r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5fe582397f3003b225cb9058e02c2190
68174a54a8f6c4de9247ccea2dcae3c9b76bdb9f
238a2ef5b61d56353d0a5e97ec3092b8f2792cde7cecf40e1a858f8c129d3a9d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "238A2EF5B61D56353D0A5E97EC3092B8F2792CDE7CECF40E1A858F8C129D3A9D"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8276
Expires: Fri, 27 Jan 2023 03:47:48 GMT
Date: Fri, 27 Jan 2023 01:29:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2405562765b49b2782ebd2e2994851d5
be7ac8e558f7875bb1fb86ab5ec674424a5ff269
422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7604
Expires: Fri, 27 Jan 2023 03:36:36 GMT
Date: Fri, 27 Jan 2023 01:29:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2987
Expires: Fri, 27 Jan 2023 02:19:39 GMT
Date: Fri, 27 Jan 2023 01:29:52 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 27 Jan 2023 00:35:18 GMT
content-type: application/json
age: 3274
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: vw7WeJD5MGxbsQjDinop5NJgJNAnFl1AK0Xjr3ziVB9R3IyMqQfuHDmUwC2ZA6MffrNA+qurl/zNaUojzHuqZA==
x-amz-request-id: PRPH8CJRHMN54MVR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 27 Jan 2023 01:20:20 GMT
age: 572
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 01:29:52 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 27 Jan 2023 00:41:40 GMT
age: 2892
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1e2970e1480a4759282d63bb213051e4
ed5194d4d25dfc199821129be5d74be0ce49197d
18e19ea4c9c262cb9a94f89172eef2604222e779346589d470bf2e95ea295563
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18E19EA4C9C262CB9A94F89172EEF2604222E779346589D470BF2E95EA295563"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6567
Expires: Fri, 27 Jan 2023 03:19:20 GMT
Date: Fri, 27 Jan 2023 01:29:53 GMT
Connection: keep-alive
push.services.mozilla.com/
52.32.180.241101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.32.180.241:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fwV9CarMi55DAoviaXLuqA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: C+0iw9QF7vrBN4cWW5guzwRnrzY=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2312
Expires: Fri, 27 Jan 2023 02:08:26 GMT
Date: Fri, 27 Jan 2023 01:29:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2312
Expires: Fri, 27 Jan 2023 02:08:26 GMT
Date: Fri, 27 Jan 2023 01:29:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2312
Expires: Fri, 27 Jan 2023 02:08:26 GMT
Date: Fri, 27 Jan 2023 01:29:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2312
Expires: Fri, 27 Jan 2023 02:08:26 GMT
Date: Fri, 27 Jan 2023 01:29:54 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b8fa26c-af88-46ea-a5c6-1122db65d6d4.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b8fa26c-af88-46ea-a5c6-1122db65d6d4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f3605538118d3aaef721a03d482b0f9a
2e2e770d552a05a0f24f4bbb1110266440b2bf76
1011d275125968599a8dd082810deca07e82770efad760b3f1ebf7f74ebab78e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b8fa26c-af88-46ea-a5c6-1122db65d6d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9063
x-amzn-requestid: 8eb82d16-63f8-4e6e-b9fe-1795c7703c03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIgq2EbSoAMFUwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce178-67a0958d7cd1f132605d93be;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:10:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fEX2-oiOwaU7l9OQzljVzFI-CQOwn4yQjUJ_fv0pmjc6C8evz1LDbQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 11:12:36 GMT
age: 51438
etag: "2e2e770d552a05a0f24f4bbb1110266440b2bf76"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cc9d867-fc35-4a62-9934-4cb307d6146d.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cc9d867-fc35-4a62-9934-4cb307d6146d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 869cdfba2637cc932ce387317a3c485e
51d87a5223d87c959bf27b2a825dce0a28f52ada
6dc4247dd3110836195f9962463bd8265be89633e9e589bf19955991751c26fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cc9d867-fc35-4a62-9934-4cb307d6146d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5669
x-amzn-requestid: 17f6235c-d495-4813-9453-407331e0dcad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fR1ZSH4fIAMFxeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d09c3b-67ff5c7f416727670e7c3b21;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 03:04:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zH3wYMLXCFCcoop-xy3r_wXiY2g684Ei-o6BVntyzqjNeX1UuvQsxA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 04:25:48 GMT
age: 75846
etag: "51d87a5223d87c959bf27b2a825dce0a28f52ada"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52a1f3b3-38ab-4f58-ad1a-ca4c9f82503e.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52a1f3b3-38ab-4f58-ad1a-ca4c9f82503e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1695371c247eedad65b4cac82f01215d
50510052f0e22e23f747c761d57cdf72910ac533
aadde426229f04f6a489b87d6949a485b19d4fd035cb244b6094549efc08013f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52a1f3b3-38ab-4f58-ad1a-ca4c9f82503e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6394
x-amzn-requestid: 859587bc-081f-4092-8fed-40e3f2bc8ee4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fOjE6FJNIAMFz6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf4bb8-28848a07545a0e557f1250b1;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 03:08:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KIQ-V8uU0HwYAPEfXMUw7T2IYlStHuZ0mwWdVFUNf46i6ugVGZm-Bw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 11:50:55 GMT
age: 49139
etag: "50510052f0e22e23f747c761d57cdf72910ac533"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e7158416f60576804ccff03307319fe
a342f94625e913fa6b8d862a59979f1e3ad80dd1
5c525df7d169cc7e033d920c11f4a0163a781c025a22b70530882b56964a9a52
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5737
x-amzn-requestid: cc977ea9-c418-4a5a-a13b-c86e16bbe6ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRGPFGL5oAMFiSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d050c6-2d540cac5ca7d4e64cfdb8bc;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 21:42:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uZnA5gkRlZyqamh_n3992G9PlMJa4gJ-mjSOQEysII73dDKLXmeXsg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 12:26:22 GMT
age: 47012
etag: "a342f94625e913fa6b8d862a59979f1e3ad80dd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5623b111-3a93-4843-8a40-550089a3d3eb.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5623b111-3a93-4843-8a40-550089a3d3eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a5de6b54196befa95e9291a051c645d0
e3100707a4e9b1d5c30223d31f58cd6ee8ad010b
5bcc3dd7011df4e17d7ef86d892fedeca14b0d0eabbe782fecf35c9a82b25e40
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5623b111-3a93-4843-8a40-550089a3d3eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7804
x-amzn-requestid: 4cd6ed50-202c-4e57-94db-cc6585dca5b1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLQWuH20oAMFxzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cdfa91-05441777646d154650c97512;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 03:10:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: D6nD7sD6FQavjUir9rxJlh9U2reSno5qNQ0qQdG4iS6hscVfSHdBCQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 22:01:13 GMT
age: 12521
etag: "e3100707a4e9b1d5c30223d31f58cd6ee8ad010b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:59:56 GMT
age: 12598
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
superiorairpurification.com/
107.180.28.116200 OK 23 kB URL HTTP/1.1 superiorairpurification.com/
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8184), with CRLF, LF line terminators
Hash 5cae93f39b0037dd0a74f04b8ef73f69
f3427eda4804b43ff9831bec3946a2e710fe1616
52a23f74e08055af04b92f358d22fa3c5002be217140681d8b91d78bf30e47d5
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:52 GMT
Server: Apache
X-Powered-By: PHP/8.0.26
X-Pingback: http://superiorairpurification.com/xmlrpc.php
Link: <http://superiorairpurification.com/wp-json/>; rel="https://api.w.org/", <http://superiorairpurification.com/wp-json/wp/v2/pages/1749>; rel="alternate"; type="application/json", <http://superiorairpurification.com/>; rel=shortlink
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 23274
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
fonts.googleapis.com/css?family=Ubuntu%3A400%26subset%3Dlatin&ver=1.0.0
142.250.74.106200 OK 452 B URL HTTP/1.1 fonts.googleapis.com/css?family=Ubuntu%3A400%26subset%3Dlatin&ver=1.0.0
IP 142.250.74.106:0
Hash daa43a182d4368f0c984f1f633a5313a
6f4bc3b01db428858a5b97d003a51654d5a740f3
7ab87682f6e1907992f7e76ca28a94622ef5baa6e8f08fadd4f82abc2a3fd0e9
GET /css?family=Ubuntu%3A400%26subset%3Dlatin&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 27 Jan 2023 01:29:55 GMT
Date: Fri, 27 Jan 2023 01:29:55 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Open+Sans%3A400%26subset%3Dlatin&ver=1.0.0
142.250.74.106200 OK 601 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans%3A400%26subset%3Dlatin&ver=1.0.0
IP 142.250.74.106:0
Hash 75d181fc850170da6e8f60df6cfc3f07
8c36b95d4b2746668a67479d14c983993d415038
9f8f28568038df45d52650d52e7316819f7f787c480f016af0333127eb11b67e
GET /css?family=Open+Sans%3A400%26subset%3Dlatin&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 27 Jan 2023 01:29:55 GMT
Date: Fri, 27 Jan 2023 01:29:55 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=PT+Sans%3A400%26subset%3Dlatin&ver=1.0.0
142.250.74.106200 OK 419 B URL HTTP/1.1 fonts.googleapis.com/css?family=PT+Sans%3A400%26subset%3Dlatin&ver=1.0.0
IP 142.250.74.106:0
Hash 58094ea447109d8c4fe2509c0d79ae3a
5e306a1778eb476b993923408e446cf500890bde
6de7b233291d6c7f42ccf839617d9c1a28042af80af9e11f7207ca505a6b42ef
GET /css?family=PT+Sans%3A400%26subset%3Dlatin&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 27 Jan 2023 01:29:55 GMT
Date: Fri, 27 Jan 2023 01:29:55 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
maps.googleapis.com/maps/api/js?key=AIzaSyCNqp65FXW0FbLvlPqCZNlQXux0Tp0msBY-TaT81Ra-sgOnY&ver=6.0.3
142.250.74.42200 OK 53 kB URL HTTP/1.1 maps.googleapis.com/maps/api/js?key=AIzaSyCNqp65FXW0FbLvlPqCZNlQXux0Tp0msBY-TaT81Ra-sgOnY&ver=6.0.3
IP 142.250.74.42:0
File type ASCII text, with very long lines (2448)
Hash 727a206ccd1910a0332bc84f17945cba
20a1e08b8737492df14c8a86d3f062c2b92daed9
3e7b5210a5739e6171365252abd3b63ff82c0245e7f4bd65e4d133e26a1a1b81
GET /maps/api/js?key=AIzaSyCNqp65FXW0FbLvlPqCZNlQXux0Tp0msBY-TaT81Ra-sgOnY&ver=6.0.3 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
Date: Fri, 27 Jan 2023 01:29:55 GMT
Expires: Fri, 27 Jan 2023 01:59:55 GMT
Cache-Control: public, max-age=1800
Vary: Accept-Language
Cross-Origin-Resource-Policy: cross-origin
Timing-Allow-Origin: *
Content-Encoding: gzip
Server: mafe
Content-Length: 52826
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Server-Timing: gfet4t7; dur=24
superiorairpurification.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5
107.180.28.116200 OK 2.0 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (10435), with no line terminators
Hash 38b1f483d4bf6b1548990385c8673746
1668edb02c5170be308368292a4c12033d0a42f4
98138d83d7cb12e99802ba034b400a67e0d7b6e378d8bcd1b4d9f4fe44ce1111
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:35 GMT
ETag: "3083212-28c3-5f182599ca30d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1962
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
superiorairpurification.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
107.180.28.116200 OK 12 kB URL HTTP/1.1 superiorairpurification.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (43771)
Hash e5548800176e913a9084f47a3e1e04f6
eff4604acc5c26ae82a19188de2f98bf5b79d80c
a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 05 Jan 2023 11:09:59 GMT
ETag: "3062ca7-15b64-5f182577ea5c5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11681
Keep-Alive: timeout=5
Content-Type: text/css
superiorairpurification.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.1.0
107.180.28.116200 OK 8.9 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.1.0
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (62781), with no line terminators
Hash a15d752339be71e98862a16809456334
49240ae9a1cb1989fafbed8fac7822ba2d9922f3
69c86c79af25482e2a79220ca2c403dd35471a8a15b75919b246244119d8524a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.1.0 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:32 GMT
ETag: "3080be3-f53f-5f182597c1ee0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8897
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
superiorairpurification.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.1.0
107.180.28.116200 OK 2.6 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.1.0
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (17809), with no line terminators
Hash d45c9e0b4109fd68bc2eaae40d01f61a
f0fd80fcb3e8b7a9d95782d0f0c79ddc19b2fa96
072aa95bd2ad493914030593b84c611b2dfcc39444f726ddab52751f4b4bf926
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.1.0 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 05 Jan 2023 11:10:32 GMT
ETag: "3080be5-4591-5f182597c26b0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2554
Keep-Alive: timeout=5
Content-Type: text/css
superiorairpurification.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2
107.180.28.116200 OK 995 B URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash a81b8fb4af6a0bfef4d8fb610b7e3fd2
54ac8812d0ee99a38e33f734f34179a77e95e547
6a391fc773bce731189bf93ecf097629718030c411493a92842b12939bee8479
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 05 Jan 2023 11:10:35 GMT
ETag: "2f417cd-af3-5f18259a5af72-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 995
Keep-Alive: timeout=5
Content-Type: text/css
superiorairpurification.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5
107.180.28.116200 OK 24 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash f4b081e0f93afb4620f474fc36155678
f8e737ec06645c43cb94388c865609f6ce34e340
14c731b71ee9a157791e5d07c14fc669a122d9016f61581feb79f5d12fba95ac
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 05 Jan 2023 11:10:35 GMT
ETag: "308320d-39996-5f182599c8b9d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 24470
Keep-Alive: timeout=5
Content-Type: text/css
superiorairpurification.com/wp-content/themes/freshair/css/owl.carousel.css?ver=6.0.3
107.180.28.116200 OK 1.1 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/css/owl.carousel.css?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash dc887e067a669f9059e73b66fdae3215
4caa59115808af2635666f58ef004aca3a564b3c
38f480c108ad3e943f45081262a1c8fc0dc14bce2c784a9ceb563f625c7ce3b8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/freshair/css/owl.carousel.css?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "308200c-1206-5f18258dac666-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1103
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
superiorairpurification.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.4
107.180.28.116200 OK 13 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.4
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 5cd4d25c0c08d1cafd5a02bc3605bdc2
7d01b1d5960cacdd913e21d0e7e152a29f69b93b
fd5792c90a5d90f16a44747bc2088eac4b068d302b2620166cf21fc0da3eb07f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.4 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 16 Apr 2021 17:01:20 GMT
ETag: "3080a9e-eedf-5c019edce7800-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12950
Keep-Alive: timeout=5
Content-Type: text/css
superiorairpurification.com/wp-content/themes/freshair/css/owl.theme.css?ver=6.0.3
107.180.28.116200 OK 606 B URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/css/owl.theme.css?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 7153bc3a86860f6f15d1692a533065ce
87d1535b7fa4ee23c1dd8976ef115c2603a3d74a
6be2a352cfebf5b9a6c730341fed8644fd21d8c373834cda6bf4b651275b9872
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/freshair/css/owl.theme.css?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "308200d-681-5f18258db1c56-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 606
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
superiorairpurification.com/wp-content/themes/freshair/css/lightbox.min.css?ver=6.0.3
107.180.28.116200 OK 916 B URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/css/lightbox.min.css?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (2800), with no line terminators
Hash c1371f5f8d3fe637523f6896aaf96d35
156f11d7db7e4b374c74b9ecfa1daef5b408687e
eab84f0ad6a1036fec2274a36ae8d3deb8855759953174a5e719d9faf5da2393
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/freshair/css/lightbox.min.css?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "3081ffc-af0-5f18258db1c56-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 916
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
superiorairpurification.com/wp-content/themes/freshair/css/font-awesome.min.css?ver=6.0.3
107.180.28.116200 OK 6.2 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/css/font-awesome.min.css?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (27303)
Hash f14f185447db679e05c7b381ec56b6a9
f3e14686cab8519fd93955410d5b281ae86d6e69
26c6be13c6ab47c65829a0584e5c8af70013edb222abb8eb94f5a92bb7702863
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/freshair/css/font-awesome.min.css?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "3081ff9-6b4a-5f18258db186e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6243
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
superiorairpurification.com/wp-content/themes/freshair/css/ionicons.min.css?ver=6.0.3
107.180.28.116200 OK 8.3 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/css/ionicons.min.css?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (50806)
Hash 3f1e436685a4599a3c5a4ad1d4742aae
f5c604e83a72202d2e0d4fb4fa3413df611bfc9b
d3dc8d7385a9b9ae0ad8879206762d0fc12d18adb604e4262f08aa48d81262bd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/freshair/css/ionicons.min.css?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "3081ffb-c854-5f18258dba8f6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8284
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
superiorairpurification.com/wp-content/themes/freshair/css/animate.css?ver=6.0.3
107.180.28.116200 OK 4.3 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/css/animate.css?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 8824930de41864f40dfab1dea32924c7
4ce75ca719ddc1f359959cdc0fd9165737faedbe
166f817e7e4ad78f863672dbf61f2929b3e7d61419a1048429ac6f9841541579
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/freshair/css/animate.css?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "3081ff5-116bc-5f18258daca4e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4330
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
superiorairpurification.com/wp-content/themes/freshair/css/mediaelementplayer.css?ver=6.0.3
107.180.28.116200 OK 3.8 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/css/mediaelementplayer.css?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (303)
Hash 2299976d95ee07a84a3a5434e966aeba
f723cd84b03d498a0807e1e8482742db8a61bb9a
4934a5c87be7e0f6347bc6c4820b899613df783677956ca47b3ded94f499b30e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/freshair/css/mediaelementplayer.css?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "308200b-5f94-5f18258db186e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3814
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
superiorairpurification.com/wp-content/themes/freshair/style.css?ver=6.0.3
107.180.28.116200 OK 721 B URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/style.css?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 661f6b8950f05c4dea4f659cbc477111
6e6f80325d587e1b90a880e4c010c63342e6a03b
2d0c4c1c9a0ea9b723ec09ede160323b9b048723797f40d89e3fb718d756c019
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/freshair/style.css?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:21 GMT
ETag: "3082188-5d9-5f18258d1bdea-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 721
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
superiorairpurification.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
107.180.28.116200 OK 4.2 kB URL HTTP/1.1 superiorairpurification.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:01 GMT
ETag: "3062e8c-2bd8-5f1825798389c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4169
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
107.180.28.116200 OK 31 kB URL HTTP/1.1 superiorairpurification.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65447)
Hash 1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:01 GMT
ETag: "3062e84-15e54-5f182579713a5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 30995
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/themes/freshair/css/app.css?ver=6.0.3
107.180.28.116200 OK 41 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/css/app.css?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65536), with no line terminators
Hash 83fa8f2270c611c48ae17bd11c07ee22
5725773fb5064d4d94edaf2f70e9ec0fb14723b2
983d5c3f516180a58adbdee575ff14314819dc0833c4cdba7e35c01592db069c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/freshair/css/app.css?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "3081ff6-51c57-5f18258daa727-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 41311
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
superiorairpurification.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.4
107.180.28.116200 OK 47 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.4
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (42889)
Hash ed3006e295545702dbb5fd6bab080857
42948583f6a1e5176e08a7eaa9696d4016db171b
c6e1844fc5c7d10b50605b31dd0542c07bb0eed5b778a5d2dfe96a12977aa99d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.4 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Fri, 16 Apr 2021 17:01:20 GMT
ETag: "3080acd-1e437-5c019edce7800-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 46887
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
107.180.28.116200 OK 3.5 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (9111)
Hash f6004c12128ba678a6ab8fafb9cb1d61
a023d537a3273176524815baca3f2c42cc601a3c
e516f66f227db9eb26f5bec7605f4647680979c10c9bb61ac1654ccbf7e348af
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:32 GMT
ETag: "3080c93-2521-5f182597d4f8f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3496
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
107.180.28.116200 OK 1.1 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document, ASCII text, with very long lines (3029), with no line terminators
Hash 3fffd1b8f00bf4175aaf1831974a4e4c
7f16ab9253c92a528f1f8cb20bee07128ce67048
3eeb166e786db324c70ef63628846f825951748a76d0de97c719189a0ab555c3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:33 GMT
ETag: "3080c76-bd5-5f182597e64e7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1088
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.6.0
107.180.28.116200 OK 1.7 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.6.0
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 0aaa9a5ca25898988bf4a1b3189d3ec6
b674f6ed964d7de8365b9caaa700318ac0bdfcba
b94ef4cea5a8e297b0dd1822f1acade64214a2bf8b89aa3b125a487b0ca2c3d8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.6.0 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:27 GMT
ETag: "2f41916-1282-5f1825928f204-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1687
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/themes/freshair/js/wd-maps.js?ver=6.0.3
107.180.28.116200 OK 3.0 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/js/wd-maps.js?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 445c71d1289006b00379b13da9abf220
8393e1d0aad6eda14ebe3692dd76ca50637fa7d3
5a3002fe31d7608501125618a77e55197fe76c279b134f36ceef7ad4a57bca0e
GET /wp-content/themes/freshair/js/wd-maps.js?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "30820b1-4476-5f18258e1d314-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3028
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/themes/freshair/js/foundation.min.js?ver=6.0.3
107.180.28.116200 OK 29 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/js/foundation.min.js?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document, ASCII text, with very long lines (32007)
Hash c146fbaeefedc608e967d06d1b7820be
5b2860fc9373496f9ed3718cffd9690e4f33bac3
200f03e96c08630b62abe910aec832fd2f5b731b390d51dfff78e0e58f80df11
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/freshair/js/foundation.min.js?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "3082099-1b8d1-5f18258e15de4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 29245
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.4
107.180.28.116200 OK 94 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.4
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (64270)
Hash dbe6428077cfc6745d0ac977cd278e03
4b71e8b5baf77cfdd9f67e36a570414c6c50baba
a1d942b9c47dc614753d3563b8c48a211e3fcd62f0b8571312432afc1d5f4b14
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.4 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Fri, 16 Apr 2021 17:01:20 GMT
ETag: "3080ace-57862-5c019edce7800-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
superiorairpurification.com/wp-content/themes/freshair/js/vendor/easing.js?ver=6.0.3
107.180.28.116200 OK 2.3 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/js/vendor/easing.js?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (3601)
Hash 9ef1f9ec05ded7c48ee89850ebb322e3
92db96aad481df39e8f86102f01501c05cda3183
b9b67c7ed8684fc4f7519a722618833e0c9fb44c00063c14749527f27f89e993
GET /wp-content/themes/freshair/js/vendor/easing.js?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "30820a2-1df2-5f18258e1a81c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2341
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/themes/freshair/js/vendor/mediaelementjs.js?ver=6.0.3
107.180.28.116200 OK 21 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/js/vendor/mediaelementjs.js?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document, ASCII text, with very long lines (1049)
Hash 4f80bdce9e43a8facaa2bc013933fde3
8dd76c0a5ed102cb9bd6a0875d13df89b7e1987b
7dfb505d9f7f194584bbd072e7f0d043954385ce231d121043f431bda1626eac
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/freshair/js/vendor/mediaelementjs.js?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "30820a7-12eb5-5f18258e188dc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20971
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/themes/freshair/js/vendor/zeptojs.js?ver=6.0.3
107.180.28.116200 OK 28 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/js/vendor/zeptojs.js?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document, ASCII text, with very long lines (32098)
Hash e77445570a187fcf998fe1ac64545685
66ade0f7659aff1e940081f6f570fe8eef6b28b7
b4b830281d79e70da37d2da9efac1d262bc7b64eb70fa47cf948453d5c7e053e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/freshair/js/vendor/zeptojs.js?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "30820af-19f79-5f18258e190ac-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 27498
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/themes/freshair/js/vendor/modernizr.js?ver=6.0.3
107.180.28.116200 OK 4.8 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/js/vendor/modernizr.js?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document, ASCII text, with very long lines (7752)
Hash b15cf7b4b333772ef27e1518f01e3f19
00930ef956ef6dcf5b5300b1f6b8a0d12f22ebcc
f3ce7091d8beccaceffce257df9cd1757682c0bcd3bef37bc44f7368d414184b
GET /wp-content/themes/freshair/js/vendor/modernizr.js?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "30820a8-2db4-5f18258e19c64-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4764
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/themes/freshair/js/vendor/owl.carousel.min.js?ver=6.0.3
107.180.28.116200 OK 12 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/js/vendor/owl.carousel.min.js?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (32068)
Hash ba40b537a5a317759d3240384c738567
c9a8c886967b746ca2a339dff14bb386196afc42
d7528897440c66ab837ae4b54da66ba220a646a3f7099a10c1235a7520cfbdc0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/freshair/js/vendor/owl.carousel.min.js?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:55 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "30820a9-ac8c-5f18258e1a434-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11896
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2ebcc7cd4c50e87a984668828c1e612e
f693d36335f333e3647f9fb2460e34dd73e17421
27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:29:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
superiorairpurification.com/wp-content/themes/freshair/js/vendor/owl.carousel2.thumbs.js?ver=6.0.3
107.180.28.116200 OK 2.4 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/js/vendor/owl.carousel2.thumbs.js?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (3318)
Hash 002744518f73cd850c580c41f0986adf
2df56cbdad4542fad4f205b92a746069e144521b
d3b08b69ca418368d8a0a43919b94d1fe416af1f20c2b900bd8b997ef47b1385
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/freshair/js/vendor/owl.carousel2.thumbs.js?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "30820aa-1c13-5f18258e1a04c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2441
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3ebf9d7211aba4c70b84fb470a61b414
28fe29a24e47d6abda88eeeb5e22eddda03c7fca
a8276e099d9d8452b65b70d161a459fae25afb37cea7eff9cc5563b7de972acc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:29:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2ebcc7cd4c50e87a984668828c1e612e
f693d36335f333e3647f9fb2460e34dd73e17421
27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:29:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
superiorairpurification.com/wp-content/themes/freshair/js/vendor/counterup.js?ver=6.0.3
107.180.28.116200 OK 1.9 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/js/vendor/counterup.js?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (918)
Hash 74890b5bf9a1dbfe76009d40de79fc95
f443ba98636893e940fd8cec2862cb0c5a1b6969
53fe3a75827e587ec0098ca882572c0135123a727fb029d478bce71a86be2ce4
GET /wp-content/themes/freshair/js/vendor/counterup.js?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "30820a1-12d7-5f18258e190ac-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1893
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.google.com/recaptcha/api.js?render=6LfUh9gaAAAAAO7qq-O6XmiOHUTMCxqoRkZQL6vk&ver=3.0
216.58.207.228200 OK 587 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LfUh9gaAAAAAO7qq-O6XmiOHUTMCxqoRkZQL6vk&ver=3.0
IP 216.58.207.228:0
File type ASCII text, with very long lines (884), with no line terminators
Hash a10d862604644bea2fe202c51ea8f485
341574931cd3607ea8c11baf9a51bbd503d814d1
682c4dba49529413dfd2c30340f9c1746062d7211067dc36b7b7b14c24746b95
GET /recaptcha/api.js?render=6LfUh9gaAAAAAO7qq-O6XmiOHUTMCxqoRkZQL6vk&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://superiorairpurification.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Fri, 27 Jan 2023 01:29:56 GMT
date: Fri, 27 Jan 2023 01:29:56 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 587
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
superiorairpurification.com/wp-content/themes/freshair/js/vendor/packery.metafizzy.js?ver=6.0.3
107.180.28.116200 OK 11 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/js/vendor/packery.metafizzy.js?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (32079)
Hash a64fcbd167fb984410c2fd05e89578ff
2ad748122eb75a6eb11e9a4daa5fab4b721298ee
5edae1af3efa5c8737cd4c04cc4d6436149ab4d8b378fdd9ec73daf908e0bc1b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/freshair/js/vendor/packery.metafizzy.js?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "30820ab-95bd-5f18258e188dc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11366
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2ebcc7cd4c50e87a984668828c1e612e
f693d36335f333e3647f9fb2460e34dd73e17421
27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:29:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
superiorairpurification.com/wp-content/themes/freshair/js/vendor/easypiechart.js?ver=6.0.3
107.180.28.116200 OK 4.4 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/js/vendor/easypiechart.js?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash c67e8d2b0e4983917b48765fc3d19aa0
48eebdb6c779bdbff9e5046e41ff9cf7c2245290
0afbb7874fb217ac301deb8f485a38def3814ee94d577f4258014cf745d32b4b
GET /wp-content/themes/freshair/js/vendor/easypiechart.js?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "30820a3-3cf8-5f18258e18cc4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4404
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.starfieldtech.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 40fba95e80eee2627994a8baa55fbd12
e3e1795353473c379a5ba92e909e8572502b4791
ef84961ac5535886bb3401277b80a06df1d47699e71635aaab2f1486a3abf662
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 27 Jan 2023 01:29:55 GMT
Content-Type: application/ocsp-response
Content-Length: 1846
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 26 Jan 2023 19:29:01 GMT
Expires: Fri, 27 Jan 2023 19:29:01 GMT
ETag: "e3e1795353473c379a5ba92e909e8572502b4791"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
superiorairpurification.com/wp-content/themes/freshair/js/vendor/waypoints.js?ver=6.0.3
107.180.28.116200 OK 3.9 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/js/vendor/waypoints.js?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (7828)
Hash ee44da259af807d309714683e7cd2d89
30f826bd94435b0fc7751a8890a679638d35817b
3e04b670871f9ee9ea3313cca839b1baafaa91479dc5c8599833c2d32f20329f
GET /wp-content/themes/freshair/js/vendor/waypoints.js?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "30820ae-2e15-5f18258e1a04c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3935
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/themes/freshair/js/vendor/sharrre.js?ver=6.0.3
107.180.28.116200 OK 5.5 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/js/vendor/sharrre.js?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document, ASCII text, with very long lines (13990)
Hash eada7aa7607b797615108fb37675db5d
f5898551777c9fead8766ff64b990568901f2a40
4ed15bd6240fa76c69fb28780ab8c7d102f3da91ecf4482584c5c1f48cf5210d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/freshair/js/vendor/sharrre.js?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "30820ad-4629-5f18258e1987c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5504
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
fonts.googleapis.com/css?family=Open+Sans:600%7CRoboto:400%7CUbuntu:500
142.250.74.106200 OK 1.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:600%7CRoboto:400%7CUbuntu:500
IP 142.250.74.106:0
Hash ccb667d76ed1e29a7d04501c7e14f2ca
53cb7b7e4eb9c622738b3cfef061d4a8b9c67549
fdb013169d282de37c93d1145df93d6ffc330b0e81671518e82e42e57bf62615
GET /css?family=Open+Sans:600%7CRoboto:400%7CUbuntu:500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://superiorairpurification.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 27 Jan 2023 01:29:56 GMT
date: Fri, 27 Jan 2023 01:29:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
superiorairpurification.com/wp-content/themes/freshair/js/vendor/greensock.js?ver=6.0.3
107.180.28.116200 OK 18 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/js/vendor/greensock.js?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (26623)
Hash ccdb77ebdda5367c8e3248c8caa65403
e14cc31d939bee95313261cb637f9df507c53748
c8a137775e2d5ddfeb79c7e15d703f8f1ac465e210f90a2b2173084c86943268
GET /wp-content/themes/freshair/js/vendor/greensock.js?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "30820a4-cad7-5f18258e19494-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 18417
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.starfieldtech.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 40fba95e80eee2627994a8baa55fbd12
e3e1795353473c379a5ba92e909e8572502b4791
ef84961ac5535886bb3401277b80a06df1d47699e71635aaab2f1486a3abf662
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 27 Jan 2023 01:29:56 GMT
Content-Type: application/ocsp-response
Content-Length: 1846
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 26 Jan 2023 19:29:01 GMT
Expires: Fri, 27 Jan 2023 19:29:01 GMT
ETag: "e3e1795353473c379a5ba92e909e8572502b4791"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
superiorairpurification.com/wp-content/themes/freshair/js/vendor/scrollify.js?ver=6.0.3
107.180.28.116200 OK 3.6 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/js/vendor/scrollify.js?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (6821)
Hash 8abd8ee7ae3dea58558ac774f2d421e8
cfe7a1747ce9e4e52d3439437c3cff839482dc9d
f7ddb91997595acd1f80d2a80fe97fd1bb37f595b862a3fd0e6d36930892fb8a
GET /wp-content/themes/freshair/js/vendor/scrollify.js?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "30820ac-29cf-5f18258e1a434-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3586
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/themes/freshair/js/shortcode/script-shortcodes.js?ver=6.0.3
107.180.28.116200 OK 2.0 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/js/shortcode/script-shortcodes.js?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash f185c2953984a182ef8641d208472c4c
0864adb770eb2695667a194290ceba24af01d547
66bf6e2404031e36065123845bc3a8838114c62033dec33fbbadf271fa2d5d79
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/freshair/js/shortcode/script-shortcodes.js?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "308209e-1eeb-5f18258e1afec-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2017
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 97ccaa279f6ade845b71b57615d40388
5186089108dca0136feab418da66a9e027c7e427
515128c713e98c9a0546c35d9a1e0719057136509b5b2312e4af56a9acc80ec2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:29:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
superiorairpurification.com/wp-content/themes/freshair/js/isMobile.min.js?ver=6.0.3
107.180.28.116200 OK 2.1 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/js/isMobile.min.js?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1743)
Hash c4a8b73071e572ea1590edc0e694bd40
92886cbd197fa28f0d2b0f22d33248d7da8739c1
2bf6c5d268f9b4bf9187a5d377ced513ffd7a1a9bf78b6ff7a0f3ef89370cc72
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/freshair/js/isMobile.min.js?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "308209a-1572-5f18258e159fc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2052
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/themes/freshair/js/wd-carousel.js?ver=6.0.3
107.180.28.116200 OK 3.1 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/js/wd-carousel.js?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 57df167cf3ac1303d3b8e031fcd32487
57372b8f62d8445a500e53f73d809ca84edd11f6
ceb17d0306adbe1ae886438c283a615be37e14df152d39dfc4298baf104f6c89
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/freshair/js/wd-carousel.js?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "30820b0-3e09-5f18258e1cb44-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3098
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2
107.180.28.116200 OK 706 B URL HTTP/1.1 superiorairpurification.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1464)
Hash e26e2ba5d82da6211e981bf0e962fe00
ca7358efdb6852cfb78ec32383eaef15ac6cb61b
400f6ae8a00e7eabb07284d8cd8715579e9a3721fa463e508b5d40b83cde1447
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:09:59 GMT
ETag: "3062e6f-5db-5f1825782c08b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 706
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/themes/freshair/js/scripts.js?ver=6.0.3
107.180.28.116200 OK 5.9 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/js/scripts.js?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1009)
Hash 249764e1c2d1346dcead9cba15ff5419
ac26206b12c28b4f139b0f94cf3be317cc283904
80e054619b512a1e30c2b86831f3142b964d9c4df68a653ab9034c1ca943cfc9
GET /wp-content/themes/freshair/js/scripts.js?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "308209c-6308-5f18258e1cf2c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5919
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/vc_carousel/css/vc_carousel.min.css?ver=6.6.0
107.180.28.116200 OK 1.3 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/vc_carousel/css/vc_carousel.min.css?ver=6.6.0
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (10211), with no line terminators
Hash 42fc780f8db9ec0a6be0c411e43ded57
b6f36a0804c6572456a42ae479fc0b0529e5ee3f
084e66872aa0129fba987e911a96f5c809b23af816ec336655ac58ff82ae76c2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/vc_carousel/css/vc_carousel.min.css?ver=6.6.0 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:25 GMT
ETag: "2f41d36-27e3-5f18259115ee4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1288
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/css/lightbox.min.css?ver=6.6.0
107.180.28.116200 OK 812 B URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/css/lightbox.min.css?ver=6.6.0
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (2137), with no line terminators
Hash d17a11686a6f6c27c05e9137cc912be9
041cc041d1fce96904fcf10269b74e833f23a15f
57e9422099ed475b02d89816ca7c812aaf35664b095136363b025ccd31cb9637
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/css/lightbox.min.css?ver=6.6.0 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:26 GMT
ETag: "2f41b17-859-5f1825917b3fa-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 812
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
superiorairpurification.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2
107.180.28.116200 OK 3.0 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (10565), with no line terminators
Hash 20d191fbcefaf143ff6d9f0234b3afd4
85c302c0f4d2393bd1c3fb724a03741a14860b3a
0398c654fccf925b52ce33037cf350414bc27efc9da7db916ee7dbe646541f7a
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:35 GMT
ETag: "2f623fe-2945-5f18259a522d2-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3040
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.6.0
107.180.28.116200 OK 4.3 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.6.0
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (34217)
Hash ff23202f1227d35b13635501c86b2156
31c5de356f90da7a53468ef8ed0a9237cdaa67ce
c4b5a8cbcaef7b3a6d4d2f1a3d68cfac3a2ccb7fbfcd7ae212bf2c39fc85ed42
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.6.0 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:25 GMT
ETag: "2f41aa9-865f-5f1825912261c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4260
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.6.0
107.180.28.116200 OK 12 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.6.0
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (56243)
Hash 56ff26e4540fe0eb470200be12da9539
e55c1cf13307417eb0721280047dfe0a7e870752
41bd8b382a880ae6ec59d84506d7b5ba03c23eb9dd5b4044eb8f50e182fb39f4
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.6.0 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:25 GMT
ETag: "2f41aa8-dc69-5f1825912261c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12251
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
142.250.74.35200 OK 35 kB URL HTTP/1.1 fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 34852, version 1.0\012- data
Hash 0e8eefb4549a2edf26c560cb9845952e
8d0b1718aacad934fd0043c87cbc54aa091396bf
7f653b3ce9d3277457fc6da4edb246ae2f6c913f088c42dcb8cd2e96267aa21a
GET /s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://superiorairpurification.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 34852
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 25 Jan 2023 03:39:06 GMT
Expires: Thu, 25 Jan 2024 03:39:06 GMT
Cache-Control: public, max-age=31536000
Age: 165050
Last-Modified: Wed, 27 Apr 2022 16:31:23 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
142.250.74.35200 OK 17 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://superiorairpurification.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 16740
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 23 Jan 2023 13:28:32 GMT
Expires: Tue, 23 Jan 2024 13:28:32 GMT
Cache-Control: public, max-age=31536000
Age: 302484
Last-Modified: Mon, 15 Aug 2022 18:14:44 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
142.250.74.35200 OK 45 kB URL HTTP/1.1 fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 45300, version 1.0\012- data
Hash 5fe660c3a23b871807b0e1d3ee973d23
62a9dd423b30b6ee3ab3dd40d573545d579af10a
e13ffa988be59cbf299d7ff68f019f902b60848203ac4990819eb7e4624ee52d
GET /s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://superiorairpurification.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 45300
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 20 Jan 2023 02:05:48 GMT
Expires: Sat, 20 Jan 2024 02:05:48 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 27 Apr 2022 16:11:08 GMT
Content-Type: font/woff2
Age: 602648
superiorairpurification.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2
107.180.28.116200 OK 4.1 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document, ASCII text, with very long lines (12652), with no line terminators
Hash 5a8a35c9ae8f9e0fc3dbf35fba73b13a
10d0f2fde01006234322517ef3b4d4b9b6d230bd
913435232b007746db89fde662ff6a8e4bb8c7eea164a785b321fccf39a3e1fe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:35 GMT
ETag: "2f417d8-316c-5f18259a5c2fa-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4084
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
107.180.28.116200 OK 982 B URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1668)
Hash e66463f2023b738680c9bdefece69a37
315dc8e6ebdfb18c662851244ee33e2758ad3c83
fd83e7fc6d81aa6f6680ea640e9c086aa1950a17757a582aa74ea9797a70f346
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:32 GMT
ETag: "3080cb3-72a-5f182597d3fef-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 982
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
107.180.28.116200 OK 794 B URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (2139), with no line terminators
Hash 29307e8dec33cf3411ca4e1f2c84e9d0
484402289464d7ffb1475827f3438329d520bfc6
a2db59efaa416ef0c9d5d58f142cd5e44c475348cff20a664586fd3cda1b5f5b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:33 GMT
ETag: "3080c90-85b-5f182597e12df-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 794
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
107.180.28.116200 OK 1.0 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (2938), with no line terminators
Hash 45db3d2887c26700a51bf469e3bb3aa1
d070b5fb53d2fbb66964bbfd482270b855d0ee96
1abc0cff49f82d9a063c04cd086b991af6ad00467efc4cb8d8d4e3c9a0f95777
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:33 GMT
ETag: "3080c7c-b7a-5f182597e2e37-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1039
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.6.0
107.180.28.116200 OK 11 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.6.0
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (32004)
Hash cbaae9fff6b697dc5b6ec59ffaf10cf0
70f10ee85648a607e1104da4976c145cd3589c27
311a7e7b6049574312d6df6e0349a281cd7e4c80e47d903e45fe873fa56f6950
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.6.0 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:26 GMT
ETag: "2f41ac2-9a2d-5f18259183cb2-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11338
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/js/lightbox.min.js?ver=6.6.0
107.180.28.116200 OK 4.3 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/js/lightbox.min.js?ver=6.6.0
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (9194)
Hash 303b6afe5776f382f5932ae1b8837718
ad514992fd97dc76be115cf25dfe3284979b646d
4b5f33deb86abb1b48259894016995d9da92768373ad62673443332cd8bece8c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/js/lightbox.min.js?ver=6.6.0 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:26 GMT
ETag: "2f41b1d-348a-5f1825917bbca-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4315
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d9bf2793558044193d7e5d27708a9144
5a8f73462cfda6544cc3efe488854c3cd80bb0a7
e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:29:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCjC3jsGyN.woff2
142.250.74.35200 OK 30 kB URL HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCjC3jsGyN.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 30480, version 1.0\012- data
Hash 0e7e5f9d3a8ef121149827180b790b5c
0e9f9333078e5df9245630ff6f68ba1d9da3c403
e8e147e15907f25cad69b2bcf060213efad4ed04e0d36374715cbca17b2afc1c
GET /s/ubuntu/v20/4iCv6KVjbNBYlgoCjC3jsGyN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://superiorairpurification.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30480
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 10:05:59 GMT
expires: Fri, 26 Jan 2024 10:05:59 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:04:03 GMT
content-type: font/woff2
age: 55437
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
superiorairpurification.com/wp-includes/js/comment-reply.min.js?ver=6.0.3
107.180.28.116200 OK 1.4 kB URL HTTP/1.1 superiorairpurification.com/wp-includes/js/comment-reply.min.js?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (2946)
Hash 28214bc78b9edfcfbc9c7b651fb4f56c
fb0847abdb33dd943a2dcda4c4b905fb5cdd116c
11691bc1acc1f3a7ab8ef7c67fb720ca58fb72e52f510009f7b0cbc2589d45e0
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/comment-reply.min.js?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:00 GMT
ETag: "3062dc9-ba5-5f182578b2111-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1351
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/themes/freshair/js/load-more.js?ver=1.0
107.180.28.116200 OK 1.4 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/js/load-more.js?ver=1.0
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash c8e646d034449a2517e28ff0afa61abb
351fdc4e9967524d1c72d22f471a511f773c2b3e
f0dacb895baf6ca61dce9caa0220531b3e4f194c2dadb72fb5d16344487a8bc4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/freshair/js/load-more.js?ver=1.0 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "308209b-ea2-5f18258e1ac04-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1364
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
107.180.28.116200 OK 2.5 kB URL HTTP/1.1 superiorairpurification.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (6475), with no line terminators
Hash 27cbbd0a9d7c5ad9402118c4afc36035
7659d08a005f5ecfa6c779e3cda45c30007fd059
ebc771d0af626966e38535357861fab0090e0bd7ff346cbe3c7ffdde1683809f
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:00 GMT
ETag: "3062e53-194b-5f182578d5390-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2457
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d9bf2793558044193d7e5d27708a9144
5a8f73462cfda6544cc3efe488854c3cd80bb0a7
e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:29:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
superiorairpurification.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
107.180.28.116200 OK 6.5 kB URL HTTP/1.1 superiorairpurification.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash 287748e15cc4a588d0df39da369d9035
b02e10a775f9d6ab54d448acffbc9253e2d9bfb9
742f6e950eecbeaf0c308f5d3877e48d6d57d48b7f8bd458d81875feb4b58654
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:00 GMT
ETag: "3062e55-459f-5f182578d5390-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6532
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.2
107.180.28.116200 OK 507 B URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.2
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (999), with no line terminators
Hash 22f32f77e17fa7640cda0a401c2b0844
019765feeed7ea2a9e9e506ce000978ea3ecd171
269c0f075ceb9464731b25afc21ae41536b76ef76bf0cf856c42e3e6311ec6ce
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.2 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:35 GMT
ETag: "2f41817-3e7-5f18259a68261-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 507
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0
107.180.28.116200 OK 7.2 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (20418)
Hash a584313b3d619d5cb550b466c09850a5
60a4a4e94d01089cd476be8aeeec7e0addca0898
d0657b5cf05aadcef7b58dc604d075659af5cc9af66fbdd493c5f195222ee3fd
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:27 GMT
ETag: "2f418d8-5f40-5f18259254c6d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7152
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
142.250.74.35200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 45300, version 1.0\012- data
Hash 5fe660c3a23b871807b0e1d3ee973d23
62a9dd423b30b6ee3ab3dd40d573545d579af10a
e13ffa988be59cbf299d7ff68f019f902b60848203ac4990819eb7e4624ee52d
GET /s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://superiorairpurification.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 45300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 19:35:10 GMT
expires: Thu, 25 Jan 2024 19:35:10 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:11:08 GMT
content-type: font/woff2
age: 107686
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/vc_carousel/js/transition.min.js?ver=6.6.0
107.180.28.116200 OK 1.8 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/vc_carousel/js/transition.min.js?ver=6.6.0
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (619)
Hash d6ad92a572114da06053b2d94820be4d
8cd53b2642dc20616d58f740574afe274a181b41
4c564ca3d522e2a58606b49b2f4c892ab2375a61b2d42b75953313f13e5fe8ee
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/vc_carousel/js/transition.min.js?ver=6.6.0 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:25 GMT
ETag: "2f41d3d-11e9-5f182591162cc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1784
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/vc_carousel/js/vc_carousel.min.js?ver=6.6.0
107.180.28.116200 OK 4.2 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/vc_carousel/js/vc_carousel.min.js?ver=6.6.0
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (9690)
Hash dc80a5f24a0f9ae26912249cc8b0e6fd
fe30adc3ef490d0d7a7ff2213c92aa9970dc87fc
bb8a44c04b82cbb316342d53225ad267e99f653b0d62629aafa0b5c407c38307
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/vc_carousel/js/vc_carousel.min.js?ver=6.6.0 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:25 GMT
ETag: "2f41d3e-3558-5f182591166b4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4222
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorgeneralcontracting.com/wp-content/uploads/2020/09/download-4.png
192.124.249.155200 OK 13 kB URL HTTP/2 superiorgeneralcontracting.com/wp-content/uploads/2020/09/download-4.png
IP 192.124.249.155:0
File type PNG image data, 186 x 101, 8-bit/color RGBA, non-interlaced\012- data
Hash b28afa7d81fa0b7a68e9eab0863ad74b
179992925da2499f8a66566aad6d7d1a67600364
012501774ecadf26b051a6567c85afada57df5fbd9c81db9cf5b3250bd9997ba
GET /wp-content/uploads/2020/09/download-4.png HTTP/1.1
Host: superiorgeneralcontracting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://superiorairpurification.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 01:29:56 GMT
content-type: image/png
content-length: 13282
x-sucuri-id: 19005
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 16 Sep 2020 07:01:52 GMT
etag: "2f40793-33e2-5af68d7982661"
accept-ranges: bytes
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
superiorairpurification.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
107.180.28.116200 OK 5.0 kB URL HTTP/1.1 superiorairpurification.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:00 GMT
ETag: "3062fab-48b9-5f182578af231-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5009
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
superiorgeneralcontracting.com/wp-content/uploads/2020/09/download-6.png
192.124.249.155200 OK 14 kB URL HTTP/2 superiorgeneralcontracting.com/wp-content/uploads/2020/09/download-6.png
IP 192.124.249.155:0
File type PNG image data, 177 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 520e8ec380e71ba3a438c17e11e3f51d
50e0ff2b687c88769a0b3230e530714d69437f0e
f5a66eae21754c7ff706f81029c0d8c99eb29a4c03ec2c621f72c8d5c7baa3ec
GET /wp-content/uploads/2020/09/download-6.png HTTP/1.1
Host: superiorgeneralcontracting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://superiorairpurification.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 01:29:56 GMT
content-type: image/png
content-length: 13921
x-sucuri-id: 19005
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 16 Sep 2020 07:01:59 GMT
etag: "2f40798-3661-5af68d805e844"
accept-ranges: bytes
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
superiorgeneralcontracting.com/wp-content/uploads/2020/09/download-8.png
192.124.249.155200 OK 17 kB URL HTTP/2 superiorgeneralcontracting.com/wp-content/uploads/2020/09/download-8.png
IP 192.124.249.155:0
File type PNG image data, 191 x 99, 8-bit/color RGBA, non-interlaced\012- data
Hash bd7067fc361162016458b8e3b7dcebe8
221d8215a9e5bc360ef64033109a9c3ce1097510
ddf1b82d0b2e0409b52dc2472c3e87e28ed3adc24c417920cba60486038066d0
GET /wp-content/uploads/2020/09/download-8.png HTTP/1.1
Host: superiorgeneralcontracting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://superiorairpurification.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 01:29:56 GMT
content-type: image/png
content-length: 16821
x-sucuri-id: 19005
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 16 Sep 2020 07:02:04 GMT
etag: "2f4079e-41b5-5af68d84e631b"
accept-ranges: bytes
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
superiorgeneralcontracting.com/wp-content/uploads/2020/09/download-7.png
192.124.249.155200 OK 11 kB URL HTTP/2 superiorgeneralcontracting.com/wp-content/uploads/2020/09/download-7.png
IP 192.124.249.155:0
File type PNG image data, 192 x 101, 8-bit/color RGBA, non-interlaced\012- data
Hash 137d8151b61945e760494c40278fef5c
f1103f992a1d8d41541cf348a14c02eb4ee9ed12
d2d4022c373c614dcaa0de6254c06e09161fb9f5d3fac9e0fdc55d225aee1f18
GET /wp-content/uploads/2020/09/download-7.png HTTP/1.1
Host: superiorgeneralcontracting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://superiorairpurification.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 01:29:56 GMT
content-type: image/png
content-length: 11275
x-sucuri-id: 19005
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 16 Sep 2020 07:02:01 GMT
etag: "2f4079b-2c0b-5af68d8257e45"
accept-ranges: bytes
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
superiorgeneralcontracting.com/wp-content/uploads/2020/09/download-5.png
192.124.249.155200 OK 7.6 kB URL HTTP/2 superiorgeneralcontracting.com/wp-content/uploads/2020/09/download-5.png
IP 192.124.249.155:0
File type PNG image data, 145 x 85, 8-bit/color RGBA, non-interlaced\012- data
Hash f25ad6043d592b0ee8616646208d2d01
a4324ef438fbd476716dae5d4d9a1dfd22e59506
f50c2b8c2046e151f22ecdba48c0eaabe5c6f8d958efda52475f85660bd13c80
GET /wp-content/uploads/2020/09/download-5.png HTTP/1.1
Host: superiorgeneralcontracting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://superiorairpurification.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 01:29:56 GMT
content-type: image/png
content-length: 7554
x-sucuri-id: 19005
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 16 Sep 2020 07:01:55 GMT
etag: "2f40796-1d82-5af68d7c6c412"
accept-ranges: bytes
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
superiorgeneralcontracting.com/wp-content/uploads/2020/09/download-3.png
192.124.249.155200 OK 10 kB URL HTTP/2 superiorgeneralcontracting.com/wp-content/uploads/2020/09/download-3.png
IP 192.124.249.155:0
File type PNG image data, 148 x 85, 8-bit/color RGBA, non-interlaced\012- data
Hash 04f9dd2c39d3272b9bf65901f59abb61
de4c9dae3441fdfc8c2fec17ec845ed84e3e99ac
477483e32f80627208bc19d3f68bc0ea47d70d2225d35f09b493d5d9c178256a
GET /wp-content/uploads/2020/09/download-3.png HTTP/1.1
Host: superiorgeneralcontracting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://superiorairpurification.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 01:29:56 GMT
content-type: image/png
content-length: 10273
x-sucuri-id: 19005
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 16 Sep 2020 07:01:49 GMT
etag: "2f40791-2821-5af68d7706684"
accept-ranges: bytes
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-solid-900.woff2
107.180.28.116200 OK 76 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-solid-900.woff2
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Web Open Font Format (Version 2), TrueType, length 75760, version 330.32636\012- data
Hash 832f6e62aaf3909d6b94c8a9c1e4dd51
4a06418cb56a66af5a1c0f59791469dea1dc87fa
8556fd48cf33ca3028e3fff4042979f224987ee317cc9032dd5bba996b363009
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.6.0
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:25 GMT
ETag: "2f41abd-127f0-5f18259124944"
Accept-Ranges: bytes
Content-Length: 75760
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: font/woff2
superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-regular-400.woff2
107.180.28.116200 OK 14 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-regular-400.woff2
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Web Open Font Format (Version 2), TrueType, length 13564, version 330.32636\012- data
Hash e7d4bfa72a1f7d352fa6605501a3e2f2
afd94b571eff9da7d85490bdb4c9874419cd260d
d144631af733437b73fba8e784ab694a97fab80476e82325f7a58f6408b28850
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.6.0
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:26 GMT
ETag: "2f41ab8-34fc-5f1825913107b"
Accept-Ranges: bytes
Content-Length: 13564
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: font/woff2
superiorairpurification.com/wp-content/uploads/2015/08/allergies2jpeg.jpeg
107.180.28.116200 OK 29 kB URL HTTP/1.1 superiorairpurification.com/wp-content/uploads/2015/08/allergies2jpeg.jpeg
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x334, components 3\012- data
Hash 8deedb47dc6bc458fb0e1bf3f8936c70
d0783f7b4200c2a27cb3f749355f64ed0f332b3d
e2227afabaa725436a924d83e721320c01750916931bd0e92bf43b2da24b2c17
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2015/08/allergies2jpeg.jpeg HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:09 GMT
ETag: "30824e9-72e3-5f182581db44f"
Accept-Ranges: bytes
Content-Length: 29411
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
superiorairpurification.com/wp-content/themes/freshair/fonts/fontawesome-webfont.woff2?v=4.5.0
107.180.28.116200 OK 67 kB URL HTTP/1.1 superiorairpurification.com/wp-content/themes/freshair/fonts/fontawesome-webfont.woff2?v=4.5.0
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Web Open Font Format (Version 2), TrueType, length 66624, version 4.262\012- data
Hash db812d8a70a4e88e888744c1c9a27e89
638c652d623280a58144f93e7b552c66d1667a11
ff82aeed6b9bb6701696c84d1b223d2e682eb78c89117a438ce6cfea8c498995
GET /wp-content/themes/freshair/fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://superiorairpurification.com/wp-content/themes/freshair/css/font-awesome.min.css?ver=6.0.3
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:22 GMT
ETag: "308201a-10440-5f18258d90917"
Accept-Ranges: bytes
Content-Length: 66624
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: font/woff2
superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-brands-400.woff2
107.180.28.116200 OK 75 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-brands-400.woff2
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Web Open Font Format (Version 2), TrueType, length 75368, version 330.32636\012- data
Hash 859c4002d9954718cac1ddea5555698f
2392ce297c92bcf2c7d5a4c461a582dadc8039c8
5054ab369966fea3657ac6af00c3bc47bdc9e7b5114e61d1764be06213ca9781
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.6.0
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:25 GMT
ETag: "2f41ab3-12668-5f18259124174"
Accept-Ranges: bytes
Content-Length: 75368
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: font/woff2
superiorairpurification.com/wp-content/uploads/2015/08/VOCs2-e1619674960952.jpeg
107.180.28.116200 OK 12 kB URL HTTP/1.1 superiorairpurification.com/wp-content/uploads/2015/08/VOCs2-e1619674960952.jpeg
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 424x360, components 3\012- data
Hash cf97d2315be40af2a7ec97c5749bfff0
1c57ee363f536cd0ddf10b784500d1dbed5b8a5c
4d74db097eff6777e638fecbffb4dfe1a1745cde1f4d046de2d66ff6a737d500
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2015/08/VOCs2-e1619674960952.jpeg HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:10 GMT
ETag: "308294b-2d74-5f182582bba22"
Accept-Ranges: bytes
Content-Length: 11636
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
superiorairpurification.com/wp-content/uploads/2015/08/virus1-e1619674893306.jpeg
107.180.28.116200 OK 88 kB URL HTTP/1.1 superiorairpurification.com/wp-content/uploads/2015/08/virus1-e1619674893306.jpeg
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 614x544, components 3\012- data
Hash fff39b6432620628eea6cec6ea4a3c14
bae3cf3f47b6c9e124095a670b0f2c5becbbed75
453c9ba58c7151b411556cb233bd5a6d341200a4b1a9f2f4384a7b33dde9c6d6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2015/08/virus1-e1619674893306.jpeg HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:08 GMT
ETag: "3082925-15610-5f18258032390"
Accept-Ranges: bytes
Content-Length: 87568
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
fonts.googleapis.com/css?family=PT+Sans%3Aregular%2Citalic%2C700%2C700italic&subset=latin&ver=6.6.0
142.250.74.106200 OK 189 kB URL HTTP/2 fonts.googleapis.com/css?family=PT+Sans%3Aregular%2Citalic%2C700%2C700italic&subset=latin&ver=6.6.0
IP 142.250.74.106:0
Size 189 kB (189088 bytes)
Hash 181c38ab90008d9c88094fc50ee42ba4
b678dcc5ef63f19b2611ac6dd1a25a3ceaad18a3
7b6aa6143b673c0afc9905b7cc586cebcbe1a142d770f5599f23983713b20f1b
GET /css?family=PT+Sans%3Aregular%2Citalic%2C700%2C700italic&subset=latin&ver=6.6.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://superiorairpurification.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 27 Jan 2023 01:29:56 GMT
date: Fri, 27 Jan 2023 01:29:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.gstatic.com/maps-api-v3/embed/js/51/7/init_embed.js
142.250.74.3200 OK 69 kB URL HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/51/7/init_embed.js
IP 142.250.74.3:0
File type ASCII text, with very long lines (2599)
Hash fd4867728783671f13b38d1f073e7be9
ff5ba304ce5b2838e4b49b6cff833dede37e1098
52a398663110b5dc50e72094c287b049ec5ed33a2b639418e4e1a9c3d313b82c
GET /maps-api-v3/embed/js/51/7/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 69373
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 18:33:46 GMT
expires: Thu, 25 Jan 2024 18:33:46 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 23 Jan 2023 21:48:16 GMT
content-type: text/javascript
age: 111370
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
superiorairpurification.com/wp-content/uploads/2015/08/odors1.jpeg
107.180.28.116200 OK 34 kB URL HTTP/1.1 superiorairpurification.com/wp-content/uploads/2015/08/odors1.jpeg
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 25x25, segment length 16, baseline, precision 8, 640x420, components 3\012- data
Hash 376e1d853318b7f42e2376a82c369a21
72132bf5e7f6c7c2c93495edf1a34e864f0946d2
f87da7dd1d9912026e5546394012fc7e0e2275c218ff1b50a94317d28015dfbe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2015/08/odors1.jpeg HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:09 GMT
ETag: "3082752-8575-5f182581557b2"
Accept-Ranges: bytes
Content-Length: 34165
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
superiorairpurification.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.1.0
107.180.28.116200 OK 1.2 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.1.0
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (7043), with no line terminators
Hash 7a01d757cd8aced5af866e83a6d0ce76
f352b0e25c2a3ca7af84f93c9bc1fd700db3586f
da5327f259e09fafac875160fbcd3fe934f48359e751e42b802f5577310b014c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.1.0 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:32 GMT
ETag: "3080be9-1b83-5f182597c6530-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1177
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
superiorairpurification.com/wp-content/uploads/2021/12/1-PoseRegular-1-85x300.gif
107.180.28.116200 OK 7.5 kB URL HTTP/1.1 superiorairpurification.com/wp-content/uploads/2021/12/1-PoseRegular-1-85x300.gif
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type GIF image data, version 89a, 85 x 300\012- data
Hash 3c6eb8ce972fc309adb06c6150f8ed18
976fe68a293510193485dec39edf296da309e7d2
785b174bc54b0e04df5623b85a9cb94bf9aaed09d5e5efbe176483fcd8a0ed5d
GET /wp-content/uploads/2021/12/1-PoseRegular-1-85x300.gif HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:02 GMT
ETag: "3082f55-1d77-5f18257a65daf"
Accept-Ranges: bytes
Content-Length: 7543
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/gif
superiorairpurification.com/wp-content/uploads/2015/08/superior-air-transparent-logo-e1618811113546.png
107.180.28.116200 OK 7.8 kB URL HTTP/1.1 superiorairpurification.com/wp-content/uploads/2015/08/superior-air-transparent-logo-e1618811113546.png
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 151 x 55, 8-bit/color RGBA, non-interlaced\012- data
Hash f611405b13b75c25a26640870efd3f4a
26db4859e51221136d140c7bb5ab82e5ca80928a
fd5c8b8f7b6709efc9628b5fcd131ada927e0acd57f8df8714154155e306166f
GET /wp-content/uploads/2015/08/superior-air-transparent-logo-e1618811113546.png HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:57 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:10 GMT
ETag: "3082870-1e6b-5f18258240d4d"
Accept-Ranges: bytes
Content-Length: 7787
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
superiorairpurification.com/wp-content/uploads/2015/08/dust1.jpeg
107.180.28.116200 OK 118 kB URL HTTP/1.1 superiorairpurification.com/wp-content/uploads/2015/08/dust1.jpeg
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 500x334, components 3\012- data
Size 118 kB (117966 bytes)
Hash f7c8881f17e9c062b434e189e5ea51aa
7e442c0abab9cf9bb54be9c5636e595779358418
5e1302e72660504449ddb529ab186b7c13dcefae6dd2f5493cdd4b81ca29b576
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2015/08/dust1.jpeg HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:56 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:09 GMT
ETag: "30825cb-1ccce-5f1825813dcca"
Accept-Ranges: bytes
Content-Length: 117966
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
superiorairpurification.com/wp-content/uploads/2015/08/paige-cody-bOVZ_f3fbQM-unsplash-1-scaled.jpg
107.180.28.116200 OK 315 kB URL HTTP/1.1 superiorairpurification.com/wp-content/uploads/2015/08/paige-cody-bOVZ_f3fbQM-unsplash-1-scaled.jpg
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 2560x1709, components 3\012- data
Size 315 kB (314832 bytes)
Hash 0d2402d21db175a254b08b521b2f0ec8
3f2666e8897839dc9fa6357081b647a737c347b5
2ac7597b0e2b8f2c6c4c28621331f7f525e2b29ae7b6811bb4a04f8d68f2ee5b
GET /wp-content/uploads/2015/08/paige-cody-bOVZ_f3fbQM-unsplash-1-scaled.jpg HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:57 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:09 GMT
ETag: "3082792-4cdd0-5f1825817bcf9"
Accept-Ranges: bytes
Content-Length: 314832
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2
142.250.74.35200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2
IP 142.250.74.35:0
File type PNG image data, 256 x 256, 8-bit colormap, non-interlaced\012- data
Hash 95ef15075bc3f3dbc0bcc392732b4ffc
eac32556e4d8aa4daad2815a117cae91002f194a
3c2758727f43b7df336d5d9fd20583376a3afaa9dbcb3e83ac0f9d4ab9d5d200
GET /s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://superiorairpurification.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47048
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 10:05:58 GMT
expires: Fri, 26 Jan 2024 10:05:58 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:55:54 GMT
content-type: font/woff2
age: 55438
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
superiorairpurification.com/wp-content/uploads/2015/08/toa-heftiba-bcLE7reXFLM-unsplash-scaled.jpg
107.180.28.116200 OK 430 kB URL HTTP/1.1 superiorairpurification.com/wp-content/uploads/2015/08/toa-heftiba-bcLE7reXFLM-unsplash-scaled.jpg
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 2560x1707, components 3\012- data
Size 430 kB (429551 bytes)
Hash 3a066c90b00461fcb653f207e4df411f
6eb148df2d758849a169ac17a2e897b8d847db90
8ca68c7f19867830fdd0c419a013701ce56ba76f9710f4370bcfc5e411fbbf28
GET /wp-content/uploads/2015/08/toa-heftiba-bcLE7reXFLM-unsplash-scaled.jpg HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:57 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:11 GMT
ETag: "30828f3-68def-5f1825832cea0"
Accept-Ranges: bytes
Content-Length: 429551
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
superiorairpurification.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
107.180.28.116200 OK 7.5 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Hash 04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://superiorairpurification.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.4
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:58 GMT
Server: Apache
Last-Modified: Fri, 16 Apr 2021 17:01:20 GMT
ETag: "3080ac8-1d70-5c019edce7800"
Accept-Ranges: bytes
Content-Length: 7536
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: font/woff
superiorairpurification.com/wp-content/uploads/2015/08/chewy-3cAMUE3YAO8-unsplash.jpg
107.180.28.116200 OK 4.4 MB URL HTTP/1.1 superiorairpurification.com/wp-content/uploads/2015/08/chewy-3cAMUE3YAO8-unsplash.jpg
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 8256x5504, components 3\012- data
Size 4.4 MB (4355453 bytes)
Hash 469e92ec338454cf11b90b8acd01011e
d2200fa2d07795c00f95bd8c736fe4c82299c25d
a346d31cb32a1e75380baa02cafbf811e806d74ad7e95f9f01fae4d921441f66
GET /wp-content/uploads/2015/08/chewy-3cAMUE3YAO8-unsplash.jpg HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:57 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:09 GMT
ETag: "3082546-42757d-5f18258166539"
Accept-Ranges: bytes
Content-Length: 4355453
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/images/prev.png
107.180.28.116200 OK 1.4 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/images/prev.png
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 50 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash 84b76dee6b27b795e89e3649078a11c2
6640a3432f7ba7aea6129cdf7a5d3eabd47c295c
7fd9273f20fdb1229c224341271a119020a5eee74ccf6b4605730917c864caf2
GET /wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/images/prev.png HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/css/lightbox.min.css?ver=6.6.0
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:58 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:26 GMT
ETag: "2f41b1b-550-5f1825917ac2a"
Accept-Ranges: bytes
Content-Length: 1360
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/images/next.png
107.180.28.116200 OK 1.4 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/images/next.png
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 50 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash 31f15875975aab69085470aabbfec802
777e92c050f600b4519299c3d786b8f2f459fea4
15b869b02c6fbaa8c6c26445a2dd2d9bad80fd27b1409f8179e5dd89dc89d90a
GET /wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/images/next.png HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/css/lightbox.min.css?ver=6.6.0
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:58 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:26 GMT
ETag: "2f41b1a-546-5f1825917b012"
Accept-Ranges: bytes
Content-Length: 1350
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/images/loading.gif
107.180.28.116200 OK 8.5 kB URL HTTP/1.1 superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/images/loading.gif
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type GIF image data, version 89a, 32 x 32\012- data
Hash 2299ad0b3f63413f026dfec20c205b8f
cf720b50cf8dde0e1a84ce1c6a77788bfc5882d5
225aa88b6ab02c06222ec9468d62e15fa188e39cdb9431d1f55401ad380753ed
GET /wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/images/loading.gif HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/css/lightbox.min.css?ver=6.6.0
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:58 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:26 GMT
ETag: "2f41b19-211c-5f1825917b012"
Accept-Ranges: bytes
Content-Length: 8476
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/gif
superiorairpurification.com/wp-content/uploads/2015/08/hillshire-farm-mS7E0sjUgwc-unsplash-1.jpg
107.180.28.116200 OK 5.1 MB URL HTTP/1.1 superiorairpurification.com/wp-content/uploads/2015/08/hillshire-farm-mS7E0sjUgwc-unsplash-1.jpg
IP 107.180.28.116:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 7914x5276, components 3\012- data
Size 5.1 MB (5054047 bytes)
Hash 1e94dd12bad4f54485fac66175e8ffe8
bbee1bbf77d1838cb197934d0a01a0a2dd71936a
792b6340a3ec74802890e9d2ab37fa9e7f70f3a9113128d06afbade7a1560bd8
GET /wp-content/uploads/2015/08/hillshire-farm-mS7E0sjUgwc-unsplash-1.jpg HTTP/1.1
Host: superiorairpurification.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:29:57 GMT
Server: Apache
Last-Modified: Thu, 05 Jan 2023 11:10:11 GMT
ETag: "3082642-4d1e5f-5f182582f0db1"
Accept-Ranges: bytes
Content-Length: 5054047
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
142.250.74.42403 Forbidden 132 B URL HTTP/1.1 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 142.250.74.42:0
File type JSON data\012- , ASCII text
Hash 3c954b0fdf7d56714cf712d02e0bf056
5c5acb630475cc6198b7191ba1adf49d72dd82f9
effda9280db937a1b47807f746c2797cdd1d44ffc3af3e1eee40306d7a9fe632
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://superiorairpurification.com
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 403 Forbidden
Vary: Origin, X-Origin, Referer
Content-Type: application/json; charset=UTF-8
Content-Encoding: gzip
Date: Fri, 27 Jan 2023 01:29:58 GMT
Server: scaffolding on HTTPServer2
Cache-Control: private
Content-Length: 132
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Access-Control-Allow-Origin: http://superiorairpurification.com
Access-Control-Expose-Headers: vary,vary,vary,content-encoding,date,server,content-length
maps.googleapis.com/maps-api-v3/api/js/51/7/common.js
142.250.74.42200 OK 77 kB URL HTTP/1.1 maps.googleapis.com/maps-api-v3/api/js/51/7/common.js
IP 142.250.74.42:0
File type ASCII text, with very long lines (581)
Hash 265f9d34ee53ba0ff9d3d4f840fb9cdd
b5d0e39bbd1bea34436bd30c70d6f98e799bb127
481e734bc95395f3d3efa1fc859ac7d45b9b65daa1a12976956cd39f641e06e5
GET /maps-api-v3/api/js/51/7/common.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding, Origin
Content-Encoding: gzip
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="maps-api-js"
Report-To: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
Content-Length: 77391
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 25 Jan 2023 18:34:29 GMT
Expires: Thu, 25 Jan 2024 18:34:29 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 23 Jan 2023 21:48:53 GMT
Content-Type: text/javascript
Age: 111332
maps.googleapis.com/maps-api-v3/api/js/51/7/util.js
142.250.74.42200 OK 60 kB URL HTTP/1.1 maps.googleapis.com/maps-api-v3/api/js/51/7/util.js
IP 142.250.74.42:0
File type ASCII text, with very long lines (590)
Hash 388753e4fa82398ac66f250aabf07b0c
ec9e6925b324940ca0faeef778416bc75c5befcb
cb30d9998dd3cfa2632a476c0e0133ad23a48ccd58b1b9d28b4039c971125485
GET /maps-api-v3/api/js/51/7/util.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://superiorairpurification.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding, Origin
Content-Encoding: gzip
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="maps-api-js"
Report-To: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
Content-Length: 59491
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 25 Jan 2023 18:34:29 GMT
Expires: Thu, 25 Jan 2024 18:34:29 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 23 Jan 2023 21:48:53 GMT
Content-Type: text/javascript
Age: 111332
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53bbd20e-50aa-4ce8-8565-a97b3c8ee694.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53bbd20e-50aa-4ce8-8565-a97b3c8ee694.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02c8d9f27e0d17c38a55da6699dfb96e
6804d00e292afc0b7aadb08b11e7650488dacaa2
1ce3b93f1348649ddca495022525daf6d760823edd67bb9e506c7ee031a849b1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53bbd20e-50aa-4ce8-8565-a97b3c8ee694.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7973
x-amzn-requestid: acaa2abf-9789-4953-b3ab-98064a9a0137
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fXrXvHvBIAMFkQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2f297-2dc2c04e2a491b3f7f5e8370;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 21:37:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Dw4ycOqAZkaeJgMvGEOlqphQjDZVO5umrvlSh_Gnx9i_6saWVl8dLw==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:47:56 GMT
age: 13325
etag: "6804d00e292afc0b7aadb08b11e7650488dacaa2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Abril+Fatface%3Aregular&subset=latin&ver=6.6.0
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Abril+Fatface%3Aregular&subset=latin&ver=6.6.0
IP 142.250.74.106:0
GET /css?family=Abril+Fatface%3Aregular&subset=latin&ver=6.6.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://superiorairpurification.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 27 Jan 2023 01:29:56 GMT
date: Fri, 27 Jan 2023 01:29:56 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2