| r3.o.lencr.org/ |  23.36.76.249 | 200 OK | 503 B |
IP23.36.76.249:0 ASN#20940 Akamai International B.V.
Hash7c60904d097cde276e4e5632cef1b9f1 4f805026462589345d85e8df2d18eafba6237504 12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4930
Expires: Thu, 24 Nov 2022 20:10:16 GMT
Date: Thu, 24 Nov 2022 18:48:06 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashaf40a2fcf8debb90c3608002da6c907a 3c75d6c0b557a3bd8d5db50155b8d896e852c145 555617a51ee3077552545a29a3baf0b43e8a82367e4c08110ee480ebedc8b523
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4396
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 18:48:06 GMT
Last-Modified: Thu, 24 Nov 2022 17:34:50 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.76.249 | 200 OK | 503 B |
IP23.36.76.249:0 ASN#20940 Akamai International B.V.
Hash8c63b226725ca6e92e3ef586ac19e603 d21ae42a1927501e5293ff3564f52b49f6b0decc 141ac47acc3800e5d35a82012fa4b044277abad3a95dc24415f66fb72c972ae6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4475
Expires: Thu, 24 Nov 2022 20:02:41 GMT
Date: Thu, 24 Nov 2022 18:48:06 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ |  34.102.187.140 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash4d7e4eed097b9c4e5d509419f1cfc85a 290bb3d428a7c6330e2e3d73a952b16f820896c8 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 18:18:59 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1747
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash9ebddc2b260d081ebbefee47c037cb28 492bad62a7ca6a74738921ef5ae6f0be5edebf39 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: VhPWCsdremQehcIHYjMqRUxOMIFeyzVRA01WX16EDzr6L0Ekm23uELZBFbcQCHOtRAYH+iE+3k8=
x-amz-request-id: M41EX79E6SGEB2NQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 18:43:30 GMT
age: 276
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 18:48:06 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashfb6949e7abaa473393f7c604691de14f 599681bba3947709baa603bbae2dd7afd04059a4 36c5165526ea9d34de14d36655ed494d0cffaa11ca3271ee47824ac11246ba13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3391
Cache-Control: max-age=141314
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 18:48:06 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:03:20 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 34.102.187.140 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 18:11:11 GMT
cache-control: public,max-age=3600
age: 2215
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800%7CLato%3A400%2C400i%2C700%2C700i%7CRoboto%3A400%2C400i%2C500%2C500i%2C700%2C700i%7CRubik%3A400%2C400i%2C500%2C500i%2C700%2C700i&subset=latin%2Clatin-ext&display=fallback&ver=3.19.0 | 142.250.74.10 | 200 OK | 1.6 kB |
URL HTTP/1.1fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800%7CLato%3A400%2C400i%2C700%2C700i%7CRoboto%3A400%2C400i%2C500%2C500i%2C700%2C700i%7CRubik%3A400%2C400i%2C500%2C500i%2C700%2C700i&subset=latin%2Clatin-ext&display=fallback&ver=3.19.0 IP142.250.74.10:0
Hashd660ef547737e8ca2c64c1f706a521ca 7469278d7b1159974a872ccc39fd5274b9f2bcec a7d52b93b924eca91ea3c601c4e8165ee8281143b4baac4efc983a4f143399cf
GET /css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800%7CLato%3A400%2C400i%2C700%2C700i%7CRoboto%3A400%2C400i%2C500%2C500i%2C700%2C700i%7CRubik%3A400%2C400i%2C500%2C500i%2C700%2C700i&subset=latin%2Clatin-ext&display=fallback&ver=3.19.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Thu, 24 Nov 2022 18:48:07 GMT
Date: Thu, 24 Nov 2022 18:48:07 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
|
|
| push.services.mozilla.com/ | 44.236.232.139 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP44.236.232.139:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: tLIYrjMgRPjlka0yz+bUTg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: DpNnQIlAEJvMeF2jPdDuA1yS+gA=
|
|
| libben.net/wp-includes/css/classic-themes.min.css?ver=1 | 162.214.198.115 | 200 OK | 217 B |
URL HTTP/1.1libben.net/wp-includes/css/classic-themes.min.css?ver=1 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
Hash95e891f28e44a9b314c09545d86be2b7 f9b13a8bd47273b086a0a07df15f314e0af0bc3e 5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:07 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 08:04:23 GMT
Accept-Ranges: bytes
Content-Length: 217
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| libben.net/wp-content/plugins/realhomes-currency-switcher/public/css/realhomes-currency-switcher-public.css?ver=1.0.5 | 162.214.198.115 | 200 OK | 151 B |
URL HTTP/1.1libben.net/wp-content/plugins/realhomes-currency-switcher/public/css/realhomes-currency-switcher-public.css?ver=1.0.5 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
Hash3ec37035ae945a17fd60620a8624896f a10ea22325271f16f079c4c6963d3cb9b664b184 cd5c2eed3e6389524316034c66e96652fff5f858d497bdbbcfe36c900e418d7d
GET /wp-content/plugins/realhomes-currency-switcher/public/css/realhomes-currency-switcher-public.css?ver=1.0.5 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:07 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 151
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash37421d0455431f58cbdbbd9300326121 bb2f721cf76c55dd3c3e0bcedf7cdeb7d2601261 071386cdf61026fbbfe6c87ba1ea655434735b7fbf4d5c41645fd692f486ea76
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4955
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 18:48:07 GMT
Last-Modified: Thu, 24 Nov 2022 17:25:32 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash4af780570d49b327d38dc189095448e9 1dd4193a2afeb237c5e475b603b1cbd137f7f97e f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 18:48:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| libben.net/wp-content/themes/realhomes/style.css?ver=3.19.0 | 162.214.198.115 | 200 OK | 1.1 kB |
URL HTTP/1.1libben.net/wp-content/themes/realhomes/style.css?ver=3.19.0 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (307) Hash8bbcc1d9f9871226dd1a308f5e6b65c3 7ba4c08bcc4824b7a4fa22b2cbeb5799cb37bf5d 7bbf848cfcd87b8a98f5c81b383d533c11f02dbb00e8c23307501bcf782ed5dd
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/themes/realhomes/style.css?ver=3.19.0 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:07 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 1072
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash4af780570d49b327d38dc189095448e9 1dd4193a2afeb237c5e475b603b1cbd137f7f97e f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 18:48:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| libben.net/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 | 162.214.198.115 | 200 OK | 95 kB |
URL HTTP/1.1libben.net/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (47826) Hash71d925864153f0edf91037f3d31048e8 cc16a0524ac63b5ce29f703a66412224f0dd771a c324ef26b20264369e4568dc9ef1c5cb1f325f6bc4e8b7c01f7fe93fa353276a
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:07 GMT
Server: Apache
Last-Modified: Wed, 16 Nov 2022 07:04:52 GMT
Accept-Ranges: bytes
Content-Length: 94889
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| libben.net/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 | 162.214.198.115 | 200 OK | 19 kB |
URL HTTP/1.1libben.net/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (15660) Hash32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:07 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 18617
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| libben.net/wp-content/plugins/revslider-old/public/assets/css/rs6.css?ver=6.4.3 | 162.214.198.115 | 200 OK | 61 kB |
URL HTTP/1.1libben.net/wp-content/plugins/revslider-old/public/assets/css/rs6.css?ver=6.4.3 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeUnicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators Hash74179b8bedf852b2fe74728e6628f101 ba2eaa1b6b10e3eb56b88c802718b19b8a2fb3e1 3e552d7bc9bfca204cf359cf30bc26b49a0f9a66dc22240a5f816fee0e069fbd
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/revslider-old/public/assets/css/rs6.css?ver=6.4.3 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:07 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 61044
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| libben.net/our-agents/ | 162.214.198.115 | 200 OK | 234 kB |
IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeHTML document, ASCII text, with very long lines (10715) Size234 kB (234389 bytes) Hashbf1e28dafe2847b5e01862d1d1997f1b d3620fc4f9ecc79d6694c3846a6b2a4d635e03ba 75deb63a815a104025e781a7ab5f4f5d337ed60782658be92d12a8262ba079d9
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /our-agents/ HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:06 GMT
Server: Apache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
|
| libben.net/wp-content/themes/realhomes/common/optimize/vendors.css?ver=3.19.0 | 162.214.198.115 | 200 OK | 55 kB |
URL HTTP/1.1libben.net/wp-content/themes/realhomes/common/optimize/vendors.css?ver=3.19.0 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeUnicode text, UTF-8 text, with very long lines (19315) Hash18fc27f945eb6219b0877cea676b0a9c a1fa136018c8b902f74d0627f582ad8d28ae2cc6 f6df55f4cbf4baf8f46021aa06ecde57120ab02af07f11599741a9795f9ddab1
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/themes/realhomes/common/optimize/vendors.css?ver=3.19.0 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:07 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 55243
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| libben.net/wp-content/themes/realhomes/assets/modern/styles/css/custom.css?ver=3.19.0 | 162.214.198.115 | 200 OK | 42 B |
URL HTTP/1.1libben.net/wp-content/themes/realhomes/assets/modern/styles/css/custom.css?ver=3.19.0 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with no line terminators Hash67017eb865758cf939fd041a90e414bd b9a874118971e226c677b198bec7db4605dc4bb1 6bf0f2ee7d917bb13b02fc401094be664db8d0653a1983558d7c3cec8dee9ebb
GET /wp-content/themes/realhomes/assets/modern/styles/css/custom.css?ver=3.19.0 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:07 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 42
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| libben.net/wp-content/themes/realhomes/common/css/frontend-styles.min.css?ver=3.19.0 | 162.214.198.115 | 200 OK | 58 kB |
URL HTTP/1.1libben.net/wp-content/themes/realhomes/common/css/frontend-styles.min.css?ver=3.19.0 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeUnicode text, UTF-8 text, with very long lines (58114) Hashd84a27d06edd99c6de408286ccc44050 7d86c04accaeec421c23d007eed43f3f74072d60 b7da2ff842fdd3aa04e4f0ddc0e43c77d4daa15a0a49f9b5a5d565937aa8c907
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/themes/realhomes/common/css/frontend-styles.min.css?ver=3.19.0 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:07 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 58173
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| libben.net/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0 | 162.214.198.115 | 200 OK | 19 kB |
URL HTTP/1.1libben.net/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (19082) Hash50be31853049e4b4a10c277d5f95eb75 ac2dffc0c65ad6b209fedf2169d0c50eb4119a3e b651d87ef113cba0c8ec8a33bfdb694171effeba56b20be12e3c77fc15f6ae9f
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:07 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 19128
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| libben.net/wp-content/uploads/elementor/css/post-6.css?ver=1654888060 | 162.214.198.115 | 200 OK | 1.1 kB |
URL HTTP/1.1libben.net/wp-content/uploads/elementor/css/post-6.css?ver=1654888060 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (1117), with no line terminators Hashc256f8fe17b0c710a6e563ed0721db3a 99eca9d92c2242f337695d7af33abd82f3cd1b94 e12ff66a75d9ddee67aee7a8545ed1c43fef385f402748608f95c777da90c24d
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/uploads/elementor/css/post-6.css?ver=1654888060 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:07 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 1117
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
|
|
| libben.net/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.6.6 | 162.214.198.115 | 200 OK | 108 kB |
URL HTTP/1.1libben.net/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.6.6 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (65497) Size108 kB (107922 bytes) Hashc98a28f4246018729c3e8c25f5213d31 e16228b80c74e78f3d639467a690c2f6737de2d5 30a68682d7a4d5dfd9a580f8decbf37d4de1d107c0a7fc45af606c61f3ff0f96
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.6.6 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:07 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 107922
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| libben.net/wp-content/themes/realhomes/common/font-awesome/css/all.min.css?ver=5.13.1 | 162.214.198.115 | 200 OK | 59 kB |
URL HTTP/1.1libben.net/wp-content/themes/realhomes/common/font-awesome/css/all.min.css?ver=5.13.1 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (58749) Hash870dbf9e3d22ee9d7cd21acc620e107b 61e37af38389d10e3ec44b0f5f05b10978c23768 d9716994f96b14296dd1b21d3e0a73f07ee88e7935d07ebdc51a9df7eb934a10
GET /wp-content/themes/realhomes/common/font-awesome/css/all.min.css?ver=5.13.1 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:07 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 58935
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| libben.net/wp-content/plugins/realhomes-elementor-addon/elementor/css/frontend.css?ver=0.9.8 | 162.214.198.115 | 200 OK | 38 B |
URL HTTP/1.1libben.net/wp-content/plugins/realhomes-elementor-addon/elementor/css/frontend.css?ver=0.9.8 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
Hash67b84e955357d7e7a767c76e93f5f272 6665a7db7d47cbfe2fa1b931cb040bd6e3dfdf51 18f64a610171de3eacbdeefb412985d54da57e507e956fa8e696f0b6703ab0a2
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/realhomes-elementor-addon/elementor/css/frontend.css?ver=0.9.8 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:07 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 38
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| libben.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 | 162.214.198.115 | 200 OK | 11 kB |
URL HTTP/1.1libben.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (11126) Hash79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:08 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 11224
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| libben.net/wp-content/plugins/realhomes-currency-switcher/public/js/realhomes-currency-switcher-public.js?ver=1.0.5 | 162.214.198.115 | 200 OK | 3.0 kB |
URL HTTP/1.1libben.net/wp-content/plugins/realhomes-currency-switcher/public/js/realhomes-currency-switcher-public.js?ver=1.0.5 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
Hash79ecbdf850a320893b1aae89104f1431 f12b349de78bebb69dfb1b5fd1268b6b7c85bbf1 bf0060096498cbe7c1605ea9d36812efbc9ef6c1b81c1ed712087f4b09d89917
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/realhomes-currency-switcher/public/js/realhomes-currency-switcher-public.js?ver=1.0.5 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:08 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 2988
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| libben.net/wp-content/plugins/revslider-old/public/assets/js/rbtools.min.js?ver=6.4.3 | 162.214.198.115 | 200 OK | 124 kB |
URL HTTP/1.1libben.net/wp-content/plugins/revslider-old/public/assets/js/rbtools.min.js?ver=6.4.3 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (42889) Size124 kB (123959 bytes) Hash04f0a5790668162c9241bfd598d6400c dd55a501364bbd8a0b43eca3cd681748cd89a03e 463f24ed151c0bc8775c09e92c3885fd96dc17f1e91ca64d70f3ba9600e0eb86
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/revslider-old/public/assets/js/rbtools.min.js?ver=6.4.3 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:08 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 123959
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| libben.net/wp-content/themes/realhomes/assets/modern/styles/css/main.min.css?ver=3.19.0 | 162.214.198.115 | 200 OK | 580 kB |
URL HTTP/1.1libben.net/wp-content/themes/realhomes/assets/modern/styles/css/main.min.css?ver=3.19.0 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (65433) Size580 kB (580101 bytes) Hashd42d7947e28ee0016c35d68dd7b7cd80 75a55ed966409011b2cd3ccad435cda42d64f91e 4613f76f718b7405c401459af8c6a63334fd04aa78135356736462195489c9e0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/themes/realhomes/assets/modern/styles/css/main.min.css?ver=3.19.0 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:07 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 580101
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| libben.net/wp-content/themes/realhomes/common/css/elementor-styles.min.css?ver=3.19.0 | 162.214.198.115 | 200 OK | 256 kB |
URL HTTP/1.1libben.net/wp-content/themes/realhomes/common/css/elementor-styles.min.css?ver=3.19.0 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (65445) Size256 kB (256062 bytes) Hashb7f6e1a9b0780edaff093ee6652d7814 7502cfd57303b065e92ae76c346b4efc281f5b00 02e5bfcae62c08aba60c30e9b0cab0795ee4a5d19a66e530f775d4851e7b1aa9
GET /wp-content/themes/realhomes/common/css/elementor-styles.min.css?ver=3.19.0 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:08 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 256062
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| libben.net/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 | 162.214.198.115 | 200 OK | 90 kB |
URL HTTP/1.1libben.net/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (65447) Hash17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:08 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 08:04:23 GMT
Accept-Ranges: bytes
Content-Length: 89684
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| unpkg.com/leaflet@1.3.4/dist/leaflet.css?ver=1.3.4 |  104.16.122.175 | 302 Found | 19 kB |
URL HTTP/2unpkg.com/leaflet@1.3.4/dist/leaflet.css?ver=1.3.4 IP104.16.122.175:0
Hash52be060e6806c63f74a00e0142c12d66 d11c873a8860cf4e448f3c4a2bda2e17da404740 b427c4ba62f7ce5b27966b31301b228a0ee865fc44baaf83d065ad27fb53ae24
GET /leaflet@1.3.4/dist/leaflet.css?ver=1.3.4 HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://libben.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 24 Nov 2022 18:48:07 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
location: /leaflet@1.3.4/dist/leaflet.css
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GJNF642N2PEDS72DN15VDWQ4-ams
cf-cache-status: HIT
age: 320
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f451263876b506-OSL
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 | 142.250.74.10 | 200 OK | 23 kB |
URL HTTP/2fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 IP142.250.74.10:0
Hasha3b462beb8dea023de222fee463ad203 faac0b56f776ae9993dcbe24dffd07792c189100 5c6af3284ba73071c64c58e87dbc17b31ae2af4643bd4fabe2201ab257115a03
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://libben.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Nov 2022 18:48:07 GMT
date: Thu, 24 Nov 2022 18:48:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| libben.net/wp-content/plugins/easy-real-estate/js/ere-frontend.js?ver=1.1.5 | 162.214.198.115 | 200 OK | 5.3 kB |
URL HTTP/1.1libben.net/wp-content/plugins/easy-real-estate/js/ere-frontend.js?ver=1.1.5 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
Hash4297824a8d24832ca55ac2d103f35c10 3e00c5db25c2a806e70f841c6e4a1948a70ae028 e5290637c551b60cd1ab924b07b020157d2f5909e81dd8d1e4568f1157f2aaac
GET /wp-content/plugins/easy-real-estate/js/ere-frontend.js?ver=1.1.5 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:08 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 5274
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| libben.net/wp-content/themes/realhomes/assets/modern/scripts/vendors/progressbar/dist/progressbar.min.js?ver=1.0.1 | 162.214.198.115 | 200 OK | 22 kB |
URL HTTP/1.1libben.net/wp-content/themes/realhomes/assets/modern/scripts/vendors/progressbar/dist/progressbar.min.js?ver=1.0.1 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (21557) Hash1961cfaa8c7c85368d9993100137b1f4 a6e559a7b308a9b84aa31fd4a22b52a1567fd027 0c8bb279ac93d8382dfdd1228c2f9c747b13329aeac83a1886fcc6dabf5e0d36
GET /wp-content/themes/realhomes/assets/modern/scripts/vendors/progressbar/dist/progressbar.min.js?ver=1.0.1 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:08 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 21649
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| libben.net/wp-includes/js/comment-reply.min.js?ver=6.1.1 | 162.214.198.115 | 200 OK | 3.0 kB |
URL HTTP/1.1libben.net/wp-includes/js/comment-reply.min.js?ver=6.1.1 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (2946) Hash492f2c1a7ea7eb83fe42e0ff7cb51aa2 db36a77f6aaa2063bfbec02c2c0e967438c5a245 e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-includes/js/comment-reply.min.js?ver=6.1.1 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:08 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 2981
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| libben.net/wp-content/plugins/revslider-old/public/assets/js/rs6.min.js?ver=6.4.3 | 162.214.198.115 | 200 OK | 356 kB |
URL HTTP/1.1libben.net/wp-content/plugins/revslider-old/public/assets/js/rs6.min.js?ver=6.4.3 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (64270) Size356 kB (355655 bytes) Hash9dc5e5005da02d10be1957d17bb1ce4c e7bae18f3cbc4494e1f63e0242a842802e377473 c6664feae90423891e1d41c5dac7a730d47067927a2bdee17dcdf03e8354c666
GET /wp-content/plugins/revslider-old/public/assets/js/rs6.min.js?ver=6.4.3 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:08 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 355655
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| libben.net/wp-content/themes/realhomes/assets/modern/scripts/js/inspiry-search-form.js?ver=3.19.0 | 162.214.198.115 | 200 OK | 8.4 kB |
URL HTTP/1.1libben.net/wp-content/themes/realhomes/assets/modern/scripts/js/inspiry-search-form.js?ver=3.19.0 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
Hash2520f5d13708acc4b0701824d45ec90f e8c542ff0f27214b3694508929980c4b98c1f35f 80069770a60130915066b9a7a4cebd268d0113bc7dcbf3ca8d6d2618aa67af7c
GET /wp-content/themes/realhomes/assets/modern/scripts/js/inspiry-search-form.js?ver=3.19.0 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:08 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 8448
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| libben.net/wp-content/themes/realhomes/common/js/inspiry-login.js?ver=3.19.0 | 162.214.198.115 | 200 OK | 12 kB |
URL HTTP/1.1libben.net/wp-content/themes/realhomes/common/js/inspiry-login.js?ver=3.19.0 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
Hashcec3cb4e92289913e80ba7ec2acd6e5b 9efa6022414a3bd1011542b864d5aa8f4c99429e b6eb5a286b6578eb507898294775ad9bfa02367d30706d4f9b4eb8219f5f6dea
GET /wp-content/themes/realhomes/common/js/inspiry-login.js?ver=3.19.0 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:08 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 11503
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| libben.net/wp-content/themes/realhomes/common/js/lightbox-open-street-map.js?ver=3.19.0 | 162.214.198.115 | 200 OK | 5.5 kB |
URL HTTP/1.1libben.net/wp-content/themes/realhomes/common/js/lightbox-open-street-map.js?ver=3.19.0 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeHTML document, ASCII text Hashbe600c62a2da9d15fd6697b5fb19c99b d135a97c2970c088694d63c414d6bb60a18b9fcc 675429271565e7a8c486fef6d5cdb1dfafc0020dd6303f71dfab3d87d5e33b55
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/themes/realhomes/common/js/lightbox-open-street-map.js?ver=3.19.0 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:08 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 5497
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| r3.o.lencr.org/ | 23.36.76.249 | 200 OK | 503 B |
IP23.36.76.249:0 ASN#20940 Akamai International B.V.
Hash6827d82f488045e02e40d6a2fdbae4b3 4944139a4b08769511ffc6aa913857d88a0db7bc 0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18805
Expires: Fri, 25 Nov 2022 00:01:33 GMT
Date: Thu, 24 Nov 2022 18:48:08 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.249 | 200 OK | 503 B |
IP23.36.76.249:0 ASN#20940 Akamai International B.V.
Hash6827d82f488045e02e40d6a2fdbae4b3 4944139a4b08769511ffc6aa913857d88a0db7bc 0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18805
Expires: Fri, 25 Nov 2022 00:01:33 GMT
Date: Thu, 24 Nov 2022 18:48:08 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.249 | 200 OK | 503 B |
IP23.36.76.249:0 ASN#20940 Akamai International B.V.
Hash6827d82f488045e02e40d6a2fdbae4b3 4944139a4b08769511ffc6aa913857d88a0db7bc 0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18805
Expires: Fri, 25 Nov 2022 00:01:33 GMT
Date: Thu, 24 Nov 2022 18:48:08 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.249 | 200 OK | 503 B |
IP23.36.76.249:0 ASN#20940 Akamai International B.V.
Hash6827d82f488045e02e40d6a2fdbae4b3 4944139a4b08769511ffc6aa913857d88a0db7bc 0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18805
Expires: Fri, 25 Nov 2022 00:01:33 GMT
Date: Thu, 24 Nov 2022 18:48:08 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.249 | 200 OK | 503 B |
IP23.36.76.249:0 ASN#20940 Akamai International B.V.
Hash6827d82f488045e02e40d6a2fdbae4b3 4944139a4b08769511ffc6aa913857d88a0db7bc 0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18805
Expires: Fri, 25 Nov 2022 00:01:33 GMT
Date: Thu, 24 Nov 2022 18:48:08 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg | 34.120.237.76 | 200 OK | 8.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash92c78302bcce1568eb6a5563100b932c 43d1dec7fc06879988c9c3cadd800cc8145df988 0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:06 GMT
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
age: 75662
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg | 34.120.237.76 | 200 OK | 6.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd9d93b2a6875d446c3467eb49767eef5 303c571b13b05fcf27ee1159d8fdf6369aaef0a2 2a2345a925e0187979930a7f2de8548957ad9f2baae77364dcb157286e2b3fcf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6789
x-amzn-requestid: 4d94ce1b-d18f-43b8-bb4d-e7093f9bea42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvd2G9UIAMFrEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5f2-64a570135be59b83031811da;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:04:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JygkDI7XSvlgurUTot874ZAXlOIqnv4cntMQ55IvHVqw93JBcksZjQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:15:22 GMT
age: 41566
etag: "303c571b13b05fcf27ee1159d8fdf6369aaef0a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp | 34.120.237.76 | 200 OK | 14 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash64d79191f005c9876b952c5f948aa0f7 1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a 00fb36c3d322e8302c5ce202d6d4119d637510cd6f3b63e1347781ec3bb9d7fc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13882
x-amzn-requestid: 9022b0b3-31d5-4149-a969-02514f11b95a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvzNHjMoAMFWMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9347-0e8354a02bef623644714e31;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ve4q5FDkwMGhPK6ZVVVCZtoBTaGaz43r_PwINzwS5Nx5tcZeQkVIfw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:49:47 GMT
age: 75501
etag: "1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg | 34.120.237.76 | 200 OK | 7.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb4157f2c5c3c77ce699324ecb08f47c7 a7d9135f9d01ba13c3cdaf8b038c70212f159297 2305f7afee95bb34d9e8dbff571c6b146ba7b694be96e9e925c32d1f41785916
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7462
x-amzn-requestid: 1f6fb14d-83e0-43d3-9dab-5bc83af1a7c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwV3HV9oAMFs9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9425-634d43db6308e0be596aa5a0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GW5UTfY7-TwPWTno9z1e21a2cA9fmU7GfHFYWdL-zQvMLxeq-S9Trg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:03:54 GMT
age: 74654
etag: "a7d9135f9d01ba13c3cdaf8b038c70212f159297"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg | 34.120.237.76 | 200 OK | 4.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash841a4b110022a99ddea6f7bf66df0fa1 126771b86638108050cf57c0d12faa27f80f0edb 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:14:07 GMT
age: 41641
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp | 34.120.237.76 | 200 OK | 5.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash0856fdb55f19f03a1bec38b3d6e0ac77 89accd230fba95fe0049678070817b36ead015fa 17c6e6f9bb8f4261fff2dc2a43ed994986418761624b8afead768e89927594f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5070
x-amzn-requestid: d86d95ad-9b78-4047-82e7-04e83a97e330
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwViF1GIAMF_PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9423-10809ba1634776171cf79cb8;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8rbsN9OVJmneT9ov-Q7V4RB8DP5UWhhn-7cnukHiBpl06zmMM0zJTg==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:20 GMT
age: 75048
etag: "89accd230fba95fe0049678070817b36ead015fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| libben.net/wp-content/uploads/2022/01/libben-50-web.png | 162.214.198.115 | 200 OK | 2.0 kB |
URL HTTP/1.1libben.net/wp-content/uploads/2022/01/libben-50-web.png IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typePNG image data, 264 x 50, 8-bit/color RGBA, non-interlaced\012- data Hash1e5bfaebb52f9d8cbc6834cf42751268 7e713439eee9a28eba70e7b7ff6128f45f9116b5 c3c5c5e7d8958bbcd613eab794f4bfed6d9ecd25bdff241e9a24bdff4767d22a
GET /wp-content/uploads/2022/01/libben-50-web.png HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://libben.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:08 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 2005
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
|
|
| libben.net/wp-content/themes/realhomes/common/js/locations.js?ver=3.19.0 | 162.214.198.115 | 200 OK | 17 kB |
URL HTTP/1.1libben.net/wp-content/themes/realhomes/common/js/locations.js?ver=3.19.0 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
Hash37b6b949e5aafb5fd05cfeece30b6b16 403ba4f223a540943f0d8afa06a0164d0a2100d2 5a1142715a6859a6ab4dc6cf9229e3a570d080e495b9d090d8b2341c14cf5bbe
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/themes/realhomes/common/js/locations.js?ver=3.19.0 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:08 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 16677
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| libben.net/wp-content/uploads/2022/01/logo-foot.png | 162.214.198.115 | 200 OK | 1.6 kB |
URL HTTP/1.1libben.net/wp-content/uploads/2022/01/logo-foot.png IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typePNG image data, 200 x 38, 8-bit/color RGBA, non-interlaced\012- data Hash343375734ddc1a123914460b46c1e66e ee1d7251353a712c5fe55be7cdb7cbdf1f886687 0fa4a80d76b95df2cd6aa5c85edcf424ecb609ab9000e606c5ec5071dbb48576
GET /wp-content/uploads/2022/01/logo-foot.png HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://libben.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:08 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 1625
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
|
|
| libben.net/wp-content/themes/realhomes/common/js/common-custom.js?ver=3.19.0 | 162.214.198.115 | 200 OK | 40 kB |
URL HTTP/1.1libben.net/wp-content/themes/realhomes/common/js/common-custom.js?ver=3.19.0 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
Hash453a1e8773584dcf1f3b4037c0966e98 24d60c5181792bac6021fbd5cff41c972668f56b 62bce0699234fb4f23888fb726a6db9719ccb778877ee7fea6b4754445703701
GET /wp-content/themes/realhomes/common/js/common-custom.js?ver=3.19.0 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:08 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 39498
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| libben.net/wp-content/themes/realhomes/common/js/cfos.js?ver=3.19.0 | 162.214.198.115 | 200 OK | 1.4 kB |
URL HTTP/1.1libben.net/wp-content/themes/realhomes/common/js/cfos.js?ver=3.19.0 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
Hash5c16ba09d5dec314c9fa83860f835197 6592b63946bab0b9d2dff71b8236d889a4fc35ee 1347fc3f4445ec9bb8b63b025cb93e847d58754f6872a7d66ae4034d0286a677
GET /wp-content/themes/realhomes/common/js/cfos.js?ver=3.19.0 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:08 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 1378
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 | 216.58.207.195 | 200 OK | 34 kB |
URL HTTP/1.1fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data Hash848cd2ecd011428969dc6b90431bc482 6b1a7b562a56bd54510e0f6f95e26babca331a1b 981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9
GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://libben.net
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 33580
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 18 Nov 2022 23:34:51 GMT
Expires: Sat, 18 Nov 2023 23:34:51 GMT
Cache-Control: public, max-age=31536000
Age: 501197
Last-Modified: Mon, 18 Jul 2022 19:32:55 GMT
Content-Type: font/woff2
|
|
| fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.195 | 200 OK | 45 kB |
URL HTTP/1.1fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data Hash565ce506190ad3af920b40baf1794cec ad3cba5d06100e09449a864d3b5e58403b478b3d 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://libben.net
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 21 Nov 2022 21:39:58 GMT
Expires: Tue, 21 Nov 2023 21:39:58 GMT
Cache-Control: public, max-age=31536000
Age: 248890
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2
|
|
| libben.net/wp-content/themes/realhomes/common/font-awesome/webfonts/fa-solid-900.woff2 | 162.214.198.115 | 200 OK | 80 kB |
URL HTTP/1.1libben.net/wp-content/themes/realhomes/common/font-awesome/webfonts/fa-solid-900.woff2 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeWeb Open Font Format (Version 2), TrueType, length 80328, version 331.589\012- data Hash412a43d6840addd683665ec12c30f810 f3be6605dbff23cf22ec3abddd1141a81a99e3aa 0bf1b8d8ac1b4ef0caea0db8cbe1b6a35f8a84a2f5fffa2421936cc11a1a91fc
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/themes/realhomes/common/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://libben.net/wp-content/themes/realhomes/common/font-awesome/css/all.min.css?ver=5.13.1
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:08 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 80328
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: font/woff2
|
|
| libben.net/wp-content/themes/realhomes/common/font-awesome/webfonts/fa-brands-400.woff2 | 162.214.198.115 | 200 OK | 77 kB |
URL HTTP/1.1libben.net/wp-content/themes/realhomes/common/font-awesome/webfonts/fa-brands-400.woff2 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeWeb Open Font Format (Version 2), TrueType, length 77444, version 331.589\012- data Hash91a23e8bf2b4b84c39311cb5eb23aaa0 992e28bfb17bebc55d628d1b743d4c7d20082c19 e98ae3ff936b4723cd8a2377d2c549a667ce87e81201ec4995cc01bd374c1288
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/themes/realhomes/common/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://libben.net/wp-content/themes/realhomes/common/font-awesome/css/all.min.css?ver=5.13.1
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:08 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 77444
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff2
|
|
| libben.net/wp-content/themes/realhomes/common/optimize/vendors.js?ver=3.19.0 | 162.214.198.115 | 200 OK | 320 kB |
URL HTTP/1.1libben.net/wp-content/themes/realhomes/common/optimize/vendors.js?ver=3.19.0 IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeHTML document, Unicode text, UTF-8 text, with very long lines (65534), with no line terminators Size320 kB (319812 bytes) Hashb0eef0b9116c5323e7ee895281e9ce04 af6013e4ec3e9fac0ac82f64a2e2c6da8b62404f 5fc2f4f1d858463fc529054a455d3da69f827f286ed16783e11222a66f4756bd
GET /wp-content/themes/realhomes/common/optimize/vendors.js?ver=3.19.0 HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://libben.net/our-agents/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:08 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 319812
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| libben.net/wp-content/uploads/2020/05/agent-male-1-1-210x210.jpg | 162.214.198.115 | 200 OK | 8.9 kB |
URL HTTP/1.1libben.net/wp-content/uploads/2020/05/agent-male-1-1-210x210.jpg IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 210x210, components 3\012- data Hash06b7d7e88057c93073de82db1fabf850 71db1b253a4aa595fd156eec51a86a4067703422 f00b8090d8a7c43d5498c0d627b2caa540532f70edfc3b74f7537e886df1306a
GET /wp-content/uploads/2020/05/agent-male-1-1-210x210.jpg HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://libben.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:08 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 8862
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| libben.net/wp-content/uploads/2020/05/agent-female-6-210x210.jpg | 162.214.198.115 | 200 OK | 8.6 kB |
URL HTTP/1.1libben.net/wp-content/uploads/2020/05/agent-female-6-210x210.jpg IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 210x210, components 3\012- data Hasha5fca7ad235b96515373be70b0ba67c2 35ad0ab81ce50811d22db1586f116ae4bd73c176 43fc995285238fc7e0a5cc2e11e5ad71e22741e4e45cdb434b9db86f5afd330d
GET /wp-content/uploads/2020/05/agent-female-6-210x210.jpg HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://libben.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:09 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 8586
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| libben.net/wp-content/uploads/2020/06/zac-gudakov-0qir5hBOj18-unsplash-680x510.jpg | 162.214.198.115 | 200 OK | 93 kB |
URL HTTP/1.1libben.net/wp-content/uploads/2020/06/zac-gudakov-0qir5hBOj18-unsplash-680x510.jpg IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 680x510, components 3\012- data Hashdf1083bea91021a16dacd3d47f2ab6c0 7ba45fd2827ac0932356585cc609312077add838 7748964e5707fdf0963cb41fb154f5b285d952c4cc2ef29b1330b91a6d934534
GET /wp-content/uploads/2020/06/zac-gudakov-0qir5hBOj18-unsplash-680x510.jpg HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://libben.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:08 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 92693
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| libben.net/wp-content/uploads/2020/05/agent-female-7-1-210x210.jpg | 162.214.198.115 | 200 OK | 9.5 kB |
URL HTTP/1.1libben.net/wp-content/uploads/2020/05/agent-female-7-1-210x210.jpg IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 210x210, components 3\012- data Hash858d7142e9873bccdf8190303904e4a4 cf590ba1f0006765bb84595ce0f22f21c4f09c00 b34dc8ae705188adaaebd55412392c7263a41d199b10a03160f421d01c14de7d
GET /wp-content/uploads/2020/05/agent-female-7-1-210x210.jpg HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://libben.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:09 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 9460
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| libben.net/wp-content/uploads/2022/01/cropped-iso-192x192.png | 162.214.198.115 | 200 OK | 3.1 kB |
URL HTTP/1.1libben.net/wp-content/uploads/2022/01/cropped-iso-192x192.png IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data Hashd4c896b84e4ae5a70e09883136171f71 1e84406b30d5d23bc10d1b617369720e2bec8e9f 5aff69d3f1bdab2da1957b2dcf3a0396f75286fe3fc0a07faf4e9c60f268c9f7
GET /wp-content/uploads/2022/01/cropped-iso-192x192.png HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://libben.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:09 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 3068
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
|
|
| libben.net/wp-content/uploads/2022/01/cropped-iso-32x32.png | 162.214.198.115 | 200 OK | 423 B |
URL HTTP/1.1libben.net/wp-content/uploads/2022/01/cropped-iso-32x32.png IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data Hash3ab7367ce885e92d92b01a6c47c34069 808243998454a6b43764ae365b6d1b7f5fc9c73c 1431fa69833b6ea240f713a18f402409124b246ed1f0916f9ac295b5d0df5f80
GET /wp-content/uploads/2022/01/cropped-iso-32x32.png HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://libben.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:09 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 01:23:27 GMT
Accept-Ranges: bytes
Content-Length: 423
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
|
|
| unpkg.com/leaflet@1.3.4/dist/leaflet.js?ver=1.3.4 | 104.16.122.175 | 302 Found | 0 B |
URL HTTP/2unpkg.com/leaflet@1.3.4/dist/leaflet.js?ver=1.3.4 IP104.16.122.175:0
GET /leaflet@1.3.4/dist/leaflet.js?ver=1.3.4 HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://libben.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 24 Nov 2022 18:48:07 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
location: /leaflet@1.3.4/dist/leaflet.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GJNF643FKZKMVBHRHAGHGVJ1-fra
cf-cache-status: HIT
age: 320
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f45126a918b506-OSL
X-Firefox-Spdy: h2
|
|
| unpkg.com/leaflet@1.3.4/dist/leaflet.js | 104.16.122.175 | 200 OK | 0 B |
URL HTTP/2unpkg.com/leaflet@1.3.4/dist/leaflet.js IP104.16.122.175:0
GET /leaflet@1.3.4/dist/leaflet.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://libben.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 18:48:07 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Tue, 21 Aug 2018 17:04:16 GMT
etag: W/"224b4-I79AqscBlqwCKhRM9hAMevUYRwQ"
via: 1.1 fly.io
fly-request-id: 01G4XH249CMC9RR3HCX3BY8PV0-fra
cf-cache-status: HIT
age: 14762406
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f45126c93eb506-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| libben.net/wp-admin/admin-ajax.php?action=inspiry_get_location_options&query= | 162.214.198.115 | 200 OK | 0 B |
URL HTTP/1.1libben.net/wp-admin/admin-ajax.php?action=inspiry_get_location_options&query= IP162.214.198.115:0 ASN#46606 UNIFIEDLAYER-AS-1
GET /wp-admin/admin-ajax.php?action=inspiry_get_location_options&query= HTTP/1.1
Host: libben.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://libben.net
Connection: keep-alive
Referer: http://libben.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 18:48:09 GMT
Server: Apache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
|