r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c83d39f350161ed2f5d20dcd68e47c92
2695a888e652cb314f8094cc6073c3364336d272
62e5cc6aea61c3c32acd964d4bbe143806416008181eebc4451a8f035b69a0bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62E5CC6AEA61C3C32ACD964D4BBE143806416008181EEBC4451A8F035B69A0BC"
Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13538
Expires: Wed, 29 Mar 2023 21:05:43 GMT
Date: Wed, 29 Mar 2023 17:20:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5ad3eec59bebbf969f175627757507c1
b176af3a70db378c9e1f219bab24d9d446070d6f
704fa284035b4c9aa487331b516f5f11c324e204756ae2503bad2606ed34f25e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "704FA284035B4C9AA487331B516F5F11C324E204756AE2503BAD2606ED34F25E"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7931
Expires: Wed, 29 Mar 2023 19:32:16 GMT
Date: Wed, 29 Mar 2023 17:20:05 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4ad6984a756720fbfff47b37a75513a2
355e35258114452af8b9638985ed9d8ef3bf0aca
43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Retry-After, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 29 Mar 2023 17:15:58 GMT
content-type: application/json
age: 247
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: RgoS/U+xnofl99lrpEjEe+EwU3y63INPMqBtMSdzyT3/rFZbecNFhK2zuoOhEs4RQf0LPPhafsg=
x-amz-request-id: 848XFPTZPYM46NS8
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 29 Mar 2023 17:02:35 GMT
age: 1050
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 93f633ce30c038eb581544323c5a971e
2f60526cb750c6babccc207f75fb5a8ae6f7598b
0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8"
Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5196
Expires: Wed, 29 Mar 2023 18:46:41 GMT
Date: Wed, 29 Mar 2023 17:20:05 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 17:20:05 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a740252e7b24892a3e34f6dfed6e3bde
d44d21abb95edd1ccc775632254f11ee94fb585e
e289995a2b4b340364dd7dfa32c79c7722ece6cc4b893b38fc68bbce680d2f94
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E289995A2B4B340364DD7DFA32C79C7722ECE6CC4B893B38FC68BBCE680D2F94"
Last-Modified: Mon, 27 Mar 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14716
Expires: Wed, 29 Mar 2023 21:25:21 GMT
Date: Wed, 29 Mar 2023 17:20:05 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, ETag, Alert, Last-Modified, Retry-After, Content-Length, Pragma, Backoff, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 29 Mar 2023 17:14:36 GMT
age: 329
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
209.135.157.148200 OK 33 kB URL HTTP/1.1 thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
IP 209.135.157.148:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (47490)
Hash 0295465a4b592718a8a8912618cc9e34
bcaebde2c7f0089c4ce137abd1a9d5b943f1a0b4
a64010201efa2ac638ae17df25b7c29cb1ad0a2fee97f0d781bb2d818cac7777
Analyzer Verdict Alert fortinet Malware
GET /wp-admin/(.)/web/rocovery/source/rooterror.php HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:05 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 33282
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
34.117.65.55101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.117.65.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: R0r7ZmcIUc03JuwzSOdZ4g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 9ejKJITHKJSCAcJFyHuOXmaAKP0=
Date: Wed, 29 Mar 2023 17:20:05 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.googleapis.com/css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext
142.250.74.106200 OK 943 B URL HTTP/1.1 fonts.googleapis.com/css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext
IP 142.250.74.106:0
Hash 499ce1b88322bf73725886c03337fb1a
e4ef4aeae044ee651072a4f43615ee833f1496ed
3f479351b866c360ea55f98fd63eb7a380c086d37b87ffd00b6acc03a7667bf8
GET /css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Wed, 29 Mar 2023 17:20:05 GMT
Date: Wed, 29 Mar 2023 17:20:05 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=PT+Sans%3A300%2C400%2C400italic%2C700%2C700italic%3Alatin%2Cgreek-ext%2Ccyrillic%2Clatin-ext%2Cgreek%2Ccyrillic-ext%2Cvietnamese%7CRoboto+Slab%3A300%2C400%2C400italic%2C700%2C700italic%3Alatin%2Cgreek-ext%2Ccyrillic%2Clatin-ext%2Cgreek%2Ccyrillic-ext%2Cvietnamese&ver=6.1.1
142.250.74.106200 OK 837 B URL HTTP/1.1 fonts.googleapis.com/css?family=PT+Sans%3A300%2C400%2C400italic%2C700%2C700italic%3Alatin%2Cgreek-ext%2Ccyrillic%2Clatin-ext%2Cgreek%2Ccyrillic-ext%2Cvietnamese%7CRoboto+Slab%3A300%2C400%2C400italic%2C700%2C700italic%3Alatin%2Cgreek-ext%2Ccyrillic%2Clatin-ext%2Cgreek%2Ccyrillic-ext%2Cvietnamese&ver=6.1.1
IP 142.250.74.106:0
Hash 1a551d94189805ee8ac7707be0e3791d
2d47bb1087c10e7458c4f1b495cdd9783cbfaea3
c81dd48474d7bf86a7a33314792d17f7c3d72dc2d71dc4f86f97d9760d504df9
GET /css?family=PT+Sans%3A300%2C400%2C400italic%2C700%2C700italic%3Alatin%2Cgreek-ext%2Ccyrillic%2Clatin-ext%2Cgreek%2Ccyrillic-ext%2Cvietnamese%7CRoboto+Slab%3A300%2C400%2C400italic%2C700%2C700italic%3Alatin%2Cgreek-ext%2Ccyrillic%2Clatin-ext%2Cgreek%2Ccyrillic-ext%2Cvietnamese&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Wed, 29 Mar 2023 17:20:05 GMT
Date: Wed, 29 Mar 2023 17:20:05 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
thewebfactors.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5
209.135.157.148200 OK 2.0 kB URL HTTP/1.1 thewebfactors.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5
IP 209.135.157.148:0
File type ASCII text, with very long lines (10435), with no line terminators
Hash 38b1f483d4bf6b1548990385c8673746
1668edb02c5170be308368292a4c12033d0a42f4
98138d83d7cb12e99802ba034b400a67e0d7b6e378d8bcd1b4d9f4fe44ce1111
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5 HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:05 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:52:54 GMT
ETag: "52899e5-28c3-5ef185b6272cc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600, public
Content-Length: 1962
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
thewebfactors.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
209.135.157.148200 OK 12 kB URL HTTP/1.1 thewebfactors.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 209.135.157.148:0
File type ASCII text, with very long lines (47826)
Hash 8fa87dd23394a22621248ec378d2af59
9305bc637a89b1700d7f56a19a80bd32b0feb2f7
c162f7de24fa2d4e93e0da254ef287ff72f4a3e03f42443265097968351388dc
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:05 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:48:29 GMT
ETag: "5287ffc-172a9-5ef184b8af00b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600, public
Content-Length: 12518
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
thewebfactors.com/wp-content/themes/Avada/assets/fonts/fontawesome/font-awesome.css?ver=3.9.3
209.135.157.148200 OK 6.2 kB URL HTTP/1.1 thewebfactors.com/wp-content/themes/Avada/assets/fonts/fontawesome/font-awesome.css?ver=3.9.3
IP 209.135.157.148:0
File type ASCII text, with very long lines (27249)
Hash dee8df1d0ceb8c310a98f4644cca48a5
71f7be82d59b9c9abf632324d91a0ccfaed5d6a6
f0c9ffbfb151766e4400d70cb8f289fd8e28917906ea276ff198e7c00c5ced5b
GET /wp-content/themes/Avada/assets/fonts/fontawesome/font-awesome.css?ver=3.9.3 HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:05 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:39:00 GMT
ETag: "5222d4b-6b14-5ef1829a94ec7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600, public
Content-Length: 6235
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
thewebfactors.com/wp-content/themes/Avada/assets/css/woocommerce.css?ver=3.9.3
209.135.157.148200 OK 9.2 kB URL HTTP/1.1 thewebfactors.com/wp-content/themes/Avada/assets/css/woocommerce.css?ver=3.9.3
IP 209.135.157.148:0
Hash b1bcf28ec69254772513a8b09680e643
b61e1f26890c99b31be8d8761093f181a4018db7
2c5c06690371eb4a278b5e5dbdf436526bf9f0cae1954ed1c15b880ee9d3fe2a
GET /wp-content/themes/Avada/assets/css/woocommerce.css?ver=3.9.3 HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:05 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:39:00 GMT
ETag: "5222ce3-d1ed-5ef1829a91fe7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600, public
Content-Length: 9241
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
thewebfactors.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5
209.135.157.148200 OK 24 kB URL HTTP/1.1 thewebfactors.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5
IP 209.135.157.148:0
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash f4b081e0f93afb4620f474fc36155678
f8e737ec06645c43cb94388c865609f6ce34e340
14c731b71ee9a157791e5d07c14fc669a122d9016f61581feb79f5d12fba95ac
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5 HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:05 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:52:54 GMT
ETag: "528996a-39996-5ef185b62538c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600, public
Content-Length: 24470
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
thewebfactors.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
209.135.157.148200 OK 4.2 kB URL HTTP/1.1 thewebfactors.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 209.135.157.148:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:06 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:48:29 GMT
ETag: "5286f3b-2bd8-5ef184b8a1163-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600, public
Content-Length: 4169
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fca9fd578a54e05f138f60be13672713
164e80359b41377d4c8753ec4263bbe7bf455e5d
9094f5d8b09435ebd265139c295035006630fb3971c8efbe9d2f2d19d7dc496c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9094F5D8B09435EBD265139C295035006630FB3971C8EFBE9D2F2D19D7DC496C"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 29 Mar 2023 23:20:06 GMT
Date: Wed, 29 Mar 2023 17:20:06 GMT
Connection: keep-alive
thewebfactors.com/wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.6.2
209.135.157.148200 OK 20 kB URL HTTP/1.1 thewebfactors.com/wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.6.2
IP 209.135.157.148:0
File type ASCII text, with very long lines (55135)
Hash c02f1eeb90c84f9952b9889137f7d140
334a51f28eee89457d37edf1d53d452415f66c97
3e229272e5022934997be7ef91bb8269eb605734a4cf0a3b2c360aa020877315
GET /wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.6.2 HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:06 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:39:00 GMT
ETag: "5263e06-d813-5ef1829acb5df-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600, public
Content-Length: 19599
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
thewebfactors.com/wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js?ver=5.6.2
209.135.157.148200 OK 3.2 kB URL HTTP/1.1 thewebfactors.com/wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js?ver=5.6.2
IP 209.135.157.148:0
File type ASCII text, with very long lines (20890)
Hash b3aa8c67ec2755b174a584326aabe1d0
7b2cee308d45978ccc2f218044c3b99f0b2e96ad
78aa15e45f3ac28adf3287cfdfef9f842bc8b1455fe40ae49300d48b1f166603
GET /wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js?ver=5.6.2 HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:06 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:39:00 GMT
ETag: "5263e02-5267-5ef1829acb5df-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600, public
Content-Length: 3190
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
thewebfactors.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
209.135.157.148200 OK 31 kB URL HTTP/1.1 thewebfactors.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 209.135.157.148:0
File type ASCII text, with very long lines (65447)
Hash 1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:06 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:48:29 GMT
ETag: "5287e7a-15e54-5ef184b8a1163-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600, public
Content-Length: 30995
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
thewebfactors.com/wp-content/themes/Avada/ilightbox.css?ver=3.9.3
209.135.157.148200 OK 5.6 kB URL HTTP/1.1 thewebfactors.com/wp-content/themes/Avada/ilightbox.css?ver=3.9.3
IP 209.135.157.148:0
Hash 9b2b5eb75c247144f1f54559a99821c7
76b0b8de606be99256f2e1edf2c5f22be3eda67a
9c8e8e45bbbe5912017155cde21ace5d063861e7922571f8c9b498de07b1eecd
GET /wp-content/themes/Avada/ilightbox.css?ver=3.9.3 HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:06 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:39:00 GMT
ETag: "5222a80-d932-5ef1829a8684e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600, public
Content-Length: 5616
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
thewebfactors.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
209.135.157.148200 OK 3.5 kB URL HTTP/1.1 thewebfactors.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
IP 209.135.157.148:0
File type ASCII text, with very long lines (9111)
Hash f6004c12128ba678a6ab8fafb9cb1d61
a023d537a3273176524815baca3f2c42cc601a3c
e516f66f227db9eb26f5bec7605f4647680979c10c9bb61ac1654ccbf7e348af
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0 HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:06 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:52:55 GMT
ETag: "5289fd7-2521-5ef185b643404-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600, public
Content-Length: 3496
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
thewebfactors.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
209.135.157.148200 OK 1.1 kB URL HTTP/1.1 thewebfactors.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
IP 209.135.157.148:0
File type HTML document, ASCII text, with very long lines (3029), with no line terminators
Hash 3fffd1b8f00bf4175aaf1831974a4e4c
7f16ab9253c92a528f1f8cb20bee07128ce67048
3eeb166e786db324c70ef63628846f825951748a76d0de97c719189a0ab555c3
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0 HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:06 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:52:55 GMT
ETag: "5289fc6-bd5-5ef185b64301c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600, public
Content-Length: 1088
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
thewebfactors.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
209.135.157.148200 OK 982 B URL HTTP/1.1 thewebfactors.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
IP 209.135.157.148:0
File type ASCII text, with very long lines (1668)
Hash e66463f2023b738680c9bdefece69a37
315dc8e6ebdfb18c662851244ee33e2758ad3c83
fd83e7fc6d81aa6f6680ea640e9c086aa1950a17757a582aa74ea9797a70f346
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0 HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:06 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:52:55 GMT
ETag: "5289f8f-72a-5ef185b64207c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600, public
Content-Length: 982
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
thewebfactors.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
209.135.157.148200 OK 794 B URL HTTP/1.1 thewebfactors.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
IP 209.135.157.148:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash 29307e8dec33cf3411ca4e1f2c84e9d0
484402289464d7ffb1475827f3438329d520bfc6
a2db59efaa416ef0c9d5d58f142cd5e44c475348cff20a664586fd3cda1b5f5b
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0 HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:06 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:52:55 GMT
ETag: "5289fc9-85b-5ef185b64301c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600, public
Content-Length: 794
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
thewebfactors.com/wp-content/themes/Avada/style.css?ver=3.9.3
209.135.157.148200 OK 50 kB URL HTTP/1.1 thewebfactors.com/wp-content/themes/Avada/style.css?ver=3.9.3
IP 209.135.157.148:0
File type ASCII text, with very long lines (540)
Hash 83c50f65bc9c28af4865405d4dec3cd5
b53438de73eae70a8d38893d21edde2d08e263ed
b01722c9bacf3d8c54adb86a1230d9803d50e63e21d6565cc22da497a7edbf4d
GET /wp-content/themes/Avada/style.css?ver=3.9.3 HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:06 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:39:00 GMT
ETag: "5222984-5d4c2-5ef1829a64956-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600, public
Content-Length: 49866
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
thewebfactors.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
209.135.157.148200 OK 1.0 kB URL HTTP/1.1 thewebfactors.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
IP 209.135.157.148:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash 45db3d2887c26700a51bf469e3bb3aa1
d070b5fb53d2fbb66964bbfd482270b855d0ee96
1abc0cff49f82d9a063c04cd086b991af6ad00467efc4cb8d8d4e3c9a0f95777
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0 HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:06 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:52:55 GMT
ETag: "5289faf-b7a-5ef185b642c34-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600, public
Content-Length: 1039
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
thewebfactors.com/wp-includes/css/classic-themes.min.css?ver=1
209.135.157.148200 OK 189 B URL HTTP/1.1 thewebfactors.com/wp-includes/css/classic-themes.min.css?ver=1
IP 209.135.157.148:0
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:06 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:48:29 GMT
ETag: "5288169-d9-5ef184b8afbc3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600, public
Content-Length: 189
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
thewebfactors.com/wp-content/plugins/LayerSlider/static/css/layerslider.css?ver=5.6.2
209.135.157.148200 OK 3.0 kB URL HTTP/1.1 thewebfactors.com/wp-content/plugins/LayerSlider/static/css/layerslider.css?ver=5.6.2
IP 209.135.157.148:0
Hash 1811315f559d111bc9bf151b01995707
f6de1413feae3c2c6119e5b527ade4d2c096330d
d72585cac4e03af85b315de18dcf2fe0b3e3bef77ee3b2838e8c0fb0cfa68b97
GET /wp-content/plugins/LayerSlider/static/css/layerslider.css?ver=5.6.2 HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:06 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:39:00 GMT
ETag: "5263e0e-3d5c-5ef1829acbdaf-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600, public
Content-Length: 3044
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
thewebfactors.com/wp-content/themes/Avada/animations.css?ver=3.9.3
209.135.157.148200 OK 2.4 kB URL HTTP/1.1 thewebfactors.com/wp-content/themes/Avada/animations.css?ver=3.9.3
IP 209.135.157.148:0
Hash 3001e0c38335e36d65fab1b5c589f1ee
872abebc897abf27ce3d9fc22fcd90dfc220cc5a
31ddc5008ad88c862f9ae2bc2f2852683a802d186d3690887dec0b93ae11999a
GET /wp-content/themes/Avada/animations.css?ver=3.9.3 HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:06 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:39:00 GMT
ETag: "5222b59-8d79-5ef1829a89efe-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600, public
Content-Length: 2389
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
wan-g.wang/NRF0j2
190.115.26.9200 OK 0 B IP 190.115.26.9:0
ASN #262254 DDOS-GUARD CORP.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /NRF0j2 HTTP/1.1
Host: wan-g.wang
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thewebfactors.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=77pHagiz7JYyK9vrDJ89; Domain=.wan-g.wang; HttpOnly; Path=/; Expires=Thu, 28-Mar-2024 17:20:06 GMT
date: Wed, 29 Mar 2023 17:20:06 GMT
content-length: 0
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
thewebfactors.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
209.135.157.148200 OK 5.0 kB URL HTTP/1.1 thewebfactors.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 209.135.157.148:0
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:06 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:48:29 GMT
ETag: "5286ec3-48b9-5ef184b8a05ab-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600, public
Content-Length: 5009
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
thewebfactors.com/wp-content/themes/Avada/assets/js/main.min.js?ver=3.9.3
209.135.157.148200 OK 156 kB URL HTTP/1.1 thewebfactors.com/wp-content/themes/Avada/assets/js/main.min.js?ver=3.9.3
IP 209.135.157.148:0
File type ASCII text, with very long lines (32073)
Size 156 kB (156001 bytes)
Hash 05274c3081589d1f81b2802caa325f62
66320e489696131b86272344717cc0735d67e6fe
667eafb138d0fdc47c5349197daced9eedda512809eb60752555a0e781f567ad
GET /wp-content/themes/Avada/assets/js/main.min.js?ver=3.9.3 HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:06 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:39:00 GMT
ETag: "5222cd8-94e98-5ef1829a91817-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600, public
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
thewebfactors.com/wp-content/plugins/LayerSlider/static/js/greensock.js?ver=1.11.8
209.135.157.148200 OK 28 kB URL HTTP/1.1 thewebfactors.com/wp-content/plugins/LayerSlider/static/js/greensock.js?ver=1.11.8
IP 209.135.157.148:0
File type ASCII text, with very long lines (59248)
Hash 05b979db93506d9ffd154b167d093598
8e06d2135f2aa9cb12d07cbeba3a626ebcf91a7f
5a375b8bdd9321dc4e7f86504910c992f98c1b4f5381e6466b746646f06d222a
GET /wp-content/plugins/LayerSlider/static/js/greensock.js?ver=1.11.8 HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:06 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:39:00 GMT
ETag: "5263e00-e93d-5ef1829acb1f7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600, public
Content-Length: 27774
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
theme-fusion.com/avadaxml/wp-content/uploads/2013/02/logo2x.png
172.67.75.215301 Moved Permanently 0 B URL HTTP/1.1 theme-fusion.com/avadaxml/wp-content/uploads/2013/02/logo2x.png
IP 172.67.75.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /avadaxml/wp-content/uploads/2013/02/logo2x.png HTTP/1.1
Host: theme-fusion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/
HTTP/1.1 301 Moved Permanently
Date: Wed, 29 Mar 2023 17:20:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 29 Mar 2023 18:20:07 GMT
Location: https://theme-fusion.com/avadaxml/wp-content/uploads/2013/02/logo2x.png
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pECfxoGDmn6E7F1N7e4V1aTKB7hzWOyaBy4FtP8WX3vVCAIHI3zfqyDmJ53YZZ8uUNLHeFEovQZyxsDRE5NTJIg0ctd88cuHi7OCBitM7WGdW7PmiQe7BwDZ42xnC%2BQDI7Q%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7af9c81c28fb0b39-OSL
alt-svc: h2=":443"; ma=60
thewebfactors.com/wp-content/uploads/2016/02/website250.png
209.135.157.148200 OK 10 kB URL HTTP/1.1 thewebfactors.com/wp-content/uploads/2016/02/website250.png
IP 209.135.157.148:0
File type PNG image data, 250 x 62, 8-bit/color RGBA, non-interlaced\012- data
Hash 478ffb5297b98c8d03da34ac5c1e273f
26b77aa767fce8773c30cd067349228e7b542de6
60f2c5353816fe6beeac66e0a2a4005defda9927175f8b4c7a85264f13b8fc68
GET /wp-content/uploads/2016/02/website250.png HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:07 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:39:01 GMT
ETag: "5286d63-2898-5ef1829b06348-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600, public
Content-Length: 10145
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
theme-fusion.com/avadaxml/wp-content/themes/Avada/images/page_title_bg.png
172.67.75.215301 Moved Permanently 0 B URL HTTP/1.1 theme-fusion.com/avadaxml/wp-content/themes/Avada/images/page_title_bg.png
IP 172.67.75.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /avadaxml/wp-content/themes/Avada/images/page_title_bg.png HTTP/1.1
Host: theme-fusion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/
HTTP/1.1 301 Moved Permanently
Date: Wed, 29 Mar 2023 17:20:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 29 Mar 2023 18:20:07 GMT
Location: https://theme-fusion.com/avadaxml/wp-content/themes/Avada/images/page_title_bg.png
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JPJK4D229Ko2N3EOfKjXag2RiibzZB6gCo1n6TmZ1fjbjGyNUXqKM5Srmotm06mYwhWJ0kxd4JVZ4VQfkhGMnFCi%2Fu%2FGTAOvtAEAoJeTdsDG%2F9shChNDWDV1o0k7y%2BDVmPU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7af9c81cca480b39-OSL
alt-svc: h2=":443"; ma=60
wan-g.wang/NRF0j2
190.115.26.9200 OK 0 B IP 190.115.26.9:0
ASN #262254 DDOS-GUARD CORP.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /NRF0j2 HTTP/1.1
Host: wan-g.wang
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thewebfactors.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=mIKlVqkqV3YnlfTRE3iQ; Domain=.wan-g.wang; HttpOnly; Path=/; Expires=Thu, 28-Mar-2024 17:20:07 GMT
date: Wed, 29 Mar 2023 17:20:07 GMT
content-length: 0
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
142.250.74.35200 OK 33 kB URL HTTP/1.1 fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 32860, version 1.0\012- data
Hash d010a9f2d5c7a0374b3b84706a43d2ec
c1fe465db08785c3f115555d39db23838960cb66
9a3993918629dfd6a59c4563e9b4d464152b51d4113957ab8ebfbdcbcdc7f536
GET /s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://thewebfactors.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 32860
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 24 Mar 2023 10:51:40 GMT
Expires: Sat, 23 Mar 2024 10:51:40 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 11 Jul 2022 19:12:50 GMT
Content-Type: font/woff2
Age: 455307
fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
142.250.74.35200 OK 45 kB URL HTTP/1.1 fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 45300, version 1.0\012- data
Hash 5fe660c3a23b871807b0e1d3ee973d23
62a9dd423b30b6ee3ab3dd40d573545d579af10a
e13ffa988be59cbf299d7ff68f019f902b60848203ac4990819eb7e4624ee52d
GET /s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://thewebfactors.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 45300
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 24 Mar 2023 10:32:13 GMT
Expires: Sat, 23 Mar 2024 10:32:13 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 27 Apr 2022 16:11:08 GMT
Content-Type: font/woff2
Age: 456474
thewebfactors.com/wp-content/themes/Avada/assets/fonts/icomoon/icomoon.woff
209.135.157.148200 OK 13 kB URL HTTP/1.1 thewebfactors.com/wp-content/themes/Avada/assets/fonts/icomoon/icomoon.woff
IP 209.135.157.148:0
File type Web Open Font Format, TrueType, length 12844, version 1.0\012- data
Hash 1a4dac9091f0103119c744a4d7b4e8f3
2158641f495ed4898bb6039de51e8884c32cb1e0
e189771835cbdb8d8b75947a3fcff7eccd6e2b85c09bd23e9a49bf83c4735a08
GET /wp-content/themes/Avada/assets/fonts/icomoon/icomoon.woff HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://thewebfactors.com/wp-content/themes/Avada/style.css?ver=3.9.3
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:07 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:39:00 GMT
ETag: "5222d45-322c-5ef1829a93b3f"
Accept-Ranges: bytes
Content-Length: 12844
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: font/woff
fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2
142.250.74.35200 OK 47 kB URL HTTP/1.1 fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 47048, version 1.0\012- data
Hash 87a1556b696ae2cb1a726bd8c4584a2f
1be0f6f39e0cf316f9827f945eeeaef8294cc37b
141f0c53e457585d4ac7426eb3d757666d250ee6fbf0e9c0878128e4c627f0b1
GET /s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://thewebfactors.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 47048
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 24 Mar 2023 10:43:29 GMT
Expires: Sat, 23 Mar 2024 10:43:29 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 27 Apr 2022 16:55:54 GMT
Content-Type: font/woff2
Age: 455798
wan-g.wang/NRF0j2
190.115.26.9200 OK 0 B IP 190.115.26.9:0
ASN #262254 DDOS-GUARD CORP.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /NRF0j2 HTTP/1.1
Host: wan-g.wang
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thewebfactors.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=JNL3NWreXrINQZFrXQYQ; Domain=.wan-g.wang; HttpOnly; Path=/; Expires=Thu, 28-Mar-2024 17:20:07 GMT
date: Wed, 29 Mar 2023 17:20:07 GMT
content-length: 0
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5602
Expires: Wed, 29 Mar 2023 18:53:29 GMT
Date: Wed, 29 Mar 2023 17:20:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5602
Expires: Wed, 29 Mar 2023 18:53:29 GMT
Date: Wed, 29 Mar 2023 17:20:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5602
Expires: Wed, 29 Mar 2023 18:53:29 GMT
Date: Wed, 29 Mar 2023 17:20:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 253f48aa7cbf667d52cb37fda10cdb1f
e29478b866f90402b48d2b516d01d60a863c9cf9
b4a73ab71250b9e4a3f95e28dbf50dd000e1f338c7c3ac9f3351c1f6d6d3bfff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6049
x-amzn-requestid: 2d1a2a66-8b63-44f0-83ec-10628a5fcac6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CgvBFFMGIAMFhCg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235ed3-2a90bf0365925acb3b348489;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:40:35 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: -XwoHom5AT8j5yHNvfnYQ-9xIqVpsyDffwFM0d_ESJicJvL8pTcABg==
via: 1.1 c28e01aa413e9ea602538ccda1511062.cloudfront.net (CloudFront), 1.1 536063cb28bfc05fcb7a78183dd89b72.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:50:28 GMT
age: 70179
etag: "e29478b866f90402b48d2b516d01d60a863c9cf9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ef54a1ed997cc09495edb102ccdf6803
f5637efb37b5eecff77e60e6bcf5f599991f334f
fa76d7a82dc15baf02b207cea874d1332c20a0ebe1eea99929a6f2746608412c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8745
x-amzn-requestid: e1d8dab6-4c15-4752-b528-21854c93a11c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguJ5Hy5oAMFyAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235d72-4bd62c8472f7257a155b2a80;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:34:42 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: FHONNj6M7I5oVTKAKYspq0ZAJMYohURXs5ufSL-r--zCSdjuSvrpSA==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 49cdeca097624936e070b73619df7da8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:51:37 GMT
age: 70110
etag: "f5637efb37b5eecff77e60e6bcf5f599991f334f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d713593-a582-498a-b202-20cddce4f8c4.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d713593-a582-498a-b202-20cddce4f8c4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fd1bc71c7e9eed7c086d752ea8b4b992
02a74cf88501d65b3dfcceb5adc79fd93ce785ed
a9a423d347533322d4d3ba90ee5fca5ca32f8d540f744ea2621deeda46df89f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d713593-a582-498a-b202-20cddce4f8c4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7605
x-amzn-requestid: b7628073-4eb3-4ef6-b7d0-0224e0a75601
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguY8GFPoAMFebQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235dd2-445041c74356c54053f772a1;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:36:18 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 2LLHDcPZsSP1XPxH7agC7FhVwQQXfrWq3CEOSz0mBTjGykXxNQIq9Q==
via: 1.1 ffc1e24c06bfbb135c0a4d240b382048.cloudfront.net (CloudFront), 1.1 536063cb28bfc05fcb7a78183dd89b72.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:56:00 GMT
age: 69847
etag: "02a74cf88501d65b3dfcceb5adc79fd93ce785ed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a2aaf12-7288-4e10-bed8-65836cbed913.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a2aaf12-7288-4e10-bed8-65836cbed913.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2394b226089edf57c8c93fc84a8ff22a
2355df6a75778a70b2d02c7ee2d0a806ea853c9b
740427ed96cddadf8ae6ed0870fdb1539e9a0acddcfa23a3d2b380bf6d527e38
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a2aaf12-7288-4e10-bed8-65836cbed913.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8316
x-amzn-requestid: c02a3a05-292d-4701-ac94-419cb6da2ebf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CYJajHBcIAMF61g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641fef76-32315fd929fa695204e57f10;Sampled=0
x-amzn-remapped-date: Sun, 26 Mar 2023 07:08:38 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: lm7mxYmBVracuOiLZ1PaNhM3hLh5elZfI3ZDJR2kf8qP3Autep9cyw==
via: 1.1 ffc1e24c06bfbb135c0a4d240b382048.cloudfront.net (CloudFront), 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 07:46:12 GMT
age: 34435
etag: "2355df6a75778a70b2d02c7ee2d0a806ea853c9b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67889522-c6ea-4b17-93f3-ac6e2b4777c1.webp
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67889522-c6ea-4b17-93f3-ac6e2b4777c1.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d0a85ec27ed4f7910e26b4ff023ab1fb
f35a6c0c18a7c25a5f644ed9bebef0d38f8c6ac0
fc31409ba6db565d4861a35ee6f74b7436eea5e5169bc1283f63cf6dfdb03764
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67889522-c6ea-4b17-93f3-ac6e2b4777c1.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6722
x-amzn-requestid: a6de82bd-5b03-4ffd-90dd-9bd03331d123
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguY8GG2IAMFuzQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235dd2-7cb1c8187fe3d2b0283fb3a0;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:36:18 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: y5vKgCZTlgD6ji-loyjRA9cPpJWpdR7yDH60LL0bRa1b8DtG4WsX9g==
via: 1.1 773bf3616e85ce2b187fa78710a6beb2.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:51:37 GMT
age: 70110
etag: "f35a6c0c18a7c25a5f644ed9bebef0d38f8c6ac0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefde0954-487c-4823-9114-65bb559deff5.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefde0954-487c-4823-9114-65bb559deff5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d84646702004ad2c911a68dfac90d6f1
445039f25191cf86c79423ffa04e2bffa7f2085e
632d6d1600d08a15e72dd12324ffa5792e948db9694dc2fa826f3c76be651931
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefde0954-487c-4823-9114-65bb559deff5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6760
x-amzn-requestid: 592000fe-a490-4139-8eb4-877935019797
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguKFFgOoAMF5Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235d73-6f980246043a8f746441b0d5;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:34:43 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 2txzFAxvssU2rZ1dRQPeWEkJd1e7RLfKSgnVe1FU3Tv4B9UAIa-0Jw==
via: 1.1 ee32c7a76e2727d565413cc6c352ef48.cloudfront.net (CloudFront), 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:48:13 GMT
age: 70314
etag: "445039f25191cf86c79423ffa04e2bffa7f2085e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
wan-g.wang/NRF0j2
190.115.26.9200 OK 0 B IP 190.115.26.9:0
ASN #262254 DDOS-GUARD CORP.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /NRF0j2 HTTP/1.1
Host: wan-g.wang
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thewebfactors.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=J77fO9RM1nzAOTUBracI; Domain=.wan-g.wang; HttpOnly; Path=/; Expires=Thu, 28-Mar-2024 17:20:08 GMT
date: Wed, 29 Mar 2023 17:20:08 GMT
content-length: 0
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
wan-g.wang/NRF0j2
190.115.26.9200 OK 0 B IP 190.115.26.9:0
ASN #262254 DDOS-GUARD CORP.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /NRF0j2 HTTP/1.1
Host: wan-g.wang
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thewebfactors.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=e1pWuIc3iOdkTVJ6pnJA; Domain=.wan-g.wang; HttpOnly; Path=/; Expires=Thu, 28-Mar-2024 17:20:08 GMT
date: Wed, 29 Mar 2023 17:20:08 GMT
content-length: 0
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
thewebfactors.com/favicon.ico
209.135.157.148200 OK 1.2 kB URL HTTP/1.1 thewebfactors.com/favicon.ico
IP 209.135.157.148:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 18630558c786210d6d26b2f1577a3040
bc0fd1cd378187585afc4a0ba46a54b8aa1509a0
0b79c58b4f8659d8161afa8f8c5d4ef6130f470c818838c5359a1ff4bccfd0bb
GET /favicon.ico HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:08 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 17:39:00 GMT
ETag: "52001bd-47e-5ef1829a64186"
Accept-Ranges: bytes
Content-Length: 1150
Cache-Control: max-age=3600, public
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/x-icon
thewebfactors.com/?wc-ajax=get_refreshed_fragments
209.135.157.148200 OK 361 B URL HTTP/1.1 thewebfactors.com/?wc-ajax=get_refreshed_fragments
IP 209.135.157.148:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (914), with no line terminators
Hash 3b6417c3f42808e1370613f255214fb8
cca80dd70522aeb885ef0be6e5d170a2716ff065
607b2127035291bcd3ec7ac25420e6f82a0d7c589350348a6da954705f81d31e
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: thewebfactors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: http://thewebfactors.com
Connection: keep-alive
Referer: http://thewebfactors.com/wp-admin/(.)/web/rocovery/source/rooterror.php
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:20:08 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 361
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
theme-fusion.com/avadaxml/wp-content/uploads/2013/02/logo2x.png
172.67.75.215301 Moved Permanently 0 B URL HTTP/2 theme-fusion.com/avadaxml/wp-content/uploads/2013/02/logo2x.png
IP 172.67.75.215:0
GET /avadaxml/wp-content/uploads/2013/02/logo2x.png HTTP/1.1
Host: theme-fusion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://thewebfactors.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Wed, 29 Mar 2023 17:20:08 GMT
content-type: text/html
location: https://avada.theme-fusion.com/avada-xml/wp-content/uploads/sites/12/2013/02/logo2x.png
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=86400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZopIplgE%2BE9o51AfoKUOV%2FJoMBYgu5wxxPbQRjOw8slDP3w%2BLStOoOkdLhZBLbo%2F7bKr44dN5j8eYgMJqbBEjCpkydcZkwxJ5YUsoSYh4Yc7Ho09sONUckyzW%2BAPSX0JqSQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7af9c81d1e9db500-OSL
X-Firefox-Spdy: h2
theme-fusion.com/avadaxml/wp-content/themes/Avada/images/page_title_bg.png
172.67.75.215404 Not Found 0 B URL HTTP/2 theme-fusion.com/avadaxml/wp-content/themes/Avada/images/page_title_bg.png
IP 172.67.75.215:0
GET /avadaxml/wp-content/themes/Avada/images/page_title_bg.png HTTP/1.1
Host: theme-fusion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://thewebfactors.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Wed, 29 Mar 2023 17:20:08 GMT
content-type: text/html
vary: Accept-Encoding
cache-control: max-age=86400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dl%2BE90uhE%2FNggU3cw1dnprSsVoZECgc6VIESzTwzM2DyJPUYssCzb921Ns3AnK%2FBYRgboYo%2B%2BMP3BZs9CpqFl845mtly0PZK7iE9HG6fi8OVY%2BO23yTtDCHTLczQKNwck%2Bs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7af9c81d1e90b500-OSL
content-encoding: br
X-Firefox-Spdy: h2
avada.theme-fusion.com/avada-xml/wp-content/uploads/sites/12/2013/02/logo2x.png
172.67.75.215500 Internal Server Error 0 B URL HTTP/2 avada.theme-fusion.com/avada-xml/wp-content/uploads/sites/12/2013/02/logo2x.png
IP 172.67.75.215:0
GET /avada-xml/wp-content/uploads/sites/12/2013/02/logo2x.png HTTP/1.1
Host: avada.theme-fusion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://thewebfactors.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 500 Internal Server Error
date: Wed, 29 Mar 2023 17:20:08 GMT
content-type: text/html; charset=iso-8859-1
x-cacheable: YES:briefly:500
cache-control: max-age=86400, must-revalidate
x-cache: MISS
x-content-type-options: nosniff
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xwRs74CK4q3kHiyFj8BO0rEyTmw6VgHcDM54goE2ysbDSoMpX7LkY6N%2B2aUzb%2Bf4ZBE1%2BMqbUZQ5u2KzDF2jbY3D%2FNbrur3iupuJYNtPZglbMfmbw3QQiOExK92nZK7t62VPIlBPias%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7af9c8224be0b500-OSL
X-Firefox-Spdy: h2