r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10182
Expires: Fri, 25 Nov 2022 12:36:53 GMT
Date: Fri, 25 Nov 2022 09:47:11 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash af40a2fcf8debb90c3608002da6c907a
3c75d6c0b557a3bd8d5db50155b8d896e852c145
555617a51ee3077552545a29a3baf0b43e8a82367e4c08110ee480ebedc8b523
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6171
Cache-Control: max-age=95211
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 09:47:11 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 12:14:02 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3025
Expires: Fri, 25 Nov 2022 10:37:37 GMT
Date: Fri, 25 Nov 2022 09:47:12 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 25 Nov 2022 09:19:04 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1688
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: /m81I/z6vPSB/al8/RjuRWnqlpDL56otUvTVXdyiKPj5ikDyApf3zcASP3xj1xUsx1eger+2OQ8=
x-amz-request-id: S48EYA0HN79DF90X
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 09:40:45 GMT
age: 387
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 09:47:12 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 25 Nov 2022 09:11:11 GMT
cache-control: public,max-age=3600
age: 2161
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash fb6949e7abaa473393f7c604691de14f
599681bba3947709baa603bbae2dd7afd04059a4
36c5165526ea9d34de14d36655ed494d0cffaa11ca3271ee47824ac11246ba13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6141
Cache-Control: max-age=90118
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 09:47:12 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:49:10 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: FwiAZNK23SHJEbq6k+CL6Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tz2oDr6xFkHR1iTjWZwy3P4JONY=
3gpoolservices.com/
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/7.4.33
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
location: https://3gpoolservices.com/
content-length: 0
date: Fri, 25 Nov 2022 09:47:13 GMT
server: LiteSpeed
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18270
Expires: Fri, 25 Nov 2022 14:51:44 GMT
Date: Fri, 25 Nov 2022 09:47:14 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18270
Expires: Fri, 25 Nov 2022 14:51:44 GMT
Date: Fri, 25 Nov 2022 09:47:14 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18270
Expires: Fri, 25 Nov 2022 14:51:44 GMT
Date: Fri, 25 Nov 2022 09:47:14 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18270
Expires: Fri, 25 Nov 2022 14:51:44 GMT
Date: Fri, 25 Nov 2022 09:47:14 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8784bb7a8b88736a6016f712e3183bf3
b0ddc1555d2506177adcdcea77864d75f1245d07
8e331713b0ad0b5670dd33dfdadde665e076a40ddb80905d4df89876d49803d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11743
x-amzn-requestid: 9ab0aba7-5cd1-4f6c-8984-dc221e1cbf8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cICD-F7joAMFqmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe3b2-152ba5f1495a44447356cdab;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oWSNdsrz59sJC2znLnFqa_Zm3T14_d6j-rjzDQe4yV22Dy2Qc4Swaw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:54:45 GMT
age: 42749
etag: "b0ddc1555d2506177adcdcea77864d75f1245d07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8f6118fc03f31862ff68fef8a2b9a7f
318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73
cdd4d44f05cc524d7f2b1d6d792ecd8a9a933e52ecb7685a7d7ea786a510ef39
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8089
x-amzn-requestid: f4b5f150-a5dc-40bf-93b9-394c294a51cb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEmkRFSnIAMF5vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e8481-74454bee1a1ec6d506f3d75b;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 20:37:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ZVv8iTGCYV-IiBJ6KwNSG1ZWSEwClaQopUejSqZq0S1wd782lRoyKA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 22:59:49 GMT
age: 38845
etag: "318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9e23502-5ace-42f4-a990-42412dc7e04e.jpeg
200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9e23502-5ace-42f4-a990-42412dc7e04e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f6292a2988fb4505d0098553b8e99ddc
9b8aafcda0e22edcc16d3048f4b88659d3b42419
16b7b473229c5e519ab81b385c50277424f3f3b2a5d7647035e84ba58e44f3be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9e23502-5ace-42f4-a990-42412dc7e04e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6385
x-amzn-requestid: 4c2a84f7-f038-4f5a-86c2-5c8ce1a48c6e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cI5NVFMAoAMFn7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63803bee-45c6411c2430e2375f530dd8;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 03:52:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fj82i9qJmEiUy2DOkkowq8WRyzupMwNyQqu110sJ3o72HEW4yb7bjQ==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 07:22:46 GMT
age: 8668
etag: "9b8aafcda0e22edcc16d3048f4b88659d3b42419"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ad933c0-8cbe-40eb-920c-38b8ae531c9f.jpeg
200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ad933c0-8cbe-40eb-920c-38b8ae531c9f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d43ec6824d4fdc4d31b8c245bf8c5849
81f85633fca39972d8e0bf9a4ec7cd999e54564f
b0e521b23879af86102f46a9ec412faf6345df31a97a7b58880f63f81fdcd0c6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ad933c0-8cbe-40eb-920c-38b8ae531c9f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7900
x-amzn-requestid: a9d184b1-3b4a-4ca6-9ad2-ce3aac10f422
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB91H2IIAMFjGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe38b-5732361f36c023c22c922ee9;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: nVe_gcpscsmf4QGPseIR2poHwzxp_mfWODrAz8Oy0ePkMgnIREhCag==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:35:07 GMT
etag: "81f85633fca39972d8e0bf9a4ec7cd999e54564f"
content-type: image/jpeg
age: 43927
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F981a8e9a-f018-45b6-af7e-199dc4c02c27.jpeg
200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F981a8e9a-f018-45b6-af7e-199dc4c02c27.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5863138af1ddbba34a7856242a7b3a06
2eba66ff6539388c48562503e8d11ff0e060350a
d1543e1b803a07095148b743925eebbbf21f566a2df9b785a1a9d48c5604496c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F981a8e9a-f018-45b6-af7e-199dc4c02c27.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8917
x-amzn-requestid: 10f3b269-9437-476d-ae4f-a0ac3fb78491
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB8wEIwoAMF8uA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe384-4cfeecf4553b26381ed11875;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:00 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6ibPrCdDNQqWzxiVYDsl87yUfTP8sUmu22GbhBdDHJruil0qxbw7Fw==
via: 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:35:00 GMT
etag: "2eba66ff6539388c48562503e8d11ff0e060350a"
content-type: image/jpeg
age: 43934
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4006a9037ab5f28dca62b0aa7a704c41
74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b
556ae6516a1f272a96569a3637858292731a34e82672b682f6e7442ca68f4b1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3955
x-amzn-requestid: 42c8d309-a8d2-47cc-8d97-c7fa3a63f8cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCM9NGJHoAMF4sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8eba-2a06cda9346bd02c46955444;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 03:08:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5MlzpHpq7auKLSAYikINuPAylXI11VJL3xxIJ9Dyub-7rjQaPfg0WQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 02:07:28 GMT
age: 27586
etag: "74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/Swiper/4.3.5/js/swiper.min.js
200 OK 27 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/Swiper/4.3.5/js/swiper.min.js
IP
File type ASCII text, with very long lines (65274)
Hash 2c81b0aec3895d68f7f5d01530b11c6b
c08bc9f591e007fd71214288730a35f5e5e3c5b9
0f7d71acff52a0c5a7b31f8551f2aaba5fa574c3d03f00551fd90d634737b8eb
GET /ajax/libs/Swiper/4.3.5/js/swiper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 25 Nov 2022 09:47:16 GMT
content-type: application/javascript; charset=utf-8
content-length: 27354
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03cf2-1d7a8"
last-modified: Mon, 04 May 2020 16:04:02 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3169731
expires: Wed, 15 Nov 2023 09:47:16 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vd%2FCPteGJkVhdFEpzJ2jehrR3i7uP9C82XOdtPrWHGqec%2F1MM2hYEBxC5%2BGhDuq%2FKmVedxbJmIdGEhp3TNx4obrN5PfhclrIzUsu7Q2GY6FkopUj1KbEFnIiz4f7E86jAiW9%2FL6h"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76f976448f11b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a0111a2443450172e5d2b48d350a8f57
75e89d4cd001303e66a93880f96d6c47e7d665ab
c9865c82b8f373aeb3a7333b0f65408211d832aba753c35d3544ecb2913f4f64
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 09:47:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-150765886-1
200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-150765886-1
IP
File type ASCII text, with very long lines (1921)
Hash f48c587af02007f7adbbe0be5f541128
d6d79f62389c70901ec692415bf3d1933f5d334d
384caeaa516fce0ee7e1a8221da20040d9467e62e9b5119d30648a672765a269
GET /gtag/js?id=UA-150765886-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 25 Nov 2022 09:47:16 GMT
expires: Fri, 25 Nov 2022 09:47:16 GMT
cache-control: private, max-age=900
last-modified: Fri, 25 Nov 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43682
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/plugins/wp-yelp-review-slider/public/css/wprev-public_template1.css?ver=6.9
200 OK 1.1 kB URL HTTP/2 3gpoolservices.com/wp-content/plugins/wp-yelp-review-slider/public/css/wprev-public_template1.css?ver=6.9
IP
Hash a01b0a45a33a70e735d27c03be3c21e3
0dc04f8c4e9f9191a81d770a73af44959a20dbe7
a7a00ee8491b6560bebde0f5a641f39b488716ab62654af28ff4890a0486cf2f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-yelp-review-slider/public/css/wprev-public_template1.css?ver=6.9 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 04:47:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1072
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/plugins/wp-yelp-review-slider/public/css/wpyelp_w3.css?ver=6.9
200 OK 423 B URL HTTP/2 3gpoolservices.com/wp-content/plugins/wp-yelp-review-slider/public/css/wpyelp_w3.css?ver=6.9
IP
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 0c8181bd54e717425bf4a790c18c1695
227cf54f44f62f055bce0d568d19ec1602eea911
a400e3e09d6216d6a92faf7459f37cdac267994e2387fb1e63e1de74042f51e6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-yelp-review-slider/public/css/wpyelp_w3.css?ver=6.9 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 04:47:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 423
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/plugins/wp-yelp-review-slider/public/css/wprs_unslider.css?ver=6.9
200 OK 463 B URL HTTP/2 3gpoolservices.com/wp-content/plugins/wp-yelp-review-slider/public/css/wprs_unslider.css?ver=6.9
IP
File type ASCII text, with CRLF line terminators
Hash 46144150965192c4940e63f513b7b0c4
5a83e8b20b5518cbada57932ac48cafe1612a365
d85509db42614a79c5787e985039df4a411e21d6c18a78bbb8bb028e349a1d1e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-yelp-review-slider/public/css/wprs_unslider.css?ver=6.9 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 04:47:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 463
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-TM8GQD6
200 OK 64 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-TM8GQD6
IP
File type ASCII text, with very long lines (3710)
Hash ae6285140f5c2d16eba24575d933b842
44f4964bb33cd4793239c32c948ff81e29a7ecde
93624739ae72e81e1277950714a61ea7197ec697573c47bff3cf02866b377b0f
GET /gtm.js?id=GTM-TM8GQD6 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 25 Nov 2022 09:47:16 GMT
expires: Fri, 25 Nov 2022 09:47:16 GMT
cache-control: private, max-age=900
last-modified: Fri, 25 Nov 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 64456
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/et-cache/20/et-divi-dynamic-tb-93-20.css?ver=1669118298
200 OK 2.1 kB URL HTTP/2 3gpoolservices.com/wp-content/et-cache/20/et-divi-dynamic-tb-93-20.css?ver=1669118298
IP
File type ASCII text, with very long lines (5919)
Hash 71d581470f4efc56d7ac78482baf9a74
bb4e6cca6c5189fe30cac385c7b69a33ccb53074
ebdf100ff2a51b81a67349b12cc0fb1d0bfac24a45e2c73de715bdfc9f18f262
Analyzer Verdict Alert fortinet Malware
GET /wp-content/et-cache/20/et-divi-dynamic-tb-93-20.css?ver=1669118298 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: text/css
last-modified: Tue, 22 Nov 2022 11:58:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2050
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/plugins/supreme-modules-pro-for-divi/styles/style.min.css?ver=4.7.41
200 OK 33 kB URL HTTP/2 3gpoolservices.com/wp-content/plugins/supreme-modules-pro-for-divi/styles/style.min.css?ver=4.7.41
IP
File type ASCII text, with very long lines (34499)
Hash 17a3e36b74b95d125a82b7c6d8521037
6ce71bcf1a1a7f86ddf3274ba9ee2d30545c5267
73c0098d16ae9f6b5983a8a89039bafdcc2b83cc79e36836946bc630e3502211
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/supreme-modules-pro-for-divi/styles/style.min.css?ver=4.7.41 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 04:46:59 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32858
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/plugins/newsletter/style.css?ver=7.5.6
200 OK 1.2 kB URL HTTP/2 3gpoolservices.com/wp-content/plugins/newsletter/style.css?ver=7.5.6
IP
Hash b1f57401bb14035bb9d6c84326a45742
fc39487b307fc1594feee39c4c3db6da38ab3da6
6eecefac5ed2c1138220ad356402061c558e48bc91f6c2253b523fba8942151b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/newsletter/style.css?ver=7.5.6 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 04:46:59 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1187
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/plugins/gravityforms/assets/css/dist/basic.min.css?ver=2.6.8
200 OK 6.8 kB URL HTTP/2 3gpoolservices.com/wp-content/plugins/gravityforms/assets/css/dist/basic.min.css?ver=2.6.8
IP
File type ASCII text, with very long lines (47167), with no line terminators
Hash a64de96d92721b9cea6e48d3cedcfbcd
52921925062bdadf878efae081a3afc4938225c3
a4d12e11d5311c068ee1df0725bda6827cdc0503dedcc9954497e732f384de93
GET /wp-content/plugins/gravityforms/assets/css/dist/basic.min.css?ver=2.6.8 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 04:46:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6806
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/plugins/gravityforms/assets/css/dist/theme-components.min.css?ver=2.6.8
200 OK 0 B URL HTTP/2 3gpoolservices.com/wp-content/plugins/gravityforms/assets/css/dist/theme-components.min.css?ver=2.6.8
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/gravityforms/assets/css/dist/theme-components.min.css?ver=2.6.8 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 04:46:58 GMT
accept-ranges: bytes
content-length: 0
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a0111a2443450172e5d2b48d350a8f57
75e89d4cd001303e66a93880f96d6c47e7d665ab
c9865c82b8f373aeb3a7333b0f65408211d832aba753c35d3544ecb2913f4f64
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 09:47:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3gpoolservices.com/wp-content/plugins/gravityforms/assets/css/dist/theme-ie11.min.css?ver=2.6.8
200 OK 326 B URL HTTP/2 3gpoolservices.com/wp-content/plugins/gravityforms/assets/css/dist/theme-ie11.min.css?ver=2.6.8
IP
File type ASCII text, with very long lines (1753), with no line terminators
Hash 0a4fbe1a0583119ceb75fdcac25a3b5a
e12b80fb7e1f461f9539f242a5cc14c6f6833cb5
379dce8ef443caad911c1606dd08a2d63f7a7251f896781bf81086de11fca9b0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/gravityforms/assets/css/dist/theme-ie11.min.css?ver=2.6.8 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 04:46:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 326
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/plugins/gravityforms/assets/css/dist/theme.min.css?ver=2.6.8
200 OK 4.9 kB URL HTTP/2 3gpoolservices.com/wp-content/plugins/gravityforms/assets/css/dist/theme.min.css?ver=2.6.8
IP
File type ASCII text, with very long lines (30590), with no line terminators
Hash 0d0f7954e5f79694a544dfa98940e84c
64e789e9eb31e355b91809d635f7d5c784ccc837
1adf364ff39e41a1e849ca0f986191ba6faf49b587ac668271e4443c8a76c7d5
GET /wp-content/plugins/gravityforms/assets/css/dist/theme.min.css?ver=2.6.8 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 04:46:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4940
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/css/intlTelInput.min.css?ver=1.5
200 OK 2.3 kB URL HTTP/2 3gpoolservices.com/wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/css/intlTelInput.min.css?ver=1.5
IP
File type ASCII text, with very long lines (19157), with no line terminators
Hash f24e3f9cf2b5e21812cf99498765d006
2b663608f96b3a17ae45a1d8955989d1599f55f0
e8a7ea8aa3eb2899dd5ad293adc77264b3103ecf903211e8e1c6af149337f99a
GET /wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/css/intlTelInput.min.css?ver=1.5 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 04:46:59 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2267
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/css/spf_style.css?ver=1.5
200 OK 196 B URL HTTP/2 3gpoolservices.com/wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/css/spf_style.css?ver=1.5
IP
Hash 76d2ceb7963a77fa60bf5cf739387b88
5fb5b5075fba29c563033213b2a36b880ba68978
00e04c4cc6d3296976876c75325473eed4af41721244639eda18cd7fe4f13738
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/css/spf_style.css?ver=1.5 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 04:46:59 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 196
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/themes/Divi%20Child/style.css?ver=4.19.0
200 OK 184 B URL HTTP/2 3gpoolservices.com/wp-content/themes/Divi%20Child/style.css?ver=4.19.0
IP
File type ASCII text, with CRLF line terminators
Hash 3ff425501ec4187e3a8928c0db149f9f
83f02dbe705a12afcd359cbcf3ec91f57b1dcfde
759c48f9840c06832ed79e61db81663a9497fb2f9c469a3447695fe8d44d0746
GET /wp-content/themes/Divi%20Child/style.css?ver=4.19.0 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 04:47:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 184
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
200 OK 31 kB URL HTTP/2 3gpoolservices.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
File type ASCII text, with very long lines (65447)
Hash cc5a8bfbf7d31fbc3022dc05e964a95c
81edda48c2c2c97bf79dea1ec91b89105e4ba00b
651c822702a9ac476c260fd37dccab6c3da8306ff6dd922e9d68cfa7863bfe42
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 04:47:04 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 31046
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
3gpoolservices.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 4.2 kB URL HTTP/2 3gpoolservices.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
File type ASCII text, with very long lines (11126)
Hash c41f3a82e911de81a1817131069bc7d2
1e883290a0b794916cead41e5f0705716fd77b89
e9791f24770f098ea30bb4d25e2e10bdedb97132d0bbf7d2bd79eedac22efa27
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 04:47:04 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4168
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/plugins/wp-yelp-review-slider/public/js/wprs-unslider-swipe.js?ver=6.9
200 OK 4.3 kB URL HTTP/2 3gpoolservices.com/wp-content/plugins/wp-yelp-review-slider/public/js/wprs-unslider-swipe.js?ver=6.9
IP
File type ASCII text, with very long lines (6344), with CRLF line terminators
Hash 160d4a7738554b7a9752a1dec659f7d9
735f4d55ce0931275436c5dfd9adfbd3ac1a1c13
3d53d66950d4826a6bf407c38f65c1880f9774f8964985c48d84e0c834e30a2c
GET /wp-content/plugins/wp-yelp-review-slider/public/js/wprs-unslider-swipe.js?ver=6.9 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 04:47:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4286
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/plugins/wp-yelp-review-slider/public/js/wprev-public.js?ver=6.9
200 OK 828 B URL HTTP/2 3gpoolservices.com/wp-content/plugins/wp-yelp-review-slider/public/js/wprev-public.js?ver=6.9
IP
Hash cc0ebf911fc44535b165a0539e7ba55a
1a4258b5ca38f46f729bfb20527315420588eef9
5da8acde5c43f68867ddc75cefeb3816bdea7ee87fa16b5163ff1260f0111b10
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-yelp-review-slider/public/js/wprev-public.js?ver=6.9 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 04:47:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 828
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.6.8
200 OK 850 B URL HTTP/2 3gpoolservices.com/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.6.8
IP
File type ASCII text, with very long lines (1836), with no line terminators
Hash d565630d1c51166ab6370953f8ac5bbe
510ad8317708594f89137ddd65739d8df03b17b1
995bdb18fb03c9ef1c627327994bccd3621d6ef3d7ca21cdc9385aeb06f65ae3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.6.8 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 04:46:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 850
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.6.8
200 OK 13 kB URL HTTP/2 3gpoolservices.com/wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.6.8
IP
File type ASCII text, with very long lines (44198), with no line terminators
Hash 406ef03cbb8c6dfc554f4aa9480679d5
02bbc19094789c7312423b8ee697b5ae8ee4a650
4e3b862ee7e0be224a30e7692fd01c200c76e61e09ecf625a4ecdc4f76b0e1ec
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.6.8 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 04:46:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12740
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/js/intlTelInput-jquery.min.js?ver=1.5
200 OK 11 kB URL HTTP/2 3gpoolservices.com/wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/js/intlTelInput-jquery.min.js?ver=1.5
IP
File type Unicode text, UTF-8 text, with very long lines (27010)
Hash d692c82bba8b1fb8b45a921e081af750
caf3535595509383ef6b53a99206b10236731d1c
8411ed77687d0fb6b3bdcb266596345f74eb5afef78d618d5987289ebe773b63
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/js/intlTelInput-jquery.min.js?ver=1.5 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 04:46:59 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10557
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/
200 OK 50 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (25147)
Hash 92c13360b50f89b786f5042c9cb0536b
c96d3ae2536dcd699d12393f4eb3cc5e9812bf79
3bbb7dfc57b2eccb756d23c0387773514ecd88428f0f8268d0c31c11871deb25
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
content-type: text/html; charset=UTF-8
link: <https://3gpoolservices.com/wp-json/>; rel="https://api.w.org/", <https://3gpoolservices.com/wp-json/wp/v2/pages/20>; rel="alternate"; type="application/json", <https://3gpoolservices.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/js/utils.js?ver=1.5
200 OK 55 kB URL HTTP/2 3gpoolservices.com/wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/js/utils.js?ver=1.5
IP
File type ASCII text, with very long lines (1833)
Hash 88c59ba482b643246049c19100c04545
af3f65fb0ac16482d423311dc79a3afaec935e05
58fd7bb39e1c582504c9f434bf89c83d7fe1711849a349e2b7cce9fcb086c16b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/js/utils.js?ver=1.5 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 04:46:59 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 55396
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/js/spf_main.js?ver=1.5
200 OK 928 B URL HTTP/2 3gpoolservices.com/wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/js/spf_main.js?ver=1.5
IP
Hash c98904ba6588594f183fdb36c2e1b657
17469b4d98cfe310314681452ba9e5afd53b9c22
3c90bca9d5658eef90e2b873541fcb281dc724d030415ace6d47a0de9dc3db70
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/smart-phone-field-for-gravity-forms/frontend/js/spf_main.js?ver=1.5 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 04:46:59 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 928
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/et-cache/20/et-core-unified-20.min.css?ver=1669118203
200 OK 1.7 kB URL HTTP/2 3gpoolservices.com/wp-content/et-cache/20/et-core-unified-20.min.css?ver=1669118203
IP
File type ASCII text, with very long lines (6477), with no line terminators
Hash cbf9343f45bd0a084a60ca3ab77e989c
af81fe4cf543216a27c971b9a256911e763779f4
e9f775ec99023b07b848d567b8c896539be47971faf533c5269157656752e97c
GET /wp-content/et-cache/20/et-core-unified-20.min.css?ver=1669118203 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: text/css
last-modified: Tue, 22 Nov 2022 11:56:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1712
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.19.0
200 OK 70 kB URL HTTP/2 3gpoolservices.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.19.0
IP
File type ASCII text, with very long lines (65467)
Hash 0a5161e239edbe49d0a2f90d8098f316
4e6b9e0a1cc9c9bb39870c869718123b5adcb79d
5955c658532956d70b851b6183a311f353c84700764d199485c7d6cd1aef7653
GET /wp-content/themes/Divi/js/scripts.min.js?ver=4.19.0 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 04:47:01 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 70446
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/uploads/2022/10/Gramps-3G-photo-rotated-e1666766839195.jpg
200 OK 26 kB URL HTTP/2 3gpoolservices.com/wp-content/uploads/2022/10/Gramps-3G-photo-rotated-e1666766839195.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 228x554, components 3\012- data
Hash bff0dd1d9e73083227a86a936f2fd6ab
45d935dd3c7171beaa8635f3a82cf164ceaca352
675ddc2c1deaad99cc04854d46eb991f9433dc72cd4ed201f7f6c568a99158c9
GET /wp-content/uploads/2022/10/Gramps-3G-photo-rotated-e1666766839195.jpg HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: image/jpeg
last-modified: Sat, 19 Nov 2022 04:47:02 GMT
accept-ranges: bytes
content-length: 25944
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/uploads/2022/10/arw-waga.png
200 OK 1.5 kB URL HTTP/2 3gpoolservices.com/wp-content/uploads/2022/10/arw-waga.png
IP
File type PNG image data, 52 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash dd9aaf5315bc2dff9801b19ec5b1599a
efb138ec214d44f9898e68b4b5453ad24c2140e3
65d42f33a50ee6279cd0a03e97e125e478117e52d3f5b42424bc9000334bf722
GET /wp-content/uploads/2022/10/arw-waga.png HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: image/png
last-modified: Sat, 19 Nov 2022 04:47:02 GMT
accept-ranges: bytes
content-length: 1547
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/plugins/wp-yelp-review-slider/public/partials/imgs/yelp_stars_5.png
200 OK 3.7 kB URL HTTP/2 3gpoolservices.com/wp-content/plugins/wp-yelp-review-slider/public/partials/imgs/yelp_stars_5.png
IP
File type PNG image data, 164 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 6aca565c04081d3e4b9c23182e155ca4
39977383e0d7a569e5edf9c4eca680caa7f5c29e
960dd8de8a0bf48c3983075b4b0b6df7ee531a68644b8010f36a42e0497b797f
GET /wp-content/plugins/wp-yelp-review-slider/public/partials/imgs/yelp_stars_5.png HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: image/png
last-modified: Sat, 19 Nov 2022 04:47:00 GMT
accept-ranges: bytes
content-length: 3675
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/plugins/wp-yelp-review-slider/public/partials/imgs/yelp_outline.png
200 OK 6.4 kB URL HTTP/2 3gpoolservices.com/wp-content/plugins/wp-yelp-review-slider/public/partials/imgs/yelp_outline.png
IP
File type PNG image data, 64 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 7fa1c9aa3fa39a5a0d150dbb8ecb8242
873b827638064cece486f1e324dce0e55213a45e
45b492e051cd914c8b8a4464c35fa96664a5ce3c478c057992ec9882e372c634
GET /wp-content/plugins/wp-yelp-review-slider/public/partials/imgs/yelp_outline.png HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: image/png
last-modified: Sat, 19 Nov 2022 04:47:00 GMT
accept-ranges: bytes
content-length: 6411
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/uploads/2022/10/ThreeGenerationsPoolandSpaLogo.jpg
200 OK 80 kB URL HTTP/2 3gpoolservices.com/wp-content/uploads/2022/10/ThreeGenerationsPoolandSpaLogo.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 250x250, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Xara Photo & Graphic Designer 10], baseline, precision 8, 529x411, components 3\012- data
Hash 913a431368410f4242c67534bf97743f
ed0a215611ec58d88bc7cdcde9f35e54671089bc
4884e26ab1a55fd703207050535e7bd3fd5912b01a12d4bb1a7076b57b0f6acc
GET /wp-content/uploads/2022/10/ThreeGenerationsPoolandSpaLogo.jpg HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: image/jpeg
last-modified: Sat, 19 Nov 2022 04:47:02 GMT
accept-ranges: bytes
content-length: 79705
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/et-cache/20/et-core-unified-tb-93-deferred-20.min.css?ver=1669118204
200 OK 3.7 kB URL HTTP/2 3gpoolservices.com/wp-content/et-cache/20/et-core-unified-tb-93-deferred-20.min.css?ver=1669118204
IP
File type ASCII text, with very long lines (48293), with no line terminators
Hash f2025e46caebc3bf9fff5815aca3508b
c4fbb4ee594baaca5512863630544348779c5a9e
287747d909e6924a40ad63eedbd60e16a7bb8b36bf0d556e318405ef3a535500
GET /wp-content/et-cache/20/et-core-unified-tb-93-deferred-20.min.css?ver=1669118204 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: text/css
last-modified: Tue, 22 Nov 2022 11:56:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3705
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 09:47:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 09:47:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDD4Z1JlFQ.woff2
200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDD4Z1JlFQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 10800, version 1.0\012- data
Hash 3bb8c5ab3d96da523dfea74c986c01fb
d868b098002d78d13ec2769ef3c3194e7691eeae
bfc50b5a6dad41c1e94bba1926e4dc973eb356a4564be82e1a26b954200eeafe
GET /s/poppins/v20/pxiByp8kv8JHgFVrLDD4Z1JlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://3gpoolservices.com
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 01:37:52 GMT
expires: Fri, 24 Nov 2023 01:37:52 GMT
cache-control: public, max-age=31536000
age: 115765
last-modified: Wed, 27 Apr 2022 16:52:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 09:47:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1JlFQ.woff2
200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1JlFQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 10636, version 1.0\012- data
Hash 7a2c461f7cc8871fe7a741eb10e18e8b
b0faf95d217f102320175e4900aa3250dafe4674
47f3eaee9be967b079c84b584bdc161bb26a49a6f081f60813e1b3dc83ecf4f3
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1JlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://3gpoolservices.com
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10636
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 22:09:14 GMT
expires: Thu, 23 Nov 2023 22:09:14 GMT
cache-control: public, max-age=31536000
age: 128283
last-modified: Wed, 27 Apr 2022 16:10:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 09:47:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2
200 OK 22 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 22084, version 1.0\012- data
Hash bab4daa6bec06781aa7262eca0be0ed4
b896fcea50433114a0433c9c8117677a875f1116
ee901a5f44fcc6ea6ab97fb2751ce51af915d16dd99995a29a5905d2ce4b0831
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://3gpoolservices.com
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22084
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 22:42:03 GMT
expires: Tue, 21 Nov 2023 22:42:03 GMT
cache-control: public, max-age=31536000
age: 299114
last-modified: Mon, 15 Aug 2022 18:14:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1JlFQ.woff2
200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1JlFQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 10952, version 1.0\012- data
Hash 9a1d9132dbb2f04bec656ff1ad91bb9c
4a7e206a60ec27a610c02439538446a91a45d48b
55a511dc9d7eee7c667d558d109678fd98be366d3b70f19fa097ffb19647425c
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1JlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://3gpoolservices.com
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:02:05 GMT
expires: Thu, 23 Nov 2023 19:02:05 GMT
cache-control: public, max-age=31536000
age: 139512
last-modified: Wed, 27 Apr 2022 16:59:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJnecg.woff2
200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJnecg.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 10832, version 1.0\012- data
Hash 27624b02dbe8caa6cffa01dc7eaad077
c8795e9910438315a39451dbd2d7d947445c0579
2517fd308838eec084af7bb64660c3f6b675684f3518980f121a3a568e9ad933
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJnecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://3gpoolservices.com
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10832
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 23:41:44 GMT
expires: Thu, 23 Nov 2023 23:41:44 GMT
cache-control: public, max-age=31536000
age: 122733
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 09:47:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3gpoolservices.com/wp-content/uploads/2022/10/image_67170305-scaled.jpg
200 OK 618 kB URL HTTP/2 3gpoolservices.com/wp-content/uploads/2022/10/image_67170305-scaled.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1920x2560, components 3\012- data
Size 618 kB (618246 bytes)
Hash 1fcbf0afa042350c60fd6de99c8f10c4
52a37b8744e53908cac412e88c22e9a49fd991f6
33882f213a2f100a1586621d49ec1ad4ac5350897fee3c883cff8996b29e47f8
GET /wp-content/uploads/2022/10/image_67170305-scaled.jpg HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: image/jpeg
last-modified: Sat, 19 Nov 2022 04:47:02 GMT
accept-ranges: bytes
content-length: 618246
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/uploads/2022/10/image_123923953-scaled.jpg
200 OK 527 kB URL HTTP/2 3gpoolservices.com/wp-content/uploads/2022/10/image_123923953-scaled.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1920x2560, components 3\012- data
Size 527 kB (526603 bytes)
Hash 640e2c0b860218e6c2e8fffa39f69a02
400400a34db28f6c240ca7bc5962fcd5d20d2032
b6b91b788b9b7ae2ad0cb06fd2e8904a2331771e86518b98ff46a9c8424f7b08
GET /wp-content/uploads/2022/10/image_123923953-scaled.jpg HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: image/jpeg
last-modified: Sat, 19 Nov 2022 04:47:02 GMT
accept-ranges: bytes
content-length: 526603
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1JlFQ.woff2
200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1JlFQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 10736, version 1.0\012- data
Hash 1914bb2cffe458fd423d47e66c583875
e1d2d8054950b5b5b66662c7325a6c441f8cb38a
131db8ab0af3c8f3d79c4bc290f3ad6d86d06a3b1b2be51299c6207717fcb6ad
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1JlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://3gpoolservices.com
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10736
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 18:50:10 GMT
expires: Thu, 23 Nov 2023 18:50:10 GMT
cache-control: public, max-age=31536000
age: 140227
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s3-media0.fl.yelpcdn.com/assets/srv0/yelp_styleguide/514f6997a318/assets/img/default_avatars/user_60_square.png
200 OK 861 B URL HTTP/2 s3-media0.fl.yelpcdn.com/assets/srv0/yelp_styleguide/514f6997a318/assets/img/default_avatars/user_60_square.png
IP
File type PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 514f6997a3184af475d5adc800b6d0b1
d28bd38f5c0b73bb2a911288f96e7bb10bdbf54b
6599a85bcd6d588180e94b249e394b982cd58174fb8ca768cfae8793ad9cd487
GET /assets/srv0/yelp_styleguide/514f6997a318/assets/img/default_avatars/user_60_square.png HTTP/1.1
Host: s3-media0.fl.yelpcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "514f6997a3184af475d5adc800b6d0b1"
content-type: image/png
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 25 Nov 2022 09:47:17 GMT
x-served-by: cache-sjc10076-SJC, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 2
x-timer: S1669369638.504418,VS0,VE0
cache-control: max-age=315360000, immutable
timing-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 861
X-Firefox-Spdy: h2
s3-media0.fl.yelpcdn.com/photo/t2ZS_ELdwW7JpGFKqwNJAQ/120s.jpg
200 OK 4.1 kB URL HTTP/2 s3-media0.fl.yelpcdn.com/photo/t2ZS_ELdwW7JpGFKqwNJAQ/120s.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 120x120, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a164b17dff720697899c84e199e126ab
2ae1e16315694a9cd948f8e1759b1d1ac93d6127
fa8b498b239ff0adfec395bfda177cac69565c4b43a8aef1ee680f31d903df41
GET /photo/t2ZS_ELdwW7JpGFKqwNJAQ/120s.jpg HTTP/1.1
Host: s3-media0.fl.yelpcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
etag: "lBIeshfOK23BJE0QbmmOE2/i6FCq8hbWscLtiOooJb0"
fastly-io-info: ifsz=4773 idim=120x120 ifmt=jpeg ofsz=4050 odim=120x120 ofmt=webp
fastly-stats: io=1
fastly-transform-stats: tus=5524 cr=1.18
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 25 Nov 2022 09:47:17 GMT
x-served-by: cache-sjc10024-SJC, cache-bma1674-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1669369638.504690,VS0,VE199
cache-control: max-age=315360000, immutable
timing-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 4050
X-Firefox-Spdy: h2
s3-media0.fl.yelpcdn.com/photo/A6jl_zQAZ-6I3aJz0oX42g/120s.jpg
200 OK 924 B URL HTTP/2 s3-media0.fl.yelpcdn.com/photo/A6jl_zQAZ-6I3aJz0oX42g/120s.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 120x120, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d515adb6dd7ab3bea99d29b4bf83264f
6b169c439920bd168592739c612e3f27472b275b
251bf3eb1eb0f1331c5c1d2e62247f34800628ecde61db017f8a3db87b4f244c
GET /photo/A6jl_zQAZ-6I3aJz0oX42g/120s.jpg HTTP/1.1
Host: s3-media0.fl.yelpcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
etag: "dcCBXVtbrf8OiPnH4zDtohJAfSSwolI5yHorS9CW3d0"
fastly-io-info: ifsz=2380 idim=120x120 ifmt=jpeg ofsz=924 odim=120x120 ofmt=webp
fastly-stats: io=1
fastly-transform-stats: tus=3295 cr=2.58
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 25 Nov 2022 09:47:17 GMT
x-served-by: cache-sjc10065-SJC, cache-bma1674-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1669369638.507183,VS0,VE197
cache-control: max-age=315360000, immutable
timing-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 924
X-Firefox-Spdy: h2
s3-media0.fl.yelpcdn.com/photo/kDvtVmQzruMq_34Lj7wlJg/120s.jpg
200 OK 3.8 kB URL HTTP/2 s3-media0.fl.yelpcdn.com/photo/kDvtVmQzruMq_34Lj7wlJg/120s.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 120x120, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1ea2a7bb3f7f1eafc7879d84d7baf774
858432af7a6118f6f4503bf94443a41875ec88d1
1c4324812846c4e3e8739ad7d329a09490ea6efc9f9d0ffecb368f9b8adea2cd
GET /photo/kDvtVmQzruMq_34Lj7wlJg/120s.jpg HTTP/1.1
Host: s3-media0.fl.yelpcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
etag: "nxyUosHLpa2iHQytSCiD0+ujpupj5d4awXGX7RY+1pU"
fastly-io-info: ifsz=4920 idim=120x120 ifmt=jpeg ofsz=3810 odim=120x120 ofmt=webp
fastly-stats: io=1
fastly-transform-stats: tus=5144 cr=1.29
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 25 Nov 2022 09:47:17 GMT
x-served-by: cache-sjc10076-SJC, cache-bma1674-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1669369638.506111,VS0,VE214
cache-control: max-age=315360000, immutable
timing-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 3810
X-Firefox-Spdy: h2
s3-media0.fl.yelpcdn.com/photo/FX0bxjnTCLOWB2FFhefbMw/120s.jpg
200 OK 6.4 kB URL HTTP/2 s3-media0.fl.yelpcdn.com/photo/FX0bxjnTCLOWB2FFhefbMw/120s.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 120x120, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 71bab8c2ba8d06799aaf74553e44051d
4fe60fe6a7fb7556201e80e1235581f30ae7a5cb
371d4249506d06105ebe21a18fd1cef98cefa3cced32197f876cef9e65856682
GET /photo/FX0bxjnTCLOWB2FFhefbMw/120s.jpg HTTP/1.1
Host: s3-media0.fl.yelpcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
etag: "/n8eh2imy9BHWrJwoGgL3Z9NuyKlYvZFCJ0XoaDXoG8"
fastly-io-info: ifsz=7108 idim=120x120 ifmt=jpeg ofsz=6432 odim=120x120 ofmt=webp
fastly-stats: io=1
fastly-transform-stats: tus=5901 cr=1.11
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Fri, 25 Nov 2022 09:47:17 GMT
x-served-by: cache-sjc10052-SJC, cache-bma1674-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1669369638.502690,VS0,VE227
cache-control: max-age=315360000, immutable
timing-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 6432
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 25 Nov 2022 08:41:08 GMT
expires: Fri, 25 Nov 2022 10:41:08 GMT
cache-control: public, max-age=7200
age: 3970
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j98&a=1828499928&t=pageview&_s=1&dl=https%3A%2F%2F3gpoolservices.com%2F&ul=en-us&de=UTF-8&dt=Three%20Generations%20Pool%20Services&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=753820698&gjid=718231478&cid=1937346962.1669369638&tid=UA-150765886-1&_gid=1417849166.1669369638&_r=1>m=2oub90&z=1803004005
200 OK 1 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=1828499928&t=pageview&_s=1&dl=https%3A%2F%2F3gpoolservices.com%2F&ul=en-us&de=UTF-8&dt=Three%20Generations%20Pool%20Services&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=753820698&gjid=718231478&cid=1937346962.1669369638&tid=UA-150765886-1&_gid=1417849166.1669369638&_r=1>m=2oub90&z=1803004005
IP
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?v=1&_v=j98&a=1828499928&t=pageview&_s=1&dl=https%3A%2F%2F3gpoolservices.com%2F&ul=en-us&de=UTF-8&dt=Three%20Generations%20Pool%20Services&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=753820698&gjid=718231478&cid=1937346962.1669369638&tid=UA-150765886-1&_gid=1417849166.1669369638&_r=1>m=2oub90&z=1803004005 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://3gpoolservices.com
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://3gpoolservices.com
date: Fri, 25 Nov 2022 09:47:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3gpoolservices.com/wp-content/et-cache/20/et-divi-dynamic-tb-93-20-late.css?ver=1669118298
200 OK 0 B URL HTTP/2 3gpoolservices.com/wp-content/et-cache/20/et-divi-dynamic-tb-93-20-late.css?ver=1669118298
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/et-cache/20/et-divi-dynamic-tb-93-20-late.css?ver=1669118298 HTTP/1.1
Host: 3gpoolservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3gpoolservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 09:47:16 GMT
content-type: text/css
last-modified: Tue, 22 Nov 2022 11:58:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1947
date: Fri, 25 Nov 2022 09:47:16 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
104.237.136.127
93.184.220.29
151.101.86.2
23.36.76.226
104.17.24.14