Now this is interesting. In the Chrome 44 release that happened just yesterday, it appears the browser got a small bug significant change. It's now sending the HTTPS: 1 header on every request by default. This was probably meant as a security improvement, to suggest HTTPs to the server wherever possible, but it's breaking WordPress …