| www.brandmuseagency.co.za/ | 41.185.64.163 | | 189 B |
URL www.brandmuseagency.co.za/ IP41.185.64.163:0
File typeHTML document, ASCII text, with CRLF line terminators Hash62a62f972728646a5fe3a57f6be71473 db41f5e8f1f8e1bd70b92c163df50f222f038ca2 a92572dd5a082d101146b66e7dd5e1999310c9035662f78a3a11e16062b8fe1e
Analyzer | Verdict | Alert | OpenPhish | phishing | SBB |
GET / HTTP/1.1
Host: www.brandmuseagency.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 06 May 2024 18:02:00 GMT
content-type: text/html; charset=UTF-8
content-length: 189
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ | 151.101.130.159 | 200 OK | 6.3 kB |
URL User Request GET HTTP/2spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ IP151.101.130.159:443
CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
File typeHTML document, Unicode text, UTF-8 text Hash0ec07c8b7a795693e2b1391b50ef75c9 6e133c13766410120bff64b672338bc8c6d2e123 4f22aa2ae02e38ea0ac63a6da6e1263c90da61c837aa45c16efa0055dbbfcf6c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | OpenPhish | phishing | SBB | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010//lll/SBB/index/ HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-fw-version: 5.0.0
content-encoding: gzip
pragma: no-cache
x-fw-hash: jyzlemhu4f
x-fw-server: Flywheel/5.1.0
x-fw-dynamic: TRUE
cache-control: public, max-age=31536000
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-xss-protection: 1
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:00 GMT
x-served-by: cache-hel1410029-HEL, cache-hel1410034-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 3
x-timer: S1715018521.927458,VS0,VE0
vary: Accept-Encoding
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 6250
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/css/normal/app/sso.min-20200819.css | 151.101.130.159 | 301 Moved Permanently | 0 B |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/css/normal/app/sso.min-20200819.css IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010//lll/SBB/index/resources/css/normal/app/sso.min-20200819.css HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-fw-hash: jyzlemhu4f
x-xss-protection: 1
cache-control: no-cache, must-revalidate, max-age=0
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
location: https://spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/css/normal/app/sso.min-20200819.css
x-redirect-by: WordPress
x-fw-server: Flywheel/5.1.0
referrer-policy: no-referrer-when-downgrade
x-fw-dynamic: TRUE
server: Flywheel/5.1.0
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:01 GMT
x-served-by: cache-hel1410026-HEL, cache-hel1410034-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 0
x-timer: S1715018521.088855,VS0,VE1
vary: accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/js/vendor/head/modernizr/modernizr-20200819.js | 151.101.130.159 | 301 Moved Permanently | 0 B |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/js/vendor/head/modernizr/modernizr-20200819.js IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010//lll/SBB/index/resources/js/vendor/head/modernizr/modernizr-20200819.js HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-fw-hash: jyzlemhu4f
x-xss-protection: 1
cache-control: no-cache, must-revalidate, max-age=0
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
location: https://spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/js/vendor/head/modernizr/modernizr-20200819.js
x-redirect-by: WordPress
x-fw-server: Flywheel/5.1.0
referrer-policy: no-referrer-when-downgrade
x-fw-dynamic: TRUE
server: Flywheel/5.1.0
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:01 GMT
x-served-by: cache-hel1410027-HEL, cache-hel1410034-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 0
x-timer: S1715018521.094405,VS0,VE1
vary: accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/js/vendor/head/modernizr/modernizr-20200820.js | 151.101.130.159 | 301 Moved Permanently | 0 B |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/js/vendor/head/modernizr/modernizr-20200820.js IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010//lll/SBB/index/resources/js/vendor/head/modernizr/modernizr-20200820.js HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-fw-hash: jyzlemhu4f
x-xss-protection: 1
cache-control: no-cache, must-revalidate, max-age=0
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
location: https://spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/js/vendor/head/modernizr/modernizr-20200820.js
x-redirect-by: WordPress
x-fw-server: Flywheel/5.1.0
referrer-policy: no-referrer-when-downgrade
x-fw-dynamic: TRUE
server: Flywheel/5.1.0
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:01 GMT
x-served-by: cache-hel1410023-HEL, cache-hel1410034-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 2
x-timer: S1715018521.098638,VS0,VE1
vary: accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/img/logo_text_de-20200819.svg | 151.101.130.159 | 301 Moved Permanently | 0 B |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/img/logo_text_de-20200819.svg IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010//lll/SBB/index/resources/img/logo_text_de-20200819.svg HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-fw-hash: jyzlemhu4f
x-xss-protection: 1
cache-control: no-cache, must-revalidate, max-age=0
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
location: https://spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/img/logo_text_de-20200819.svg
x-redirect-by: WordPress
x-fw-server: Flywheel/5.1.0
referrer-policy: no-referrer-when-downgrade
x-fw-dynamic: TRUE
server: Flywheel/5.1.0
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:01 GMT
x-served-by: cache-hel1410022-HEL, cache-hel1410034-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 2
x-timer: S1715018521.101632,VS0,VE0
vary: accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/img/logo-20200819.svg | 151.101.130.159 | 301 Moved Permanently | 0 B |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/img/logo-20200819.svg IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010//lll/SBB/index/resources/img/logo-20200819.svg HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-fw-hash: jyzlemhu4f
x-xss-protection: 1
cache-control: no-cache, must-revalidate, max-age=0
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
location: https://spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/img/logo-20200819.svg
x-redirect-by: WordPress
x-fw-server: Flywheel/5.1.0
referrer-policy: no-referrer-when-downgrade
x-fw-dynamic: TRUE
server: Flywheel/5.1.0
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:01 GMT
x-served-by: cache-hel1410030-HEL, cache-hel1410034-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 2
x-timer: S1715018521.101851,VS0,VE1
vary: accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2
|
|
| assets.adobedtm.com/15ff638fdec4/7a0c4d63ddff/launch-6cc731e967aa.min.js | 23.38.200.237 | 200 OK | 39 kB |
URL GET HTTP/2assets.adobedtm.com/15ff638fdec4/7a0c4d63ddff/launch-6cc731e967aa.min.js IP23.38.200.237:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerDigiCert Inc Subjectassets.adobedtm.com Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32737) Hash28e36b0d3edc795d06855558a03a9fc0 eae55a11c7fafe59bbeea51a94835396f6706f55 9390159ff2fca536463924af0de7c09313ecfd8e4ad614f1a5c7f4fd49b15d3d
GET /15ff638fdec4/7a0c4d63ddff/launch-6cc731e967aa.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spreadthepositive.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "28e36b0d3edc795d06855558a03a9fc0:1714998710.272773"
last-modified: Mon, 06 May 2024 12:31:50 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 38937
cache-control: max-age=3600
expires: Mon, 06 May 2024 19:02:01 GMT
date: Mon, 06 May 2024 18:02:01 GMT
access-control-allow-origin: https://spreadthepositive.net
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/img/loader-20200819.png | 151.101.130.159 | 301 Moved Permanently | 0 B |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/img/loader-20200819.png IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010//lll/SBB/index/resources/img/loader-20200819.png HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-fw-hash: jyzlemhu4f
x-xss-protection: 1
cache-control: no-cache, must-revalidate, max-age=0
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
location: https://spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/img/loader-20200819.png
x-redirect-by: WordPress
x-fw-server: Flywheel/5.1.0
referrer-policy: no-referrer-when-downgrade
x-fw-dynamic: TRUE
server: Flywheel/5.1.0
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:01 GMT
x-served-by: cache-hel1410031-HEL, cache-hel1410034-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 2
x-timer: S1715018521.105121,VS0,VE0
vary: accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2
|
|
| cdn.cookielaw.org/scripttemplates/otSDKStub.js | 104.19.178.52 | 200 OK | 6.9 kB |
URL GET HTTP/2cdn.cookielaw.org/scripttemplates/otSDKStub.js IP104.19.178.52:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerCloudflare, Inc. Subjectcookielaw.org FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31 ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (21229) Hash0cd317a7b9c520801230e944f7d50e41 e3985ff0c2e8b1eaacb617c7c5af5bebfcbceda6 6f08699117c1f15f6d35e7b4380d12d18a1881f075e177b5853b1017a3307544
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spreadthepositive.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 06 May 2024 18:02:01 GMT
content-type: application/javascript
content-length: 6882
content-encoding: gzip
content-md5: cfMMgqnnnYda745QhUdJrw==
last-modified: Thu, 02 May 2024 18:04:40 GMT
etag: 0x8DC6AD2569D1DB7
x-ms-request-id: 81aa8688-601e-0010-3e74-9d778f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 12641
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87fae0fcd8d11c06-OSL
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/primefaces/jquery/jquery-20200819.js | 151.101.130.159 | 301 Moved Permanently | 0 B |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/primefaces/jquery/jquery-20200819.js IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010//lll/SBB/index/resources/primefaces/jquery/jquery-20200819.js HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-fw-hash: jyzlemhu4f
x-xss-protection: 1
cache-control: no-cache, must-revalidate, max-age=0
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
location: https://spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/primefaces/jquery/jquery-20200819.js
x-redirect-by: WordPress
x-fw-server: Flywheel/5.1.0
referrer-policy: no-referrer-when-downgrade
x-fw-dynamic: TRUE
server: Flywheel/5.1.0
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:01 GMT
x-served-by: cache-hel1410023-HEL, cache-hel1410034-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 2
x-timer: S1715018521.108729,VS0,VE0
vary: accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/js/vendor/vendor.min-20200819.js | 151.101.130.159 | 301 Moved Permanently | 0 B |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/js/vendor/vendor.min-20200819.js IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010//lll/SBB/index/resources/js/vendor/vendor.min-20200819.js HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-fw-hash: jyzlemhu4f
x-xss-protection: 1
cache-control: no-cache, must-revalidate, max-age=0
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
location: https://spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/js/vendor/vendor.min-20200819.js
x-redirect-by: WordPress
x-fw-server: Flywheel/5.1.0
referrer-policy: no-referrer-when-downgrade
x-fw-dynamic: TRUE
server: Flywheel/5.1.0
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:01 GMT
x-served-by: cache-hel1410032-HEL, cache-hel1410034-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 2
x-timer: S1715018521.108967,VS0,VE1
vary: accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/js/swisspass.min-20200819.js | 151.101.130.159 | 301 Moved Permanently | 0 B |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/js/swisspass.min-20200819.js IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010//lll/SBB/index/resources/js/swisspass.min-20200819.js HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/js/swisspass.min-20200819.js
content-type: text/html; charset=UTF-8
x-fw-server: Flywheel/5.1.0
expires: Wed, 11 Jan 1984 05:00:00 GMT
x-fw-dynamic: TRUE
referrer-policy: no-referrer-when-downgrade
x-xss-protection: 1
x-fw-hash: jyzlemhu4f
x-fw-version: 5.0.0
x-content-type-options: nosniff
server: Flywheel/5.1.0
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:01 GMT
x-served-by: cache-hel1410023-HEL, cache-hel1410034-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 2
x-timer: S1715018521.109764,VS0,VE0
vary: accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/img/logo_text_de-20200819.svg | 151.101.130.159 | 404 Not Found | 17 kB |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/img/logo_text_de-20200819.svg IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
File typeHTML document, ASCII text, with very long lines (36767) Hashed19f7ee8fca0ce171c33091576265f1 a67a7486888d475c7bb5ee02005f822236a0001f 3cba71c56b759fa3de3348cb0bda8b8061c512ee1bc85e6166bb611987789483
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010/lll/SBB/index/resources/img/logo_text_de-20200819.svg HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: no-cache, must-revalidate, max-age=0
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
expires: Wed, 11 Jan 1984 05:00:00 GMT
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-xss-protection: 1
x-fw-hash: jyzlemhu4f
link: <https://spreadthepositive.net/wp-json/>; rel="https://api.w.org/"
x-fw-dynamic: TRUE
content-encoding: gzip
server: Flywheel/5.1.0
x-cacheable: NO:Not Cacheable
fastly-restarts: 1
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:03 GMT
x-served-by: cache-hel1410020-HEL, cache-hel1410034-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1715018521.231897,VS0,VE2173
vary: Accept-Encoding, accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 16927
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/img/logo-20200819.svg | 151.101.130.159 | 404 Not Found | 17 kB |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/img/logo-20200819.svg IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
File typeHTML document, ASCII text, with very long lines (36767) Hashed19f7ee8fca0ce171c33091576265f1 a67a7486888d475c7bb5ee02005f822236a0001f 3cba71c56b759fa3de3348cb0bda8b8061c512ee1bc85e6166bb611987789483
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010/lll/SBB/index/resources/img/logo-20200819.svg HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: no-cache, must-revalidate, max-age=0
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
expires: Wed, 11 Jan 1984 05:00:00 GMT
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-xss-protection: 1
x-fw-hash: jyzlemhu4f
link: <https://spreadthepositive.net/wp-json/>; rel="https://api.w.org/"
x-fw-dynamic: TRUE
content-encoding: gzip
server: Flywheel/5.1.0
x-cacheable: NO:Not Cacheable
fastly-restarts: 1
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:03 GMT
x-served-by: cache-hel1410028-HEL, cache-hel1410034-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1715018521.232469,VS0,VE2744
vary: Accept-Encoding, accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 16927
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/css/normal/app/sso.min-20200819.css | 151.101.130.159 | 404 Not Found | 17 kB |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/css/normal/app/sso.min-20200819.css IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
File typeHTML document, ASCII text, with very long lines (36767) Hashed19f7ee8fca0ce171c33091576265f1 a67a7486888d475c7bb5ee02005f822236a0001f 3cba71c56b759fa3de3348cb0bda8b8061c512ee1bc85e6166bb611987789483
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010/lll/SBB/index/resources/css/normal/app/sso.min-20200819.css HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: no-cache, must-revalidate, max-age=0
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
expires: Wed, 11 Jan 1984 05:00:00 GMT
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-xss-protection: 1
x-fw-hash: jyzlemhu4f
link: <https://spreadthepositive.net/wp-json/>; rel="https://api.w.org/"
x-fw-dynamic: TRUE
content-encoding: gzip
server: Flywheel/5.1.0
x-cacheable: NO:Not Cacheable
fastly-restarts: 1
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:04 GMT
x-served-by: cache-hel1410026-HEL, cache-hel1410034-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1715018521.225901,VS0,VE3557
vary: Accept-Encoding, accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 16927
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/js/vendor/vendor.min-20200819.js | 151.101.130.159 | 404 Not Found | 17 kB |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/js/vendor/vendor.min-20200819.js IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
File typeHTML document, ASCII text, with very long lines (36767) Hashed19f7ee8fca0ce171c33091576265f1 a67a7486888d475c7bb5ee02005f822236a0001f 3cba71c56b759fa3de3348cb0bda8b8061c512ee1bc85e6166bb611987789483
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010/lll/SBB/index/resources/js/vendor/vendor.min-20200819.js HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: no-cache, must-revalidate, max-age=0
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
expires: Wed, 11 Jan 1984 05:00:00 GMT
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-xss-protection: 1
x-fw-hash: jyzlemhu4f
link: <https://spreadthepositive.net/wp-json/>; rel="https://api.w.org/"
x-fw-dynamic: TRUE
content-encoding: gzip
server: Flywheel/5.1.0
x-cacheable: NO:Not Cacheable
fastly-restarts: 1
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:05 GMT
x-served-by: cache-hel1410022-HEL, cache-hel1410034-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1715018521.237834,VS0,VE3934
vary: Accept-Encoding, accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 16927
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/js/swisspass.min-20200819.js | 151.101.130.159 | 404 Not Found | 17 kB |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/js/swisspass.min-20200819.js IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
File typeHTML document, ASCII text, with very long lines (36767) Hashed19f7ee8fca0ce171c33091576265f1 a67a7486888d475c7bb5ee02005f822236a0001f 3cba71c56b759fa3de3348cb0bda8b8061c512ee1bc85e6166bb611987789483
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010/lll/SBB/index/resources/js/swisspass.min-20200819.js HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: no-cache, must-revalidate, max-age=0
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
expires: Wed, 11 Jan 1984 05:00:00 GMT
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-xss-protection: 1
x-fw-hash: jyzlemhu4f
link: <https://spreadthepositive.net/wp-json/>; rel="https://api.w.org/"
x-fw-dynamic: TRUE
content-encoding: gzip
server: Flywheel/5.1.0
x-cacheable: NO:Not Cacheable
fastly-restarts: 1
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:06 GMT
x-served-by: cache-hel1410027-HEL, cache-hel1410034-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1715018521.238585,VS0,VE4931
vary: Accept-Encoding, accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 16927
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/img/loader-20200819.png | 151.101.130.159 | 404 Not Found | 17 kB |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/img/loader-20200819.png IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
File typeHTML document, ASCII text, with very long lines (36767) Hashed19f7ee8fca0ce171c33091576265f1 a67a7486888d475c7bb5ee02005f822236a0001f 3cba71c56b759fa3de3348cb0bda8b8061c512ee1bc85e6166bb611987789483
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010/lll/SBB/index/resources/img/loader-20200819.png HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: no-cache, must-revalidate, max-age=0
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
expires: Wed, 11 Jan 1984 05:00:00 GMT
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-xss-protection: 1
x-fw-hash: jyzlemhu4f
link: <https://spreadthepositive.net/wp-json/>; rel="https://api.w.org/"
x-fw-dynamic: TRUE
content-encoding: gzip
server: Flywheel/5.1.0
x-cacheable: NO:Not Cacheable
fastly-restarts: 1
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:06 GMT
x-served-by: cache-hel1410032-HEL, cache-hel1410034-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1715018521.235037,VS0,VE5254
vary: Accept-Encoding, accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 16927
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/js/vendor/head/modernizr/modernizr-20200819.js | 151.101.130.159 | 404 Not Found | 17 kB |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/js/vendor/head/modernizr/modernizr-20200819.js IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
File typeHTML document, ASCII text, with very long lines (36767) Hashed19f7ee8fca0ce171c33091576265f1 a67a7486888d475c7bb5ee02005f822236a0001f 3cba71c56b759fa3de3348cb0bda8b8061c512ee1bc85e6166bb611987789483
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010/lll/SBB/index/resources/js/vendor/head/modernizr/modernizr-20200819.js HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: no-cache, must-revalidate, max-age=0
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
expires: Wed, 11 Jan 1984 05:00:00 GMT
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-xss-protection: 1
x-fw-hash: jyzlemhu4f
link: <https://spreadthepositive.net/wp-json/>; rel="https://api.w.org/"
x-fw-dynamic: TRUE
content-encoding: gzip
server: Flywheel/5.1.0
x-cacheable: NO:Not Cacheable
fastly-restarts: 1
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:06 GMT
x-served-by: cache-hel1410026-HEL, cache-hel1410034-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1715018521.228113,VS0,VE5465
vary: Accept-Encoding, accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 16927
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/js/vendor/head/modernizr/modernizr-20200820.js | 151.101.130.159 | 301 Moved Permanently | 0 B |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/js/vendor/head/modernizr/modernizr-20200820.js IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010//lll/SBB/index/resources/js/vendor/head/modernizr/modernizr-20200820.js HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-fw-hash: jyzlemhu4f
x-xss-protection: 1
cache-control: no-cache, must-revalidate, max-age=0
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
location: https://spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/js/vendor/head/modernizr/modernizr-20200820.js
x-redirect-by: WordPress
x-fw-server: Flywheel/5.1.0
referrer-policy: no-referrer-when-downgrade
x-fw-dynamic: TRUE
server: Flywheel/5.1.0
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:06 GMT
x-served-by: cache-hel1410023-HEL, cache-hel1410034-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 3
x-timer: S1715018527.749619,VS0,VE0
vary: accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2
|
|
| cdn.cookielaw.org/consent/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test.json | 104.19.178.52 | 200 OK | 1.6 kB |
URL GET HTTP/2cdn.cookielaw.org/consent/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test.json IP104.19.178.52:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerCloudflare, Inc. Subjectcookielaw.org FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31 ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
Hashceb89a4bb6d2556104d5390d9c40c4e8 ed82c2c6d5927f4d16b1c2ed579b235116c2cffb 4edef10152ecacb7f62929c0496ed48941bfe8bea02e6449cf720ff030addfc2
GET /consent/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://spreadthepositive.net
DNT: 1
Connection: keep-alive
Referer: https://spreadthepositive.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 06 May 2024 18:02:06 GMT
content-type: application/x-javascript
content-length: 1593
cf-ray: 87fae1201bf1568a-OSL
cf-cache-status: DYNAMIC
access-control-allow-origin: *
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DC4F059623FCE9
last-modified: Thu, 28 Mar 2024 09:00:59 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
content-md5: iwIpyq7vAuKwpHzHQHFt4g==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 80257676-801e-0011-1fdf-9f7672000000
x-ms-version: 2009-09-19
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
|
|
| geolocation.onetrust.com/cookieconsentpub/v1/geo/location | 172.64.155.119 | 200 OK | 110 kB |
URL GET HTTP/2geolocation.onetrust.com/cookieconsentpub/v1/geo/location IP172.64.155.119:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerCloudflare, Inc. Subjectonetrust.com Fingerprint9B:BC:B4:A8:C7:6C:6C:02:0F:FD:9F:06:F2:67:FB:DD:A1:E0:3F:47 ValidityMon, 13 Nov 2023 00:00:00 GMT - Tue, 12 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65379) Size110 kB (109764 bytes) Hash7830b9a3a830055127ae90d51643289f 67eb8322dbcbaef101104b3f9a9d7992c02ba134 e32001eb2d2d184e42755db2dfcf7db91b09ca01a54392093f7cc2bd2e9ab094
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://spreadthepositive.net
DNT: 1
Connection: keep-alive
Referer: https://spreadthepositive.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 06 May 2024 18:02:06 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87fae120f8ed712d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdn.cookielaw.org/consent/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test/ba92dbb5-02d7-443f-8481-b67e4427328b/de-ch.json | 104.19.178.52 | 200 OK | 15 kB |
URL GET HTTP/2cdn.cookielaw.org/consent/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test/ba92dbb5-02d7-443f-8481-b67e4427328b/de-ch.json IP104.19.178.52:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerCloudflare, Inc. Subjectcookielaw.org FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31 ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
Hash921e9dcb65ee956739cc0ac742bcb15c ebbdc7439729f9e843fc49a2084491eace91a4ca 61026706307e88772f61f6e05d84bd06cc8763a9ddf08d74787b506860ea0aaf
GET /consent/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test/ba92dbb5-02d7-443f-8481-b67e4427328b/de-ch.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://spreadthepositive.net
DNT: 1
Connection: keep-alive
Referer: https://spreadthepositive.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 06 May 2024 18:02:07 GMT
content-type: application/x-javascript
content-length: 14574
cf-ray: 87fae1221f97568a-OSL
cf-cache-status: DYNAMIC
access-control-allow-origin: *
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DC4F0599778E17
last-modified: Thu, 28 Mar 2024 09:01:04 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
content-md5: 9een+dQKiHe9pgo7gEa5EQ==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 4bbcbc74-901e-0086-2edf-9f15bb000000
x-ms-version: 2009-09-19
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
|
|
| cdn.cookielaw.org/scripttemplates/202403.1.0/assets/v2/otPcTab.json | 104.19.178.52 | 200 OK | 14 kB |
URL GET HTTP/2cdn.cookielaw.org/scripttemplates/202403.1.0/assets/v2/otPcTab.json IP104.19.178.52:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerCloudflare, Inc. Subjectcookielaw.org FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31 ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
Hash67eafe0ca141b9b52080c52d281966c4 93308b43a6234c01123881a7b02e9b014b082294 51dfbad7e1a227d3935016e5c4190e5e46e03daa4b249e5ded55f54235efbd7a
GET /scripttemplates/202403.1.0/assets/v2/otPcTab.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://spreadthepositive.net
DNT: 1
Connection: keep-alive
Referer: https://spreadthepositive.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 06 May 2024 18:02:07 GMT
content-type: application/json
content-length: 13599
content-encoding: gzip
content-md5: JqD83lHxEjWNdmDqKd9lzA==
last-modified: Thu, 21 Mar 2024 07:04:31 GMT
etag: 0x8DC4975281E71C8
x-ms-request-id: d343a1e9-c01e-0034-7e05-9feec1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87fae122a8ab568a-OSL
X-Firefox-Spdy: h2
|
|
| cdn.cookielaw.org/scripttemplates/202403.1.0/assets/otFlat.json | 104.19.178.52 | 200 OK | 3.0 kB |
URL GET HTTP/2cdn.cookielaw.org/scripttemplates/202403.1.0/assets/otFlat.json IP104.19.178.52:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerCloudflare, Inc. Subjectcookielaw.org FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31 ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
Hash9b1f8ddf85fb0cbfd926faacb1fc0405 ade7f952c70f07fd3497cd3e8656ca1f28c78633 f4aaa18c55c90588c5e828e56dcc6b2cb0acf9a4280494c7d1a53fc5e3669112
GET /scripttemplates/202403.1.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://spreadthepositive.net
DNT: 1
Connection: keep-alive
Referer: https://spreadthepositive.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 06 May 2024 18:02:07 GMT
content-type: application/json
content-length: 3041
content-encoding: gzip
content-md5: KLWFssuowJEtDumTaVZD/A==
last-modified: Thu, 21 Mar 2024 07:04:28 GMT
etag: 0x8DC497526A04834
x-ms-request-id: bd5c87d5-f01e-0051-6905-9f5f9c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87fae122a8a6568a-OSL
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/primefaces/jquery/jquery-20200819.js | 151.101.130.159 | 404 Not Found | 17 kB |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/primefaces/jquery/jquery-20200819.js IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
File typeHTML document, ASCII text, with very long lines (36767) Hashed19f7ee8fca0ce171c33091576265f1 a67a7486888d475c7bb5ee02005f822236a0001f 3cba71c56b759fa3de3348cb0bda8b8061c512ee1bc85e6166bb611987789483
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010/lll/SBB/index/resources/primefaces/jquery/jquery-20200819.js HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: no-cache, must-revalidate, max-age=0
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
expires: Wed, 11 Jan 1984 05:00:00 GMT
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-xss-protection: 1
x-fw-hash: jyzlemhu4f
link: <https://spreadthepositive.net/wp-json/>; rel="https://api.w.org/"
x-fw-dynamic: TRUE
content-encoding: gzip
server: Flywheel/5.1.0
x-cacheable: NO:Not Cacheable
fastly-restarts: 1
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:07 GMT
x-served-by: cache-hel1410024-HEL, cache-hel1410034-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1715018521.235834,VS0,VE6473
vary: Accept-Encoding, accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 16927
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/js/vendor/head/modernizr/modernizr-20200820.js | 151.101.130.159 | 404 Not Found | 17 kB |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/js/vendor/head/modernizr/modernizr-20200820.js IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
File typeHTML document, ASCII text, with very long lines (36767) Hashed19f7ee8fca0ce171c33091576265f1 a67a7486888d475c7bb5ee02005f822236a0001f 3cba71c56b759fa3de3348cb0bda8b8061c512ee1bc85e6166bb611987789483
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010/lll/SBB/index/resources/js/vendor/head/modernizr/modernizr-20200820.js HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: no-cache, must-revalidate, max-age=0
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
expires: Wed, 11 Jan 1984 05:00:00 GMT
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-xss-protection: 1
x-fw-hash: jyzlemhu4f
link: <https://spreadthepositive.net/wp-json/>; rel="https://api.w.org/"
x-fw-dynamic: TRUE
content-encoding: gzip
server: Flywheel/5.1.0
x-cacheable: NO:Not Cacheable
fastly-restarts: 1
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:08 GMT
x-served-by: cache-hel1410024-HEL, cache-hel1410034-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1715018527.780977,VS0,VE1498
vary: Accept-Encoding, accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 16927
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/img/loader-20200819.png | 151.101.130.159 | 301 Moved Permanently | 0 B |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/img/loader-20200819.png IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010//lll/SBB/index/resources/img/loader-20200819.png HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Mon+May+06+2024+18%3A02%3A07+GMT%2B0000+(GMT)&version=202403.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=0cfaf64e-7702-4a1b-bb0c-4ccb3943162c&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fspreadthepositive.net%2Fwp-content%2Fplugins%2F010%2F%2Flll%2FSBB%2Findex%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-fw-hash: jyzlemhu4f
x-xss-protection: 1
cache-control: no-cache, must-revalidate, max-age=0
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
location: https://spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/img/loader-20200819.png
x-redirect-by: WordPress
x-fw-server: Flywheel/5.1.0
referrer-policy: no-referrer-when-downgrade
x-fw-dynamic: TRUE
server: Flywheel/5.1.0
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:08 GMT
x-served-by: cache-hel1410031-HEL, cache-hel1410034-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 3
x-timer: S1715018528.322850,VS0,VE1
vary: accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/img/logo_text_de-20200819.svg | 151.101.130.159 | 301 Moved Permanently | 0 B |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/img/logo_text_de-20200819.svg IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010//lll/SBB/index/resources/img/logo_text_de-20200819.svg HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Mon+May+06+2024+18%3A02%3A07+GMT%2B0000+(GMT)&version=202403.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=0cfaf64e-7702-4a1b-bb0c-4ccb3943162c&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fspreadthepositive.net%2Fwp-content%2Fplugins%2F010%2F%2Flll%2FSBB%2Findex%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-fw-hash: jyzlemhu4f
x-xss-protection: 1
cache-control: no-cache, must-revalidate, max-age=0
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
location: https://spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/img/logo_text_de-20200819.svg
x-redirect-by: WordPress
x-fw-server: Flywheel/5.1.0
referrer-policy: no-referrer-when-downgrade
x-fw-dynamic: TRUE
server: Flywheel/5.1.0
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:08 GMT
x-served-by: cache-hel1410022-HEL, cache-hel1410034-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 3
x-timer: S1715018528.323406,VS0,VE1
vary: accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2
|
|
| cdn.cookielaw.org/scripttemplates/202403.1.0/assets/otCommonStyles.css | 104.19.178.52 | 200 OK | 4.1 kB |
URL GET HTTP/2cdn.cookielaw.org/scripttemplates/202403.1.0/assets/otCommonStyles.css IP104.19.178.52:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerCloudflare, Inc. Subjectcookielaw.org FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31 ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typeASCII text, with very long lines (24823), with no line terminators Hashe04ad89975c535b30bae773d0eb0d3b2 0c72555d0fd844150b6ec407a57da2d29bf380e2 06c0edbfc1b871fb45195265f5faad3e23191305f6ff2125557a9fbc287c8992
GET /scripttemplates/202403.1.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://spreadthepositive.net
DNT: 1
Connection: keep-alive
Referer: https://spreadthepositive.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 06 May 2024 18:02:07 GMT
content-type: text/css
content-md5: 4ErYmXXFNbMLrnc9DrDTsg==
last-modified: Thu, 21 Mar 2024 07:04:40 GMT
x-ms-request-id: cdf4a3f6-401e-0084-5d05-9f1741000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87fae122b8b0568a-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/primefaces/jquery/jquery-20200819.js | 151.101.130.159 | 301 Moved Permanently | 0 B |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/primefaces/jquery/jquery-20200819.js IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010//lll/SBB/index/resources/primefaces/jquery/jquery-20200819.js HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Mon+May+06+2024+18%3A02%3A07+GMT%2B0000+(GMT)&version=202403.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=0cfaf64e-7702-4a1b-bb0c-4ccb3943162c&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fspreadthepositive.net%2Fwp-content%2Fplugins%2F010%2F%2Flll%2FSBB%2Findex%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-fw-hash: jyzlemhu4f
x-xss-protection: 1
cache-control: no-cache, must-revalidate, max-age=0
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
location: https://spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/primefaces/jquery/jquery-20200819.js
x-redirect-by: WordPress
x-fw-server: Flywheel/5.1.0
referrer-policy: no-referrer-when-downgrade
x-fw-dynamic: TRUE
server: Flywheel/5.1.0
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:08 GMT
x-served-by: cache-hel1410023-HEL, cache-hel1410034-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 3
x-timer: S1715018528.335461,VS0,VE0
vary: accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/img/login_bg.jpg | 151.101.130.159 | 301 Moved Permanently | 0 B |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/img/login_bg.jpg IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010//lll/SBB/index/resources/img/login_bg.jpg HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Mon+May+06+2024+18%3A02%3A07+GMT%2B0000+(GMT)&version=202403.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=0cfaf64e-7702-4a1b-bb0c-4ccb3943162c&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fspreadthepositive.net%2Fwp-content%2Fplugins%2F010%2F%2Flll%2FSBB%2Findex%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-fw-hash: jyzlemhu4f
x-xss-protection: 1
cache-control: no-cache, must-revalidate, max-age=0
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
location: https://spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/img/login_bg.jpg
x-redirect-by: WordPress
x-fw-server: Flywheel/5.1.0
referrer-policy: no-referrer-when-downgrade
x-fw-dynamic: TRUE
server: Flywheel/5.1.0
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:08 GMT
x-served-by: cache-hel1410033-HEL, cache-hel1410034-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 0
x-timer: S1715018528.341585,VS0,VE1
vary: accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/img/logo-20200819.svg | 151.101.130.159 | 404 Not Found | 17 kB |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/img/logo-20200819.svg IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
File typeHTML document, ASCII text, with very long lines (36767) Hashed19f7ee8fca0ce171c33091576265f1 a67a7486888d475c7bb5ee02005f822236a0001f 3cba71c56b759fa3de3348cb0bda8b8061c512ee1bc85e6166bb611987789483
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010/lll/SBB/index/resources/img/logo-20200819.svg HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Mon+May+06+2024+18%3A02%3A07+GMT%2B0000+(GMT)&version=202403.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=0cfaf64e-7702-4a1b-bb0c-4ccb3943162c&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fspreadthepositive.net%2Fwp-content%2Fplugins%2F010%2F%2Flll%2FSBB%2Findex%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: no-cache, must-revalidate, max-age=0
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
expires: Wed, 11 Jan 1984 05:00:00 GMT
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-xss-protection: 1
x-fw-hash: jyzlemhu4f
link: <https://spreadthepositive.net/wp-json/>; rel="https://api.w.org/"
x-fw-dynamic: TRUE
content-encoding: gzip
server: Flywheel/5.1.0
x-cacheable: NO:Not Cacheable
fastly-restarts: 1
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:09 GMT
x-served-by: cache-hel1410028-HEL, cache-hel1410034-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1715018528.378657,VS0,VE1484
vary: Accept-Encoding, accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 16927
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/img/loader-20200819.png | 151.101.130.159 | 404 Not Found | 17 kB |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/img/loader-20200819.png IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
File typeHTML document, ASCII text, with very long lines (36767) Hashed19f7ee8fca0ce171c33091576265f1 a67a7486888d475c7bb5ee02005f822236a0001f 3cba71c56b759fa3de3348cb0bda8b8061c512ee1bc85e6166bb611987789483
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010/lll/SBB/index/resources/img/loader-20200819.png HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Mon+May+06+2024+18%3A02%3A07+GMT%2B0000+(GMT)&version=202403.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=0cfaf64e-7702-4a1b-bb0c-4ccb3943162c&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fspreadthepositive.net%2Fwp-content%2Fplugins%2F010%2F%2Flll%2FSBB%2Findex%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: no-cache, must-revalidate, max-age=0
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
expires: Wed, 11 Jan 1984 05:00:00 GMT
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-xss-protection: 1
x-fw-hash: jyzlemhu4f
link: <https://spreadthepositive.net/wp-json/>; rel="https://api.w.org/"
x-fw-dynamic: TRUE
content-encoding: gzip
server: Flywheel/5.1.0
x-cacheable: NO:Not Cacheable
fastly-restarts: 1
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:10 GMT
x-served-by: cache-hel1410032-HEL, cache-hel1410034-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1715018528.376601,VS0,VE1781
vary: Accept-Encoding, accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 16927
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/img/logo_text_de-20200819.svg | 151.101.130.159 | 404 Not Found | 17 kB |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/img/logo_text_de-20200819.svg IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
File typeHTML document, ASCII text, with very long lines (36767) Hashed19f7ee8fca0ce171c33091576265f1 a67a7486888d475c7bb5ee02005f822236a0001f 3cba71c56b759fa3de3348cb0bda8b8061c512ee1bc85e6166bb611987789483
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010/lll/SBB/index/resources/img/logo_text_de-20200819.svg HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Mon+May+06+2024+18%3A02%3A07+GMT%2B0000+(GMT)&version=202403.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=0cfaf64e-7702-4a1b-bb0c-4ccb3943162c&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fspreadthepositive.net%2Fwp-content%2Fplugins%2F010%2F%2Flll%2FSBB%2Findex%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: no-cache, must-revalidate, max-age=0
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
expires: Wed, 11 Jan 1984 05:00:00 GMT
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-xss-protection: 1
x-fw-hash: jyzlemhu4f
link: <https://spreadthepositive.net/wp-json/>; rel="https://api.w.org/"
x-fw-dynamic: TRUE
content-encoding: gzip
server: Flywheel/5.1.0
x-cacheable: NO:Not Cacheable
fastly-restarts: 1
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:10 GMT
x-served-by: cache-hel1410020-HEL, cache-hel1410034-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1715018528.377767,VS0,VE1997
vary: Accept-Encoding, accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 16927
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/primefaces/jquery/jquery-20200819.js | 151.101.130.159 | 404 Not Found | 17 kB |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/primefaces/jquery/jquery-20200819.js IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
File typeHTML document, ASCII text, with very long lines (36767) Hashed19f7ee8fca0ce171c33091576265f1 a67a7486888d475c7bb5ee02005f822236a0001f 3cba71c56b759fa3de3348cb0bda8b8061c512ee1bc85e6166bb611987789483
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010/lll/SBB/index/resources/primefaces/jquery/jquery-20200819.js HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Mon+May+06+2024+18%3A02%3A07+GMT%2B0000+(GMT)&version=202403.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=0cfaf64e-7702-4a1b-bb0c-4ccb3943162c&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fspreadthepositive.net%2Fwp-content%2Fplugins%2F010%2F%2Flll%2FSBB%2Findex%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: no-cache, must-revalidate, max-age=0
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
expires: Wed, 11 Jan 1984 05:00:00 GMT
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-xss-protection: 1
x-fw-hash: jyzlemhu4f
link: <https://spreadthepositive.net/wp-json/>; rel="https://api.w.org/"
x-fw-dynamic: TRUE
content-encoding: gzip
server: Flywheel/5.1.0
x-cacheable: NO:Not Cacheable
fastly-restarts: 1
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:11 GMT
x-served-by: cache-hel1410024-HEL, cache-hel1410034-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1715018528.390255,VS0,VE3079
vary: Accept-Encoding, accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 16927
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/js/vendor/vendor.min-20200819.js | 151.101.130.159 | 301 Moved Permanently | 0 B |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/js/vendor/vendor.min-20200819.js IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010//lll/SBB/index/resources/js/vendor/vendor.min-20200819.js HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Mon+May+06+2024+18%3A02%3A07+GMT%2B0000+(GMT)&version=202403.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=0cfaf64e-7702-4a1b-bb0c-4ccb3943162c&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fspreadthepositive.net%2Fwp-content%2Fplugins%2F010%2F%2Flll%2FSBB%2Findex%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-fw-hash: jyzlemhu4f
x-xss-protection: 1
cache-control: no-cache, must-revalidate, max-age=0
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
location: https://spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/js/vendor/vendor.min-20200819.js
x-redirect-by: WordPress
x-fw-server: Flywheel/5.1.0
referrer-policy: no-referrer-when-downgrade
x-fw-dynamic: TRUE
server: Flywheel/5.1.0
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:11 GMT
x-served-by: cache-hel1410032-HEL, cache-hel1410034-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 3
x-timer: S1715018532.509033,VS0,VE0
vary: accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/img/login_bg.jpg | 151.101.130.159 | 404 Not Found | 17 kB |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/img/login_bg.jpg IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
File typeHTML document, ASCII text, with very long lines (36767) Hashed19f7ee8fca0ce171c33091576265f1 a67a7486888d475c7bb5ee02005f822236a0001f 3cba71c56b759fa3de3348cb0bda8b8061c512ee1bc85e6166bb611987789483
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010/lll/SBB/index/resources/img/login_bg.jpg HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Mon+May+06+2024+18%3A02%3A07+GMT%2B0000+(GMT)&version=202403.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=0cfaf64e-7702-4a1b-bb0c-4ccb3943162c&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fspreadthepositive.net%2Fwp-content%2Fplugins%2F010%2F%2Flll%2FSBB%2Findex%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: no-cache, must-revalidate, max-age=0
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
expires: Wed, 11 Jan 1984 05:00:00 GMT
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-xss-protection: 1
x-fw-hash: jyzlemhu4f
link: <https://spreadthepositive.net/wp-json/>; rel="https://api.w.org/"
x-fw-dynamic: TRUE
content-encoding: gzip
server: Flywheel/5.1.0
x-cacheable: NO:Not Cacheable
fastly-restarts: 1
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:11 GMT
x-served-by: cache-hel1410023-HEL, cache-hel1410034-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1715018528.395863,VS0,VE3171
vary: Accept-Encoding, accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 16927
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/ico/apple-touch-icon-precomposed-20200819.png | 151.101.130.159 | 301 Moved Permanently | 0 B |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/ico/apple-touch-icon-precomposed-20200819.png IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010//lll/SBB/index/resources/ico/apple-touch-icon-precomposed-20200819.png HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Mon+May+06+2024+18%3A02%3A07+GMT%2B0000+(GMT)&version=202403.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=0cfaf64e-7702-4a1b-bb0c-4ccb3943162c&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fspreadthepositive.net%2Fwp-content%2Fplugins%2F010%2F%2Flll%2FSBB%2Findex%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-fw-hash: jyzlemhu4f
x-xss-protection: 1
cache-control: no-cache, must-revalidate, max-age=0
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
location: https://spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/ico/apple-touch-icon-precomposed-20200819.png
x-redirect-by: WordPress
x-fw-server: Flywheel/5.1.0
referrer-policy: no-referrer-when-downgrade
x-fw-dynamic: TRUE
server: Flywheel/5.1.0
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:12 GMT
x-served-by: cache-hel1410025-HEL, cache-hel1410034-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 0
x-timer: S1715018533.803880,VS0,VE1
vary: accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/img/favicon.ico?v=20140709-1126 | 151.101.130.159 | 301 Moved Permanently | 0 B |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/img/favicon.ico?v=20140709-1126 IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010//lll/SBB/index/resources/img/favicon.ico?v=20140709-1126 HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Mon+May+06+2024+18%3A02%3A07+GMT%2B0000+(GMT)&version=202403.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=0cfaf64e-7702-4a1b-bb0c-4ccb3943162c&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fspreadthepositive.net%2Fwp-content%2Fplugins%2F010%2F%2Flll%2FSBB%2Findex%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-fw-hash: jyzlemhu4f
x-xss-protection: 1
cache-control: no-cache, must-revalidate, max-age=0
x-content-type-options: nosniff
location: https://spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/img/favicon.ico?v=20140709-1126
x-redirect-by: WordPress
x-fw-server: Flywheel/5.1.0
referrer-policy: no-referrer-when-downgrade
x-fw-dynamic: TRUE
server: Flywheel/5.1.0
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:12 GMT
x-served-by: cache-hel1410022-HEL, cache-hel1410034-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 0
x-timer: S1715018533.804658,VS0,VE1
vary: accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/js/vendor/vendor.min-20200819.js | 151.101.130.159 | 404 Not Found | 17 kB |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/js/vendor/vendor.min-20200819.js IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
File typeHTML document, ASCII text, with very long lines (36767) Hashed19f7ee8fca0ce171c33091576265f1 a67a7486888d475c7bb5ee02005f822236a0001f 3cba71c56b759fa3de3348cb0bda8b8061c512ee1bc85e6166bb611987789483
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010/lll/SBB/index/resources/js/vendor/vendor.min-20200819.js HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Mon+May+06+2024+18%3A02%3A07+GMT%2B0000+(GMT)&version=202403.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=0cfaf64e-7702-4a1b-bb0c-4ccb3943162c&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fspreadthepositive.net%2Fwp-content%2Fplugins%2F010%2F%2Flll%2FSBB%2Findex%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: no-cache, must-revalidate, max-age=0
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
expires: Wed, 11 Jan 1984 05:00:00 GMT
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-xss-protection: 1
x-fw-hash: jyzlemhu4f
link: <https://spreadthepositive.net/wp-json/>; rel="https://api.w.org/"
x-fw-dynamic: TRUE
content-encoding: gzip
server: Flywheel/5.1.0
x-cacheable: NO:Not Cacheable
fastly-restarts: 1
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:16 GMT
x-served-by: cache-hel1410022-HEL, cache-hel1410034-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1715018532.541954,VS0,VE4743
vary: Accept-Encoding, accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 16927
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/js/swisspass.min-20200819.js | 151.101.130.159 | 301 Moved Permanently | 0 B |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/resources/js/swisspass.min-20200819.js IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010//lll/SBB/index/resources/js/swisspass.min-20200819.js HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Mon+May+06+2024+18%3A02%3A07+GMT%2B0000+(GMT)&version=202403.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=0cfaf64e-7702-4a1b-bb0c-4ccb3943162c&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fspreadthepositive.net%2Fwp-content%2Fplugins%2F010%2F%2Flll%2FSBB%2Findex%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/js/swisspass.min-20200819.js
content-type: text/html; charset=UTF-8
x-fw-server: Flywheel/5.1.0
expires: Wed, 11 Jan 1984 05:00:00 GMT
x-fw-dynamic: TRUE
referrer-policy: no-referrer-when-downgrade
x-xss-protection: 1
x-fw-hash: jyzlemhu4f
x-fw-version: 5.0.0
x-content-type-options: nosniff
server: Flywheel/5.1.0
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:16 GMT
x-served-by: cache-hel1410023-HEL, cache-hel1410034-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 3
x-timer: S1715018536.326977,VS0,VE0
vary: accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/ico/apple-touch-icon-precomposed-20200819.png | 151.101.130.159 | 404 Not Found | 17 kB |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/ico/apple-touch-icon-precomposed-20200819.png IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
File typeHTML document, ASCII text, with very long lines (36767) Hashed19f7ee8fca0ce171c33091576265f1 a67a7486888d475c7bb5ee02005f822236a0001f 3cba71c56b759fa3de3348cb0bda8b8061c512ee1bc85e6166bb611987789483
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010/lll/SBB/index/resources/ico/apple-touch-icon-precomposed-20200819.png HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Mon+May+06+2024+18%3A02%3A07+GMT%2B0000+(GMT)&version=202403.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=0cfaf64e-7702-4a1b-bb0c-4ccb3943162c&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fspreadthepositive.net%2Fwp-content%2Fplugins%2F010%2F%2Flll%2FSBB%2Findex%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: no-cache, must-revalidate, max-age=0
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
expires: Wed, 11 Jan 1984 05:00:00 GMT
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-xss-protection: 1
x-fw-hash: jyzlemhu4f
link: <https://spreadthepositive.net/wp-json/>; rel="https://api.w.org/"
x-fw-dynamic: TRUE
content-encoding: gzip
server: Flywheel/5.1.0
x-cacheable: NO:Not Cacheable
fastly-restarts: 1
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:16 GMT
x-served-by: cache-hel1410025-HEL, cache-hel1410034-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1715018533.845336,VS0,VE3825
vary: Accept-Encoding, accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 16927
X-Firefox-Spdy: h2
|
|
| spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/img/favicon.ico?v=20140709-1126 | 151.101.130.159 | 404 Not Found | 17 kB |
URL GET HTTP/2spreadthepositive.net/wp-content/plugins/010/lll/SBB/index/resources/img/favicon.ico?v=20140709-1126 IP151.101.130.159:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerLet's Encrypt Subjectspreadthepositive.net Fingerprint02:5F:70:79:2A:E2:62:E1:74:A5:F6:F3:70:C5:A9:D3:6A:EA:19:B1 ValidityTue, 26 Mar 2024 18:01:23 GMT - Mon, 24 Jun 2024 18:01:22 GMT
File typeHTML document, ASCII text, with very long lines (36767) Hashed19f7ee8fca0ce171c33091576265f1 a67a7486888d475c7bb5ee02005f822236a0001f 3cba71c56b759fa3de3348cb0bda8b8061c512ee1bc85e6166bb611987789483
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/010/lll/SBB/index/resources/img/favicon.ico?v=20140709-1126 HTTP/1.1
Host: spreadthepositive.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/
DNT: 1
Connection: keep-alive
Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Mon+May+06+2024+18%3A02%3A07+GMT%2B0000+(GMT)&version=202403.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=0cfaf64e-7702-4a1b-bb0c-4ccb3943162c&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fspreadthepositive.net%2Fwp-content%2Fplugins%2F010%2F%2Flll%2FSBB%2Findex%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: no-cache, must-revalidate, max-age=0
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
x-xss-protection: 1
x-fw-hash: jyzlemhu4f
link: <https://spreadthepositive.net/wp-json/>; rel="https://api.w.org/"
x-fw-dynamic: TRUE
content-encoding: gzip
server: Flywheel/5.1.0
x-cacheable: NO:Not Cacheable
fastly-restarts: 1
accept-ranges: bytes
date: Mon, 06 May 2024 18:02:16 GMT
x-served-by: cache-hel1410023-HEL, cache-hel1410034-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1715018533.846853,VS0,VE3828
vary: Accept-Encoding, accept, content-type
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 16927
X-Firefox-Spdy: h2
|
|
| cdn.cookielaw.org/scripttemplates/202403.1.0/otBannerSdk.js | 104.19.178.52 | 200 OK | 453 kB |
URL GET HTTP/2cdn.cookielaw.org/scripttemplates/202403.1.0/otBannerSdk.js IP104.19.178.52:443
Requested byhttps://spreadthepositive.net/wp-content/plugins/010//lll/SBB/index/ CertificateIssuerCloudflare, Inc. Subjectcookielaw.org FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31 ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
Size453 kB (452757 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /scripttemplates/202403.1.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://spreadthepositive.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 06 May 2024 18:02:06 GMT
content-type: application/javascript
content-length: 109676
content-encoding: gzip
content-md5: s7qm2vbmUNglr6Jt5k9KHA==
last-modified: Thu, 21 Mar 2024 07:04:35 GMT
etag: 0x8DC49752A75EB01
x-ms-request-id: f463857b-001e-005d-3a08-7c3307000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 84230
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87fae1217a7b1c06-OSL
X-Firefox-Spdy: h2
|
|