ocsp.starfieldtech.com/
192.124.249.41 1.8 kB IP 192.124.249.41:0
Hash b6985171190c3870e71d18b8ea8bfd3d
252033026e9f8e6e8fe67271c700d51df3834e3d
1db4d34551658941179c55fd5528d7de462ef69ec3547eef747747ddba19028d
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 02 Jun 2023 06:06:08 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 02 Jun 2023 02:56:48 GMT
Expires: Sat, 03 Jun 2023 02:56:48 GMT
ETag: "252033026e9f8e6e8fe67271c700d51df3834e3d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
www.togethernh.com/wp-admin/network/sharepointserver/excelfilesinvoiced/documentations3049/login.php?cmd=login_submit&id=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2&session=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2/
192.124.249.67403 Forbidden 2.6 kB URL User Request GET HTTP/1.1 www.togethernh.com/wp-admin/network/sharepointserver/excelfilesinvoiced/documentations3049/login.php?cmd=login_submit&id=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2&session=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2/
IP 192.124.249.67:80
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (431)
Hash 1706d90f26e18b2932675598604777e1
db22001603ba7b96d3d45afeb949867241657c8f
2bd06ab74f86e8fd48a1a1f7eab7e61076ea17045bffdcac4c67bf75a12711f5
NIDS Severity Alert suricata high ET PHISHING Generic Phishkit Activity (GET)
GET /wp-admin/network/sharepointserver/excelfilesinvoiced/documentations3049/login.php?cmd=login_submit&id=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2&session=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2/ HTTP/1.1
Host: www.togethernh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: Sucuri/Cloudproxy
Date: Fri, 02 Jun 2023 06:06:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Sucuri-ID: 19017
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Sucuri-Block: GEO02
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 02593b51cd737e1085e5837a9a47c755
aab410449655b9fddf070f3e25a1a8e5aee59530
0ea607d017e63bf06a742560b582d99802dc477bba715d9890e1d51663e50d99
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 06:06:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 02593b51cd737e1085e5837a9a47c755
aab410449655b9fddf070f3e25a1a8e5aee59530
0ea607d017e63bf06a742560b582d99802dc477bba715d9890e1d51663e50d99
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 06:06:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.godaddy.com/
192.124.249.22 1.8 kB IP 192.124.249.22:0
Hash 1b6c0aaf5d4f19bf19a7aa3b4170a375
3d757489828c2c233276cfce731d0c4032ae0d60
1f184807bac6e49a06a7bbfa22570b718faae8207848dafed343eae06d159cf1
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 02 Jun 2023 06:06:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 02 Jun 2023 02:07:10 GMT
Expires: Sat, 03 Jun 2023 02:07:10 GMT
ETag: "3d757489828c2c233276cfce731d0c4032ae0d60"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 02593b51cd737e1085e5837a9a47c755
aab410449655b9fddf070f3e25a1a8e5aee59530
0ea607d017e63bf06a742560b582d99802dc477bba715d9890e1d51663e50d99
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 06:06:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.sucuri.net/sucuri-firewall-block.css
192.124.249.16200 OK 13 kB URL GET HTTP/2 cdn.sucuri.net/sucuri-firewall-block.css
IP 192.124.249.16:443
Requested by http://www.togethernh.com/wp-admin/network/sharepointserver/excelfilesinvoiced/documentations3049/login.php?cmd=login_submit&id=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2&session=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2/
Certificate IssuerGoDaddy.com, Inc.
Subject*.sucuri.net
Fingerprint14:66:F8:BD:8F:AF:7E:62:7C:B5:33:90:41:59:6E:F8:58:1B:76:5E
ValidityMon, 05 Sep 2022 13:42:33 GMT - Sat, 07 Oct 2023 13:42:33 GMT
File type ASCII text, with very long lines (13367)
Hash e530db1c081686702501256509c4d3e4
262e17c7a3c820a0f2318acab4a24d41f71b3375
b404206e2715889238012d484ba70010b306683326fe2601b8ed0a2dcc5feaaa
GET /sucuri-firewall-block.css HTTP/1.1
Host: cdn.sucuri.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.togethernh.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 06:06:09 GMT
content-type: text/css
content-length: 13368
x-sucuri-id: 19016
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 09 May 2017 16:29:16 GMT
etag: "3438-54f19db534f00"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash de06f6fcbc144014f20c63dd5fe236b4
7f10e556cc7c7786c031a226d3efc006f8511c28
ae157c3fec7620409ce8cf7d841a47c30b487c02bbc82df9127345b7b1149f3e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 06:06:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash de06f6fcbc144014f20c63dd5fe236b4
7f10e556cc7c7786c031a226d3efc006f8511c28
ae157c3fec7620409ce8cf7d841a47c30b487c02bbc82df9127345b7b1149f3e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 06:06:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash de06f6fcbc144014f20c63dd5fe236b4
7f10e556cc7c7786c031a226d3efc006f8511c28
ae157c3fec7620409ce8cf7d841a47c30b487c02bbc82df9127345b7b1149f3e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 06:06:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:443
Requested by http://www.togethernh.com/wp-admin/network/sharepointserver/excelfilesinvoiced/documentations3049/login.php?cmd=login_submit&id=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2&session=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data
Hash 31a8297826cdcea344698ff952694a7f
4fa1ee4c471d1c05e9141855eec5ee09b898d594
7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.togethernh.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 11:49:35 GMT
expires: Fri, 31 May 2024 11:49:35 GMT
cache-control: public, max-age=31536000
age: 65794
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:443
Requested by http://www.togethernh.com/wp-admin/network/sharepointserver/excelfilesinvoiced/documentations3049/login.php?cmd=login_submit&id=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2&session=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data
Hash 31a8297826cdcea344698ff952694a7f
4fa1ee4c471d1c05e9141855eec5ee09b898d594
7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.togethernh.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 11:49:35 GMT
expires: Fri, 31 May 2024 11:49:35 GMT
cache-control: public, max-age=31536000
age: 65794
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:443
Requested by http://www.togethernh.com/wp-admin/network/sharepointserver/excelfilesinvoiced/documentations3049/login.php?cmd=login_submit&id=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2&session=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data
Hash 31a8297826cdcea344698ff952694a7f
4fa1ee4c471d1c05e9141855eec5ee09b898d594
7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.togethernh.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 11:49:35 GMT
expires: Fri, 31 May 2024 11:49:35 GMT
cache-control: public, max-age=31536000
age: 65794
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash de06f6fcbc144014f20c63dd5fe236b4
7f10e556cc7c7786c031a226d3efc006f8511c28
ae157c3fec7620409ce8cf7d841a47c30b487c02bbc82df9127345b7b1149f3e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 06:06:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.sucuri.net/sucuri-firewall-block.css
192.124.249.16200 OK 13 kB URL GET HTTP/2 cdn.sucuri.net/sucuri-firewall-block.css
IP 192.124.249.16:443
Requested by http://www.togethernh.com/wp-admin/network/sharepointserver/excelfilesinvoiced/documentations3049/login.php?cmd=login_submit&id=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2&session=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2/
Certificate IssuerGoDaddy.com, Inc.
Subject*.sucuri.net
Fingerprint14:66:F8:BD:8F:AF:7E:62:7C:B5:33:90:41:59:6E:F8:58:1B:76:5E
ValidityMon, 05 Sep 2022 13:42:33 GMT - Sat, 07 Oct 2023 13:42:33 GMT
File type ASCII text, with very long lines (13367)
Hash e530db1c081686702501256509c4d3e4
262e17c7a3c820a0f2318acab4a24d41f71b3375
b404206e2715889238012d484ba70010b306683326fe2601b8ed0a2dcc5feaaa
GET /sucuri-firewall-block.css HTTP/1.1
Host: cdn.sucuri.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.togethernh.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 06:06:10 GMT
content-type: text/css
content-length: 13368
x-sucuri-id: 19016
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 09 May 2017 16:29:16 GMT
etag: "3438-54f19db534f00"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.togethernh.com/favicon.ico
192.124.249.67403 Forbidden 2.3 kB URL GET HTTP/1.1 www.togethernh.com/favicon.ico
IP 192.124.249.67:80
Requested by http://www.togethernh.com/wp-admin/network/sharepointserver/excelfilesinvoiced/documentations3049/login.php?cmd=login_submit&id=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2&session=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2/
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (431)
Hash 9d2c0690017a91900082c739cfc47d07
2d539df9618ed352ed9665d2c9b426ef0b17d5c6
617d2bc9375d9b477148e0c0c732d7dd00d42887661382db71b7256794e32557
GET /favicon.ico HTTP/1.1
Host: www.togethernh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.togethernh.com/wp-admin/network/sharepointserver/excelfilesinvoiced/documentations3049/login.php?cmd=login_submit&id=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2&session=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: Sucuri/Cloudproxy
Date: Fri, 02 Jun 2023 06:06:09 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Sucuri-ID: 19017
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Sucuri-Block: GEO02
ocsp.godaddy.com/
192.124.249.22 1.8 kB IP 192.124.249.22:0
Hash 1b6c0aaf5d4f19bf19a7aa3b4170a375
3d757489828c2c233276cfce731d0c4032ae0d60
1f184807bac6e49a06a7bbfa22570b718faae8207848dafed343eae06d159cf1
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 02 Jun 2023 06:06:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 02 Jun 2023 02:07:10 GMT
Expires: Sat, 03 Jun 2023 02:07:10 GMT
ETag: "3d757489828c2c233276cfce731d0c4032ae0d60"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
fonts.googleapis.com/css?family=Open+Sans:400,300,600,700
142.250.74.74200 OK 11 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,300,600,700
IP 142.250.74.74:443
Requested by http://www.togethernh.com/wp-admin/network/sharepointserver/excelfilesinvoiced/documentations3049/login.php?cmd=login_submit&id=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2&session=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
Hash e0e2280ca8a768a3f15e573a23c54cae
7f3068e8f9945f2623f9c8c9f2a159869f9fccfd
1ba6e02aa649aea52d79959ec42d68b9275396417950a5034ff5ea51b18fc2c8
GET /css?family=Open+Sans:400,300,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.togethernh.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Jun 2023 06:06:09 GMT
date: Fri, 02 Jun 2023 06:06:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,300,600,700
142.250.74.74200 OK 11 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,300,600,700
IP 142.250.74.74:443
Requested by http://www.togethernh.com/wp-admin/network/sharepointserver/excelfilesinvoiced/documentations3049/login.php?cmd=login_submit&id=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2&session=6baa29439b0c8ec17acc0417aeda1db26baa29439b0c8ec17acc0417aeda1db2/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
Hash e0e2280ca8a768a3f15e573a23c54cae
7f3068e8f9945f2623f9c8c9f2a159869f9fccfd
1ba6e02aa649aea52d79959ec42d68b9275396417950a5034ff5ea51b18fc2c8
GET /css?family=Open+Sans:400,300,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.togethernh.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Jun 2023 06:06:09 GMT
date: Fri, 02 Jun 2023 06:06:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2