Overview

URL maitririverproductions.com/
IP45.79.7.19
ASNLinode, LLC
Location United States
Report completed2022-09-26 12:31:38 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-26 2 maitririverproductions.com/ Phishing
2022-09-26 2 maitririverproductions.com/components/com_sppagebuilder/assets/css/animate. (...) Phishing
2022-09-26 2 maitririverproductions.com/components/com_sppagebuilder/assets/css/sppagebu (...) Phishing
2022-09-26 2 maitririverproductions.com/media/jui/js/jquery-noconflict.js?c46fe0df71e67a (...) Phishing
2022-09-26 2 maitririverproductions.com/media/jui/js/jquery-migrate.min.js?c46fe0df71e67 (...) Phishing
2022-09-26 2 maitririverproductions.com/components/com_sppagebuilder/assets/js/jquery.pa (...) Phishing
2022-09-26 2 maitririverproductions.com/components/com_sppagebuilder/assets/js/sppagebui (...) Phishing
2022-09-26 2 maitririverproductions.com/components/com_sppagebuilder/assets/js/jquery.ma (...) Phishing
2022-09-26 2 maitririverproductions.com/templates/shaper_helixultimate/js/main.js Phishing
2022-09-26 2 maitririverproductions.com/templates/shaper_helixultimate/js/bootstrap.bund (...) Phishing
2022-09-26 2 maitririverproductions.com/media/com_easyblog/scripts/site-5.4.13-basic.min.js Phishing
2022-09-26 2 maitririverproductions.com/media/com_easyblog/scripts/vendors/ui/position.min.js Phishing
2022-09-26 2 maitririverproductions.com/components/com_sppagebuilder/assets/webfonts/fa- (...) Phishing
2022-09-26 2 maitririverproductions.com/components/com_sppagebuilder/assets/webfonts/fa- (...) Phishing
2022-09-26 2 maitririverproductions.com/components/com_sppagebuilder/assets/webfonts/fa- (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (18)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-26 08:18:12 UTC 143.204.55.35
mnemonic passive DNS maitririverproductions.com (34) 0 2020-03-13 19:56:28 UTC 2022-09-08 10:27:47 UTC 45.79.7.19 Unknown ranking
mnemonic passive DNS www.facebook.com (1) 99 2017-01-30 05:00:00 UTC 2022-09-26 04:27:04 UTC 157.240.200.35
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-26 04:28:07 UTC 34.117.237.239
mnemonic passive DNS ocsp.digicert.com (3) 86 2012-05-21 07:02:23 UTC 2022-09-26 10:05:36 UTC 93.184.220.29
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-26 05:45:55 UTC 52.41.98.34
mnemonic passive DNS player.vimeo.com (2) 1858 2013-09-26 03:16:08 UTC 2022-09-26 04:35:35 UTC 162.159.128.61
mnemonic passive DNS f.vimeocdn.com (3) 3234 2014-04-09 18:24:34 UTC 2022-09-26 05:01:10 UTC 151.101.86.109
mnemonic passive DNS img-getpocket.cdn.mozilla.net (7) 1631 2017-09-01 03:40:57 UTC 2022-09-26 04:43:33 UTC 34.120.237.76
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-26 04:35:11 UTC 23.36.77.32
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-26 04:26:56 UTC 143.204.55.35
mnemonic passive DNS ocsp.pki.goog (5) 175 2017-06-14 07:23:31 UTC 2022-09-26 04:27:13 UTC 142.250.74.3
mnemonic passive DNS www.googletagmanager.com (2) 75 2012-12-25 14:52:06 UTC 2022-09-26 04:27:27 UTC 142.250.74.72
mnemonic passive DNS i.vimeocdn.com (2) 3126 2014-03-27 22:24:57 UTC 2022-09-26 04:35:38 UTC 151.101.86.109
mnemonic passive DNS connect.facebook.net (1) 139 2012-05-22 02:51:28 UTC 2022-09-26 04:27:04 UTC 157.240.200.14
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-26 08:24:59 UTC 142.250.74.174
mnemonic passive DNS region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-09-26 05:04:38 UTC 216.239.32.36 Domain (google-analytics.com) ranked at: 8401
mnemonic passive DNS fresnel.vimeocdn.com (2) 3128 2014-12-13 09:04:00 UTC 2022-09-26 04:59:52 UTC 34.120.202.204


Recent reports on same IP/ASN/Domain/Screenshot

Last 4 reports on IP: 45.79.7.19

Date UQ / IDS / BL URL IP
2022-11-22 19:34:16 +0000
0 - 0 - 27 balanceepigeneticorthodontics.com/patient-res (...) 45.79.7.19
2022-09-26 12:31:38 +0000
0 - 0 - 15 maitririverproductions.com/ 45.79.7.19
2022-09-09 09:03:43 +0000
0 - 0 - 2 hanadaseason.com/templates/system/images/Jidu (...) 45.79.7.19
2022-09-04 19:38:12 +0000
0 - 0 - 27 balanceepigeneticorthodontics.com/patient-res (...) 45.79.7.19

Last 5 reports on ASN: Linode, LLC

Date UQ / IDS / BL URL IP
2022-12-09 01:32:38 +0000
0 - 0 - 1 www.drop-box.com/mtm/direct/.eJxti7EOgjAURf-l (...) 45.33.20.235
2022-12-09 01:14:41 +0000
0 - 0 - 2 172.104.10.219/ 172.104.10.219
2022-12-09 01:04:05 +0000
0 - 0 - 20 mmgrenos.com/ 172.105.17.208
2022-12-09 00:25:21 +0000
0 - 0 - 2 youthlsut.club/mtm/direct/.eJxljUsSgjAYg-_ShQ (...) 45.33.2.79
2022-12-09 00:25:20 +0000
0 - 0 - 4 webtoon.copin.com/mtm/direct/.ejxljzfvgzauhp- (...) 173.255.194.134

Last 1 reports on domain: maitririverproductions.com

Date UQ / IDS / BL URL IP
2022-09-26 12:31:38 +0000
0 - 0 - 15 maitririverproductions.com/ 45.79.7.19

No other reports with similar screenshot



JavaScript

Executed Scripts (28)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (75)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 12:15:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FTti3bKyXcO0pwmbQ5rxgXZMhYcaQvomYTLAxxkSlbe8hykduH0s1A==
Age: 969


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2284
Expires: Mon, 26 Sep 2022 13:09:31 GMT
Date: Mon, 26 Sep 2022 12:31:27 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 04:35:16 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 26d3PHLrFO2ZndXA_yU0eE8YKuTdMRqhyVbdHOY4EwoYTvPVe1xnHg==
age: 28572
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET / HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: text/html; charset=utf-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
set-cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6; path=/; HttpOnly
permissions-policy: interest-cohort=()
expires: Wed, 17 Aug 2005 00:00:00 GMT
last-modified: Mon, 26 Sep 2022 12:31:27 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Mon, 26 Sep 2022 12:31:27 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (11556), with CRLF, CR, LF line terminators
Size:   10961
Md5:    5c63740328a9df5d25d4379437238f33
Sha1:   9991e778c5227a3d641da4dc2c25572451ab47e6
Sha256: 1fddca8e43bec68957516d05f77f8954fa49fbbbcd36d493872ccd1e784a72e5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 26 Sep 2022 12:31:27 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /components/com_sppagebuilder/assets/css/font-awesome-v4-shims.css?6bd2d20028a6b817756c6fc32b24e316 HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:27 GMT
last-modified: Fri, 11 Jun 2021 18:04:05 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 4189
date: Mon, 26 Sep 2022 12:31:27 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text, with very long lines (26519)
Size:   4189
Md5:    8d608b6d6b5af456f03a8eb9f6b53f90
Sha1:   bc9067cb075f39266884da15fba90a8fead9b7df
Sha256: dc8c054bb060a39779733632f376ad452a5b7b174046d8a17a13cbd3f6a78984
                                        
                                            GET /components/com_sppagebuilder/assets/css/font-awesome-5.min.css?6bd2d20028a6b817756c6fc32b24e316 HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:27 GMT
last-modified: Fri, 11 Jun 2021 18:04:05 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 12656
date: Mon, 26 Sep 2022 12:31:27 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text, with very long lines (58041)
Size:   12656
Md5:    6dff985c3a5be8f4c5883e39618c7471
Sha1:   0ad6c71b96dba46fff788f5cf9771d5efac2f395
Sha256: 58d96bd794091f0f6ffea33333f5a7bf201464302bd50abcb87befd8c9746c35
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 12:31:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 12:31:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtag/js?id=G-WFS178TB9Z HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://maitririverproductions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 26 Sep 2022 12:31:27 GMT
expires: Mon, 26 Sep 2022 12:31:27 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75223
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (20189)
Size:   75223
Md5:    bdea2f0b05ba896160658adc3986bffe
Sha1:   8c23de5ce911ac3cb4623a042d06460a1611c988
Sha256: ae0e212f14ce7882b6cfcc76a446152de5d6c5d2de93fad366f9dec4fca51aa0
                                        
                                            GET /gtag/js?id=UA-159341832-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://maitririverproductions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 26 Sep 2022 12:31:27 GMT
expires: Mon, 26 Sep 2022 12:31:27 GMT
cache-control: private, max-age=900
last-modified: Mon, 26 Sep 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42258
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1720)
Size:   42258
Md5:    67ef277ff84efb50f333aa5ce8065567
Sha1:   7ea538b57c2c9abf854e2c02903de2973d1beb9f
Sha256: 70b969f6c238140a46856e7f765427516f4127d0f56e2762dc8a71048b5af264
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Mon, 26 Sep 2022 12:10:46 GMT
Expires: Mon, 26 Sep 2022 12:20:40 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ifIap6BUBH6tAW9qbVCNfcMW2XnmBf_054wj7f4ZlBPqURDoRODKkw==
Age: 1241


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /components/com_sppagebuilder/assets/css/magnific-popup.css HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:27 GMT
last-modified: Fri, 11 Jun 2021 18:04:05 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 1704
date: Mon, 26 Sep 2022 12:31:27 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text, with very long lines (5920), with no line terminators
Size:   1704
Md5:    89c4cd1722164846c253a607b62fa9ee
Sha1:   e86a35cac4f3e7e4ea01108cb45b5d071abb1bfa
Sha256: ec90bb3e7b9238948d9677c88a0208ac1dff250a46d121839899d5d97c8cf02e
                                        
                                            GET /components/com_sppagebuilder/assets/css/animate.min.css?6bd2d20028a6b817756c6fc32b24e316 HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:27 GMT
last-modified: Fri, 11 Jun 2021 18:04:06 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 3717
date: Mon, 26 Sep 2022 12:31:27 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text, with very long lines (53270)
Size:   3717
Md5:    22f828ee4d3b998cff169e6a426a5af7
Sha1:   ad2c4728faf4347c14408b06c2568c5633bc9c0b
Sha256: c79ba163d075ea524ac2326eba9e54430bf523b24fe8741c84b41daae74946d3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /plugins/system/helixultimate/assets/css/system-j3.min.css HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:27 GMT
last-modified: Wed, 19 Jan 2022 14:06:25 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 733
date: Mon, 26 Sep 2022 12:31:27 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text, with very long lines (2180), with no line terminators
Size:   733
Md5:    7956271e217ed0145b691931252181b0
Sha1:   c123547f8fd62b2ca969183a110b8c2165c7833a
Sha256: d9e3dc5133a70ea072e719283faf0d0e7a3a448850bfabec1897ec41845ddd61
                                        
                                            GET /templates/shaper_helixultimate/css/template.css HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:27 GMT
last-modified: Wed, 19 Jan 2022 13:36:30 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 12336
date: Mon, 26 Sep 2022 12:31:27 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65484)
Size:   12336
Md5:    cc5777c144fafbaae50106f50088866f
Sha1:   c1a9eb6b80e462ad04346e3d650a2ab11619f9bd
Sha256: c0e2e140a55619919144c6d6601c022b3a4d1caf8f5d904f4a2e4080bb8ab3f7
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 12:31:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /templates/shaper_helixultimate/css/presets/default.css HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:27 GMT
last-modified: Wed, 19 Jan 2022 13:36:30 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 858
date: Mon, 26 Sep 2022 12:31:27 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text, with very long lines (4023), with no line terminators
Size:   858
Md5:    2b7072148ef0ba97d190e22c62acecab
Sha1:   d1866daa391aecbdcd441a1f77c527f780e27b38
Sha256: faa168d35934ba7c8baeff5195d2275ae85786781f5e9cc586873df6cf0f858c
                                        
                                            GET /templates/shaper_helixultimate/css/custom.css HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:27 GMT
last-modified: Thu, 14 Jan 2021 20:44:00 GMT
accept-ranges: bytes
content-length: 33
date: Mon, 26 Sep 2022 12:31:27 GMT
server: LiteSpeed
vary: User-Agent


--- Additional Info ---
Magic:  ASCII text
Size:   33
Md5:    eb7bd01d26d109d71ef18790397a6b61
Sha1:   edef00b3da052686c03555c83e16473c3220b805
Sha256: c995a6b1bfc2ba67114a3fca9f2d55f5c41a41feb859ca0b2ea65569c413c09b
                                        
                                            GET /components/com_sppagebuilder/assets/css/sppagebuilder.css?6bd2d20028a6b817756c6fc32b24e316 HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:27 GMT
last-modified: Fri, 11 Jun 2021 18:04:06 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 27788
date: Mon, 26 Sep 2022 12:31:27 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   27788
Md5:    11ab270e989e19a034be50629f447f37
Sha1:   f2fc6f5c6f4ca969fb320e8588f41c1284681032
Sha256: 0c8705512f5a354fb1572ad1983b7f941a52fb1a13b53bb3dc0204420de2f89b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /templates/shaper_helixultimate/css/bootstrap.min.css HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:27 GMT
last-modified: Wed, 24 Nov 2021 12:49:01 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 23768
date: Mon, 26 Sep 2022 12:31:27 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65306)
Size:   23768
Md5:    c4ed1164cfdd83890166d7887f3e64b3
Sha1:   498bb51150d0329a3a9f07f0e3b0f4cf0fa1e4c4
Sha256: 4f1105332d53e484553ceb16f25a766a15e8f7f266a90f0f0a5e4890156ce8cc
                                        
                                            GET /media/jui/js/jquery-noconflict.js?c46fe0df71e67ab6a12d5e45e8a0d815 HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: application/javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:27 GMT
last-modified: Sat, 15 Jan 2022 15:41:30 GMT
accept-ranges: bytes
content-length: 21
date: Mon, 26 Sep 2022 12:31:27 GMT
server: LiteSpeed
vary: User-Agent


--- Additional Info ---
Magic:  ASCII text
Size:   21
Md5:    e2060c4e5e5955c824723b13a212d3ec
Sha1:   18420ce484978f8ba3d7371febf1638828bb7a67
Sha256: 5b6cf4e6eda02f7c90b60b3c32413c0851915f8f80a268a913b92929085132a6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /media/jui/js/jquery-migrate.min.js?c46fe0df71e67ab6a12d5e45e8a0d815 HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: application/javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:27 GMT
last-modified: Sat, 15 Jan 2022 15:41:30 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 4034
date: Mon, 26 Sep 2022 12:31:27 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text, with very long lines (9959)
Size:   4034
Md5:    2f89b08855471c7476435ce0bec33ba7
Sha1:   970533f152623df03b5fc6fb793b21889e4e0349
Sha256: d200586b6dd1ff779b6c30947361ff736e076d8c7d502505ab3174ca33455ea0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /components/com_easyblog/themes/nickel/styles/style-5.4.13.min.css HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:27 GMT
last-modified: Wed, 24 Nov 2021 12:51:22 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 78485
date: Mon, 26 Sep 2022 12:31:27 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   78485
Md5:    13d5e675a555a9152bc0e36fcf21ba5a
Sha1:   fb346757efd801e57021885706ad37c336acacde
Sha256: fd60102fa2cbba16dff875c03f9aa2b3f7900a64ea9c6fc03af9c5b944691215
                                        
                                            GET /media/jui/js/jquery.min.js?c46fe0df71e67ab6a12d5e45e8a0d815 HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: application/javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:27 GMT
last-modified: Sat, 15 Jan 2022 15:41:30 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 34178
date: Mon, 26 Sep 2022 12:31:27 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text, with very long lines (65462)
Size:   34178
Md5:    39100aed9fb4fb83597ecf774651f411
Sha1:   f731d3d17842ade225cd6e738360125e0fa00d5a
Sha256: 920ceb1164565c509bc1dcaa46b09205fdc4274d15fd7a871ed797badde08841
                                        
                                            GET /components/com_sppagebuilder/assets/js/jquery.parallax.js?6bd2d20028a6b817756c6fc32b24e316 HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: application/javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:27 GMT
last-modified: Fri, 11 Jun 2021 18:04:05 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 426
date: Mon, 26 Sep 2022 12:31:27 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text, with very long lines (898), with no line terminators
Size:   426
Md5:    a83b2e16f29c57e651ea836cee1a6b8f
Sha1:   192bc8941eb8f2de0a28a691701fbf40026dd57e
Sha256: ff0a4389e328d4884ceca56446bbadc9c025634969047ba12859e37160dafcdb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /components/com_sppagebuilder/assets/js/sppagebuilder.js?6bd2d20028a6b817756c6fc32b24e316 HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: application/javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:27 GMT
last-modified: Fri, 11 Jun 2021 18:04:05 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 19621
date: Mon, 26 Sep 2022 12:31:27 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text, with very long lines (29406)
Size:   19621
Md5:    75f7553d9b95c963bcfa2071629d22ad
Sha1:   dcaecdd502cfab3ebad1368e1f9450ef20974e82
Sha256: 30324b1b1223cc65c4d2366a55c69424b0b314e43338a00152698ba4a7c2f13f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4748
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 12:31:28 GMT
Last-Modified: Mon, 26 Sep 2022 11:12:20 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /components/com_sppagebuilder/assets/js/jquery.magnific-popup.min.js HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: application/javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:28 GMT
last-modified: Fri, 11 Jun 2021 18:04:05 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 7330
date: Mon, 26 Sep 2022 12:31:28 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text, with very long lines (20090)
Size:   7330
Md5:    fd67887d30bd25edeba759f1a0ed5cc3
Sha1:   6115f64b4b734057696203a2aa39e881dfe78b3e
Sha256: 2b0d9ab652ad5d4cd7d7e7c1bb684582a0062681cd5b884f9e5f03e9b4cc2203

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /templates/shaper_helixultimate/js/main.js HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: application/javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:28 GMT
last-modified: Wed, 24 Nov 2021 12:49:01 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 3208
date: Mon, 26 Sep 2022 12:31:28 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text
Size:   3208
Md5:    00beecf078f6b8b5c933a4425672bfb4
Sha1:   46f11fc674c7c9e934d971bad3c77c2f37cda5f2
Sha256: a84d723acb4938b84d43850f51ab75ecd4262e1999685216655e9a5678e3422b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /media/system/js/core.js?c46fe0df71e67ab6a12d5e45e8a0d815 HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: application/javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:28 GMT
last-modified: Sat, 15 Jan 2022 15:41:30 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 3361
date: Mon, 26 Sep 2022 12:31:28 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (8729)
Size:   3361
Md5:    12b4f664852a1b584ded98bc6b054cb5
Sha1:   2d97ddec3435d056909ca957877b59ba1b00c1ea
Sha256: 4cbd26a05e5a69479315c475fc3d85836bbeb4c8cc1f36884adfd2cd2ff63770
                                        
                                            GET /templates/shaper_helixultimate/js/bootstrap.bundle.min.js HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: application/javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:28 GMT
last-modified: Wed, 24 Nov 2021 12:49:01 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 22462
date: Mon, 26 Sep 2022 12:31:28 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text, with very long lines (65299)
Size:   22462
Md5:    612e0673f614fd51ab13bb2ebac9d0f1
Sha1:   30073e22615ec0f813ebcb70bb01bbab7f0220d3
Sha256: 273d088043eb8225ee19446891ec97cd2f04521f85efc60cab98ab4bda01c8b3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8tdvx+k9k1bFIJEX9QMMew==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.41.98.34
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +XeTFcH5TB5KuKwyxSfIt5Joaw4=

                                        
                                            GET /media/com_easyblog/scripts/site-5.4.13-basic.min.js HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: application/javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:28 GMT
last-modified: Wed, 24 Nov 2021 12:51:26 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 192385
date: Mon, 26 Sep 2022 12:31:28 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (32138)
Size:   192385
Md5:    3f026a9ef789fcfdf620c6379eca43e0
Sha1:   6bff62636442eb187980c3645b9e991a255215f4
Sha256: c9098486d19d163938f4a0381298c93a32b38ef416af201894ab680e644c5b4b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /images/logo.jpg HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: image/jpeg
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:28 GMT
last-modified: Thu, 14 Jan 2021 20:43:51 GMT
accept-ranges: bytes
content-length: 55206
date: Mon, 26 Sep 2022 12:31:28 GMT
server: LiteSpeed
vary: User-Agent


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Macintosh), datetime=2020:02:18 21:44:29], baseline, precision 8, 1050x120, components 3\012- data
Size:   55206
Md5:    4683f9d104770dddb27369a4c4dc7b5c
Sha1:   95c3c143c04d0eee308cc2d482966e1fc23b1340
Sha256: 689beaf7d82bf88cfd02b768ee05dc5d31ab8169149ea1dc6c5e425050a51e15
                                        
                                            GET /video/650447293 HTTP/1.1 
Host: player.vimeo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Upgrade-Insecure-Requests: 1

                                         
                                         162.159.128.61
HTTP/1.1 301 Moved Permanently
                                        
Date: Mon, 26 Sep 2022 12:31:28 GMT
Content-Length: 0
Connection: keep-alive
Retry-After: 0
Location: https://player.vimeo.com/video/650447293
Accept-Ranges: bytes
Via: 1.1 varnish
X-Served-By: cache-bma1671-BMA
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1664195489.626222,VS0,VE0
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=FTDLMyAqWwgAisxpdK7As67NQaqV7frUn13BAfePAPg-1664195488-0-ASuNbfkJYtB5YGKAdmKW/1ea5fmdQ4kMAwaoC2TVkHqd8Mhh3HO2BSayC8VC9UZV6sLpWFgbqcVn+79ylCWinzY=; path=/; expires=Mon, 26-Sep-22 13:01:28 GMT; domain=.vimeo.com; HttpOnly; SameSite=None
Server: cloudflare
CF-RAY: 750c044bdc4db515-OSL

                                        
                                            GET /images/becomeapatronbuttonblue.jpg HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: image/jpeg
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:28 GMT
last-modified: Thu, 14 Jan 2021 20:43:51 GMT
accept-ranges: bytes
content-length: 36264
date: Mon, 26 Sep 2022 12:31:28 GMT
server: LiteSpeed
vary: User-Agent


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=118, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=385], progressive, precision 8, 385x118, components 3\012- data
Size:   36264
Md5:    cc2ff3eb7dd0ee6e4c22e3473b871764
Sha1:   f2285a93195a8c40f3498b80d608bafbd3c0649d
Sha256: c96ee952040f4bc0bf2e204eb7eef2bedf687b4886466b121cdac17986a976f5
                                        
                                            GET /media/com_easyblog/scripts/vendors/ui/position.min.js HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: application/javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:28 GMT
last-modified: Wed, 24 Nov 2021 12:51:27 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 3019
date: Mon, 26 Sep 2022 12:31:28 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text, with very long lines (980)
Size:   3019
Md5:    c90f07ece2f3fd82561d1c52ae6d7e11
Sha1:   fd937207d82c6c601775d161cb0a7878ca37a7b3
Sha256: d89a7dc9a83df399c784f508d4d31817bd1814f2d08a00d9f9cd4e485a04eeba

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /components/com_sppagebuilder/assets/webfonts/fa-regular-400.woff HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://maitririverproductions.com/components/com_sppagebuilder/assets/css/font-awesome-5.min.css?6bd2d20028a6b817756c6fc32b24e316
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: font/woff
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:28 GMT
last-modified: Fri, 11 Jun 2021 18:04:05 GMT
accept-ranges: bytes
content-length: 16772
date: Mon, 26 Sep 2022 12:31:28 GMT
server: LiteSpeed
vary: User-Agent


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 16772, version 331.-31392\012- data
Size:   16772
Md5:    3c6879c4f342203d099bdd66dce6d396
Sha1:   26afc29d39ab9fac6d0b607be7e76db093ff7c3a
Sha256: 6799c999e422710f40f70a60a6138fc38106226c44d7bd1b1023f5bb65befef9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /images/2021/12/20/citizenmeposter.jpg HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: image/jpeg
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:28 GMT
last-modified: Mon, 20 Dec 2021 20:57:44 GMT
accept-ranges: bytes
content-length: 97232
date: Mon, 26 Sep 2022 12:31:28 GMT
server: LiteSpeed
vary: User-Agent


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.0 (Macintosh), datetime=2021:12:20 14:21:05], baseline, precision 8, 394x576, components 3\012- data
Size:   97232
Md5:    52b1d1229b7ee0bf132d8f96fcc9d6c7
Sha1:   0d013270356828a98738ea7232f4e784a4be96ea
Sha256: 98622279a6a1813da9ce1bb75b3e2e638710d3b3b611c06b518369c922c4dc9e
                                        
                                            GET /components/com_sppagebuilder/assets/webfonts/fa-solid-900.woff HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://maitririverproductions.com/components/com_sppagebuilder/assets/css/font-awesome-5.min.css?6bd2d20028a6b817756c6fc32b24e316
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: font/woff
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:28 GMT
last-modified: Fri, 11 Jun 2021 18:04:05 GMT
accept-ranges: bytes
content-length: 104280
date: Mon, 26 Sep 2022 12:31:28 GMT
server: LiteSpeed
vary: User-Agent


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 104280, version 331.-31392\012- data
Size:   104280
Md5:    4451e1d86df7491dd874f2c41eee1053
Sha1:   3b86a0ce15d8d534b65e98560e321a933d310688
Sha256: aab971ade1633ab836222074ceae0aad8a082d900908f27491b221d6e83998ca

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /video/650447293 HTTP/1.1 
Host: player.vimeo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://maitririverproductions.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         162.159.128.61
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Mon, 26 Sep 2022 12:31:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Mon, 26 Sep 2022 12:41:28 GMT
x-host: player-84c9846b45-4rsw2
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-varnish-0
x-backend-proxy: playproxy1
x-bapp-server: player-84c9846b45-4rsw2
Age: 0
X-Served-By: cache-bma1644-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1664195489.670800,VS0,VE312
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=RM7sXPtHQUJTTSv3ehVnWC4qDVzWE.zbMmIX5v2tOKM-1664195488-0-AVKsLvX4JrBhhLmyDO4dgDPakZASLQMj5a4Mvr15hUwuOQaeC7zUr5Fh/onnROUwxGMO4x5siWHeAcPlpGgAeDo=; path=/; expires=Mon, 26-Sep-22 13:01:28 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 750c044c1b401c02-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (16746)
Size:   5243
Md5:    7ddd3eefb7580ca92a2cd6ed053bcbe5
Sha1:   05e3cbfa07ac66b8c2e6c623a500525e2ff2bdae
Sha256: 3fa0e9ad48393c6c9383814e1aa8fdaef6abf4d937e7c2d05dd648cc983d7a47
                                        
                                            GET /images/2020/02/18/abundantposter2.jpg HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: image/jpeg
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:28 GMT
last-modified: Thu, 14 Jan 2021 20:43:57 GMT
accept-ranges: bytes
content-length: 183651
date: Mon, 26 Sep 2022 12:31:28 GMT
server: LiteSpeed
vary: User-Agent


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Macintosh), datetime=2020:02:17 21:01:36], baseline, precision 8, 394x576, components 3\012- data
Size:   183651
Md5:    1bdf0888c4f5d70c2b9c48d6ea9fdaae
Sha1:   88feae003271e9ed141d60dfbab8994c6eed3774
Sha256: 7951b976e2611baa58ef7b1427829cd36402e9f6c35f80478cac4cf4b429b5d7
                                        
                                            GET /images/2021/07/05/through-the-music.png HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: image/png
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:28 GMT
last-modified: Mon, 05 Jul 2021 20:02:18 GMT
accept-ranges: bytes
content-length: 139889
date: Mon, 26 Sep 2022 12:31:28 GMT
server: LiteSpeed
vary: User-Agent


--- Additional Info ---
Magic:  PNG image data, 394 x 576, 8-bit/color RGBA, non-interlaced\012- data
Size:   139889
Md5:    1ab97a14630ff2937738d5ab3b2bd11c
Sha1:   0fe3680e45a71dd4e7617970dd8961c27fb15d12
Sha256: 584e7dfc657da4ed4ca06a1c8c4d3bbb76c4c4b8637e4f102861a28e09a09b8c
                                        
                                            GET /components/com_sppagebuilder/assets/webfonts/fa-brands-400.woff HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://maitririverproductions.com/components/com_sppagebuilder/assets/css/font-awesome-5.min.css?6bd2d20028a6b817756c6fc32b24e316
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: font/woff
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:28 GMT
last-modified: Fri, 11 Jun 2021 18:04:05 GMT
accept-ranges: bytes
content-length: 92136
date: Mon, 26 Sep 2022 12:31:28 GMT
server: LiteSpeed
vary: User-Agent


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 92136, version 331.-31392\012- data
Size:   92136
Md5:    ad527cc5ec23d6da66e8a1d6772ea6d3
Sha1:   a42ac4a94f4e0e9333cdb1b2fb6c13c0ae690ff2
Sha256: a0375c054a0041bd58e2a0bf7fa3df7c3904bfc4f790fd24e32ff3ee70fd0eef

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /p/4.10.1/css/player.css HTTP/1.1 
Host: f.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.109
HTTP/2 200 OK
content-type: text/css
                                        
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 26 Sep 2022 12:31:29 GMT
age: 492837
x-served-by: cache-iad-kjyo7100154-IAD, cache-bma1622-BMA
x-cache: HIT, HIT
x-cache-hits: 61, 89952
x-timer: S1664195489.076121,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 20284
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65495)
Size:   20284
Md5:    674ea13d207a5c2820c92eb236796548
Sha1:   439a3a05f926e21e43ed043e47197aec6c02358f
Sha256: 99105d0c1f2a3eee4823bc2f2151f1747c3f7fa45df401596bc2273328abc22f
                                        
                                            GET /js_opt/modules/utils/vuid.min.js HTTP/1.1 
Host: f.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.109
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: gzip
cache-control: public, max-age=2592000
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 26 Sep 2022 12:31:29 GMT
age: 587650
x-served-by: cache-iad-kiad7000169-IAD, cache-bma1622-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 92705
x-timer: S1664195489.088659,VS0,VE0
vary: Accept-Encoding,x-http-method-override
content-length: 997
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1839)
Size:   997
Md5:    a726e1c270a0429ccce67d981a12ac33
Sha1:   7319cca36fa04ee8d74ea677a0bb5dd113649011
Sha256: 2601818bf89176145a614b0d50b1ef1cd95272a5bc6be5526d54c464f6172dbf
                                        
                                            GET /p/4.10.1/js/player.js HTTP/1.1 
Host: f.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.109
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 26 Sep 2022 12:31:29 GMT
age: 492837
x-served-by: cache-iad-kcgs7200127-IAD, cache-bma1622-BMA
x-cache: HIT, HIT
x-cache-hits: 52, 69745
x-timer: S1664195489.088691,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
content-length: 212091
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64649)
Size:   212091
Md5:    0178a74556a8c2ae4b0adc1e5896add3
Sha1:   a2187164dbe08839a3bed391ee10f5b3ef24542b
Sha256: 0ab6e243b2068c5ba3620a078364c9b73c7075d70f8e73a00be48fad7bf707ae
                                        
                                            GET /video/1311421237-f8dd6af0850f0b74955212081ddbb831d50b7b40056a6c1d0.jpg?mw=80&q=85 HTTP/1.1 
Host: i.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.109
HTTP/2 200 OK
content-type: image/jpeg
                                        
etag: f8b37f00ca336288e8399efbd8243e04
x-viewmaster-lossless-format: lossy
viewmaster-server: viewmaster-us-east1-5tk1
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Mon, 26 Sep 2022 12:31:29 GMT
age: 1153898
x-served-by: cache-dfw-kdfw8210111-DFW, cache-bma1622-BMA
x-cache: miss, HIT, MISS
x-cache-hits: 1, 0
x-timer: S1664195489.088347,VS0,VE129
content-length: 671
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x45, components 3\012- data
Size:   671
Md5:    f8b37f00ca336288e8399efbd8243e04
Sha1:   85bbd8051bedf417d95b988170595340e16c8b9a
Sha256: 01f9b8849d7914fb5057d14604256173a08f6209e10bc9bf91aeab69a263e7e4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5351
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 12:31:29 GMT
Last-Modified: Mon, 26 Sep 2022 11:02:18 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://maitririverproductions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Mon, 26 Sep 2022 10:41:09 GMT
expires: Mon, 26 Sep 2022 12:41:09 GMT
cache-control: public, max-age=7200
age: 6620
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   19826
Md5:    cae538dcce82598fbe43c0bf443e62dd
Sha1:   cc68ac6be9c5e0087a0000e5735b83270ace30f5
Sha256: 954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
                                        
                                            GET /en_US/fbevents.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://maitririverproductions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: +i1IJ87OhDMeOdiovqGybXg+m0shgTG6wFvpfRoNz/uiSIN7SzYM93U5rI2N0ykh7JXk6vac/1mB4eAD7p6EOw==
content-length: 26840
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 12:31:29 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64348)
Size:   26840
Md5:    e1327a02d76346c7e23d114e4e508b30
Sha1:   195b8ad875ab8f7a7adf735f1f70aa02b3a2e1a3
Sha256: 331e67b451c6559915b12ab2df810ccdba73b3971c5301b2010b54dd6d391de2
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5351
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 12:31:29 GMT
Last-Modified: Mon, 26 Sep 2022 11:02:18 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /templates/shaper_helixultimate/favicon.ico HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6; _ga_WFS178TB9Z=GS1.1.1664195487.1.0.1664195487.0.0.0; _ga=GA1.1.383983139.1664195487

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: image/x-icon
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:29 GMT
last-modified: Fri, 11 Jun 2021 18:08:08 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 343
date: Mon, 26 Sep 2022 12:31:29 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size:   343
Md5:    dd0a379751a284c9a7d35628aa925d0b
Sha1:   f17f5fd4e7e94ada274c3ec67aea561400559952
Sha256: bedf9abb68b4c57521c9089e4409fc1ab99fe84444ac0dc704a76567dfbeb20c
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11064
Expires: Mon, 26 Sep 2022 15:35:53 GMT
Date: Mon, 26 Sep 2022 12:31:29 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11064
Expires: Mon, 26 Sep 2022 15:35:53 GMT
Date: Mon, 26 Sep 2022 12:31:29 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11064
Expires: Mon, 26 Sep 2022 15:35:53 GMT
Date: Mon, 26 Sep 2022 12:31:29 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11064
Expires: Mon, 26 Sep 2022 15:35:53 GMT
Date: Mon, 26 Sep 2022 12:31:29 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11064
Expires: Mon, 26 Sep 2022 15:35:53 GMT
Date: Mon, 26 Sep 2022 12:31:29 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8637
x-amzn-requestid: 07dc23e0-000f-4f6c-8d2b-0e65d88be270
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSvvEenoAMFr0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb31-520803124760abc216152d7b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:42:09 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: mToVKJcSAtJB1AOuQ-Y9o_EZzyhUuZJivVa3DLql5FwzK4NC82kh5Q==
via: 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:06:17 GMT
age: 51912
etag: "e49306a3713cb724be024a4ddb5e90645718a718"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8637
Md5:    d02ede0c964f3346fd53ae2950bf2a62
Sha1:   e49306a3713cb724be024a4ddb5e90645718a718
Sha256: c0e653d89656016c55aca9b198b9191620f1ae9a3c45742a90744bd74c4f9505
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5157
x-amzn-requestid: b5748f49-693f-4bc3-a850-cb68e770de24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUG9GUHIAMF7pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd5f-5d2aaa212cf1be2506593746;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4h9lb_7egxb2hBbxjcS_cpZ5lDq6Lx-c_WUZyRHdUA0YTwr6kgDuiQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:10:16 GMT
age: 51673
etag: "85e378d0fff856832a8dd01743516b9476fed8c6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5157
Md5:    2fe8c4f0c70fb6c1f4259eabedc7015e
Sha1:   85e378d0fff856832a8dd01743516b9476fed8c6
Sha256: 508a1c7d350fcf82d1ece0b99f8557b2f300c7c1148f28c3ae9fece20530e4b6
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6bfaf0f-e716-4cf7-9785-ffcd146aed68.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7648
x-amzn-requestid: 359116cc-4e08-4c57-8aba-0aa7bd232c98
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSKWG2BIAMFlHw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330ca42-2130239f2dab781c0f49f0e4;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:38:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: caqLwNG92a0CRHwZLzFYIndWri6UOUyN9Bm8pqEytrumcpAMAo0WmQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:47:32 GMT
age: 53037
etag: "042d4b6927f80c5a44bb7baf77b763577c19ed36"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7648
Md5:    75a459d4f554d38a1701e727185c7e91
Sha1:   042d4b6927f80c5a44bb7baf77b763577c19ed36
Sha256: c01b0d3a28ed31ec9432d879310cffa313260f97044f1ed473aa0331bdba5607
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a7e9af9-ebe4-49ea-9af4-d118f2ef0b43.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8851
x-amzn-requestid: dbe6ba4c-3d38-48e8-9d08-088d8e26e7a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUDAE23oAMF_yg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd46-4f3b85952fa3109d2921d0e1;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wbbfzE5nQkhK_nsXX8XGJbOl3Yf6NDA1r_AC-0dOzqJDkLQ2BLxK9A==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:32:20 GMT
age: 50349
etag: "4b32113aaf50132b38c8034017a6eb5a32d7040b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8851
Md5:    431ff1171a3d7c60a31cc1c3f62164ee
Sha1:   4b32113aaf50132b38c8034017a6eb5a32d7040b
Sha256: 65d598db252fb3979d3df3cb8d052861bb31d6187552f9c694ec27a322b308c9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11728
x-amzn-requestid: bf60e58f-c4f4-45c7-923b-0d1539f720f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUCGGw7oAMF3wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd40-32043c1b1411544f5d00edc0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:50:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZRG0Axnhc5RY5rDbnnbauco9dpPeFdkP01UxkpNYI5pgSbfGKWcikw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:16:26 GMT
age: 51303
etag: "9660bb2d38079182efbd11d7a687bfc7f9d30751"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11728
Md5:    968b9c138702fb5994d1d9eab1a697fa
Sha1:   9660bb2d38079182efbd11d7a687bfc7f9d30751
Sha256: 5ba74820ad451747c8ed25529f06b037bebf4c0616a1f2165c9197c1171db7a6
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1500786-3bbf-46d0-b16e-4aff6d48a585.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 14579
x-amzn-requestid: bce2c126-0883-4255-9246-d8055860f898
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcCj6FYCoAMF9Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217e18-66ba2e5d64b6a5b32b7ab36b;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:09:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: igIWZ2IhMA_GIovp4HgIHtGeDt5xoX0iThoQFKjnNJUYP_uMdO7FHw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 00:33:08 GMT
age: 43101
etag: "16e42ba7b20555bf5a8615e5f4bb561204aeeb5a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   14579
Md5:    f10a12719b387d176497669ba75f0acc
Sha1:   16e42ba7b20555bf5a8615e5f4bb561204aeeb5a
Sha256: 0cb2231817387d43a490565b61e24ea7a3cfcff3281f4ab4379a882cc5c3173f
                                        
                                            GET /video/1311421237-f8dd6af0850f0b74955212081ddbb831d50b7b40056a6c1d0?mw=800&mh=450 HTTP/1.1 
Host: i.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.109
HTTP/2 200 OK
content-type: image/avif
                                        
etag: d5968faae4ad9cc63bc28269071fc53a
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-vds6
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Mon, 26 Sep 2022 12:31:29 GMT
age: 266288
x-served-by: cache-dfw-kdfw8210120-DFW, cache-bma1622-BMA
x-cache: miss, HIT, MISS
x-cache-hits: 1, 0
x-timer: S1664195489.372209,VS0,VE121
vary: Accept
content-length: 6005
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   6005
Md5:    d5968faae4ad9cc63bc28269071fc53a
Sha1:   c7accc991b39433730e452558a530e515790187f
Sha256: f0572baaa6d3ff6018fc878daa5e183e951c73ca35e8c6e441e28d27a8be3f22
                                        
                                            POST /g/collect?v=2&tid=G-WFS178TB9Z&gtm=2oe9l0&_p=1745172403&cid=383983139.1664195487&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664195487&sct=1&seg=0&dl=http%3A%2F%2Fmaitririverproductions.com%2F&dt=Welcome%20to%20Maitri%20River%20Productions&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://maitririverproductions.com
Connection: keep-alive
Referer: http://maitririverproductions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.32.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: http://maitririverproductions.com
date: Mon, 26 Sep 2022 12:31:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /images/2020/02/17/shutterstock_172726895.jpg HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: image/jpeg
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:28 GMT
last-modified: Thu, 14 Jan 2021 20:43:56 GMT
accept-ranges: bytes
content-length: 6489151
date: Mon, 26 Sep 2022 12:31:28 GMT
server: LiteSpeed
vary: User-Agent


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 5184x3456, components 3\012- data
Size:   6489151
Md5:    902d2d9f65a6935d111a47dae5e067a7
Sha1:   87ba155121c86c823d91bd23a2c951a56fb7fc2c
Sha256: 5c6709b424e631e7d4b0dfe9a39a5ccf2143bb93b219935f5e96846e1ac12a01
                                        
                                            GET /images/2020/02/18/shortriver3.jpg HTTP/1.1 
Host: maitririverproductions.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maitririverproductions.com/
Cookie: c78ca599df5d7c1a40a38ee483de5774=c18a40158f27f17f84237f36567fdea6

                                         
                                         45.79.7.19
HTTP/1.1 200 OK
content-type: image/jpeg
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 03 Oct 2022 12:31:28 GMT
last-modified: Thu, 14 Jan 2021 20:43:56 GMT
accept-ranges: bytes
content-length: 1757277
date: Mon, 26 Sep 2022 12:31:28 GMT
server: LiteSpeed
vary: User-Agent


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Macintosh), datetime=2020:02:18 17:05:28], baseline, precision 8, 5018x375, components 3\012- data
Size:   1757277
Md5:    b2c20c494b2c66094466e2004f9ab9a1
Sha1:   15114242091f6077b81ff6cf0f0963bb120617a8
Sha256: c71f7108a3eaeb97d1096efe05ff6b798e5269eecbeaaefd28f5ee3cca9d030c
                                        
                                            POST /s/gts1d4/5Ylu76wHhgo HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 12:31:30 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /tr/?id=2616941821906528&ev=PageView&dl=http%3A%2F%2Fmaitririverproductions.com%2F&rl=&if=false&ts=1664195488608&sw=1280&sh=1024&v=2.9.84&r=stable&a=pljoomla&ec=0&o=30&fbp=fb.1.1664195488607.897056243&it=1664195487686&coo=false&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://maitririverproductions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.35
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Mon, 26 Sep 2022 12:31:30 GMT
X-Firefox-Spdy: h2

                                        
                                            POST /add/player-test-impression?beacon=1 HTTP/1.1 
Host: fresnel.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 116
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.202.204
HTTP/2 200 OK
                                        
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Mon, 26 Sep 2022 12:31:30 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            POST /add/player-stats?beacon=1&session-id=0efdfeadbade910b2e84183f620a617bb4d3d0971664195488 HTTP/1.1 
Host: fresnel.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1434
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.202.204
HTTP/2 200 OK
                                        
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Mon, 26 Sep 2022 12:31:30 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            POST /s/gts1d4/5Ylu76wHhgo HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 12:31:30 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5980
x-amzn-requestid: fbf0c390-da24-49e2-8492-43e29e5d4bb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTHCGJVoAMFgxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbc6-1f9b1b7d63467c58702e6d7e;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:38 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pt7rJi8EIQFBk0gHQZ1WnjvThPba86XZCGFs83l1ZW2dj-_6bZprAA==
via: 1.1 ec2a2c75c16156e4d43504606c118b90.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:49:56 GMT
age: 52900
etag: "12aac1bd22e675f09a220de08b4656e801c2e647"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5980
Md5:    ef17205adb2b478d3bff54b048208d22
Sha1:   12aac1bd22e675f09a220de08b4656e801c2e647
Sha256: 620fe39cf421ed3a21e968570f7e863d69224113be867ec2457ed3850ea113f6