r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9fbe85f42e8ae8ae41cc12df5f98b141
949fa36ff0f22f72565fd584bef094dd4de23037
184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18432
Expires: Fri, 27 Jan 2023 03:04:47 GMT
Date: Thu, 26 Jan 2023 21:57:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2405562765b49b2782ebd2e2994851d5
be7ac8e558f7875bb1fb86ab5ec674424a5ff269
422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6325
Expires: Thu, 26 Jan 2023 23:43:00 GMT
Date: Thu, 26 Jan 2023 21:57:35 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 26 Jan 2023 21:35:16 GMT
content-type: application/json
age: 1339
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7178
Expires: Thu, 26 Jan 2023 23:57:13 GMT
Date: Thu, 26 Jan 2023 21:57:35 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 9xs+YKKoJZMkKCYMpt6ij0/OPhDnk3L0k66FsqHOIrkcsQbLWUoMFmQG1e2Cn+OTly3OqQquYMN9pQ2QeG9ykw==
x-amz-request-id: J55KXMXMZSCT29BP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 26 Jan 2023 21:20:16 GMT
age: 2239
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 21:57:35 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 26 Jan 2023 21:49:01 GMT
age: 515
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c398b6b39d11d25b8ae9bc5cd94a1c98
640aa8c399ced71d0c2a9f5a90fbaf091b01d642
a6f07f7c6a4746acc25457c726701df33120628dfb578bc4982448d8efee5855
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A6F07F7C6A4746ACC25457C726701DF33120628DFB578BC4982448D8EFEE5855"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14764
Expires: Fri, 27 Jan 2023 02:03:40 GMT
Date: Thu, 26 Jan 2023 21:57:36 GMT
Connection: keep-alive
plumbingsupplytrc.com/
192.185.41.32301 Moved Permanently 0 B IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 26 Jan 2023 21:57:36 GMT
Server: nginx/1.23.2
Content-Type: text/html; charset=UTF-8
Content-Length: 0
X-UA-Compatible: IE=edge
X-Redirect-By: WordPress
Location: https://plumbingsupplytrc.com/
Cache-Control: max-age=300
Expires: Thu, 26 Jan 2023 22:02:35 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
X-Server-Cache: true
X-Proxy-Cache: MISS
Set-Cookie: kuXIpOYFbs=OLxWGip.HFVMj; expires=Fri, 27-Jan-2023 21:57:36 GMT; Max-Age=86400; path=/
dXsrmWH=6fH%2AhAEo3S_8t; expires=Fri, 27-Jan-2023 21:57:36 GMT; Max-Age=86400; path=/
-RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67; expires=Fri, 27-Jan-2023 21:57:36 GMT; Max-Age=86400; path=/
push.services.mozilla.com/
44.224.148.171101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.224.148.171:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hJep54HAdUbMd1Yeoyac7Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: h4Yf//QI548ZSOzmeYvdpZSXBFk=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a54ee3da34a0b94f9adc03d84434cd14
f229b3ac310b744ef6a90d90543e609988899de7
aae93ab40115bbf652dbd7cc740e609ed429b517c4a1fde5d38e8169443703f7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AAE93AB40115BBF652DBD7CC740E609ED429B517C4A1FDE5D38E8169443703F7"
Last-Modified: Wed, 25 Jan 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 27 Jan 2023 03:57:36 GMT
Date: Thu, 26 Jan 2023 21:57:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15024
Expires: Fri, 27 Jan 2023 02:08:01 GMT
Date: Thu, 26 Jan 2023 21:57:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15024
Expires: Fri, 27 Jan 2023 02:08:01 GMT
Date: Thu, 26 Jan 2023 21:57:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15024
Expires: Fri, 27 Jan 2023 02:08:01 GMT
Date: Thu, 26 Jan 2023 21:57:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15024
Expires: Fri, 27 Jan 2023 02:08:01 GMT
Date: Thu, 26 Jan 2023 21:57:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15024
Expires: Fri, 27 Jan 2023 02:08:01 GMT
Date: Thu, 26 Jan 2023 21:57:37 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7a0759c043594fbe85af422b59b8227
a05cfaad16078f42218dae233da38f6f5dff8487
e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11568
x-amzn-requestid: 2e85f75e-ab9d-4d45-adad-7313950a9647
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSWbxGwnoAMFejw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d117-68f1a9e71a07a0453311fd32;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 06:49:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dbz3wXGNaetf6xvRE98rshyHy-FVfDo8co-4VDL0a4Qe3E4U8A82Og==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 22:59:28 GMT
age: 82689
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f238e33-a6e3-479a-920f-92a9c7bf1a06.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f238e33-a6e3-479a-920f-92a9c7bf1a06.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a3d856f57bcfd0bb18253cd77dd6541b
9d9680fb1a9232bb2b42b824dc11633666bfa31a
f2a03384e72a4d3350ee6addc49d6a507837eb195647016ea001e846eaccb0e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f238e33-a6e3-479a-920f-92a9c7bf1a06.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6055
x-amzn-requestid: dd44b3ab-6248-419a-995a-f3aaf59dae77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLRhMFPYIAMF91g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cdfc6d-4df410b022dbbb55297e6ac7;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 03:18:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: b0NnMvzF8QzmCB6erAH6gTky4A2vBwI6huYmgX8hLTatYq_NHhQl1A==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 15:23:32 GMT
age: 23645
etag: "9d9680fb1a9232bb2b42b824dc11633666bfa31a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53bbd20e-50aa-4ce8-8565-a97b3c8ee694.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53bbd20e-50aa-4ce8-8565-a97b3c8ee694.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02c8d9f27e0d17c38a55da6699dfb96e
6804d00e292afc0b7aadb08b11e7650488dacaa2
1ce3b93f1348649ddca495022525daf6d760823edd67bb9e506c7ee031a849b1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53bbd20e-50aa-4ce8-8565-a97b3c8ee694.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7973
x-amzn-requestid: acaa2abf-9789-4953-b3ab-98064a9a0137
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fXrXvHvBIAMFkQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2f297-2dc2c04e2a491b3f7f5e8370;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 21:37:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Dw4ycOqAZkaeJgMvGEOlqphQjDZVO5umrvlSh_Gnx9i_6saWVl8dLw==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:47:56 GMT
age: 581
etag: "6804d00e292afc0b7aadb08b11e7650488dacaa2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47dfbf8f-d762-4550-83d7-2992a8c8fe66.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47dfbf8f-d762-4550-83d7-2992a8c8fe66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bad60daf652c598a06510ff955137b69
235bf4642e726bb6a303fe1b69238e2e973414cb
d655c5ac17274a30a89c31674e14dc9c1b6bc39bfff94db1c9ff0d8006bb673b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47dfbf8f-d762-4550-83d7-2992a8c8fe66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12508
x-amzn-requestid: 68787c38-72fe-4d8a-9521-aeb9efa56b05
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fBYWyGIHoAMF-LQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ca075e-1ee9488d2dd0437728beac94;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 03:15:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2RZzMCqjRpKbm-g_6vAq1YV4LQ5RAB9HrkKCQx_ah4C6PnAzHZpKCg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 18:49:04 GMT
age: 11313
etag: "235bf4642e726bb6a303fe1b69238e2e973414cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59e67210-efa8-4704-9931-e876d7c8922b.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59e67210-efa8-4704-9931-e876d7c8922b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 262b43386e404cb3d320c47c4cf792c1
87f304f8583fe6b6e942a9dbcb5efb5ee94987f2
ca0f72005920b2b2f49c387314540f3cd2f3d7808f0365dfb1c491500e8a8714
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59e67210-efa8-4704-9931-e876d7c8922b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8065
x-amzn-requestid: 4a4a6d4c-9c4b-418d-be96-8a0d1de4828a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fBYVuHZsoAMFmWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ca0757-74c21aa22d11c4240019a4b3;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 03:15:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TXXkkbJHyvwrly_-5FH0EIkRm4EwlDJxGWBHcbwax2H_ccfMfs-5PQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:47:08 GMT
age: 629
etag: "87f304f8583fe6b6e942a9dbcb5efb5ee94987f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81aa4520-e26c-4be4-877f-1d3af6c27241.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81aa4520-e26c-4be4-877f-1d3af6c27241.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ed3df3868d4a13270faf944f911637a7
1b69b2433956c79510bc4a013648a5fb12882884
e13e2ca5d6552a96eb972936f553937a5aff566eb37f39b0928f15d3eeab617f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81aa4520-e26c-4be4-877f-1d3af6c27241.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11372
x-amzn-requestid: d50f0c0e-a383-419a-a3ca-630d5fd32821
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPAw_E_rIAMF0hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf7b39-64abe6b72176db7d7b67f315;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 06:31:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: P--KVawXg_IYJa8S3gcxIL5XZZGwRbhclRRRMUFlWmMAqzVus7RdnA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:47:08 GMT
age: 629
etag: "1b69b2433956c79510bc4a013648a5fb12882884"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2ebcc7cd4c50e87a984668828c1e612e
f693d36335f333e3647f9fb2460e34dd73e17421
27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:57:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
plumbingsupplytrc.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/vendors-style.css?ver=3.4.0
192.185.41.32200 OK 1.1 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/vendors-style.css?ver=3.4.0
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2967), with no line terminators
Hash d84aea5ce2065650aa4a1f7047c82fe2
a5c2fe0aa71c9fae79ad71f3ee9ff0a1c5f6f3ac
0d8a87c9c9dd0072ec84c74819a5c0a2586d97a386315cef62ae8e6fbd26d09a
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/vendors-style.css?ver=3.4.0 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 20:27:39 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 1086
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8.6
192.185.41.32200 OK 15 kB URL HTTP/2 plumbingsupplytrc.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8.6
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (33376)
Hash 6ebc7a4d773cb1f29a93f605933fba76
b113ca39afc5fd44cbc06dca58945bb5e9fb771e
7a12133f8cb48c1b5b4631ee9e9a0eebe36bbf2bbe1eb792b0f9fc630c18bd76
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.8.6 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 Oct 2021 19:45:48 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 14560
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/
192.185.41.32200 OK 30 kB IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (11780), with CRLF, LF line terminators
Hash 2c49186b22e32787abac41c0bbd343d8
5049582334fd66e821060c32317140baa8033de0
e561389575073b70e877067fb5694073ff4a1e142cb0ca9aa50ac152705e8612
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 26 Jan 2023 21:57:38 GMT
server: nginx/1.23.2
content-type: text/html; charset=UTF-8
x-ua-compatible: IE=edge
link: <https://plumbingsupplytrc.com/wp-json/>; rel="https://api.w.org/", <https://plumbingsupplytrc.com/wp-json/wp/v2/pages/2>; rel="alternate"; type="application/json", <https://plumbingsupplytrc.com/>; rel=shortlink
cache-control: max-age=300
expires: Thu, 26 Jan 2023 22:02:37 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
x-server-cache: true
x-proxy-cache: EXPIRED
set-cookie: kuXIpOYFbs=OLxWGip.HFVMj; expires=Fri, 27-Jan-2023 21:57:37 GMT; Max-Age=86400; path=/; secure
dXsrmWH=6fH%2AhAEo3S_8t; expires=Fri, 27-Jan-2023 21:57:37 GMT; Max-Age=86400; path=/; secure
-RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67; expires=Fri, 27-Jan-2023 21:57:37 GMT; Max-Age=86400; path=/; secure
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/css/woo/woo-star-font.min.css?ver=5.8.6
192.185.41.32200 OK 638 B URL HTTP/2 plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/css/woo/woo-star-font.min.css?ver=5.8.6
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2006), with no line terminators
Hash 98627f1ee241d9c3063e41bb89b9b887
b8dda56e28b14814cfb790c753e9b53261aa3d88
ad862f0bd5d4b1a7a5cabe718d233dd4bbe95f0bc02ec555b7de35a80077e03c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/trcindustries/assets/css/woo/woo-star-font.min.css?ver=5.8.6 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 638
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/css/woo/woo-mini-cart.min.css?ver=5.8.6
192.185.41.32200 OK 1.6 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/css/woo/woo-mini-cart.min.css?ver=5.8.6
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5867)
Hash a92293d2497c60a70b69ac6350420061
e057e8d5692c0eceb69b403dad22ff52e969bb0f
d85e864298f7381a847e3cc12b1f85083e07703b666675080e629c61d61ad1ef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/trcindustries/assets/css/woo/woo-mini-cart.min.css?ver=5.8.6 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 1585
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2ebcc7cd4c50e87a984668828c1e612e
f693d36335f333e3647f9fb2460e34dd73e17421
27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:57:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/fonts/fontawesome/css/all.min.css?ver=5.11.2
192.185.41.32200 OK 12 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/fonts/fontawesome/css/all.min.css?ver=5.11.2
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (56656)
Hash 343c45da71f9d25ca4cf1e89e44dce1d
55b838d2ea45e9c7a30072acf6f429850263e179
58f004b7dc171a0d7abf44edafc53ebcabd4b52d1e385fbf99814db246374b5c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/trcindustries/assets/fonts/fontawesome/css/all.min.css?ver=5.11.2 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 12311
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/css/third/simple-line-icons.min.css?ver=2.4.0
192.185.41.32200 OK 2.7 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/css/third/simple-line-icons.min.css?ver=2.4.0
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10909), with no line terminators
Hash b96e09ff615b0d1e6af5d78ac1e3b63a
ad4ad9a7a22a2efcb571eed6c0a0e061fb6eb4be
ca70e3fa2be858e30633817c8710b4aee4d9781e15167ec8aed818d30f635d0b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/trcindustries/assets/css/third/simple-line-icons.min.css?ver=2.4.0 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 2684
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/happy-elementor-addons/assets/vendor/magnific-popup/magnific-popup.css?ver=2.16.0
192.185.41.32200 OK 2.2 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/happy-elementor-addons/assets/vendor/magnific-popup/magnific-popup.css?ver=2.16.0
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash ec5174cc07d303c0336c61cc6f567c3f
ca7742b92b395114309dc62781d57519196dbba6
cc15667425b8212ec0cb8e3aea661a6d8b3d91a36962c7a4bad1f4988510ab90
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/happy-elementor-addons/assets/vendor/magnific-popup/magnific-popup.css?ver=2.16.0 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 2153
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/happy-elementor-addons/assets/vendor/slick/slick.css?ver=2.16.0
192.185.41.32200 OK 553 B URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/happy-elementor-addons/assets/vendor/slick/slick.css?ver=2.16.0
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 739ed76b37301845e28f026e89aff6b1
2f2e8da9f312dde9f05d348602ab9c7126b5f304
50c23e7d626fb62b4233cce50dae672cf1ff82c8bf56c03b1c6bd939df744694
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/happy-elementor-addons/assets/vendor/slick/slick.css?ver=2.16.0 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 553
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.1
192.185.41.32200 OK 13 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.1
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (57726)
Hash 9e1402f4301abf62dead70303a02d64d
8d4b851d6fd7db716aae3640fac34fa53ecd5de3
15b535c20b222f5135a738e15f0487808fa0888ee6d37a8e2e9f42b963dd3a09
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.1 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Mar 2021 16:06:59 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 12576
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/ocean-cookie-notice/assets/css/style.min.css?ver=5.8.6
192.185.41.32200 OK 676 B URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/ocean-cookie-notice/assets/css/style.min.css?ver=5.8.6
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1984)
Hash 881bccdb6affb97b3a98701917055393
fca14517e4ca76d5c8babbccbab7417450544676
8ae3990979697220dada1e008003422cae544862824826c51a560527977cabef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ocean-cookie-notice/assets/css/style.min.css?ver=5.8.6 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 676
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.1
192.185.41.32200 OK 310 B URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.1
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (483)
Hash 2787accb505c197c9bbff06a38d5c931
c7fa986bdb2f6972caa0d003705098aeb644b8f6
86ba4a954e110a614b9174dbe21466c45acebec05115e606d9fbfe3175624074
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.1 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Mar 2021 16:06:59 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 310
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-includes/js/wp-util.min.js?ver=5.8.6
192.185.41.32200 OK 709 B URL HTTP/2 plumbingsupplytrc.com/wp-includes/js/wp-util.min.js?ver=5.8.6
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1305)
Hash e9edb7bac979409cf7dbc48d7ab8aca7
ed3f941a8fe41e3994a3ca5e620219328628f532
2a0742cad9937c742b2f51c1ea2ae48359ce8d88d8b56f6d8910c0a267d631b5
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-util.min.js?ver=5.8.6 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 Oct 2021 19:45:48 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 709
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
192.185.41.32200 OK 2.1 kB URL HTTP/2 plumbingsupplytrc.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5477)
Hash f0bd7ad12acdee26cbb2701c1ba3610b
53c5d15129860868b60b74cb010b2c6050a64f69
e6d0cb19e56d22e8e511c23ca2bd233bedb40e3c7cf4ff38fe6f059bc7e0c64f
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:06 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 2103
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/happy-elementor-addons/assets/vendor/anime/lib/anime.min.js?ver=2.16.0
192.185.41.32200 OK 7.9 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/happy-elementor-addons/assets/vendor/anime/lib/anime.min.js?ver=2.16.0
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (17076)
Hash 0c836e6a170e049fc5f3ee815d9924e6
9fd4bd09a67b3c5e8e8ca6fb91f90ea37904a889
d2c9b39a444af6d89a934aa3f980415c349ab06dcb42447d0e601c2131f03df7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/happy-elementor-addons/assets/vendor/anime/lib/anime.min.js?ver=2.16.0 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 7908
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/js/third/woo/woo-mini-cart.min.js?ver=1.9.0
192.185.41.32200 OK 356 B URL HTTP/2 plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/js/third/woo/woo-mini-cart.min.js?ver=1.9.0
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (786), with no line terminators
Hash 26bb3bcd329539a5ef86af5c5fffa004
68ace6cf1eead56571fe3b6d6f6efb88803e7f3f
24ad086290b0347d620641503becd1d53dc7b9121c659a92acb4df41fedfe08b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/trcindustries/assets/js/third/woo/woo-mini-cart.min.js?ver=1.9.0 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 356
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2
192.185.41.32200 OK 8.6 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (22860), with no line terminators
Hash d539558914e8aa0832fa5c8a3a7de171
65058b3dca301b033d8d5fd58687e9b0f112fe3e
a79092b226512525cf1910d9db9fbcd96ce83c18e29950024d2cc79fd1034856
GET /wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 20:27:39 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 8643
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/js/third/woo/woo-quick-view.min.js?ver=1.9.0
192.185.41.32200 OK 1.4 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/js/third/woo/woo-quick-view.min.js?ver=1.9.0
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (3087), with no line terminators
Hash fc27f65ab3944d9dd725e4df2c3fcf20
d52a3cbde97b126c8411395f5a5572e9bd6af6eb
30a430b20f9f32958a386e9e730e3fcc6ff1032396d571eb62e37d6c64aa1445
GET /wp-content/themes/trcindustries/assets/js/third/woo/woo-quick-view.min.js?ver=1.9.0 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 1393
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/ocean-portfolio/assets/js/main.min.js?ver=1.2.0
192.185.41.32200 OK 961 B URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/ocean-portfolio/assets/js/main.min.js?ver=1.2.0
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2461), with no line terminators
Hash 36d1a94afd22b9cac2617ff5abaaa660
38d53a3e23e99b0fe8abc6c3249db524647fed50
96f357c381b3ca29e41df4c3791a7e693af7251744be2199be0e7fcd16c9d37a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ocean-portfolio/assets/js/main.min.js?ver=1.2.0 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 961
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
192.185.41.32200 OK 9.6 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (25115)
Hash e99001fb08857cb6e0a1688b290f924f
d8f9fcd3ccdcfe0b20ed3d408a48e8e32930c3a9
e5727ab5ba79eabd8400fd8941413d844a55642198770193780558cd2afdfab0
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 9638
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.1.0
192.185.41.32200 OK 2.5 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.1.0
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5479)
Hash e7b2b54f23b94242c059d0a1f717b0bd
977934444d6b8c5c9e646232ccc845e5e1736d41
363d3b2857be60944a21d76e3e06639de8c019b71f49c78c65fb8012c27a82e0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.1.0 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 2532
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.1.4
192.185.41.32200 OK 3.0 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.1.4
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10019)
Hash c2b5af6052f630a96e450e5e2a3cea52
00ca76a8828a1bbec1534eb10786804fd36492f2
58f6cc2d4fa3e528622102975fb62949dc0170bd47b588a67318d18552a57d59
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.1.4 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Mar 2021 16:06:59 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 2997
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.1.4
192.185.41.32200 OK 2.1 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.1.4
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4587)
Hash 6ea4dcd73ec66788e65f6566f90066f0
57dee0cf23bf29d6e3daea78a7643f33dc71930e
5fb3574934985c199d6c7b5dc691b974fd61330fb1e566a111e59cece2c3e191
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.1.4 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Mar 2021 16:06:59 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 2110
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.1.0
192.185.41.32200 OK 2.2 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.1.0
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6595), with no line terminators
Hash 2aa47e22e033b1a04cf09550d521033e
a0cf9de580a0eae9481906f97c1d6b38a0f8cf36
bda46e0dfe6c4c18bc8a9f9562a6e18e4261844d2d39ddcdb8b4c0160d267be7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.1.0 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 2153
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.6
192.185.41.32200 OK 5.2 kB URL HTTP/2 plumbingsupplytrc.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.6
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15224)
Hash 00af0ddf324f69fcb25f0d2e5d08910a
df0379ab0e1b2902957c8aba77f89d88e1239b59
f0a06ed3b8d3917b358def04d87668001cd1c6da31a5cb4bb452313feb64a2a7
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8.6 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 Oct 2021 19:45:48 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 5243
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.1.4
192.185.41.32200 OK 612 B URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.1.4
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3815)
Hash f029f47a007664c0c56f9c81a7324834
f5cd7bee659c5f002a73cebb418166f268671538
a53a4e1a5551ce252ca84b0e6ca203c64c7962d24e3a4a5701e5a7fc2b2937dc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.1.4 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Mar 2021 16:06:59 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 612
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/uploads/elementor/thumbs/pexels-jeshootscom-600_600-p3dlulm1whp0lbga1eqfex1m2w6drii6bjqwkld0pc.jpg
192.185.41.32200 OK 11 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/uploads/elementor/thumbs/pexels-jeshootscom-600_600-p3dlulm1whp0lbga1eqfex1m2w6drii6bjqwkld0pc.jpg
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 200x200, components 3\012- data
Hash 5d84f2f87c88b43b0ac98980b6f54b50
b3298445dfa8d5e97a455512a70a545a358a30b3
30ed5eb36ac14ef774f41ab2272ca1ffdd180b8de3c22a00d8aab8a50bf71049
GET /wp-content/uploads/elementor/thumbs/pexels-jeshootscom-600_600-p3dlulm1whp0lbga1eqfex1m2w6drii6bjqwkld0pc.jpg HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 11:53:42 GMT
accept-ranges: bytes
content-length: 10982
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
192.185.41.32200 OK 3.7 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12198), with no line terminators
Hash e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Mar 2021 16:06:59 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 3747
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/uploads/elementor/thumbs/pexels-charlotte-may-5965893_600_600-p3dlulm1whp0lbga1eqfex1m2w6drii6bjqwkld0pc.jpg
192.185.41.32200 OK 10 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/uploads/elementor/thumbs/pexels-charlotte-may-5965893_600_600-p3dlulm1whp0lbga1eqfex1m2w6drii6bjqwkld0pc.jpg
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 200x200, components 3\012- data
Hash b3110d94f613b077416948b6fb537d8d
42b0f352804750d0e6af68f09ff1d4b3c16732a4
590c38f031e5d7e6d2fdd9b7a4cd1dd375328dc7f421ba8fc4a8d84e47019751
GET /wp-content/uploads/elementor/thumbs/pexels-charlotte-may-5965893_600_600-p3dlulm1whp0lbga1eqfex1m2w6drii6bjqwkld0pc.jpg HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 11:53:42 GMT
accept-ranges: bytes
content-length: 10367
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
192.185.41.32200 OK 4.3 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10725)
Hash 253da788125c58bc387c3db6cc404bad
6b90ddf84c234155eae1487d2f950ea079c2382c
12055a1176f887f9be83e2637de50ca41173101397cd42431d7c8df3e2757d6d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Mar 2021 16:06:59 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4275
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/ocean-cookie-notice/assets/js/main.min.js
192.185.41.32200 OK 722 B URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/ocean-cookie-notice/assets/js/main.min.js
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1849), with no line terminators
Hash 12bab526cd15a63a0b0333a4eb49effb
23e7b67022e203e165b7b368adaf6b6ebb3a1264
d262189193de7a89f3f5083af0a5f5c76129669654ac1f6666c82909aa942831
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ocean-cookie-notice/assets/js/main.min.js HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 722
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1
192.185.41.32200 OK 8.2 kB URL HTTP/2 plumbingsupplytrc.com/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7973)
Hash 6e3b0317803aa9f226979ad7a7e77593
c95b4f532fd03f3754bf63139a57aab65fbe8a25
84520e8f7a292cb992fa9c62932245f598c6fa043fd4e19eadb6ad9a767dca6f
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.12.1 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 08:06:21 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 8223
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.11.0
192.185.41.32200 OK 3.6 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.11.0
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (17186)
Hash 562b1fe9af03782de7b696f11e43d784
4c38e4214a286350ea6d9840767b50c163b23028
8fa5310ae9c76dae00fc4aaa446fb64d4b3117df1b21288a95e2965f09bfc275
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.11.0 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Mar 2021 16:06:59 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 3638
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.1
192.185.41.32200 OK 308 B URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.1
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (489)
Hash 3b6ace6afa17a2615db7e96ed5bccbbc
43382ed6741ca36e7479916d82c7e3f3f6a4af1f
84a12534a686c238982043c08f6c3fa2502b7a4c171dbaf0e464a3bc777f9263
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.1 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Mar 2021 16:06:59 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 308
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/ocean-portfolio/assets/css/style.min.css?ver=5.8.6
192.185.41.32200 OK 2.1 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/ocean-portfolio/assets/css/style.min.css?ver=5.8.6
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9927)
Hash 9cb94dfbe6600fd766e16b892351362c
121317d346696f200bbd55b5bc0274b1807fd672
02733c42acb5bd695ef9f68f98aea89f7c6b86adb5153172b2b295eb0ba263bc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ocean-portfolio/assets/css/style.min.css?ver=5.8.6 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 2057
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor/assets/js/preloaded-elements-handlers.min.js?ver=3.1.4
192.185.41.32200 OK 15 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor/assets/js/preloaded-elements-handlers.min.js?ver=3.1.4
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (37990)
Hash d90e34c9e73e8edff188b8666abb7f87
1481d55fba6a5f1bd8776a8a7ce9f6997f41706a
fa31812310e9a04d7852708ab466e3b7f0da276fa67e136cd7c8c976d9581bc6
GET /wp-content/plugins/elementor/assets/js/preloaded-elements-handlers.min.js?ver=3.1.4 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Mar 2021 16:06:59 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 15317
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/uploads/elementor/css/post-6398.css?ver=1616084472
192.185.41.32200 OK 1.1 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/uploads/elementor/css/post-6398.css?ver=1616084472
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5979), with no line terminators
Hash a82640fe77464a7fa1f600494a48dfd1
f676ac208e1a60ae17038ea383be302f5b733730
02680a58e5ecde640e27ee35b6077b77c3ecd212d9a4d4685fa54cb529296f52
GET /wp-content/uploads/elementor/css/post-6398.css?ver=1616084472 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 Oct 2021 19:50:12 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 1116
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/uploads/elementor/css/post-7.css?ver=1616084467
192.185.41.32200 OK 525 B URL HTTP/2 plumbingsupplytrc.com/wp-content/uploads/elementor/css/post-7.css?ver=1616084467
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2062), with no line terminators
Hash cea3969e343bc86009590108a53710e0
88ca98517ff5ac0ff8aab98f722f99127a3787c9
070c293ea8ed60a30de42c641fd7840f0a8ed75678013eb32f19dce59b76bebf
GET /wp-content/uploads/elementor/css/post-7.css?ver=1616084467 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Mar 2021 16:21:07 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 525
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
192.185.41.32200 OK 4.6 kB URL HTTP/2 plumbingsupplytrc.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:06 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4618
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=4.6.5
192.185.41.32200 OK 787 B URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=4.6.5
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2047), with no line terminators
Hash 884258c84e193dfdaf165675db960895
15af2bbf45f63111953ccdd6a9634a2a54ca4977
85d55c46325925ffc503522d5215aec0b71d8244b5fb55a50762f3e9fcbb8b4f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=4.6.5 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 20:27:39 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 787
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-includes/js/wp-embed.min.js?ver=5.8.6
192.185.41.32200 OK 777 B URL HTTP/2 plumbingsupplytrc.com/wp-includes/js/wp-embed.min.js?ver=5.8.6
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1391)
Hash 06ece4d01ee88297957c9f4cdcaa4df5
2b3321654a8ead1e1493eac9b5f1fdfb65e2037f
0b17eb6ab02e69f50ac52ca157375bd69853ae4f4796eb48a35eb4a12fc7af8b
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-embed.min.js?ver=5.8.6 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:06 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 777
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.1.4
192.185.41.32200 OK 13 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.1.4
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (59158)
Hash 76ce564e380846e68aef544c866cfd17
8148b9861bfe9bfe667c9d8ca01f605fa63f8873
30529979bc56ece1d2e6a51ceaf2daca4e598123f48d482fceaf19cabc46e639
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.1.4 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Mar 2021 16:06:59 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 12862
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/mailchimp-for-woocommerce/public/js/mailchimp-woocommerce-public.min.js?ver=2.4.7
192.185.41.32200 OK 2.3 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/mailchimp-for-woocommerce/public/js/mailchimp-woocommerce-public.min.js?ver=2.4.7
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5977), with no line terminators
Hash 59ae1f847ba18f8ec27c17a4428302dd
f17e59d98150efce37a1624c738d936d9dcb3d41
176f7958089328fa9966a02eacab53cf51a3f4976b643509a6901ebdf647828b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/mailchimp-for-woocommerce/public/js/mailchimp-woocommerce-public.min.js?ver=2.4.7 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 2264
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.1.4
192.185.41.32200 OK 1.2 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.1.4
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2577)
Hash 159281ac01a46f042b38d0d44cf3eb7a
54677be6b1cf85899d2ab1a6fada531ca5613d29
0738d3f931e8df2b67f3be1ec216b103560266c56cc38fdafae055bcb807ffea
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.1.4 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Mar 2021 16:06:59 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 1151
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.1.4
192.185.41.32200 OK 4.4 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.1.4
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (26516)
Hash a46b5e03a48f889196c3354741011be0
7c25efaa496eb1f2113bfdf2a2f27b58b72fa9e1
e850c766767667b180e9361d4c77f08a53d956fe87ebc68a87e9b4c639fb16af
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.1.4 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Mar 2021 16:06:59 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4435
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/js/third/lightbox.min.js?ver=1.9.0
192.185.41.32200 OK 561 B URL HTTP/2 plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/js/third/lightbox.min.js?ver=1.9.0
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1243), with no line terminators
Hash 4aa3e1db2c9f453c9674ff5c8ccecf01
e434f09fadd66116cd581dbdf699465f39aa71e1
b95a54e2317e1376a4ad3a788e6e377ab2e009863d04bb1575201b1a2ed8fc17
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/trcindustries/assets/js/third/lightbox.min.js?ver=1.9.0 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 561
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/js/third/woo/woo-scripts.min.js?ver=1.9.0
192.185.41.32200 OK 1.5 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/js/third/woo/woo-scripts.min.js?ver=1.9.0
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (4611), with no line terminators
Hash 21b6c7b887317e32c6aeb0f374bee603
64646e2910eee736d645fd52d418ebc565be7702
38f15e2bb523d795d688d74660cc7494389df4dac45d514aea195a32e3b1c782
GET /wp-content/themes/trcindustries/assets/js/third/woo/woo-scripts.min.js?ver=1.9.0 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 1510
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=4.6.5
192.185.41.32200 OK 1.1 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=4.6.5
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2939), with no line terminators
Hash 2add7f0f776b0568947d4c233d82ec39
387705baeb4ec68bfd4a5da485cd384eead51b07
45ad6957c0c6f2be8a1618f2388678c7d6d3fcbe896767935561a7e50338ccbd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=4.6.5 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 20:27:39 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 1095
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/js/third/magnific-popup.min.js?ver=1.9.0
192.185.41.32200 OK 9.0 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/js/third/magnific-popup.min.js?ver=1.9.0
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19869), with no line terminators
Hash b9b38cb395ef79344e4efae42a05a613
64fa7dba4a5631edd376086d3b0f9fc9b952e4de
151daa3f6c20a9e60767a26491d32a27f358fafbf31379df29a945bf87e9bea1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/trcindustries/assets/js/third/magnific-popup.min.js?ver=1.9.0 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 8968
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/uploads/elementor/css/global.css?ver=1616084470
192.185.41.32200 OK 11 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/uploads/elementor/css/global.css?ver=1616084470
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (58698)
Hash 1a3e87a918c0031051adcec3cbdd6286
1a0eae8146b08f46557c4ad95f4af756ae2ebb81
1e522793e7beb193a58a533bee547bf25377035c2f53a5e7205cade5b17da8ac
GET /wp-content/uploads/elementor/css/global.css?ver=1616084470 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Mar 2021 16:21:10 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 11288
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/uploads/elementor/css/post-86.css?ver=1616084471
192.185.41.32200 OK 735 B URL HTTP/2 plumbingsupplytrc.com/wp-content/uploads/elementor/css/post-86.css?ver=1616084471
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3070), with no line terminators
Hash 6ed7f8686f6e61b59d92f994228b2c43
4ab5e4c4dcdae008efd63d5644887197436b4a30
c51daea8a34f9ecd706acf8396615131a732dc6e3acfb7360247cb8f74fd85ec
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-86.css?ver=1616084471 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 Oct 2021 19:50:12 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 735
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=4.6.5
192.185.41.32200 OK 1.2 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=4.6.5
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash 57b5945094a547e06221f8f949e6d335
76fc7361f00684ea29ffbf4b7d46e5429b8c245a
f9d0da987075df31cc4cf8aed46bc193467ce7165568d83c8016e6fe904e72c3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=4.6.5 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 20:27:39 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 1200
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/uploads/elementor/css/post-78.css?ver=1616084471
192.185.41.32200 OK 2.2 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/uploads/elementor/css/post-78.css?ver=1616084471
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6567)
Hash cfcda4ce610890f5b5a0a6321f134c91
899c8ed7f72f87fc48a2ae9b054c5fa469f15cef
3a88618a895e90c5e86a312f67d131eda4bc4a9f52be8d73dd01634313edfed9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-78.css?ver=1616084471 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Mar 2021 16:21:11 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 2242
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/happy-elementor-addons/assets/fonts/style.min.css?ver=2.16.0
192.185.41.32200 OK 4.4 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/happy-elementor-addons/assets/fonts/style.min.css?ver=2.16.0
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (20738)
Hash 5a25ec3ce1c133ad13cc7334a449c4be
2a7c7f61601035a0aaaf4d0dbf72f0a2958bc13c
cf844099e667cf44c18655fe65b132eb252dbe2e5c4f7729720b08fa5fa02fdc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/happy-elementor-addons/assets/fonts/style.min.css?ver=2.16.0 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4352
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/uploads/elementor/css/post-2.css?ver=1616084471
192.185.41.32200 OK 5.8 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/uploads/elementor/css/post-2.css?ver=1616084471
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (18098)
Hash abaf63cccc3401587a42aff27df3388d
6638ca82bc7d088edf87e85f874b4427caed0f40
ee6e00e9fb16c928e0a31f5a2be7b305bff7e1918281feb5b9f6e390a50efe9a
GET /wp-content/uploads/elementor/css/post-2.css?ver=1616084471 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Mar 2021 16:21:11 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 5818
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/uploads/happyaddons/css/ha-2.css?ver=2.16.0.1614365141
192.185.41.32200 OK 1.8 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/uploads/happyaddons/css/ha-2.css?ver=2.16.0.1614365141
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6997), with no line terminators
Hash 0835bb51d3a3fbb4b0effbac681a3907
1b063bf8ed948cf0128373c95f61681b8cb85481
aec04fcbbf75590f1a2c0d2462d0f33707b097fba10c3fa90e6bea423ada7754
GET /wp-content/uploads/happyaddons/css/ha-2.css?ver=2.16.0.1614365141 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 26 Feb 2021 18:45:56 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 1759
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/boosted-elements-progression/assets/css/prettyphoto.min.css?ver=5.8.6
192.185.41.32200 OK 4.4 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/boosted-elements-progression/assets/css/prettyphoto.min.css?ver=5.8.6
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19569)
Hash 240b5944c1f466f89ad6875b23636102
2e14ee7aa6ee1803ff3216b0f2fc39bfe802f310
43c9dcee0419901f5ca360a12cc2bf94e116f7f07224011ed45388b0289bafbc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/boosted-elements-progression/assets/css/prettyphoto.min.css?ver=5.8.6 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4379
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=5.8.6
192.185.41.32200 OK 8.5 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=5.8.6
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (37001)
Hash 0ac9ae416789ea2fa77afdd0ee7e5355
2a96b080118ecf7b718d030c63f34212ce545329
2a5ca3bdadafd3cdc5aa531893bfe64600825ecc8be31ed59cb4116fefced762
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=5.8.6 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 8538
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.1.4
192.185.41.32200 OK 4.4 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.1.4
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14869)
Hash 7bab7ad64ffbd7846dd6819250b93e2e
c924918d540389aff62220088b6761f38a5da272
045250efe67364c953a91f6a60cf407ebb5cfdb2da04e84c3d98e5bab5eca9ba
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.1.4 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Mar 2021 16:06:59 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4359
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/boosted-elements-progression/assets/css/frontend.min.css?ver=5.8.6
192.185.41.32200 OK 14 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/boosted-elements-progression/assets/css/frontend.min.css?ver=5.8.6
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (44123)
Hash 6d21ad412be65781673743498ae83c40
edaaf4b4323b4bbaa6ce63fb25b9c1f7e451a419
fc41f98598fb15ac4f43241b8cdb3e51a64f07a100e770f746e78821b68ca8d4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/boosted-elements-progression/assets/css/frontend.min.css?ver=5.8.6 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 14290
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
192.185.41.32200 OK 994 B URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1680)
Hash 6288aae4bca8a1cf895fc741f6758bea
ae5a8bd6281e058852d8a93562196298556f53f5
1136e8c7449b0bfb5117fc8a0807125dc2e9b5afa45994af3a058a2a77d3e5d7
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 20:27:39 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 994
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
192.185.41.32200 OK 4.0 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9172)
Hash 1634848cac6bee67add01a21261fcde0
5a831f11c2aed128419ec5fe2bfdb91e04b770f5
bf7374b854854ed1a337f0c83f0d8ee44b2e2d09d2ed9669b6f04456cd93416c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 20:27:39 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4024
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-includes/js/underscore.min.js?ver=1.13.1
192.185.41.32200 OK 8.3 kB URL HTTP/2 plumbingsupplytrc.com/wp-includes/js/underscore.min.js?ver=1.13.1
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19041)
Hash e45e83fd86a608f36eed8d8178c0c218
84cbfc05d78d37a27374bb30ac9b933a8d4ce3e6
0e64084fe2aa346fffd15ce84b27ac3a62f7b8e555f563a4d919766a777f5262
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/underscore.min.js?ver=1.13.1 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 Oct 2021 19:45:49 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 8329
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=4.6.5
192.185.41.32200 OK 4.5 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=4.6.5
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (13590), with no line terminators
Hash 25e0d9fefbdb6526833cd329e8c8ae45
52d827419299c00d03bc2624f851b66a8328e513
f9b8255889afcbbc133269e4c5afe93ee5ee46b16babf11216adecc21ad89396
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=4.6.5 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 20:27:39 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4513
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/happy-elementor-addons/assets/js/happy-addons.min.js?ver=2.16.0
192.185.41.32200 OK 5.5 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/happy-elementor-addons/assets/js/happy-addons.min.js?ver=2.16.0
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15878), with no line terminators
Hash a04f7ad4726d86aca9819ef8ef71da34
2e8556c48f9a31d2d1dbbce5c3b0517fd8b30fe0
0f0123d806eb427e4dacb75bb6f1d9688d817e06182b7fb6ddddedb6ae1558e8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/happy-elementor-addons/assets/js/happy-addons.min.js?ver=2.16.0 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 5456
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 82e3abc4a7b17efedca67cf215f4bb60
e20e55d87591af7db3a4bcfc429048f85e389b85
df8901d4d87686fb11e17986f5d53cf513f675b4dd71f0a2e35c7ffbefa7fb9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:57:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d9bf2793558044193d7e5d27708a9144
5a8f73462cfda6544cc3efe488854c3cd80bb0a7
e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:57:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-WSPGWDQ
142.250.74.8200 OK 39 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WSPGWDQ
IP 142.250.74.8:0
File type ASCII text, with very long lines (1759)
Hash 65efcd1a98f10c09ca03026fa1fe0d52
05f7ee6a69992676b80511b3fa69d33abbe6b1e5
3a4fed534bbb5d335bf881cd508f175c3c7f287621d017191f870c5524a289f2
GET /gtm.js?id=GTM-WSPGWDQ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 26 Jan 2023 21:57:39 GMT
expires: Thu, 26 Jan 2023 21:57:39 GMT
cache-control: private, max-age=900
last-modified: Thu, 26 Jan 2023 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 38925
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2
216.58.207.227200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 12372, version 1.0\012- data
Hash 0ef99cf07a2a261ab43d5dc1937ffb27
bd39f9cd13ef2a6f912dcba8fa916fc67b4a19d9
557f6d0883db85be712c3a77baa38875ddf99ecbdfd6fec98e5c0b1f7a0e1532
GET /s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://plumbingsupplytrc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 00:40:21 GMT
expires: Fri, 26 Jan 2024 00:40:21 GMT
cache-control: public, max-age=31536000
age: 76638
last-modified: Wed, 27 Apr 2022 16:19:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d9bf2793558044193d7e5d27708a9144
5a8f73462cfda6544cc3efe488854c3cd80bb0a7
e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:57:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffGjEGItzYw.woff2
216.58.207.227200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffGjEGItzYw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 12384, version 1.0\012- data
Hash 39009d392a58f87dd2b448612c2cbd5b
45ca26b72258f56af6fb786b8c4552acfdb5252e
d14d732f8caf915919ff661157edc3456a85f408b7a3c5ee1e21357e7df07e1a
GET /s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffGjEGItzYw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://plumbingsupplytrc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12384
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 22 Jan 2023 10:05:58 GMT
expires: Mon, 22 Jan 2024 10:05:58 GMT
cache-control: public, max-age=31536000
age: 388301
last-modified: Wed, 27 Apr 2022 16:10:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d9bf2793558044193d7e5d27708a9144
5a8f73462cfda6544cc3efe488854c3cd80bb0a7
e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:57:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d9bf2793558044193d7e5d27708a9144
5a8f73462cfda6544cc3efe488854c3cd80bb0a7
e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:57:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d9bf2793558044193d7e5d27708a9144
5a8f73462cfda6544cc3efe488854c3cd80bb0a7
e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:57:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2
216.58.207.227200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 11796, version 1.0\012- data
Hash 8d4079c3aa4f01e6d9bbd4f1bbcdf114
52ab47c062d0bfdbd34dbd31784008bd0e4c4227
d5c1172f24f4f49f780c65cf5be897527fd08f3662a2ba8db0cfe0057d92e367
GET /s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://plumbingsupplytrc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 20 Jan 2023 10:25:22 GMT
expires: Sat, 20 Jan 2024 10:25:22 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 15:47:01 GMT
content-type: font/woff2
age: 559937
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
216.58.207.227200 OK 35 kB URL HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 34852, version 1.0\012- data
Hash 0e8eefb4549a2edf26c560cb9845952e
8d0b1718aacad934fd0043c87cbc54aa091396bf
7f653b3ce9d3277457fc6da4edb246ae2f6c913f088c42dcb8cd2e96267aa21a
GET /s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://plumbingsupplytrc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 00:48:27 GMT
expires: Tue, 23 Jan 2024 00:48:27 GMT
cache-control: public, max-age=31536000
age: 335352
last-modified: Wed, 27 Apr 2022 16:31:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2
216.58.207.227200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 12136, version 1.0\012- data
Hash 5d7c6bb8fd4fc992c54e596ab7433d5d
35fd6e4c125235cb7f9aa6e297da4b64ae45b06a
dd870101ad4e95d687a2eb734707b0dd7c20808f76d7be77a71a5d13cf99401c
GET /s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://plumbingsupplytrc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12136
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 18:05:27 GMT
expires: Tue, 23 Jan 2024 18:05:27 GMT
cache-control: public, max-age=31536000
age: 273132
last-modified: Wed, 27 Apr 2022 15:39:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffEDBGItzYw.woff2
216.58.207.227200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffEDBGItzYw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 10444, version 1.0\012- data
Hash 35b05af911a7a688519ba464dfc04bc5
fcd385af42e89d0a72d676efce05c79086407e14
8e59456a560f58d0b6b7934bfc06e0b2faee5d61e2bdb10eef541dd66bfebe0d
GET /s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffEDBGItzYw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://plumbingsupplytrc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10444
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 10:05:23 GMT
expires: Fri, 26 Jan 2024 10:05:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 15:44:57 GMT
content-type: font/woff2
age: 42736
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 82e3abc4a7b17efedca67cf215f4bb60
e20e55d87591af7db3a4bcfc429048f85e389b85
df8901d4d87686fb11e17986f5d53cf513f675b4dd71f0a2e35c7ffbefa7fb9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:57:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d9bf2793558044193d7e5d27708a9144
5a8f73462cfda6544cc3efe488854c3cd80bb0a7
e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:57:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
plumbingsupplytrc.com/wp-content/uploads/2021/02/erik-mclean-IxfhMTROke8-unsplash.jpg
192.185.41.32200 OK 124 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/uploads/2021/02/erik-mclean-IxfhMTROke8-unsplash.jpg
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, baseline, precision 8, 1201x798, components 3\012- data
Size 124 kB (123724 bytes)
Hash 2563a1ee839e7632218ba8d5b822a648
e6c37c1f87381625154378c6e5c4b98269d7c400
064dec781d420beed39d3062d5a4f2030562f5050b1fa799e8bb853743071027
GET /wp-content/uploads/2021/02/erik-mclean-IxfhMTROke8-unsplash.jpg HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/wp-content/uploads/elementor/css/post-2.css?ver=1616084471
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
content-length: 123724
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:39 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Thu, 26 Jan 2023 21:57:39 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/uploads/2021/02/igal-ness-wQfV9njQxW4-unsplash.jpg
192.185.41.32200 OK 102 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/uploads/2021/02/igal-ness-wQfV9njQxW4-unsplash.jpg
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, baseline, precision 8, 1200x800, components 3\012- data
Size 102 kB (101932 bytes)
Hash a3b2bdcc51a90e889a039ac770db0d94
e0f417785e2eae380e355d90e4394aec7011b988
272da56665b4e5e2ec0efb2546cd384968fe38bdc68593c167fc1ad6e824d377
GET /wp-content/uploads/2021/02/igal-ness-wQfV9njQxW4-unsplash.jpg HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/wp-content/uploads/elementor/css/post-2.css?ver=1616084471
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
content-length: 101932
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:39 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Thu, 26 Jan 2023 21:57:39 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2
216.58.207.227200 OK 30 kB URL HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 29752, version 1.0\012- data
Hash ab1fc8621287e4ea9319a3136812cf80
fb4ed2e52e2a8d7ac50a7618a0c2ea5507a24ef3
7c00752ce82d6abaed0b9766d35b906b16675facdbe24115b410d1fab975effa
GET /s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://plumbingsupplytrc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 10:03:33 GMT
expires: Wed, 24 Jan 2024 10:03:33 GMT
cache-control: public, max-age=31536000
age: 215647
last-modified: Wed, 27 Apr 2022 17:05:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/uploads/2021/02/ra-dragon-Uwq_F5G4yOo-unsplash.jpg
192.185.41.32200 OK 217 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/uploads/2021/02/ra-dragon-Uwq_F5G4yOo-unsplash.jpg
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, baseline, precision 8, 1200x800, components 3\012- data
Size 217 kB (217077 bytes)
Hash 72e72cec23af78c50b255f1ff6710286
6c3b8bf10771b5da0a6f786b65ddbab3cf9ebe7e
78edc5431c050a0ecab257ddff50917aec7c10fa27fe5c809eb289f10989211f
GET /wp-content/uploads/2021/02/ra-dragon-Uwq_F5G4yOo-unsplash.jpg HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/wp-content/uploads/elementor/css/post-2.css?ver=1616084471
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
content-length: 217077
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:39 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Thu, 26 Jan 2023 21:57:39 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/happy-elementor-addons-pro/assets/imgs/masking-shape/shape2.svg
192.185.41.32200 OK 626 B URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/happy-elementor-addons-pro/assets/imgs/masking-shape/shape2.svg
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash c078cc7428af4390bf8e3c74a4fd2578
691632596e3ff0043b04aca38f9af5204889b10e
43d82fb0a347b2f4abd082a727b3796234edf087daaf71b323695990473f1c42
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/happy-elementor-addons-pro/assets/imgs/masking-shape/shape2.svg HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/wp-content/uploads/elementor/css/post-2.css?ver=1616084471
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
content-length: 626
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:39 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/svg+xml
date: Thu, 26 Jan 2023 21:57:39 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/happy-elementor-addons-pro/assets/imgs/masking-shape/shape4.svg
192.185.41.32200 OK 600 B URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/happy-elementor-addons-pro/assets/imgs/masking-shape/shape4.svg
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 5ee95f9441799c2cdbcd691e46182a79
bf732a285689fe946db6a3f42e43151d0823c455
df541d408171d5a0ba9678214504790e09467a22382051c30ee692ca7db4e30b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/happy-elementor-addons-pro/assets/imgs/masking-shape/shape4.svg HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/wp-content/uploads/elementor/css/post-2.css?ver=1616084471
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
content-length: 600
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:39 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/svg+xml
date: Thu, 26 Jan 2023 21:57:39 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/happy-elementor-addons-pro/assets/imgs/masking-shape/shape31.svg
192.185.41.32200 OK 638 B URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/happy-elementor-addons-pro/assets/imgs/masking-shape/shape31.svg
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 5105ddca82492e047e38dc41c52dd937
04a1226411e3c1268b1b915ac5e133fcd8a3cb92
8a4e3994ee6d418877f0d4f80f106dae843c5ef3ba0d44ad84133ae7421973fd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/happy-elementor-addons-pro/assets/imgs/masking-shape/shape31.svg HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/wp-content/uploads/elementor/css/post-2.css?ver=1616084471
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
content-length: 638
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:39 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/svg+xml
date: Thu, 26 Jan 2023 21:57:39 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/js/main.min.js?ver=1.9.0
192.185.41.32200 OK 46 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/js/main.min.js?ver=1.9.0
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 34f44559d52db5fc9b30c26e7c42390a
fb6089db98f36aeabef5b068f71b24408dc0a1c2
7510a4785b2278afdcb23f205972dbe3c8c307bc808f18d1536f7b1ad7a17de5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/trcindustries/assets/js/main.min.js?ver=1.9.0 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/happy-elementor-addons-pro/assets/imgs/masking-shape/shape12.svg
192.185.41.32200 OK 844 B URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/happy-elementor-addons-pro/assets/imgs/masking-shape/shape12.svg
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 8c6616b056b1f7b826d1e698ac4c21f0
66458a7cbde8c2d18399fd43972553e384b34b57
7bda9f765e1464db730b79280df36d85432ad5b37609fd094b5769440f7b1582
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/happy-elementor-addons-pro/assets/imgs/masking-shape/shape12.svg HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/wp-content/uploads/elementor/css/post-2.css?ver=1616084471
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
content-length: 844
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:39 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/svg+xml
date: Thu, 26 Jan 2023 21:57:39 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
192.185.41.32200 OK 80 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 80300, version 331.-31392\012- data
Hash 8e1ed89b6ccb8ce41faf5cb672677105
9b592048b9062b00f0b2dd782d70a95b7dc69b83
6b555920e358f8a25a422988b448615c33bcccb4f932e8331cebfc8e2a737fc7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.1
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Mar 2021 16:06:59 GMT
accept-ranges: bytes
content-length: 80300
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:39 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: font/woff2
date: Thu, 26 Jan 2023 21:57:39 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.1.4
192.185.41.32200 OK 113 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.1.4
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
Size 113 kB (113124 bytes)
Hash a01d636f44ac67bcc874e53a1b155eda
25e145c2849ed6d77570d7003c8c2f7080bf1c37
5cae7da9525180e96b67c1c71cf268b5d09ab24c2cd28c9eccc3a26ca22bda12
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.1.4 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Mar 2021 16:06:59 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/uploads/2020/10/logo_trc_retina.png
192.185.41.32200 OK 20 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/uploads/2020/10/logo_trc_retina.png
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 525 x 172, 8-bit/color RGBA, non-interlaced\012- data
Hash 6fd8b1c9918e7af40a4e98885ca48475
af93b268cf75362d2b67701076ddcfdf65382c45
791bdacf568fca0be10106e4260dc2cd98b5956184661b1db058f4da59ff5f17
GET /wp-content/uploads/2020/10/logo_trc_retina.png HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
content-length: 20114
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:39 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Thu, 26 Jan 2023 21:57:39 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.1.0
192.185.41.32200 OK 101 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.1.0
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
Size 101 kB (100801 bytes)
Hash 26e67b2037c39342b8552922af900727
fa9e4e5bb36e58701a22f82032c97065be6575f0
0d78d044a95671081a8efccd6003278b43f0be5fb6751969057475c139fc0c44
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.1.0 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/uploads/2021/02/jacek-dylag-Vve7XkiUq_Y-unsplash_square.jpg
192.185.41.32200 OK 102 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/uploads/2021/02/jacek-dylag-Vve7XkiUq_Y-unsplash_square.jpg
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, baseline, precision 8, 600x600, components 3\012- data
Size 102 kB (101621 bytes)
Hash 169fba09483e2dc8c063baa8d21a7066
ed7a49e45d63876a2815fe5b939863185f3e2a78
8dc078933d545845bdda7cd2e6d4c0a3573c13ee171d13c401b2bb89c721fd92
GET /wp-content/uploads/2021/02/jacek-dylag-Vve7XkiUq_Y-unsplash_square.jpg HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
content-length: 101621
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:39 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Thu, 26 Jan 2023 21:57:39 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/uploads/2021/02/pexels-ketut-subiyanto-4246120_600x600.jpg
192.185.41.32200 OK 65 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/uploads/2021/02/pexels-ketut-subiyanto-4246120_600x600.jpg
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, baseline, precision 8, 603x603, components 3\012- data
Hash 4991956c9641b88e7a6e6cea3b1f7e54
85698b32bea5b614681d90a5b1a13d7f97d60aeb
ae37f7823f0da1a825ad58d4ab14b7c483aa2555fd6a1e1135d17697a5715c3b
GET /wp-content/uploads/2021/02/pexels-ketut-subiyanto-4246120_600x600.jpg HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
content-length: 65387
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:39 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Thu, 26 Jan 2023 21:57:39 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/?wc-ajax=get_refreshed_fragments
192.185.41.32200 OK 802 B URL HTTP/2 plumbingsupplytrc.com/?wc-ajax=get_refreshed_fragments
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JSON data\012- HTML document, ASCII text, with very long lines (2639), with no line terminators
Hash a0b9614b96e39d045d004dbdbf3cd5e9
3bc374f60fe1d680b501fcd627e99dbbc636ce10
80ba4291e18ad18eed335fb43339ed9655f1fe781f71b68b59a8ce3802031720
Analyzer Verdict Alert fortinet Malware
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://plumbingsupplytrc.com
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-ua-compatible: IE=edge
access-control-allow-origin: https://plumbingsupplytrc.com
access-control-allow-credentials: true
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-robots-tag: noindex
set-cookie: kuXIpOYFbs=OLxWGip.HFVMj; expires=Fri, 27-Jan-2023 21:57:40 GMT; Max-Age=86400; path=/; secure
dXsrmWH=6fH%2AhAEo3S_8t; expires=Fri, 27-Jan-2023 21:57:40 GMT; Max-Age=86400; path=/; secure
-RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67; expires=Fri, 27-Jan-2023 21:57:40 GMT; Max-Age=86400; path=/; secure
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 802
content-type: application/json; charset=UTF-8
date: Thu, 26 Jan 2023 21:57:40 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c8a0d6bc80301700d6fb1d520beb8b49
f33a1a1e491fcd6ca31360b28b092457a2d48f23
ef0535b52ccb717c1200d5974ea8841b92f655234d67ace0e71c1ec7f5fbb3f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:57:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-TPE94PK8GS&cid=561188369.1674770260>m=2oe1p0&aip=1&z=1689895670
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-TPE94PK8GS&cid=561188369.1674770260>m=2oe1p0&aip=1&z=1689895670
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-TPE94PK8GS&cid=561188369.1674770260>m=2oe1p0&aip=1&z=1689895670 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 26 Jan 2023 21:57:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c8a0d6bc80301700d6fb1d520beb8b49
f33a1a1e491fcd6ca31360b28b092457a2d48f23
ef0535b52ccb717c1200d5974ea8841b92f655234d67ace0e71c1ec7f5fbb3f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:57:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
plumbingsupplytrc.com/wp-content/uploads/2020/10/cropped-trc_icon-192x192.png
192.185.41.32200 OK 9.7 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/uploads/2020/10/cropped-trc_icon-192x192.png
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash d422734bfd554ceb0a94596ed7e43748
7b455911e65e8b102b31ba3735e25337fcdb4de2
4fc0a9dd15c3fea8ba7fd5ff2352fa9160afeeefffa52eeb9b224fd6479b13a4
GET /wp-content/uploads/2020/10/cropped-trc_icon-192x192.png HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67; HappyLocalTimeZone=GMT+0000 (Coordinated Universal Time); _ga_TPE94PK8GS=GS1.1.1674770260.1.0.1674770260.60.0.0; _ga=GA1.1.561188369.1674770260
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
content-length: 9739
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:40 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Thu, 26 Jan 2023 21:57:40 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/uploads/2020/10/cropped-trc_icon-32x32.png
192.185.41.32200 OK 1.1 kB URL HTTP/2 plumbingsupplytrc.com/wp-content/uploads/2020/10/cropped-trc_icon-32x32.png
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 097e0a1a41e72ac9bd224fc6e626c1f3
4aaf38170367fef7a8b2c1d1026975c43b061125
e4f22ef5f41315b385017eb3fff90e6d4ea630cac104d5c6a6552fcc9ad59a56
GET /wp-content/uploads/2020/10/cropped-trc_icon-32x32.png HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67; HappyLocalTimeZone=GMT+0000 (Coordinated Universal Time); _ga_TPE94PK8GS=GS1.1.1674770260.1.0.1674770260.60.0.0; _ga=GA1.1.561188369.1674770260
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
content-length: 1062
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:40 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Thu, 26 Jan 2023 21:57:40 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 58bee798660dae739b64c6c857490fff
bcfe56f00b749385ca3d2ffb7a68c4a13c186317
800396e3a57e9ebd98a56f8ebab32c3bc576310632d9ece8b282e88c6d20d8f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5204
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:57:40 GMT
Last-Modified: Thu, 26 Jan 2023 20:30:56 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 58bee798660dae739b64c6c857490fff
bcfe56f00b749385ca3d2ffb7a68c4a13c186317
800396e3a57e9ebd98a56f8ebab32c3bc576310632d9ece8b282e88c6d20d8f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6579
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:57:40 GMT
Last-Modified: Thu, 26 Jan 2023 20:08:01 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 58bee798660dae739b64c6c857490fff
bcfe56f00b749385ca3d2ffb7a68c4a13c186317
800396e3a57e9ebd98a56f8ebab32c3bc576310632d9ece8b282e88c6d20d8f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6290
Cache-Control: max-age=97619
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:57:40 GMT
Etag: "63d1b915-1d7"
Expires: Sat, 28 Jan 2023 01:04:39 GMT
Last-Modified: Wed, 25 Jan 2023 23:19:49 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
scontent-dfw5-2.xx.fbcdn.net/v/t1.0-9/p720x720/153118720_275420600613885_6322044938882065980_o.png?_nc_cat=106&ccb=3&_nc_sid=85a577&_nc_ohc=a6hYOVfyDLUAX-jBVPL&_nc_ht=scontent-dfw5-2.xx&_nc_tp=30&oh=e27d1e483a9452e60936ce30decc1c23&oe=605CAAF1
31.13.93.26403 Forbidden 21 B URL HTTP/2 scontent-dfw5-2.xx.fbcdn.net/v/t1.0-9/p720x720/153118720_275420600613885_6322044938882065980_o.png?_nc_cat=106&ccb=3&_nc_sid=85a577&_nc_ohc=a6hYOVfyDLUAX-jBVPL&_nc_ht=scontent-dfw5-2.xx&_nc_tp=30&oh=e27d1e483a9452e60936ce30decc1c23&oe=605CAAF1
IP 31.13.93.26:0
File type ASCII text, with no line terminators
Hash 6da25d09495fcf438ac047a93b6d55db
3c47de0b8adaca2b257f236519fa5c5cdd6f01ab
16366d2552aa8349747c1168a3ef03665652b08d80385b6664c4cbf6a5b2f932
GET /v/t1.0-9/p720x720/153118720_275420600613885_6322044938882065980_o.png?_nc_cat=106&ccb=3&_nc_sid=85a577&_nc_ohc=a6hYOVfyDLUAX-jBVPL&_nc_ht=scontent-dfw5-2.xx&_nc_tp=30&oh=e27d1e483a9452e60936ce30decc1c23&oe=605CAAF1 HTTP/1.1
Host: scontent-dfw5-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
access-control-allow-origin: *
proxy-status: http_request_error; e_clientaddr="AcI45zFAJ1Ond2MSDTdqhRl_eEfqe_0p2gfXwdkXciEEJk9VAMBtbcX6KNLobM9XkSlhnifZqT1Ew-O1"; e_fb_vipaddr="AcKKizhBUNKTOjfo43bTTQYoUYoR0rkITBnHADQRe9bqa-3FJN6qvJLcawwYsI87QU_b1ZU"; e_fb_builduser="AcL6zqt2234i2nAEj_GlFWpEPAWI5MNo2-BlQf1-fUnro6T7OguZPC6sR0B3Illg-MM"; e_fb_binaryversion="AcLcocaCz-u8KXzN0XD4a2sVtx3zxmZ9AcRDZ9iba8ZQZmjnDSIPclCivdXK-Ra5lmSGeoMjOk_CLuABsNN9-YreGRhnO8_l28A"; e_proxy="AcKV2AQLr36WKGk9QBszm6MgdPYulU3PHgElV3gnQQIlQBKU6b1NxMnnxHS9MNdAgUZCuBpoBwGUVhM"
content-type: text/plain
content-length: 21
server: proxygen-bolt
x-fb-trip-id: 1718053925
date: Thu, 26 Jan 2023 21:57:40 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-dfw5-1.xx.fbcdn.net/v/t1.0-9/s720x720/153722471_275453337277278_2194641675169862016_o.png?_nc_cat=110&ccb=3&_nc_sid=dd9801&_nc_ohc=fuFSKJgIkxIAX9Hsf_8&_nc_ht=scontent-dfw5-1.xx&_nc_tp=30&oh=392258a85b394d5159edf706154fba84&oe=605C9DE9
157.240.19.26403 Forbidden 21 B URL HTTP/2 scontent-dfw5-1.xx.fbcdn.net/v/t1.0-9/s720x720/153722471_275453337277278_2194641675169862016_o.png?_nc_cat=110&ccb=3&_nc_sid=dd9801&_nc_ohc=fuFSKJgIkxIAX9Hsf_8&_nc_ht=scontent-dfw5-1.xx&_nc_tp=30&oh=392258a85b394d5159edf706154fba84&oe=605C9DE9
IP 157.240.19.26:0
File type ASCII text, with no line terminators
Hash 6da25d09495fcf438ac047a93b6d55db
3c47de0b8adaca2b257f236519fa5c5cdd6f01ab
16366d2552aa8349747c1168a3ef03665652b08d80385b6664c4cbf6a5b2f932
GET /v/t1.0-9/s720x720/153722471_275453337277278_2194641675169862016_o.png?_nc_cat=110&ccb=3&_nc_sid=dd9801&_nc_ohc=fuFSKJgIkxIAX9Hsf_8&_nc_ht=scontent-dfw5-1.xx&_nc_tp=30&oh=392258a85b394d5159edf706154fba84&oe=605C9DE9 HTTP/1.1
Host: scontent-dfw5-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
access-control-allow-origin: *
proxy-status: http_request_error; e_clientaddr="AcLI77ax0xqCuvYCS68_qnYmQWAWYHx4AikCSnTCoanBXmAajHxMjZ4p9rBkRe7oC09BwiQhAJEV_j79"; e_fb_vipaddr="AcI8Z6Rqo5x0wyyh_gU9oGrYdcFi45dKR2KF5oTpIAbDo8PrMmwzQapGvVY6FKNpeiUjlwUWeQ"; e_fb_builduser="AcJh49viQNKJO_KEBqLjVvgG4YyQTAGuJ7SXAXJoUL-lIXHGru6NRzcqoXYxwMNvv0E"; e_fb_binaryversion="AcJE9E_T19mZDsX9YnSRTWVXH9U4XOCDu5rxQV6csJxQemaV4AWPH5jdMcHs5yFLN3Cvt1fPEcI15OEG7i8M3hi7BaIfMt_qe48"; e_proxy="AcKG16UqvXC0JyCbpYhEa7l7gevhkfB7UvaNPJAfPHi3s9pxTMSRfndoNcUjVZVEf18bKiGW3e4VfRw"
content-type: text/plain
content-length: 21
server: proxygen-bolt
x-fb-trip-id: 1718053925
date: Thu, 26 Jan 2023 21:57:40 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-dfw5-1.xx.fbcdn.net/v/t1.0-9/p720x720/119158075_197720725050540_5242986906125972301_o.jpg?_nc_cat=105&ccb=3&_nc_sid=8024bb&_nc_ohc=gRiolg8j_ssAX-86t4A&_nc_ht=scontent-dfw5-1.xx&tp=6&oh=78ff813e4c3ee7c8894d6b119de2452b&oe=605DDE80
157.240.19.26403 Forbidden 21 B URL HTTP/2 scontent-dfw5-1.xx.fbcdn.net/v/t1.0-9/p720x720/119158075_197720725050540_5242986906125972301_o.jpg?_nc_cat=105&ccb=3&_nc_sid=8024bb&_nc_ohc=gRiolg8j_ssAX-86t4A&_nc_ht=scontent-dfw5-1.xx&tp=6&oh=78ff813e4c3ee7c8894d6b119de2452b&oe=605DDE80
IP 157.240.19.26:0
File type ASCII text, with no line terminators
Hash 6da25d09495fcf438ac047a93b6d55db
3c47de0b8adaca2b257f236519fa5c5cdd6f01ab
16366d2552aa8349747c1168a3ef03665652b08d80385b6664c4cbf6a5b2f932
GET /v/t1.0-9/p720x720/119158075_197720725050540_5242986906125972301_o.jpg?_nc_cat=105&ccb=3&_nc_sid=8024bb&_nc_ohc=gRiolg8j_ssAX-86t4A&_nc_ht=scontent-dfw5-1.xx&tp=6&oh=78ff813e4c3ee7c8894d6b119de2452b&oe=605DDE80 HTTP/1.1
Host: scontent-dfw5-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
access-control-allow-origin: *
proxy-status: http_request_error; e_clientaddr="AcIG3Cc9Q3eFftA494LQvvbhUGEgkjm9W5Q540QOt-6qLfVaf2MdwcwwG9nLVQKb0D-HpqllWWPSsmMI"; e_fb_vipaddr="AcIfYry7GZsjIFrtlban1SbsKPxdE31m7XLQjHngNkZCKbPTiG8HBN8mGDbO9vothxl27vJg4g"; e_fb_builduser="AcIYdWsM5xPtid8jjP62ruEJjvUw5bGCaCd8Y9-SFP5yrUz74VKl1JvruUdnuKW0Zyg"; e_fb_binaryversion="AcLf8Qkxo8EKx1aeZuWUYT_hlTwvIARKZ5ke5oik15pLgCKoMmkn6OUd3F_sM5NNQQAe_W1Ar_cyteEyQjrnGqi6x-r4GPWNl58"; e_proxy="AcId0oJoffutJwoKf0Z4oSKoLVVUA9cFii8x_bhqZN3BMrquzNGlQFPowRjpd5Xpwc1biT9yC6xHmKM"
content-type: text/plain
content-length: 21
server: proxygen-bolt
x-fb-trip-id: 1718053925
date: Thu, 26 Jan 2023 21:57:40 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 58bee798660dae739b64c6c857490fff
bcfe56f00b749385ca3d2ffb7a68c4a13c186317
800396e3a57e9ebd98a56f8ebab32c3bc576310632d9ece8b282e88c6d20d8f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5205
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:57:41 GMT
Last-Modified: Thu, 26 Jan 2023 20:30:56 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 58bee798660dae739b64c6c857490fff
bcfe56f00b749385ca3d2ffb7a68c4a13c186317
800396e3a57e9ebd98a56f8ebab32c3bc576310632d9ece8b282e88c6d20d8f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6580
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:57:41 GMT
Last-Modified: Thu, 26 Jan 2023 20:08:01 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
region1.analytics.google.com/g/collect?v=2&tid=G-TPE94PK8GS>m=2oe1p0&_p=2107127315&_gaz=1&cid=561188369.1674770260&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674770260&sct=1&seg=0&dl=https%3A%2F%2Fplumbingsupplytrc.com%2F&dt=TRC%20INDUSTRIES%20CORP.%20%E2%80%93%20TRC%20Industries%20Plumbing%20Supplies&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-TPE94PK8GS>m=2oe1p0&_p=2107127315&_gaz=1&cid=561188369.1674770260&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674770260&sct=1&seg=0&dl=https%3A%2F%2Fplumbingsupplytrc.com%2F&dt=TRC%20INDUSTRIES%20CORP.%20%E2%80%93%20TRC%20Industries%20Plumbing%20Supplies&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-TPE94PK8GS>m=2oe1p0&_p=2107127315&_gaz=1&cid=561188369.1674770260&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674770260&sct=1&seg=0&dl=https%3A%2F%2Fplumbingsupplytrc.com%2F&dt=TRC%20INDUSTRIES%20CORP.%20%E2%80%93%20TRC%20Industries%20Plumbing%20Supplies&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://plumbingsupplytrc.com
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://plumbingsupplytrc.com
date: Thu, 26 Jan 2023 21:57:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1f4c8e17a668764556ab61c7c31e53c7
ada5ee5917ab9faf3d55a6da1d5bfc3077e42de2
8ac89ed8b6650ea140c2eac1b1dd61f8498e97e278e6bd6debfd803a588e2468
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:57:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/g/collect?v=2&tid=G-TPE94PK8GS&cid=561188369.1674770260>m=2oe1p0&aip=1
173.194.221.155204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-TPE94PK8GS&cid=561188369.1674770260>m=2oe1p0&aip=1
IP 173.194.221.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-TPE94PK8GS&cid=561188369.1674770260>m=2oe1p0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://plumbingsupplytrc.com
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://plumbingsupplytrc.com
date: Thu, 26 Jan 2023 21:57:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c.clarity.ms/c.gif
20.234.93.27302 Found 0 B IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=04AB04E08BF742B9BE668936F810FC6D&RedC=c.clarity.ms&MXFR=33781E2F11AE6A0425580C8A15AE6420
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=33781E2F11AE6A0425580C8A15AE6420; domain=.clarity.ms; expires=Tue, 20-Feb-2024 21:57:41 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Thu, 26 Jan 2023 21:57:40 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1f4c8e17a668764556ab61c7c31e53c7
ada5ee5917ab9faf3d55a6da1d5bfc3077e42de2
8ac89ed8b6650ea140c2eac1b1dd61f8498e97e278e6bd6debfd803a588e2468
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:57:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.bing.com/c.gif?CtsSyncId=04AB04E08BF742B9BE668936F810FC6D&RedC=c.clarity.ms&MXFR=33781E2F11AE6A0425580C8A15AE6420
204.79.197.200302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=04AB04E08BF742B9BE668936F810FC6D&RedC=c.clarity.ms&MXFR=33781E2F11AE6A0425580C8A15AE6420
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=04AB04E08BF742B9BE668936F810FC6D&RedC=c.clarity.ms&MXFR=33781E2F11AE6A0425580C8A15AE6420 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://plumbingsupplytrc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=04AB04E08BF742B9BE668936F810FC6D&MUID=12C3E27E1BE868EF0855F0DB1A1D6902
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=12C3E27E1BE868EF0855F0DB1A1D6902; domain=c.bing.com; expires=Tue, 20-Feb-2024 21:57:41 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 951419DD54174499974638868DFE9ECD Ref B: OSL30EDGE0212 Ref C: 2023-01-26T21:57:41Z
date: Thu, 26 Jan 2023 21:57:40 GMT
content-length: 0
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=04AB04E08BF742B9BE668936F810FC6D&MUID=12C3E27E1BE868EF0855F0DB1A1D6902
20.234.93.27200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=04AB04E08BF742B9BE668936F810FC6D&MUID=12C3E27E1BE868EF0855F0DB1A1D6902
IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=04AB04E08BF742B9BE668936F810FC6D&MUID=12C3E27E1BE868EF0855F0DB1A1D6902 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://plumbingsupplytrc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Tue, 17 Jan 2023 20:36:49 GMT
accept-ranges: bytes
etag: "b1c8df6cb32ad91:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Thu, 26-Jan-2023 22:07:41 GMT; path=/; SameSite=None; Secure;
date: Thu, 26 Jan 2023 21:57:40 GMT
content-length: 42
X-Firefox-Spdy: h2
d.clarity.ms/collect
40.76.174.66204 No Content 0 B IP 40.76.174.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 533
Origin: https://plumbingsupplytrc.com
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://plumbingsupplytrc.com
access-control-allow-credentials: true
date: Thu, 26 Jan 2023 21:57:41 GMT
X-Firefox-Spdy: h2
d.clarity.ms/collect
40.76.174.66204 No Content 0 B IP 40.76.174.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 85987
Origin: https://plumbingsupplytrc.com
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://plumbingsupplytrc.com
access-control-allow-credentials: true
date: Thu, 26 Jan 2023 21:57:41 GMT
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/css/style.min.css?ver=1.9.0
192.185.41.32200 OK 0 B URL HTTP/2 plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/css/style.min.css?ver=1.9.0
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/trcindustries/assets/css/style.min.css?ver=1.9.0 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
192.185.41.32200 OK 0 B URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Mar 2021 16:06:59 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.clarity.ms/tag/5vtepy7s24?ref=bwt
13.107.237.53200 OK 0 B URL HTTP/2 www.clarity.ms/tag/5vtepy7s24?ref=bwt
IP 13.107.237.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /tag/5vtepy7s24?ref=bwt HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=ab60e4d78121486ba9e9eff84c9417d9.20230126.20240126; expires=Fri, 26 Jan 2024 21:57:40 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:e55edbbe-e22b-46b4-8313-9ee2a4e71d12
x-cache: CONFIG_NOCACHE
x-azure-ref: 0VPfSYwAAAADrjpXGZ7jHRY8FELXkWtQiQ1BIMzBFREdFMDQxMQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Thu, 26 Jan 2023 21:57:40 GMT
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
192.185.41.32200 OK 0 B URL HTTP/2 plumbingsupplytrc.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 Oct 2021 19:45:49 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/css/woo/woocommerce.min.css?ver=5.8.6
192.185.41.32200 OK 0 B URL HTTP/2 plumbingsupplytrc.com/wp-content/themes/trcindustries/assets/css/woo/woocommerce.min.css?ver=5.8.6
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/trcindustries/assets/css/woo/woocommerce.min.css?ver=5.8.6 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.clarity.ms/eus/s/0.7.1/clarity.js
13.107.237.53200 OK 0 B URL HTTP/2 www.clarity.ms/eus/s/0.7.1/clarity.js
IP 13.107.237.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /eus/s/0.7.1/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d928dd7500799e"
server: Microsoft-IIS/10.0
x-cache: TCP_HIT
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
x-azure-ref-originshield: 0gMrSYwAAAACON915zEqoRKjh23ohzUG0RlJBMjMxMDUwNDE4MDM3ADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
x-azure-ref: 0VPfSYwAAAACFPhMb5n1nRqUzUuwYLxMrQ1BIMzBFREdFMDQxMQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Thu, 26 Jan 2023 21:57:40 GMT
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.1.0
192.185.41.32200 OK 0 B URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.1.0
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.1.0 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.1.0
192.185.41.32200 OK 0 B URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.1.0
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.1.0 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Feb 2021 09:28:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=3.4.0
192.185.41.32200 OK 0 B URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=3.4.0
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=3.4.0 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 20:27:39 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.1.4
192.185.41.32200 OK 0 B URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.1.4
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.1.4 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Mar 2021 16:06:59 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: text/css
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Titillium+Web%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CUbuntu%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.8.6
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Titillium+Web%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CUbuntu%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.8.6
IP 142.250.74.74:0
GET /css?family=Titillium+Web%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CUbuntu%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.8.6 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 26 Jan 2023 21:57:38 GMT
date: Thu, 26 Jan 2023 21:57:38 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
plumbingsupplytrc.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.1.4
192.185.41.32200 OK 0 B URL HTTP/2 plumbingsupplytrc.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.1.4
IP 192.185.41.32:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.1.4 HTTP/1.1
Host: plumbingsupplytrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://plumbingsupplytrc.com/
Cookie: kuXIpOYFbs=OLxWGip.HFVMj; dXsrmWH=6fH%2AhAEo3S_8t; -RuHQmDxcNMZfL=Ke0kuHs%40%5DQ67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Mar 2021 16:06:59 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 21:57:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: application/javascript
date: Thu, 26 Jan 2023 21:57:38 GMT
server: Apache
X-Firefox-Spdy: h2