com; expires=Wed, 14-Feb-2024 17:51:12 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 44B24A2D155B4A2FAFCBF0F55927B793 Ref B: OSL30EDGE0420 Ref C: 2023-01-20T17:51:12Z
date: Fri, 20 Jan 2023 17:51:11 GMT
X-Firefox-Spdy: h2
secure.gravatar.com/avatar/1a213883c2a142fdc884ab94f82d50d5?s=128&d=mm&r=g
192.0.73.2200 OK 1.8 kB URL HTTP/2 secure.gravatar.com/avatar/1a213883c2a142fdc884ab94f82d50d5?s=128&d=mm&r=g
IP 192.0.73.2:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 128x128, components 3\012- data
Hash 4154262dbf6bcfd4c71206b5e5f49f1e
558751a490b0611353c9886af883b1daed64496d
c93b5678d2c4b70b137a462a639011f7193fe1e58b56d0d4a1c4ada5bcdc022c
GET /avatar/1a213883c2a142fdc884ab94f82d50d5?s=128&d=mm&r=g HTTP/1.1
Host: secure.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ams-solutions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 20 Jan 2023 17:51:12 GMT
content-type: image/jpeg
content-length: 1784
last-modified: Wed, 11 Jan 1984 08:00:00 GMT
link: <https://www.gravatar.com/avatar/1a213883c2a142fdc884ab94f82d50d5?s=128&d=mm&r=g>; rel="canonical"
access-control-allow-origin: *
content-disposition: inline; filename="1a213883c2a142fdc884ab94f82d50d5.png"
expires: Fri, 20 Jan 2023 17:56:12 GMT
cache-control: max-age=300
x-nc: HIT arn 3
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 071edf406c3e287843fdf4e61ceb9ff7
99cf4c0cb373feeecbdf97df42c8066551f89dfe
127371c4c4a3345b44dfbf97fb93b506d2daf0c0ecfb39317eefd695c8c59d69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 17:51:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-161158277-2&cid=1646440555.1674237070&jid=1539123563&gjid=1314259344&_gid=241620328.1674237070&_u=YADAAEAAAAAAACAAI~&z=705508150
108.177.14.155200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-161158277-2&cid=1646440555.1674237070&jid=1539123563&gjid=1314259344&_gid=241620328.1674237070&_u=YADAAEAAAAAAACAAI~&z=705508150
IP 108.177.14.155:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-161158277-2&cid=1646440555.1674237070&jid=1539123563&gjid=1314259344&_gid=241620328.1674237070&_u=YADAAEAAAAAAACAAI~&z=705508150 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://ams-solutions.com
Connection: keep-alive
Referer: https://ams-solutions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://ams-solutions.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 20 Jan 2023 17:51:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bat.bing.com/p/action/136026329.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/136026329.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/136026329.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ams-solutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=0B0CD2288E936C7F30B2C0B78FC46D5F; domain=.bing.com; expires=Wed, 14-Feb-2024 17:51:12 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 13A2248086D04C4B9733F8505A09AC8F Ref B: OSL30EDGE0420 Ref C: 2023-01-20T17:51:12Z
date: Fri, 20 Jan 2023 17:51:12 GMT
X-Firefox-Spdy: h2
c.clarity.ms/c.gif
20.234.93.27302 Found 0 B IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ams-solutions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=D170AD84B46E4AD68937276B5443CD2E&RedC=c.clarity.ms&MXFR=3E461E87854361600E5F0C1881436FDE
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=3E461E87854361600E5F0C1881436FDE; domain=.clarity.ms; expires=Wed, 14-Feb-2024 17:51:12 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Fri, 20 Jan 2023 17:51:12 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 875fc1415608498b67d609fd3b7335ae
463aca613dcdfc3446e7c7f4663d9577ef92f94e
fcb4c1657bc5afb8c1adfbec67198211be206ff61b5cc7c13565d5ce492de66e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 17:51:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.bing.com/c.gif?CtsSyncId=D170AD84B46E4AD68937276B5443CD2E&RedC=c.clarity.ms&MXFR=3E461E87854361600E5F0C1881436FDE
204.79.197.200302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=D170AD84B46E4AD68937276B5443CD2E&RedC=c.clarity.ms&MXFR=3E461E87854361600E5F0C1881436FDE
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=D170AD84B46E4AD68937276B5443CD2E&RedC=c.clarity.ms&MXFR=3E461E87854361600E5F0C1881436FDE HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=D170AD84B46E4AD68937276B5443CD2E&MUID=2002FF54D164634C1C58EDCBD03362B5
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=2002FF54D164634C1C58EDCBD03362B5; domain=c.bing.com; expires=Wed, 14-Feb-2024 17:51:13 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: D394F3FB4B624BFAA58850C9DD8DACE6 Ref B: OSL30EDGE0420 Ref C: 2023-01-20T17:51:13Z
date: Fri, 20 Jan 2023 17:51:12 GMT
content-length: 0
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=D170AD84B46E4AD68937276B5443CD2E&MUID=2002FF54D164634C1C58EDCBD03362B5
20.234.93.27200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=D170AD84B46E4AD68937276B5443CD2E&MUID=2002FF54D164634C1C58EDCBD03362B5
IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=D170AD84B46E4AD68937276B5443CD2E&MUID=2002FF54D164634C1C58EDCBD03362B5 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Tue, 17 Jan 2023 20:36:49 GMT
accept-ranges: bytes
etag: "b1c8df6cb32ad91:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Fri, 20-Jan-2023 18:01:13 GMT; path=/; SameSite=None; Secure;
date: Fri, 20 Jan 2023 17:51:12 GMT
content-length: 42
X-Firefox-Spdy: h2
d.clarity.ms/collect
40.76.174.66204 No Content 0 B IP 40.76.174.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 768
Origin: https://ams-solutions.com
Connection: keep-alive
Referer: https://ams-solutions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://ams-solutions.com
access-control-allow-credentials: true
date: Fri, 20 Jan 2023 17:51:13 GMT
X-Firefox-Spdy: h2
d.clarity.ms/collect
40.76.174.66204 No Content 0 B IP 40.76.174.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 185593
Origin: https://ams-solutions.com
Connection: keep-alive
Referer: https://ams-solutions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://ams-solutions.com
access-control-allow-credentials: true
date: Fri, 20 Jan 2023 17:51:13 GMT
X-Firefox-Spdy: h2
d.clarity.ms/collect
40.76.174.66204 No Content 0 B IP 40.76.174.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 24597
Origin: https://ams-solutions.com
Connection: keep-alive
Referer: https://ams-solutions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://ams-solutions.com
access-control-allow-credentials: true
date: Fri, 20 Jan 2023 17:51:14 GMT
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2022/01/AdobeStock_113630890-scaled.jpeg
151.101.66.159200 OK 462 kB URL HTTP/2 ams-solutions.com/wp-content/uploads/2022/01/AdobeStock_113630890-scaled.jpeg
IP 151.101.66.159:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, description=Health care costs. Stethoscope and calculator , manufacturer=Canon, model=Canon EOS 5D Mark II, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2, software=Adobe Bridge 2022 (Macintosh), datetime=2022:01:28 13:19:11], baseline, precision 8, 2560x1707, components 3\012- data
Size 462 kB (461975 bytes)
Hash e0703981d3239f5826a9b885ecfa219d
f5f7cdb3427e012e9ecaf02cdd2ef3cf7091b80c
f69483c95d09666734237240923d462039331fe86f3802a2c7dd41826d2e4d08
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/01/AdobeStock_113630890-scaled.jpeg HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//ams-solutions.com/; _ga_JFD0YB47N6=GS1.1.1674237069.1.0.1674237069.0.0.0; _ga=GA1.2.1646440555.1674237070; _ga_1DDZH3H91W=GS1.1.1674237069.1.0.1674237069.0.0.0; gclid=undefined; calltrk_session_id=9331ddc1-f97a-41cc-9f76-77811ed081f0; afl_wc_utm_cookie_expiry=90; afl_wc_utm_sess_visit=1674237069; afl_wc_utm_sess_landing=https%3A%2F%2Fams-solutions.com%2F; calltrk_fcid=99e682cb-eb38-4f88-9ac5-4d946acf09d6; _gid=GA1.2.241620328.1674237070; _gat_UA-161158277-2=1; _clck=3ea54o|1|f8f|0; afl_wc_utm_main=%7B%22updated_ts%22%3A1674237071%7D; _uetsid=064ef9b098eb11edab3627754d42aec2; _uetvid=064f10b098eb11edac49cbf36ff37a11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 21 Feb 2022 16:25:40 GMT
etag: W/"6213bd04-72b8a"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:15 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237073.529609,VS0,VE3200
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 461975
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2c28916-3631-461f-8eaf-6d24961d9110.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2c28916-3631-461f-8eaf-6d24961d9110.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 476046a1ca0444e381e76423ec70a59e
fca15006510971eeece8d0b0f0594e52c7089297
d15bd15ff9ac7ac17ecf1c85c6db3022db8e92ddc7a8d19e99f320b931be4236
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2c28916-3631-461f-8eaf-6d24961d9110.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11034
x-amzn-requestid: ea862f2a-f9df-4a80-a27e-5728e6a39c00
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6w5UFWsoAMFobQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c761d5-0d35e5a712fff4a57bf265b9;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 03:04:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Pu1IIysnPr-Lr20xwv7M7GZ4_CI8ymzvQH8fLn6h08at-LAHSJvZlQ==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 03:29:01 GMT
age: 51735
etag: "fca15006510971eeece8d0b0f0594e52c7089297"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.14
151.101.66.159200 OK 0 B URL HTTP/2 ams-solutions.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.14
IP 151.101.66.159:0
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.14 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 16:30:19 GMT
etag: W/"6213be1b-5e095"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.253405,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 113481
X-Firefox-Spdy: h2
js.callrail.com/companies/402066312/external_forms.js?t=1674237069962&
143.204.55.73200 OK 0 B URL HTTP/2 js.callrail.com/companies/402066312/external_forms.js?t=1674237069962&
IP 143.204.55.73:0
GET /companies/402066312/external_forms.js?t=1674237069962& HTTP/1.1
Host: js.callrail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ams-solutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Fri, 20 Jan 2023 17:51:10 GMT
cache-control: max-age=0, private, must-revalidate
etag: W/"e398c800cb5323885a4a2af58eafdf27"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-request-id: 8a9f5926-ede4-4212-a7b8-ba104f086ea6
x-runtime: 0.003598
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 02bjheDNDXvI031a-HV4SxqtiuGR_8zBYRDmV0ehrpPlqvp3G1krgg==
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.10.2
151.101.66.159200 OK 0 B URL HTTP/2 ams-solutions.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.10.2
IP 151.101.66.159:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.10.2 HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 23:39:31 GMT
etag: W/"63c9d4b3-543c"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674237069.262056,VS0,VE9
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 6269
X-Firefox-Spdy: h2
crm.zoho.com/crm/javascript/zcga.js
136.143.190.49200 OK 0 B URL HTTP/2 crm.zoho.com/crm/javascript/zcga.js
IP 136.143.190.49:0
GET /crm/javascript/zcga.js HTTP/1.1
Host: crm.zoho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ams-solutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ZGS
date: Fri, 20 Jan 2023 17:51:10 GMT
content-type: application/javascript;charset=UTF-8
referrer-policy: strict-origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy-report-only: script-src 'self' 'unsafe-eval' 'unsafe-inline' blob: https://*.zappsusercontent.com https://*.zappsusercontent.eu https://*.zappsusercontent.in https://*.zappsusercontent.com.au https://*.zappsusercontent.com.cn https://*.localzappscontents.com https://*.zohostatic.com https://*.zoho.com https://h2js.zohocdn.com https://js.zohocdn.com https://desk.zoho.com https://salesiq.zoho.com https://js.zohostatic.com https://localjs.zohostatic.com https://media.twiliocdn.com/sdk/js/client/releases/1.7.7/twilio.min.js https://media.twiliocdn.com/sdk/js/client/v1.7/twilio.min.js https://cdn.pagesense.io https://pagesense-collect.zoho.com https://iplocation.zoho.com https://s.ytimg.com/yts/jsbin/ https://www.youtube.com/iframe_api https://dyjgaef5vuq51.cloudfront.net https://dtzpfzv31buvf.cloudfront.net https://d22czkv2r5ogmg.cloudfront.net https://d12h6dzwzn4m10.cloudfront.net https://d17nz991552y2g.cloudfront.net https://scripts.zohospotlight.com chrome-extension://* https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://js.stratuscdn.com https://cdn.pagesense.io https://zohotagmanager.cdn.pagesense.io https://static.zohocdn.com https://www.zohowebstatic.com/ https://scripts.zohospotlight.com https://widgets.zohosalesiq.com https://static.stratuscdn.com https://js.stripe.com https://connect.facebook.net; report-uri https://logsapi.zoho.com/csplog?service=crm
set-cookie: 6e4b8efee4=83d88bd87bedccfe30750b399971a74b; Path=/
crmcsr=40c1506a-e13b-4daa-ba50-7ea727ddb434;path=/;SameSite=None;Secure;priority=high
_zcsr_tmp=40c1506a-e13b-4daa-ba50-7ea727ddb434;path=/;SameSite=Strict;Secure;priority=high
x-frame-options: SAMEORIGIN
accept-ranges: bytes
etag: W/"4180-1673961564000"
last-modified: Tue, 17 Jan 2023 13:19:24 GMT
vary: accept-encoding
content-encoding: gzip
content-language: en-US
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Ubuntu%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Ubuntu%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3
IP 142.250.74.106:0
GET /css?family=Ubuntu%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ams-solutions.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 20 Jan 2023 17:51:09 GMT
date: Fri, 20 Jan 2023 17:51:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2022/09/shutterstock_1953455266.jpeg
151.101.66.159200 OK 0 B URL HTTP/2 ams-solutions.com/wp-content/uploads/2022/09/shutterstock_1953455266.jpeg
IP 151.101.66.159:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/09/shutterstock_1953455266.jpeg HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//ams-solutions.com/; _ga_JFD0YB47N6=GS1.1.1674237069.1.0.1674237069.0.0.0; _ga=GA1.2.1646440555.1674237070; _ga_1DDZH3H91W=GS1.1.1674237069.1.0.1674237069.0.0.0; gclid=undefined; calltrk_session_id=9331ddc1-f97a-41cc-9f76-77811ed081f0; afl_wc_utm_cookie_expiry=90; afl_wc_utm_sess_visit=1674237069; afl_wc_utm_sess_landing=https%3A%2F%2Fams-solutions.com%2F; calltrk_fcid=99e682cb-eb38-4f88-9ac5-4d946acf09d6; _gid=GA1.2.241620328.1674237070; _gat_UA-161158277-2=1; _clck=3ea54o|1|f8f|0; afl_wc_utm_main=%7B%22updated_ts%22%3A1674237071%7D; _uetsid=064ef9b098eb11edab3627754d42aec2; _uetvid=064f10b098eb11edac49cbf36ff37a11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Fri, 30 Sep 2022 20:08:58 GMT
etag: W/"63374cda-176ff78"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:15 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237072.643667,VS0,VE3608
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 24346136
X-Firefox-Spdy: h2
ams-solutions.com/wp-content/uploads/2022/01/AdobeStock_307033270-scaled.jpeg
151.101.66.159200 OK 0 B URL HTTP/2 ams-solutions.com/wp-content/uploads/2022/01/AdobeStock_307033270-scaled.jpeg
IP 151.101.66.159:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/01/AdobeStock_307033270-scaled.jpeg HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 21 Feb 2022 16:27:17 GMT
etag: W/"6213bd65-32fa3"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kc4x1z3g9o
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:09 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237069.228693,VS0,VE497
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 199539
X-Firefox-Spdy: h2
ams-solutions.com/wp-admin/admin-ajax.php
151.101.66.159200 OK 0 B URL HTTP/2 ams-solutions.com/wp-admin/admin-ajax.php
IP 151.101.66.159:0
Analyzer Verdict Alert fortinet Phishing
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: ams-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ams-solutions.com/
Content-type: application/x-www-form-urlencoded
Content-Length: 29
Origin: https://ams-solutions.com
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//ams-solutions.com/; _ga_JFD0YB47N6=GS1.1.1674237069.1.0.1674237069.0.0.0; _ga=GA1.1.1646440555.1674237070; _ga_1DDZH3H91W=GS1.1.1674237069.1.0.1674237069.0.0.0; gclid=undefined; calltrk_session_id=9331ddc1-f97a-41cc-9f76-77811ed081f0; afl_wc_utm_cookie_expiry=90; afl_wc_utm_sess_visit=1674237069; afl_wc_utm_sess_landing=https://ams-solutions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
access-control-allow-origin: https://ams-solutions.com
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
set-cookie: afl_wc_utm_cookie_expiry=90; expires=Thu, 20-Apr-2023 17:51:11 GMT; Max-Age=7776000; path=/; domain=ams-solutions.com; secure
afl_wc_utm_sess_visit=1674237069; expires=Thu, 20-Apr-2023 17:51:11 GMT; Max-Age=7776000; path=/; domain=ams-solutions.com; secure
afl_wc_utm_sess_landing=https%3A%2F%2Fams-solutions.com%2F; expires=Thu, 20-Apr-2023 17:51:11 GMT; Max-Age=7776000; path=/; domain=ams-solutions.com; secure
afl_wc_utm_main=%7B%22updated_ts%22%3A1674237071%7D; expires=Thu, 20-Apr-2023 17:51:11 GMT; Max-Age=7776000; path=/; domain=ams-solutions.com; secure
cache-control: no-cache, must-revalidate, max-age=0
x-xss-protection: 1
x-fw-server: Flywheel/5.1.0
x-fw-dynamic: TRUE
x-fw-hash: kc4x1z3g9o
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: NO:Not Cacheable
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 20 Jan 2023 17:51:11 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674237071.644705,VS0,VE815
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
X-Firefox-Spdy: h2