Overview

URLlymehaus.com/portfolio-item/bima-microinsurance/
IP 199.188.200.229 (United States)
ASN#22612 NAMECHEAP-NET
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-28 11:47:16 UTC
StatusLoading report..
IDS alerts0
Blocklist alert53
urlquery alerts No alerts detected
Tags None

Domain Summary (16)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
www.google.com (1) 7 2016-03-22 03:56:07 UTC 2022-11-28 05:49:46 UTC 142.250.74.164
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 35.163.62.5
fonts.gstatic.com (4) 0 2014-09-09 00:40:21 UTC 2022-11-28 05:49:11 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-28 05:46:10 UTC 34.117.237.239
www.googletagmanager.com (1) 75 2013-05-22 02:07:37 UTC 2022-11-28 06:09:03 UTC 142.250.74.168
www.gstatic.com (1) 0 2016-07-26 09:37:06 UTC 2022-11-28 05:52:04 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-28 05:55:58 UTC 34.102.187.140
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
ocsp.pki.goog (10) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.3
region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-11-28 05:50:24 UTC 216.239.32.36 Domain (google-analytics.com) ranked at: 8401
r3.o.lencr.org (5) 344 No data No data 23.36.77.32
lymehaus.com (85) 0 2015-10-15 23:18:27 UTC 2022-08-04 08:01:30 UTC 199.188.200.229 Unknown ranking
fonts.googleapis.com (2) 8877 2013-06-10 20:14:26 UTC 2022-11-28 05:48:59 UTC 142.250.74.10
ocsp.sectigo.com (1) 487 2019-11-29 11:50:24 UTC 2021-09-17 20:05:40 UTC 172.64.155.188
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-28 2 lymehaus.com/portfolio-item/bima-microinsurance/ Phishing
2022-11-28 2 lymehaus.com/portfolio-item/bima-microinsurance/ Phishing
2022-11-28 2 lymehaus.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 Phishing
2022-11-28 2 lymehaus.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 Phishing
2022-11-28 2 lymehaus.com/wp-content/plugins/header-footer-elementor/assets/css/header-f (...) Phishing
2022-11-28 2 lymehaus.com/wp-includes/css/classic-themes.min.css?ver=1 Phishing
2022-11-28 2 lymehaus.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.6 Phishing
2022-11-28 2 lymehaus.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-i (...) Phishing
2022-11-28 2 lymehaus.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1 Phishing
2022-11-28 2 lymehaus.com/wp-content/themes/holmes/framework/lib/icons-pack/elegant-icon (...) Phishing
2022-11-28 2 lymehaus.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1 Phishing
2022-11-28 2 lymehaus.com/wp-content/themes/holmes/framework/lib/icons-pack/simple-line- (...) Phishing
2022-11-28 2 lymehaus.com/wp-content/plugins/holmes-core/shortcodes/counter/assets/js/pl (...) Phishing
2022-11-28 2 lymehaus.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 Phishing
2022-11-28 2 lymehaus.com/wp-content/plugins/holmes-core/shortcodes/countdown/assets/js/ (...) Phishing
2022-11-28 2 lymehaus.com/wp-content/themes/holmes/assets/css/style_dynamic.css?ver=1664 (...) Phishing
2022-11-28 2 lymehaus.com/wp-content/themes/holmes/assets/js/modules/plugins/jquery.wait (...) Phishing
2022-11-28 2 lymehaus.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2 Phishing
2022-11-28 2 lymehaus.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?v (...) Phishing
2022-11-28 2 lymehaus.com/wp-content/themes/holmes/assets/js/modules/plugins/ScrollToPlu (...) Phishing
2022-11-28 2 lymehaus.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 Phishing
2022-11-28 2 lymehaus.com/wp-content/themes/holmes/framework/lib/icons-pack/linear-icons (...) Phishing
2022-11-28 2 lymehaus.com/wp-content/themes/holmes/assets/css/mkdf-scrollbar.css?ver=6.1.1 Phishing
2022-11-28 2 lymehaus.com/wp-content/plugins/holmes-core/shortcodes/line-graph/assets/js (...) Phishing
2022-11-28 2 lymehaus.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 Phishing
2022-11-28 2 lymehaus.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/i (...) Phishing
2022-11-28 2 lymehaus.com/wp-content/plugins/holmes-core/shortcodes/vertical-split-slide (...) Phishing
2022-11-28 2 lymehaus.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 Phishing
2022-11-28 2 lymehaus.com/wp-content/themes/holmes/assets/js/modules/plugins/jquery.wayp (...) Phishing
2022-11-28 2 lymehaus.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2 Phishing
2022-11-28 2 lymehaus.com/wp-content/themes/holmes/assets/js/modules/plugins/jquery.easi (...) Phishing
2022-11-28 2 lymehaus.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2 Phishing
2022-11-28 2 lymehaus.com/wp-content/themes/holmes/assets/js/modules/plugins/packery-mod (...) Phishing
2022-11-28 2 lymehaus.com/wp-content/themes/holmes/assets/js/modules/plugins/parallax.mi (...) Phishing
2022-11-28 2 lymehaus.com/wp-content/plugins/holmes-core/shortcodes/custom-font/assets/j (...) Phishing
2022-11-28 2 lymehaus.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1 Phishing
2022-11-28 2 lymehaus.com/wp-includes/js/comment-reply.min.js?ver=6.1.1 Phishing
2022-11-28 2 lymehaus.com/wp-content/themes/holmes/assets/js/modules/plugins/jquery.mous (...) Phishing
2022-11-28 2 lymehaus.com/wp-content/plugins/holmes-core/shortcodes/counter/assets/js/pl (...) Phishing
2022-11-28 2 lymehaus.com/wp-content/themes/holmes/framework/lib/icons-pack/ion-icons/cs (...) Phishing
2022-11-28 2 lymehaus.com/wp-content/themes/holmes/framework/lib/icons-pack/font-awesome (...) Phishing
2022-11-28 2 lymehaus.com/wp-content/themes/holmes/assets/css/modules-responsive.min.css (...) Phishing
2022-11-28 2 lymehaus.com/wp-content/themes/holmes/framework/lib/icons-pack/linea-icons/ (...) Phishing
2022-11-28 2 lymehaus.com/wp-content/themes/holmes/assets/js/modules/plugins/slick.min.j (...) Phishing
2022-11-28 2 lymehaus.com/wp-content/themes/holmes/assets/js/modules/plugins/jquery.pret (...) Phishing
2022-11-28 2 lymehaus.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 Phishing
2022-11-28 2 lymehaus.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 Phishing
2022-11-28 2 lymehaus.com/wp-content/themes/holmes/assets/css/modules.min.css?ver=6.1.1 Phishing
2022-11-28 2 lymehaus.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?v (...) Phishing
2022-11-28 2 lymehaus.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.6 Phishing
2022-11-28 2 lymehaus.com/wp-content/uploads/2018/09/Picture3.png.webp Phishing
2022-11-28 2 lymehaus.com/wp-content/uploads/2018/09/Picture1.png.webp Phishing
2022-11-28 2 lymehaus.com/wp-content/themes/holmes/framework/lib/icons-pack/ion-icons/fo (...) Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 4 reports on IP: 199.188.200.229
Date UQ / IDS / BL URL IP
2022-11-28 16:17:51 +0000 0 - 0 - 8 kl-estudiocontable.com/gdfe/index.php?qou-oill=9 199.188.200.229
2022-11-28 11:47:16 +0000 0 - 0 - 53 lymehaus.com/portfolio-item/bima-microinsurance/ 199.188.200.229
2022-11-24 13:14:52 +0000 0 - 0 - 255 mirocel-semillasforestales.com/ 199.188.200.229
2022-11-23 21:41:28 +0000 0 - 0 - 45 firehub.com.np/ 199.188.200.229


Last 5 reports on ASN: NAMECHEAP-NET
Date UQ / IDS / BL URL IP
2023-01-29 23:02:01 +0000 0 - 0 - 5 rainbowscans.com/blog/Attn_XXXXXX_12222022.zip 185.61.154.38
2023-01-29 23:01:48 +0000 0 - 1 - 5 qausainfaisalmufti.com/blog/Attn_XXXXXX_12222 (...) 198.187.29.150
2023-01-29 23:01:43 +0000 0 - 0 - 5 purchasebitcoin.co.uk/blog/Attn_XXXXXX_122220 (...) 67.223.118.30
2023-01-29 23:01:07 +0000 0 - 1 - 5 pravashluitel.com.np/way/Cancellation_747085_ (...) 198.54.116.55
2023-01-29 23:00:47 +0000 0 - 1 - 4 pravashluitel.com.np/way/Cancellation_689864_ (...) 198.54.116.55


Last 1 reports on domain: lymehaus.com
Date UQ / IDS / BL URL IP
2022-11-28 11:47:16 +0000 0 - 0 - 53 lymehaus.com/portfolio-item/bima-microinsurance/ 199.188.200.229


No other reports with similar screenshot

JavaScript

Executed Scripts (57)

Executed Evals (5)
#1 JavaScript::Eval (size: 15576) - SHA256: d4be0587aacd19697ae508209e99aa30536e2b75393db507b1cd329131d8e19c
/* Anti-spam. Want to say hello? Contact (base64) Ym90Z3VhcmQtY29udGFjdEBnb29nbGUuY29t */
(function() {
    var E = function(n) {
            return n
        },
        T = function(n, I) {
            if ((I = (n = null, e.trustedTypes), !I) || !I.createPolicy) return n;
            try {
                n = I.createPolicy("bg", {
                    createHTML: E,
                    createScript: E,
                    createScriptURL: E
                })
            } catch (L) {
                e.console && e.console.error(L.message)
            }
            return n
        },
        e = this || self;
    (0, eval)(function(n, I) {
        return (I = T()) && 1 === n.eval(I.createScript("1")) ? function(L) {
            return I.createScript(L)
        } : function(L) {
            return "" + L
        }
    }(e)(Array(7824 * Math.random() | 0).join("\n") + '(function(){var y,nv=function(n,E,I,e){for(e=(I=a(E),0);0<n;n--)e=e<<8|z(E);Z(I,E,e)},c=function(n,E,I,e,X,L){if(n.N.length){(n.R=(n.R&&0(),true),n).rY=E;try{e=n.Z(),n.G=e,n.I=0,n.Y=e,L=Ia(E,n),X=n.Z()-n.Y,n.D+=X,X<(I?0:10)||0>=n.l--||(X=Math.floor(X),n.F.push(254>=X?X:254))}finally{n.R=false}return L}},iN=function(n,E,I){if((I=typeof n,"object")==I)if(n){if(n instanceof Array)return"array";if(n instanceof Object)return I;if((E=Object.prototype.toString.call(n),"[object Window]")==E)return"object";if("[object Array]"==E||"number"==typeof n.length&&"undefined"!=typeof n.splice&&"undefined"!=typeof n.propertyIsEnumerable&&!n.propertyIsEnumerable("splice"))return"array";if("[object Function]"==E||"undefined"!=typeof n.call&&"undefined"!=typeof n.propertyIsEnumerable&&!n.propertyIsEnumerable("call"))return"function"}else return"null";else if("function"==I&&"undefined"==typeof n.call)return"object";return I},m=function(n,E){n.N.splice(0,0,E)},Lv=function(n,E){return(n=n.create().shift(),E.S).create().length||E.v.create().length||(E.v=void 0,E.S=void 0),n},P=function(n,E,I,e,X,L){if(!E.U){if(3<(I=(0==((L=void 0,I&&I[0]===r)&&(n=I[1],L=I[2],I=void 0),X=Q(19,E),X).length&&(e=Q(117,E)>>3,X.push(n,e>>8&255,e&255),void 0!=L&&X.push(L&255)),n="",I&&(I.message&&(n+=I.message),I.stack&&(n+=":"+I.stack)),Q(504,E)),I)){E.L=(L=(n=(I-=(n=n.slice(0,(I|0)-3),n.length|0)+3,EK(n)),E.L),E);try{G(E,446,f(2,n.length).concat(n),9)}finally{E.L=L}}Z(504,E,I)}},b=function(n,E,I){n[Z(I,E,n),ev]=2796},Tl=function(n,E){(E.push(n[0]<<24|n[1]<<16|n[2]<<8|n[3]),E.push(n[4]<<24|n[5]<<16|n[6]<<8|n[7]),E).push(n[8]<<24|n[9]<<16|n[10]<<8|n[11])},gN=function(n,E,I,e){G(n,(I=(e=a(n),a(n)),I),f(E,Q(e,n)))},Xn=function(n,E){if(E=(n=q.trustedTypes,null),!n||!n.createPolicy)return E;try{E=n.createPolicy("bg",{createHTML:x0,createScript:x0,createScriptURL:x0})}catch(I){q.console&&q.console.error(I.message)}return E},aa=function(n,E,I,e){return(e=O[n.substring(0,3)+"_"])?e(n.substring(3),E,I):wN(E,n)},DU=function(n,E,I,e){try{e=n[((E|0)+2)%3],n[E]=(n[E]|0)-(n[((E|0)+1)%3]|0)-(e|0)^(1==E?e<<I:e>>>I)}catch(X){throw X;}},Q=function(n,E){if(void 0===(E=E.K[n],E))throw[r,30,n];if(E.value)return E.create();return E.create(1*n*n+-43*n+-56),E.prototype},ZU=function(n,E,I,e,X,L){for(e=(L=(I=((X=a((E=n[zl]||{},n)),E.TW=a(n),E).P=[],n.L==n)?(z(n)|0)-1:1,a(n)),0);e<I;e++)E.P.push(a(n));for(E.A=Q(X,n);I--;)E.P[I]=Q(E.P[I],n);return E.Kv=Q(L,n),E},Mi=function(n,E,I,e,X){G(n,(((e=Q((X=a((e=(I=E&4,E&=3,a(n)),n)),e),n),I)&&(e=EK(""+e)),E)&&G(n,X,f(2,e.length)),X),e)},EK=function(n,E,I,e,X){for(X=E=(n=n.replace(/\\r\\n/g,"\\n"),I=[],0);X<n.length;X++)e=n.charCodeAt(X),128>e?I[E++]=e:(2048>e?I[E++]=e>>6|192:(55296==(e&64512)&&X+1<n.length&&56320==(n.charCodeAt(X+1)&64512)?(e=65536+((e&1023)<<10)+(n.charCodeAt(++X)&1023),I[E++]=e>>18|240,I[E++]=e>>12&63|128):I[E++]=e>>12|224,I[E++]=e>>6&63|128),I[E++]=e&63|128);return I},O,a=function(n,E){if(n.S)return Lv(n.v,n);return(E=h(8,n,true),E&128)&&(E^=128,n=h(2,n,true),E=(E<<2)+(n|0)),E},A=function(n,E){E.T=((E.T?E.T+"~":"E:")+n.message+":"+n.stack).slice(0,2048)},mC=function(n,E,I,e,X){if((I=n[0],I)==N)E.l=25,E.u(n);else if(I==k){X=n[1];try{e=E.T||E.u(n)}catch(L){A(L,E),e=E.T}X(e)}else if(I==uN)E.u(n);else if(I==l)E.u(n);else if(I==WU){try{for(e=0;e<E.C.length;e++)try{X=E.C[e],X[0][X[1]](X[2])}catch(L){}}catch(L){}(0,n[1])(function(L,T){E.o(L,true,T)},(E.C=[],function(L){(m(E,(L=!E.N.length,[cU])),L)&&c(E,true,false)}))}else{if(I==H)return e=n[2],Z(264,E,n[6]),Z(98,E,e),E.u(n);I==cU?(E.F=[],E.K=null,E.X=[]):I==ev&&"loading"===q.document.readyState&&(E.h=function(L,T){function g(){T||(T=true,L())}q.document.addEventListener("DOMContentLoaded",(T=false,g),F),q.addEventListener("load",g,F)})}},F={passive:true,capture:true},wN=function(n,E){return n(function(I){I(E)}),[function(){return E}]},x0=function(n){return n},sK=function(n,E){Z(169,n,(n.mu.push(n.K.slice()),n.K[169]=void 0,E))},v=function(n,E,I,e,X,L,T,g,x){if(I.L=(T=(x=(g=(L=0<(E||I.I++,I).W&&I.R&&I.rY&&1>=I.B&&!I.S&&!I.h&&(!E||1<I.J-e)&&0==document.hidden,(X=4==I.I)||L)?I.Z():I.G,g)-I.G,x>>14),I.H&&(I.H^=T*(x<<2)),I.j+=T,T)||I.L,X||L)I.I=0,I.G=g;if(!L||g-I.Y<I.W-(n?255:E?5:2))return false;return I.h=((Z((n=Q(E?117:169,(I.J=e,I)),169),I,I.O),I).N.push([uN,n,E?e+1:e]),B),true},Ia=function(n,E,I,e){for(;E.N.length;){e=(E.h=null,E).N.pop();try{I=mC(e,E)}catch(X){A(X,E)}if(n&&E.h){n=E.h,n(function(){c(E,true,true)});break}}return I},Q6=function(n,E,I,e){return Q((Z(169,(rN(n,(e=Q(169,n),n.X&&e<n.O?(Z(169,n,n.O),sK(n,E)):Z(169,n,E),I)),n),e),98),n)},bN=function(n,E,I,e,X){for(e=(I.xv=((I.uV=((I.aN=I[k],I).zW=V6,tI),I).Lv=Y0({get:function(){return this.concat()}},I.g),J[I.g](I.Lv,{value:{value:{}}})),0),X=[];128>e;e++)X[e]=String.fromCharCode(e);c(I,true,(m(I,(m(I,(m(I,(Z(6,(b(function(L,T,g,x,w,D){v(false,true,L,T)||(w=ZU(L.L),T=w.P,D=w.A,g=T.length,x=w.Kv,w=w.TW,T=0==g?new x[D]:1==g?new x[D](T[0]):2==g?new x[D](T[0],T[1]):3==g?new x[D](T[0],T[1],T[2]):4==g?new x[D](T[0],T[1],T[2],T[3]):2(),Z(w,L,T))},(Z(446,I,R((b(function(L,T,g,x,w,D){if(!v(true,true,L,T)){if((D=(w=Q((T=(g=(D=a(L),T=a(L),a(L)),w=a(L),Q)(T,L),w),L),Q(D,L)),L=Q(g,L),"object")==iN(D)){for(x in g=[],D)g.push(x);D=g}for(x=0,g=D.length,L=0<L?L:1;x<g;x+=L)T(D.slice(x,(x|0)+(L|0)),w)}},I,((b(function(L){nv(4,L)},(b(function(L,T,g,x,w,D,M){for(x=(T=(g=Q((D=a(L),w=dN(L),M="",157),L),g.length),0);w--;)x=((x|0)+(dN(L)|0))%T,M+=X[g[x]];Z(D,L,M)},I,(Z(409,(I.cV=(Z(373,I,[160,(b(function(L,T,g,x){Z((x=Q((g=(T=a((g=(x=a(L),a(L)),L)),Q(g,L)),x),L),T),L,x[g])},(b(function(L,T,g,x,w){Z((w=(g=(g=a((x=(T=a(L),a(L)),L)),w=a(L),Q)(g,L),x=Q(x,L),Q(w,L)),T),L,PU(x,w,L,g))},I,(b(function(L,T,g,x,w){for(x=(w=(g=dN((T=a(L),L)),[]),0);x<g;x++)w.push(z(L));Z(T,L,w)},I,(b(function(L){gN(L,1)},(b(function(L,T,g,x){!v(false,true,L,T)&&(T=ZU(L),x=T.Kv,g=T.A,L.L==L||g==L.S0&&x==L)&&(Z(T.TW,L,g.apply(x,T.P)),L.G=L.Z())},(b(function(L,T,g,x){Z((g=Q((T=a((g=a(L),L)),x=Q(T,L),g),L),T),L,x+g)},(Z(19,I,(b(function(L,T,g){Z((g=(T=a(L),a(L)),T=Q(T,L),T=iN(T),g),L,T)},I,(b(function(L,T,g,x){Z((T=a((x=(g=a(L),a(L)),L)),T),L,Q(g,L)||Q(x,L))},I,(b(function(L,T){L=(T=a(L),Q)(T,L.L),L[0].removeEventListener(L[1],L[2],F)},(b(function(L,T,g){v(false,true,L,T)||(T=a(L),g=a(L),Z(g,L,function(x){return eval(x)}(Gl(Q(T,L.L)))))},I,(b(function(L){Mi(L,3)},I,(b(function(L,T,g){0!=(g=(g=(T=a(L),a(L)),Q)(g,L),Q(T,L))&&Z(169,L,g)},(Z(426,I,(b(function(L,T,g,x,w){x=(T=Q((g=(w=(T=(x=a(L),g=a(L),a)(L),a(L)),Q(g,L)),w=Q(w,L),T),L),Q)(x,L.L),0!==x&&(T=PU(T,1,L,w,x,g),x.addEventListener(g,T,F),Z(426,L,[x,g,T]))},(Z((b(function(L){gN(L,4)},(b(function(L,T,g,x){Z((x=(T=(x=a(L),a(L)),g=a(L),T=Q(T,L),Q(x,L)),g),L,x in T|0)},(Z(258,(Z(504,(Z(98,I,(b(function(){},I,(b(function(L,T,g,x){Z((T=z((x=a(L),L)),g=a(L),g),L,Q(x,L)>>>T)},I,(b(function(L,T,g){Z((g=(T=a(L),a(L)),g),L,""+Q(T,L))},I,(b(function(L,T){sK((T=Q(a(L),L),L.L),T)},I,(b(function(L,T,g,x,w,D,M,W,t,p,V,u){function U(Y,d){for(;g<Y;)u|=z(L)<<g,g+=8;return u>>=(d=u&(1<<(g-=Y,Y))-1,Y),d}for(w=(x=(g=(V=a(L),u=0),M=(U(3)|0)+1,U(5)),[]),D=T=0;D<x;D++)W=U(1),w.push(W),T+=W?0:1;for(p=(D=(T=((T|0)-1).toString(2).length,0),[]);D<x;D++)w[D]||(p[D]=U(T));for(T=0;T<x;T++)w[T]&&(p[T]=a(L));for(t=[];M--;)t.push(Q(a(L),L));b(function(Y,d,y6,C,S){for(C=(y6=[],S=[],0);C<x;C++){if(d=p[C],!w[C]){for(;d>=S.length;)S.push(a(Y));d=S[d]}y6.push(d)}(Y.S=fv(t.slice(),Y),Y).v=fv(y6,Y)},L,V)},I,(b(function(L,T,g,x){if(x=L.mu.pop()){for(g=z(L);0<g;g--)T=a(L),x[T]=L.K[T];L.K=(x[504]=(x[19]=L.K[19],L).K[504],x)}else Z(169,L,L.O)},(b(function(L){Mi(L,4)},I,(b(function(L,T,g,x){(x=(g=a((T=a(L),L)),a(L)),L.L==L)&&(g=Q(g,L),x=Q(x,L),Q(T,L)[g]=x,226==T&&(L.i=void 0,2==g&&(L.H=h(32,L,false),L.i=void 0)))},I,(b(function(L,T,g,x){T=(g=a((T=(x=a(L),a(L)),L)),x=Q(x,L),Q)(T,L),Z(g,L,+(x==T))},I,(Z(90,((Z(117,(((I.l=25,(I.T=void 0,(e=window.performance||{},(I.v=(I.XU=0,void 0),I.K=[],I).rY=(I.X=[],(I.O=0,I.W=0,I).N=[],I.H=(I.mu=[],I.R=false,void 0),I.B=0,false),I).S=void 0,I.F=[],I).j=(I.Y=0,I.V=void 0,I.G=0,I.D=0,1),I).pv=(I.J=8001,(I.I=void 0,I.h=(I.S0=function(L){this.L=L},null),I.L=(I.C=[],I),I).U=false,(I.i=void 0,e).timeOrigin||(e.timing||{}).navigationStart||0),Z)(169,I,0),I),0),I).Yv=0,I),[]),111)),292)),Z(184,I,353),170)),I),382),286)),390)),281)),7)),326)),{})),I),2048),I),[0,0,0]),I),44),I),84),207),I,q),I),396),0)),I),323),177)),442)),I),81),376)),433)),[])),I),14),I),222),I),347),287)),50)),I),123),0),0]),0),I),I),205)),I),432),I).vV=0,215)),4))),I),228),I),0),[ev])),[l,n])),[WU,E])),true))},R=function(n,E){for(E=[];n--;)E.push(255*Math.random()|0);return E},f=function(n,E,I,e){for(e=(I=(n|0)-1,[]);0<=I;I--)e[(n|0)-1-(I|0)]=E>>8*I&255;return e},Y0=function(n,E){return J[E](J.prototype,{splice:n,floor:n,pop:n,stack:n,document:n,call:n,length:n,prototype:n,parent:n,console:n,propertyIsEnumerable:n,replace:n})},Z=function(n,E,I){if(169==n||117==n)E.K[n]?E.K[n].concat(I):E.K[n]=fv(I,E);else{if(E.U&&226!=n)return;373==n||446==n||90==n||19==n||258==n?E.K[n]||(E.K[n]=pv(118,E,I,n)):E.K[n]=pv(81,E,I,n)}226==n&&(E.H=h(32,E,false),E.i=void 0)},qi=function(n,E,I,e){function X(){}return{invoke:(e=aa((I=void 0,n),function(L){X&&(E&&B(E),I=L,X(),X=void 0)},!!E)[0],function(L,T,g,x){function w(){I(function(D){B(function(){L(D)})},g)}if(!T)return T=e(g),L&&L(T),T;I?w():(x=X,X=function(){(x(),B)(w)})})}},OK=function(n,E,I){if(3==n.length){for(I=0;3>I;I++)E[I]+=n[I];for(I=[13,8,13,12,16,(n=0,5),3,10,15];9>n;n++)E[3](E,n%3,I[n])}},K=function(n,E,I){I=this;try{bN(E,n,this)}catch(e){A(e,this),n(function(X){X(I.T)})}},dN=function(n,E){return E=z(n),E&128&&(E=E&127|z(n)<<7),E},UK=function(n,E,I,e,X){for(X=(I=I[e=I[2]|0,3]|0,0);14>X;X++)n=n>>>8|n<<24,n+=E|0,n^=e+2298,I=I>>>8|I<<24,E=E<<3|E>>>29,I+=e|0,I^=X+2298,E^=n,e=e<<3|e>>>29,e^=I;return[E>>>24&255,E>>>16&255,E>>>8&255,E>>>0&255,n>>>24&255,n>>>16&255,n>>>8&255,n>>>0&255]},hI=function(n,E,I){return E.o(function(e){I=e},false,n),I},z=function(n){return n.S?Lv(n.v,n):h(8,n,true)},jv=function(n,E){return E[n]<<24|E[(n|0)+1]<<16|E[(n|0)+2]<<8|E[(n|0)+3]},rN=function(n,E,I,e,X,L){if(!n.T){n.B++;try{for(X=(L=0,n.O),e=void 0;--E;)try{if(I=void 0,n.S)e=Lv(n.S,n);else{if((L=Q(169,n),L)>=X)break;e=Q((Z(117,n,L),I=a(n),I),n)}v(false,false,(e&&e[cU]&2048?e(n,E):P(0,n,[r,21,I]),n),E)}catch(T){Q(184,n)?P(22,n,T):Z(184,n,T)}if(!E){if(n.gY){rN(n,(n.B--,168668240895));return}P(0,n,[r,33])}}catch(T){try{P(22,n,T)}catch(g){A(g,n)}}n.B--}},G=function(n,E,I,e,X,L){if(n.L==n)for(L=Q(E,n),446==E?(E=function(T,g,x,w){if((w=(x=L.length,(x|0)-4>>3),L.q7)!=w){g=[0,(w=(w<<3)-(L.q7=w,4),0),X[1],X[2]];try{L.O$=UK(jv((w|0)+4,L),jv(w,L),g)}catch(D){throw D;}}L.push(L.O$[x&7]^T)},X=Q(258,n)):E=function(T){L.push(T)},e&&E(e&255),n=0,e=I.length;n<e;n++)E(I[n])},fv=function(n,E,I){return((I=J[E.g](E.xv),I)[E.g]=function(){return n},I).concat=function(e){n=e},I},h=function(n,E,I,e,X,L,T,g,x,w,D,M,W,t){if((g=Q(169,E),g)>=E.O)throw[r,31];for(w=(e=(D=E.aN.length,n),0),x=g;0<e;)T=x>>3,t=x%8,W=8-(t|0),L=E.X[T],W=W<e?W:e,I&&(X=E,X.i!=x>>6&&(X.i=x>>6,M=Q(226,X),X.V=UK(X.i,X.H,[0,0,M[1],M[2]])),L^=E.V[T&D]),x+=W,w|=(L>>8-(t|0)-(W|0)&(1<<W)-1)<<(e|0)-(W|0),e-=W;return Z(169,E,(I=w,(g|0)+(n|0))),I},q=this||self,B=q.requestIdleCallback?function(n){requestIdleCallback(function(){n()},{timeout:4})}:q.setImmediate?function(n){setImmediate(n)}:function(n){setTimeout(n,0)},PU=function(n,E,I,e,X,L){function T(){if(I.L==I){if(I.K){var g=[H,n,e,void 0,X,L,arguments];if(2==E)var x=c(I,(m(I,g),false),false);else if(1==E){var w=!I.N.length;(m(I,g),w)&&c(I,false,false)}else x=mC(g,I);return x}X&&L&&X.removeEventListener(L,T,F)}}return T},pv=function(n,E,I,e,X,L,T,g){return((L=(T=n&(X=$0,I=[89,-43,5,1,4,91,I,75,51,-20],7),J[E.g](E.Lv)),L)[E.g]=function(x){T+=6+7*n,g=x,T&=7},L).concat=function(x){return(g=(x=(x=e%16+1,-40*e*e*g-x*g- -2240*g+I[T+51&7]*e*x+40*g*g+T+1*e*e*x- -1720*e*g+(X()|0)*x),void 0),x=I[x],I[(T+13&7)+(n&2)]=x,I)[T+(n&2)]=-43,x},L},zl=String.fromCharCode(105,110,116,101,103,67,104,101,99,107,66,121,112,97,115,115),cU=((K.prototype.gY=false,K.prototype.dY=void 0,K).prototype.s="toString",K.prototype.BV=void 0,[]),H=[],l=[],k=[],ev=[],WU=[],r={},N=[],uN=[],$0=((y=(((Tl,function(){})(R),DU,function(){})(OK),K.prototype.g="create",K.prototype),y).bV=function(n,E,I){return n^((E=((E^=E<<13,E^=E>>17,E)^E<<5)&I)||(E=1),E)},void 0),J=(y.o=(y.HV=function(){return Math.floor(this.D+(this.Z()-this.Y))},((y.GW=function(n,E,I,e,X,L){for(X=(e=L=0,[]);L<n.length;L++)for(I=I<<E|n[L],e+=E;7<e;)e-=8,X.push(I>>e&255);return X},y).Z=(y.he=function(){return Math.floor(this.Z())},(window.performance||{}).now)?function(){return this.pv+window.performance.now()}:function(){return+new Date},y).PV=function(n,E,I,e,X){for(e=X=0;X<n.length;X++)e+=n.charCodeAt(X),e+=e<<10,e^=e>>6;return X=new Number((n=(e+=e<<3,e^=e>>11,e+(e<<15)>>>0),n&(1<<E)-1)),X[0]=(n>>>E)%I,X},function(n,E,I,e,X){if(I="array"===iN(I)?I:[I],this.T)n(this.T);else try{e=[],X=!this.N.length,m(this,[N,e,I]),m(this,[k,n,e]),E&&!X||c(this,E,true)}catch(L){A(L,this),n(this.T)}}),r).constructor;(K.prototype.u=function(n,E){return $0=function(){return n==E?-56:-98},E={},n={},function(I,e,X,L,T,g,x,w,D,M,W,t,p,V,u){n=(t=n,E);try{if(e=I[0],e==l){p=I[1];try{for(x=(u=(V=[],L=0,atob(p)),0);L<u.length;L++)T=u.charCodeAt(L),255<T&&(V[x++]=T&255,T>>=8),V[x++]=T;Z(226,this,(this.O=(this.X=V,this).X.length<<3,[0,0,0]))}catch(U){P(17,this,U);return}rN(this,8001)}else if(e==N)I[1].push(Q(373,this).length,Q(504,this),Q(446,this).length,Q(90,this).length),Z(98,this,I[2]),this.K[67]&&Q6(this,Q(67,this),8001);else{if(e==k){(w=(V=I[2],f(2,(Q(373,this).length|0)+2)),X=this.L,this).L=this;try{W=Q(19,this),0<W.length&&G(this,373,f(2,W.length).concat(W),10),G(this,373,f(1,this.j),109),G(this,373,f(1,this[k].length)),u=0,u+=Q(6,this)&2047,u-=(Q(373,this).length|0)+5,D=Q(446,this),4<D.length&&(u-=(D.length|0)+3),0<u&&G(this,373,f(2,u).concat(R(u)),15),4<D.length&&G(this,373,f(2,D.length).concat(D),156)}finally{this.L=X}if(g=((x=R(2).concat(Q(373,this)),x[1]=x[0]^6,x)[3]=x[1]^w[0],x[4]=x[1]^w[1],this).N7(x))g="!"+g;else for(u=0,g="";u<x.length;u++)M=x[u][this.s](16),1==M.length&&(M="0"+M),g+=M;return Q(((Z(504,this,((L=g,Q)(373,this).length=V.shift(),V.shift())),Q(446,this)).length=V.shift(),90),this).length=V.shift(),L}if(e==uN)Q6(this,I[1],I[2]);else if(e==H)return Q6(this,I[1],8001)}}finally{n=t}}}(),K.prototype.yC=0,K.prototype).N7=function(n,E,I,e){if(I=window.btoa){for(e="",E=0;E<n.length;E+=8192)e+=String.fromCharCode.apply(null,n.slice(E,E+8192));n=I(e).replace(/\\+/g,"-").replace(/\\//g,"_").replace(/=/g,"")}else n=void 0;return n},K.prototype.Z4=0;var V6,tI=/./,AI=(K.prototype[WU]=[0,0,1,1,0,1,1],l.pop.bind(K.prototype[N])),Gl=function(n,E){return(E=Xn())&&1===n.eval(E.createScript("1"))?function(I){return E.createScript(I)}:function(I){return""+I}}(((V6=Y0({get:AI},(tI[K.prototype.s]=AI,K.prototype.g)),K).prototype.iV=void 0,q));(O=q.botguard||(q.botguard={}),40<O.m)||(O.m=41,O.bg=qi,O.a=aa),O.kDL_=function(n,E,I){return[(I=new K(E,n),function(e){return hI(e,I)})]};}).call(this);'));
}).call(this);
#2 JavaScript::Eval (size: 22) - SHA256: 355b9b382781cde432ccca7627a8fdecad5040be2910428d5fc5b4b57fed949b
0,
function(L) {
    nv(1, L)
}
#3 JavaScript::Eval (size: 64) - SHA256: 9908576f4e1cce70106175d94488f9071022d3485f8a8ccf0655b399b318a7c4
0,
function(L, T, g) {
    (T = (g = a((T = a(L), L)), L).K[T] && Q(T, L), Z)(g, L, T)
}
#4 JavaScript::Eval (size: 22) - SHA256: 662748d1507b16ab56d1bceff58b8302eb43f21ce0de70b24b21b8ef39aeff35
0,
function(L) {
    nv(2, L)
}
#5 JavaScript::Eval (size: 16447) - SHA256: cf964821cb1e26e13d730e79b48616a66babcf50a601c175661d1675d82b0fec
(function() {
    var y, nv = function(n, E, I, e) {
            for (e = (I = a(E), 0); 0 < n; n--) e = e << 8 | z(E);
            Z(I, E, e)
        },
        c = function(n, E, I, e, X, L) {
            if (n.N.length) {
                (n.R = (n.R && 0(), true), n).rY = E;
                try {
                    e = n.Z(), n.G = e, n.I = 0, n.Y = e, L = Ia(E, n), X = n.Z() - n.Y, n.D += X, X < (I ? 0 : 10) || 0 >= n.l-- || (X = Math.floor(X), n.F.push(254 >= X ? X : 254))
                } finally {
                    n.R = false
                }
                return L
            }
        },
        iN = function(n, E, I) {
            if ((I = typeof n, "object") == I)
                if (n) {
                    if (n instanceof Array) return "array";
                    if (n instanceof Object) return I;
                    if ((E = Object.prototype.toString.call(n), "[object Window]") == E) return "object";
                    if ("[object Array]" == E || "number" == typeof n.length && "undefined" != typeof n.splice && "undefined" != typeof n.propertyIsEnumerable && !n.propertyIsEnumerable("splice")) return "array";
                    if ("[object Function]" == E || "undefined" != typeof n.call && "undefined" != typeof n.propertyIsEnumerable && !n.propertyIsEnumerable("call")) return "function"
                } else return "null";
            else if ("function" == I && "undefined" == typeof n.call) return "object";
            return I
        },
        m = function(n, E) {
            n.N.splice(0, 0, E)
        },
        Lv = function(n, E) {
            return (n = n.create().shift(), E.S).create().length || E.v.create().length || (E.v = void 0, E.S = void 0), n
        },
        P = function(n, E, I, e, X, L) {
            if (!E.U) {
                if (3 < (I = (0 == ((L = void 0, I && I[0] === r) && (n = I[1], L = I[2], I = void 0), X = Q(19, E), X).length && (e = Q(117, E) >> 3, X.push(n, e >> 8 & 255, e & 255), void 0 != L && X.push(L & 255)), n = "", I && (I.message && (n += I.message), I.stack && (n += ":" + I.stack)), Q(504, E)), I)) {
                    E.L = (L = (n = (I -= (n = n.slice(0, (I | 0) - 3), n.length | 0) + 3, EK(n)), E.L), E);
                    try {
                        G(E, 446, f(2, n.length).concat(n), 9)
                    } finally {
                        E.L = L
                    }
                }
                Z(504, E, I)
            }
        },
        b = function(n, E, I) {
            n[Z(I, E, n), ev] = 2796
        },
        Tl = function(n, E) {
            (E.push(n[0] << 24 | n[1] << 16 | n[2] << 8 | n[3]), E.push(n[4] << 24 | n[5] << 16 | n[6] << 8 | n[7]), E).push(n[8] << 24 | n[9] << 16 | n[10] << 8 | n[11])
        },
        gN = function(n, E, I, e) {
            G(n, (I = (e = a(n), a(n)), I), f(E, Q(e, n)))
        },
        Xn = function(n, E) {
            if (E = (n = q.trustedTypes, null), !n || !n.createPolicy) return E;
            try {
                E = n.createPolicy("bg", {
                    createHTML: x0,
                    createScript: x0,
                    createScriptURL: x0
                })
            } catch (I) {
                q.console && q.console.error(I.message)
            }
            return E
        },
        aa = function(n, E, I, e) {
            return (e = O[n.substring(0, 3) + "_"]) ? e(n.substring(3), E, I) : wN(E, n)
        },
        DU = function(n, E, I, e) {
            try {
                e = n[((E | 0) + 2) % 3], n[E] = (n[E] | 0) - (n[((E | 0) + 1) % 3] | 0) - (e | 0) ^ (1 == E ? e << I : e >>> I)
            } catch (X) {
                throw X;
            }
        },
        Q = function(n, E) {
            if (void 0 === (E = E.K[n], E)) throw [r, 30, n];
            if (E.value) return E.create();
            return E.create(1 * n * n + -43 * n + -56), E.prototype
        },
        ZU = function(n, E, I, e, X, L) {
            for (e = (L = (I = ((X = a((E = n[zl] || {}, n)), E.TW = a(n), E).P = [], n.L == n) ? (z(n) | 0) - 1 : 1, a(n)), 0); e < I; e++) E.P.push(a(n));
            for (E.A = Q(X, n); I--;) E.P[I] = Q(E.P[I], n);
            return E.Kv = Q(L, n), E
        },
        Mi = function(n, E, I, e, X) {
            G(n, (((e = Q((X = a((e = (I = E & 4, E &= 3, a(n)), n)), e), n), I) && (e = EK("" + e)), E) && G(n, X, f(2, e.length)), X), e)
        },
        EK = function(n, E, I, e, X) {
            for (X = E = (n = n.replace(/\r\n/g, "\n"), I = [], 0); X < n.length; X++) e = n.charCodeAt(X), 128 > e ? I[E++] = e : (2048 > e ? I[E++] = e >> 6 | 192 : (55296 == (e & 64512) && X + 1 < n.length && 56320 == (n.charCodeAt(X + 1) & 64512) ? (e = 65536 + ((e & 1023) << 10) + (n.charCodeAt(++X) & 1023), I[E++] = e >> 18 | 240, I[E++] = e >> 12 & 63 | 128) : I[E++] = e >> 12 | 224, I[E++] = e >> 6 & 63 | 128), I[E++] = e & 63 | 128);
            return I
        },
        O, a = function(n, E) {
            if (n.S) return Lv(n.v, n);
            return (E = h(8, n, true), E & 128) && (E ^= 128, n = h(2, n, true), E = (E << 2) + (n | 0)), E
        },
        A = function(n, E) {
            E.T = ((E.T ? E.T + "~" : "E:") + n.message + ":" + n.stack).slice(0, 2048)
        },
        mC = function(n, E, I, e, X) {
            if ((I = n[0], I) == N) E.l = 25, E.u(n);
            else if (I == k) {
                X = n[1];
                try {
                    e = E.T || E.u(n)
                } catch (L) {
                    A(L, E), e = E.T
                }
                X(e)
            } else if (I == uN) E.u(n);
            else if (I == l) E.u(n);
            else if (I == WU) {
                try {
                    for (e = 0; e < E.C.length; e++) try {
                        X = E.C[e], X[0][X[1]](X[2])
                    } catch (L) {}
                } catch (L) {}(0, n[1])(function(L, T) {
                    E.o(L, true, T)
                }, (E.C = [], function(L) {
                    (m(E, (L = !E.N.length, [cU])), L) && c(E, true, false)
                }))
            } else {
                if (I == H) return e = n[2], Z(264, E, n[6]), Z(98, E, e), E.u(n);
                I == cU ? (E.F = [], E.K = null, E.X = []) : I == ev && "loading" === q.document.readyState && (E.h = function(L, T) {
                    function g() {
                        T || (T = true, L())
                    }
                    q.document.addEventListener("DOMContentLoaded", (T = false, g), F), q.addEventListener("load", g, F)
                })
            }
        },
        F = {
            passive: true,
            capture: true
        },
        wN = function(n, E) {
            return n(function(I) {
                I(E)
            }), [function() {
                return E
            }]
        },
        x0 = function(n) {
            return n
        },
        sK = function(n, E) {
            Z(169, n, (n.mu.push(n.K.slice()), n.K[169] = void 0, E))
        },
        v = function(n, E, I, e, X, L, T, g, x) {
            if (I.L = (T = (x = (g = (L = 0 < (E || I.I++, I).W && I.R && I.rY && 1 >= I.B && !I.S && !I.h && (!E || 1 < I.J - e) && 0 == document.hidden, (X = 4 == I.I) || L) ? I.Z() : I.G, g) - I.G, x >> 14), I.H && (I.H ^= T * (x << 2)), I.j += T, T) || I.L, X || L) I.I = 0, I.G = g;
            if (!L || g - I.Y < I.W - (n ? 255 : E ? 5 : 2)) return false;
            return I.h = ((Z((n = Q(E ? 117 : 169, (I.J = e, I)), 169), I, I.O), I).N.push([uN, n, E ? e + 1 : e]), B), true
        },
        Ia = function(n, E, I, e) {
            for (; E.N.length;) {
                e = (E.h = null, E).N.pop();
                try {
                    I = mC(e, E)
                } catch (X) {
                    A(X, E)
                }
                if (n && E.h) {
                    n = E.h, n(function() {
                        c(E, true, true)
                    });
                    break
                }
            }
            return I
        },
        Q6 = function(n, E, I, e) {
            return Q((Z(169, (rN(n, (e = Q(169, n), n.X && e < n.O ? (Z(169, n, n.O), sK(n, E)) : Z(169, n, E), I)), n), e), 98), n)
        },
        bN = function(n, E, I, e, X) {
            for (e = (I.xv = ((I.uV = ((I.aN = I[k], I).zW = V6, tI), I).Lv = Y0({get: function() {
                        return this.concat()
                    }
                }, I.g), J[I.g](I.Lv, {
                    value: {
                        value: {}
                    }
                })), 0), X = []; 128 > e; e++) X[e] = String.fromCharCode(e);
            c(I, true, (m(I, (m(I, (m(I, (Z(6, (b(function(L, T, g, x, w, D) {
                v(false, true, L, T) || (w = ZU(L.L), T = w.P, D = w.A, g = T.length, x = w.Kv, w = w.TW, T = 0 == g ? new x[D] : 1 == g ? new x[D](T[0]) : 2 == g ? new x[D](T[0], T[1]) : 3 == g ? new x[D](T[0], T[1], T[2]) : 4 == g ? new x[D](T[0], T[1], T[2], T[3]) : 2(), Z(w, L, T))
            }, (Z(446, I, R((b(function(L, T, g, x, w, D) {
                if (!v(true, true, L, T)) {
                    if ((D = (w = Q((T = (g = (D = a(L), T = a(L), a(L)), w = a(L), Q)(T, L), w), L), Q(D, L)), L = Q(g, L), "object") == iN(D)) {
                        for (x in g = [], D) g.push(x);
                        D = g
                    }
                    for (x = 0, g = D.length, L = 0 < L ? L : 1; x < g; x += L) T(D.slice(x, (x | 0) + (L | 0)), w)
                }
            }, I, ((b(function(L) {
                nv(4, L)
            }, (b(function(L, T, g, x, w, D, M) {
                for (x = (T = (g = Q((D = a(L), w = dN(L), M = "", 157), L), g.length), 0); w--;) x = ((x | 0) + (dN(L) | 0)) % T, M += X[g[x]];
                Z(D, L, M)
            }, I, (Z(409, (I.cV = (Z(373, I, [160, (b(function(L, T, g, x) {
                Z((x = Q((g = (T = a((g = (x = a(L), a(L)), L)), Q(g, L)), x), L), T), L, x[g])
            }, (b(function(L, T, g, x, w) {
                Z((w = (g = (g = a((x = (T = a(L), a(L)), L)), w = a(L), Q)(g, L), x = Q(x, L), Q(w, L)), T), L, PU(x, w, L, g))
            }, I, (b(function(L, T, g, x, w) {
                for (x = (w = (g = dN((T = a(L), L)), []), 0); x < g; x++) w.push(z(L));
                Z(T, L, w)
            }, I, (b(function(L) {
                gN(L, 1)
            }, (b(function(L, T, g, x) {
                !v(false, true, L, T) && (T = ZU(L), x = T.Kv, g = T.A, L.L == L || g == L.S0 && x == L) && (Z(T.TW, L, g.apply(x, T.P)), L.G = L.Z())
            }, (b(function(L, T, g, x) {
                Z((g = Q((T = a((g = a(L), L)), x = Q(T, L), g), L), T), L, x + g)
            }, (Z(19, I, (b(function(L, T, g) {
                Z((g = (T = a(L), a(L)), T = Q(T, L), T = iN(T), g), L, T)
            }, I, (b(function(L, T, g, x) {
                Z((T = a((x = (g = a(L), a(L)), L)), T), L, Q(g, L) || Q(x, L))
            }, I, (b(function(L, T) {
                L = (T = a(L), Q)(T, L.L), L[0].removeEventListener(L[1], L[2], F)
            }, (b(function(L, T, g) {
                v(false, true, L, T) || (T = a(L), g = a(L), Z(g, L, function(x) {
                    return eval(x)
                }(Gl(Q(T, L.L)))))
            }, I, (b(function(L) {
                Mi(L, 3)
            }, I, (b(function(L, T, g) {
                0 != (g = (g = (T = a(L), a(L)), Q)(g, L), Q(T, L)) && Z(169, L, g)
            }, (Z(426, I, (b(function(L, T, g, x, w) {
                x = (T = Q((g = (w = (T = (x = a(L), g = a(L), a)(L), a(L)), Q(g, L)), w = Q(w, L), T), L), Q)(x, L.L), 0 !== x && (T = PU(T, 1, L, w, x, g), x.addEventListener(g, T, F), Z(426, L, [x, g, T]))
            }, (Z((b(function(L) {
                gN(L, 4)
            }, (b(function(L, T, g, x) {
                Z((x = (T = (x = a(L), a(L)), g = a(L), T = Q(T, L), Q(x, L)), g), L, x in T | 0)
            }, (Z(258, (Z(504, (Z(98, I, (b(function() {}, I, (b(function(L, T, g, x) {
                Z((T = z((x = a(L), L)), g = a(L), g), L, Q(x, L) >>> T)
            }, I, (b(function(L, T, g) {
                Z((g = (T = a(L), a(L)), g), L, "" + Q(T, L))
            }, I, (b(function(L, T) {
                sK((T = Q(a(L), L), L.L), T)
            }, I, (b(function(L, T, g, x, w, D, M, W, t, p, V, u) {
                function U(Y, d) {
                    for (; g < Y;) u |= z(L) << g, g += 8;
                    return u >>= (d = u & (1 << (g -= Y, Y)) - 1, Y), d
                }
                for (w = (x = (g = (V = a(L), u = 0), M = (U(3) | 0) + 1, U(5)), []), D = T = 0; D < x; D++) W = U(1), w.push(W), T += W ? 0 : 1;
                for (p = (D = (T = ((T | 0) - 1).toString(2).length, 0), []); D < x; D++) w[D] || (p[D] = U(T));
                for (T = 0; T < x; T++) w[T] && (p[T] = a(L));
                for (t = []; M--;) t.push(Q(a(L), L));
                b(function(Y, d, y6, C, S) {
                    for (C = (y6 = [], S = [], 0); C < x; C++) {
                        if (d = p[C], !w[C]) {
                            for (; d >= S.length;) S.push(a(Y));
                            d = S[d]
                        }
                        y6.push(d)
                    }(Y.S = fv(t.slice(), Y), Y).v = fv(y6, Y)
                }, L, V)
            }, I, (b(function(L, T, g, x) {
                if (x = L.mu.pop()) {
                    for (g = z(L); 0 < g; g--) T = a(L), x[T] = L.K[T];
                    L.K = (x[504] = (x[19] = L.K[19], L).K[504], x)
                } else Z(169, L, L.O)
            }, (b(function(L) {
                Mi(L, 4)
            }, I, (b(function(L, T, g, x) {
                (x = (g = a((T = a(L), L)), a(L)), L.L == L) && (g = Q(g, L), x = Q(x, L), Q(T, L)[g] = x, 226 == T && (L.i = void 0, 2 == g && (L.H = h(32, L, false), L.i = void 0)))
            }, I, (b(function(L, T, g, x) {
                T = (g = a((T = (x = a(L), a(L)), L)), x = Q(x, L), Q)(T, L), Z(g, L, +(x == T))
            }, I, (Z(90, ((Z(117, (((I.l = 25, (I.T = void 0, (e = window.performance || {}, (I.v = (I.XU = 0, void 0), I.K = [], I).rY = (I.X = [], (I.O = 0, I.W = 0, I).N = [], I.H = (I.mu = [], I.R = false, void 0), I.B = 0, false), I).S = void 0, I.F = [], I).j = (I.Y = 0, I.V = void 0, I.G = 0, I.D = 0, 1), I).pv = (I.J = 8001, (I.I = void 0, I.h = (I.S0 = function(L) {
                this.L = L
            }, null), I.L = (I.C = [], I), I).U = false, (I.i = void 0, e).timeOrigin || (e.timing || {}).navigationStart || 0), Z)(169, I, 0), I), 0), I).Yv = 0, I), []), 111)), 292)), Z(184, I, 353), 170)), I), 382), 286)), 390)), 281)), 7)), 326)), {})), I), 2048), I), [0, 0, 0]), I), 44), I), 84), 207), I, q), I), 396), 0)), I), 323), 177)), 442)), I), 81), 376)), 433)), [])), I), 14), I), 222), I), 347), 287)), 50)), I), 123), 0), 0]), 0), I), I), 205)), I), 432), I).vV = 0, 215)), 4))), I), 228), I), 0), [ev])), [l, n])), [WU, E])), true))
        },
        R = function(n, E) {
            for (E = []; n--;) E.push(255 * Math.random() | 0);
            return E
        },
        f = function(n, E, I, e) {
            for (e = (I = (n | 0) - 1, []); 0 <= I; I--) e[(n | 0) - 1 - (I | 0)] = E >> 8 * I & 255;
            return e
        },
        Y0 = function(n, E) {
            return J[E](J.prototype, {
                splice: n,
                floor: n,
                pop: n,
                stack: n,
                document: n,
                call: n,
                length: n,
                prototype: n,
                parent: n,
                console: n,
                propertyIsEnumerable: n,
                replace: n
            })
        },
        Z = function(n, E, I) {
            if (169 == n || 117 == n) E.K[n] ? E.K[n].concat(I) : E.K[n] = fv(I, E);
            else {
                if (E.U && 226 != n) return;
                373 == n || 446 == n || 90 == n || 19 == n || 258 == n ? E.K[n] || (E.K[n] = pv(118, E, I, n)) : E.K[n] = pv(81, E, I, n)
            }
            226 == n && (E.H = h(32, E, false), E.i = void 0)
        },
        qi = function(n, E, I, e) {
            function X() {}
            return {
                invoke: (e = aa((I = void 0, n), function(L) {
                    X && (E && B(E), I = L, X(), X = void 0)
                }, !!E)[0], function(L, T, g, x) {
                    function w() {
                        I(function(D) {
                            B(function() {
                                L(D)
                            })
                        }, g)
                    }
                    if (!T) return T = e(g), L && L(T), T;
                    I ? w() : (x = X, X = function() {
                        (x(), B)(w)
                    })
                })
            }
        },
        OK = function(n, E, I) {
            if (3 == n.length) {
                for (I = 0; 3 > I; I++) E[I] += n[I];
                for (I = [13, 8, 13, 12, 16, (n = 0, 5), 3, 10, 15]; 9 > n; n++) E[3](E, n % 3, I[n])
            }
        },
        K = function(n, E, I) {
            I = this;
            try {
                bN(E, n, this)
            } catch (e) {
                A(e, this), n(function(X) {
                    X(I.T)
                })
            }
        },
        dN = function(n, E) {
            return E = z(n), E & 128 && (E = E & 127 | z(n) << 7), E
        },
        UK = function(n, E, I, e, X) {
            for (X = (I = I[e = I[2] | 0, 3] | 0, 0); 14 > X; X++) n = n >>> 8 | n << 24, n += E | 0, n ^= e + 2298, I = I >>> 8 | I << 24, E = E << 3 | E >>> 29, I += e | 0, I ^= X + 2298, E ^= n, e = e << 3 | e >>> 29, e ^= I;
            return [E >>> 24 & 255, E >>> 16 & 255, E >>> 8 & 255, E >>> 0 & 255, n >>> 24 & 255, n >>> 16 & 255, n >>> 8 & 255, n >>> 0 & 255]
        },
        hI = function(n, E, I) {
            return E.o(function(e) {
                I = e
            }, false, n), I
        },
        z = function(n) {
            return n.S ? Lv(n.v, n) : h(8, n, true)
        },
        jv = function(n, E) {
            return E[n] << 24 | E[(n | 0) + 1] << 16 | E[(n | 0) + 2] << 8 | E[(n | 0) + 3]
        },
        rN = function(n, E, I, e, X, L) {
            if (!n.T) {
                n.B++;
                try {
                    for (X = (L = 0, n.O), e = void 0; --E;) try {
                        if (I = void 0, n.S) e = Lv(n.S, n);
                        else {
                            if ((L = Q(169, n), L) >= X) break;
                            e = Q((Z(117, n, L), I = a(n), I), n)
                        }
                        v(false, false, (e && e[cU] & 2048 ? e(n, E) : P(0, n, [r, 21, I]), n), E)
                    } catch (T) {
                        Q(184, n) ? P(22, n, T) : Z(184, n, T)
                    }
                    if (!E) {
                        if (n.gY) {
                            rN(n, (n.B--, 168668240895));
                            return
                        }
                        P(0, n, [r, 33])
                    }
                } catch (T) {
                    try {
                        P(22, n, T)
                    } catch (g) {
                        A(g, n)
                    }
                }
                n.B--
            }
        },
        G = function(n, E, I, e, X, L) {
            if (n.L == n)
                for (L = Q(E, n), 446 == E ? (E = function(T, g, x, w) {
                        if ((w = (x = L.length, (x | 0) - 4 >> 3), L.q7) != w) {
                            g = [0, (w = (w << 3) - (L.q7 = w, 4), 0), X[1], X[2]];
                            try {
                                L.O$ = UK(jv((w | 0) + 4, L), jv(w, L), g)
                            } catch (D) {
                                throw D;
                            }
                        }
                        L.push(L.O$[x & 7] ^ T)
                    }, X = Q(258, n)) : E = function(T) {
                        L.push(T)
                    }, e && E(e & 255), n = 0, e = I.length; n < e; n++) E(I[n])
        },
        fv = function(n, E, I) {
            return ((I = J[E.g](E.xv), I)[E.g] = function() {
                return n
            }, I).concat = function(e) {
                n = e
            }, I
        },
        h = function(n, E, I, e, X, L, T, g, x, w, D, M, W, t) {
            if ((g = Q(169, E), g) >= E.O) throw [r, 31];
            for (w = (e = (D = E.aN.length, n), 0), x = g; 0 < e;) T = x >> 3, t = x % 8, W = 8 - (t | 0), L = E.X[T], W = W < e ? W : e, I && (X = E, X.i != x >> 6 && (X.i = x >> 6, M = Q(226, X), X.V = UK(X.i, X.H, [0, 0, M[1], M[2]])), L ^= E.V[T & D]), x += W, w |= (L >> 8 - (t | 0) - (W | 0) & (1 << W) - 1) << (e | 0) - (W | 0), e -= W;
            return Z(169, E, (I = w, (g | 0) + (n | 0))), I
        },
        q = this || self,
        B = q.requestIdleCallback ? function(n) {
            requestIdleCallback(function() {
                n()
            }, {
                timeout: 4
            })
        } : q.setImmediate ? function(n) {
            setImmediate(n)
        } : function(n) {
            setTimeout(n, 0)
        },
        PU = function(n, E, I, e, X, L) {
            function T() {
                if (I.L == I) {
                    if (I.K) {
                        var g = [H, n, e, void 0, X, L, arguments];
                        if (2 == E) var x = c(I, (m(I, g), false), false);
                        else if (1 == E) {
                            var w = !I.N.length;
                            (m(I, g), w) && c(I, false, false)
                        } else x = mC(g, I);
                        return x
                    }
                    X && L && X.removeEventListener(L, T, F)
                }
            }
            return T
        },
        pv = function(n, E, I, e, X, L, T, g) {
            return ((L = (T = n & (X = $0, I = [89, -43, 5, 1, 4, 91, I, 75, 51, -20], 7), J[E.g](E.Lv)), L)[E.g] = function(x) {
                T += 6 + 7 * n, g = x, T &= 7
            }, L).concat = function(x) {
                return (g = (x = (x = e % 16 + 1, -40 * e * e * g - x * g - -2240 * g + I[T + 51 & 7] * e * x + 40 * g * g + T + 1 * e * e * x - -1720 * e * g + (X() | 0) * x), void 0), x = I[x], I[(T + 13 & 7) + (n & 2)] = x, I)[T + (n & 2)] = -43, x
            }, L
        },
        zl = String.fromCharCode(105, 110, 116, 101, 103, 67, 104, 101, 99, 107, 66, 121, 112, 97, 115, 115),
        cU = ((K.prototype.gY = false, K.prototype.dY = void 0, K).prototype.s = "toString", K.prototype.BV = void 0, []),
        H = [],
        l = [],
        k = [],
        ev = [],
        WU = [],
        r = {},
        N = [],
        uN = [],
        $0 = ((y = (((Tl, function() {})(R), DU, function() {})(OK), K.prototype.g = "create", K.prototype), y).bV = function(n, E, I) {
            return n ^ ((E = ((E ^= E << 13, E ^= E >> 17, E) ^ E << 5) & I) || (E = 1), E)
        }, void 0),
        J = (y.o = (y.HV = function() {
            return Math.floor(this.D + (this.Z() - this.Y))
        }, ((y.GW = function(n, E, I, e, X, L) {
            for (X = (e = L = 0, []); L < n.length; L++)
                for (I = I << E | n[L], e += E; 7 < e;) e -= 8, X.push(I >> e & 255);
            return X
        }, y).Z = (y.he = function() {
            return Math.floor(this.Z())
        }, (window.performance || {}).now) ? function() {
            return this.pv + window.performance.now()
        } : function() {
            return +new Date
        }, y).PV = function(n, E, I, e, X) {
            for (e = X = 0; X < n.length; X++) e += n.charCodeAt(X), e += e << 10, e ^= e >> 6;
            return X = new Number((n = (e += e << 3, e ^= e >> 11, e + (e << 15) >>> 0), n & (1 << E) - 1)), X[0] = (n >>> E) % I, X
        }, function(n, E, I, e, X) {
            if (I = "array" === iN(I) ? I : [I], this.T) n(this.T);
            else try {
                e = [], X = !this.N.length, m(this, [N, e, I]), m(this, [k, n, e]), E && !X || c(this, E, true)
            } catch (L) {
                A(L, this), n(this.T)
            }
        }), r).constructor;
    (K.prototype.u = function(n, E) {
        return $0 = function() {
                return n == E ? -56 : -98
            }, E = {}, n = {},
            function(I, e, X, L, T, g, x, w, D, M, W, t, p, V, u) {
                n = (t = n, E);
                try {
                    if (e = I[0], e == l) {
                        p = I[1];
                        try {
                            for (x = (u = (V = [], L = 0, atob(p)), 0); L < u.length; L++) T = u.charCodeAt(L), 255 < T && (V[x++] = T & 255, T >>= 8), V[x++] = T;
                            Z(226, this, (this.O = (this.X = V, this).X.length << 3, [0, 0, 0]))
                        } catch (U) {
                            P(17, this, U);
                            return
                        }
                        rN(this, 8001)
                    } else if (e == N) I[1].push(Q(373, this).length, Q(504, this), Q(446, this).length, Q(90, this).length), Z(98, this, I[2]), this.K[67] && Q6(this, Q(67, this), 8001);
                    else {
                        if (e == k) {
                            (w = (V = I[2], f(2, (Q(373, this).length | 0) + 2)), X = this.L, this).L = this;
                            try {
                                W = Q(19, this), 0 < W.length && G(this, 373, f(2, W.length).concat(W), 10), G(this, 373, f(1, this.j), 109), G(this, 373, f(1, this[k].length)), u = 0, u += Q(6, this) & 2047, u -= (Q(373, this).length | 0) + 5, D = Q(446, this), 4 < D.length && (u -= (D.length | 0) + 3), 0 < u && G(this, 373, f(2, u).concat(R(u)), 15), 4 < D.length && G(this, 373, f(2, D.length).concat(D), 156)
                            } finally {
                                this.L = X
                            }
                            if (g = ((x = R(2).concat(Q(373, this)), x[1] = x[0] ^ 6, x)[3] = x[1] ^ w[0], x[4] = x[1] ^ w[1], this).N7(x)) g = "!" + g;
                            else
                                for (u = 0, g = ""; u < x.length; u++) M = x[u][this.s](16), 1 == M.length && (M = "0" + M), g += M;
                            return Q(((Z(504, this, ((L = g, Q)(373, this).length = V.shift(), V.shift())), Q(446, this)).length = V.shift(), 90), this).length = V.shift(), L
                        }
                        if (e == uN) Q6(this, I[1], I[2]);
                        else if (e == H) return Q6(this, I[1], 8001)
                    }
                } finally {
                    n = t
                }
            }
    }(), K.prototype.yC = 0, K.prototype).N7 = function(n, E, I, e) {
        if (I = window.btoa) {
            for (e = "", E = 0; E < n.length; E += 8192) e += String.fromCharCode.apply(null, n.slice(E, E + 8192));
            n = I(e).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "")
        } else n = void 0;
        return n
    }, K.prototype.Z4 = 0;
    var V6, tI = /./,
        AI = (K.prototype[WU] = [0, 0, 1, 1, 0, 1, 1], l.pop.bind(K.prototype[N])),
        Gl = function(n, E) {
            return (E = Xn()) && 1 === n.eval(E.createScript("1")) ? function(I) {
                return E.createScript(I)
            } : function(I) {
                return "" + I
            }
        }(((V6 = Y0({get: AI
        }, (tI[K.prototype.s] = AI, K.prototype.g)), K).prototype.iV = void 0, q));
    (O = q.botguard || (q.botguard = {}), 40 < O.m) || (O.m = 41, O.bg = qi, O.a = aa), O.kDL_ = function(n, E, I) {
        return [(I = new K(E, n), function(e) {
            return hI(e, I)
        })]
    };
}).call(this);

Executed Writes (0)


HTTP Transactions (124)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19591
Expires: Mon, 28 Nov 2022 17:13:36 GMT
Date: Mon, 28 Nov 2022 11:47:05 GMT
Connection: keep-alive

                                        
                                            GET /portfolio-item/bima-microinsurance/ HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         199.188.200.229
HTTP/1.1 301 Moved Permanently
content-type: text/html
                                        
keep-alive: timeout=5, max=100
content-length: 707
date: Mon, 28 Nov 2022 11:47:05 GMT
server: LiteSpeed
location: https://lymehaus.com/portfolio-item/bima-microinsurance/
x-turbo-charged-by: LiteSpeed


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   707
Md5:    1304294c0823ca486542ba408ed761e3
Sha1:   b2a70fb2d810ca13985882e6981f33998823e83e
Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4883
Cache-Control: max-age=86731
Date: Mon, 28 Nov 2022 11:47:05 GMT
Etag: "63833c71-1d7"
Expires: Tue, 29 Nov 2022 11:52:36 GMT
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17589
Expires: Mon, 28 Nov 2022 16:40:14 GMT
Date: Mon, 28 Nov 2022 11:47:05 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 11:17:46 GMT
cache-control: public,max-age=3600
age: 1759
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    d130218d0e2841f39c99610fe1a2ab90
Sha1:   29fbe1e177ee55c7a61ae0a206afff271cf5f945
Sha256: 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: CDqP0avJcSCpC2WrnLzX/5lgK2CogZ0YUdkxVMgZbZeOrdHVz4/1VakXmDqdL9gWhZPbMFrhfBg=
x-amz-request-id: MY3KWCQY4SXWNTNG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 11:42:02 GMT
age: 303
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 28 Nov 2022 11:47:05 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 11:47:05 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 28 Nov 2022 01:44:05 GMT
Expires: Mon, 05 Dec 2022 01:44:04 GMT
Etag: "59d5ec89a74755d2da966a74436a928682399981"
Cache-Control: max-age=568018,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7712dde8de67b521-OSL

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 11:08:55 GMT
cache-control: public,max-age=3600
age: 2290
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5099
Cache-Control: 'max-age=158059'
Date: Mon, 28 Nov 2022 11:47:06 GMT
Last-Modified: Mon, 28 Nov 2022 10:22:07 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /portfolio-item/bima-microinsurance/ HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
link: <https://lymehaus.com/wp-json/>; rel="https://api.w.org/", <https://lymehaus.com/?p=747>; rel=shortlink
etag: "51-1669399899;br"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
content-length: 17548
date: Mon, 28 Nov 2022 11:47:05 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size:   17548
Md5:    95cb40f56d02e456af899c14ec655f1d
Sha1:   e43addd9b39e9bd0b91dbbe65bf3e6d5941fc761
Sha256: 995651e0413bced713f063ff93b4c6bb5da5c00c77bab43769d19c6e2955371e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 11:47:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 11:47:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 11:47:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 11:47:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtag/js?id=G-33115E54SM HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lymehaus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 28 Nov 2022 11:47:06 GMT
expires: Mon, 28 Nov 2022 11:47:06 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 65915
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2996)
Size:   65915
Md5:    3815b5d6ad8969d43509a8a269c0b08c
Sha1:   3154f0f98eee4e502e97da62d74722999e87fde3
Sha256: daf511f450bba02b4198a44c3280cf632dd3fe7108f21b960e9a6a79b91a447c
                                        
                                            GET /recaptcha/api.js?render=6LemqZUeAAAAAKVrWc2g06LxZGnwHPzurIdldGZx&ver=3.0 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lymehaus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
expires: Mon, 28 Nov 2022 11:47:06 GMT
date: Mon, 28 Nov 2022 11:47:06 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 583
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (884), with no line terminators
Size:   583
Md5:    d01b5fbe943dd70ff1547b93a6487b29
Sha1:   10efd747d8d63bbe8572983d995512276fb4d251
Sha256: 17d5985fa605aa9a4a5bf8f4f96198cffa4600c28d1387555b1330650e576b13
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Wed, 19 Oct 2022 14:36:23 GMT
etag: "aab-63500b67-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 848
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   848
Md5:    c962ba8e7d42ff9da18392b41dad5151
Sha1:   7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
Sha256: 322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Wed, 16 Nov 2022 02:19:35 GMT
etag: "172a9-637448b7-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11616
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (47826)
Size:   11616
Md5:    c4d7cc056b49b00e05cc29cc59aa3d5a
Sha1:   48c426bec60099d2a8628df430ed682c72aab42a
Sha256: 8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:08 GMT
etag: "308-6335ef70-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 259
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   259
Md5:    49736e2d926fb2846e2df8fc0a1b69f8
Sha1:   0c415addd3603df8843209de4fc448ef5c443761
Sha256: be091ce2d9948f24a59c9d1578557cd92e8180e2318dc0a21308ca180071f8d0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Wed, 02 Nov 2022 02:59:27 GMT
etag: "d9-6361dd0f-0;;;"
accept-ranges: bytes
content-length: 217
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   217
Md5:    95e891f28e44a9b314c09545d86be2b7
Sha1:   f9b13a8bd47273b086a0a07df15f314e0af0bc3e
Sha256: 5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 11:47:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 11:47:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 11:47:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nIJHJkpumkAOvDJsgruf+w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         35.163.62.5
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7q7eiOl000N6BGMAHguqJeU3Kzk=

                                        
                                            GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.6 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:10 GMT
etag: "eee7-6335ef72-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12411
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Size:   12411
Md5:    31a2646ef4aaa5e3ab233c248ceb8d4c
Sha1:   fca77b634f6c3d889a17e6c3c92c1151099c5842
Sha256: dc1cb2ac65eb0c9a2d68304b118673af23f02bf948326c26ccb37e2965e8ff47

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Sun, 13 Nov 2022 14:44:07 GMT
etag: "4b4f-637102b7-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3629
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19233)
Size:   3629
Md5:    af3bdf44d09914e8adb51fec560d8816
Sha1:   84bb225e096bab405868dd504e62133ba75cf1c1
Sha256: 4325dab21d3eb9efb8e285a0926be743f27e46446ccf5f9be65bb4b60c024152

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/elementor/css/post-7329.css?ver=1634094303 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:28 GMT
etag: "3b5-6335ef84-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 285
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (949), with no line terminators
Size:   285
Md5:    22df60027c53bbe5a9f5f60fd717c1fc
Sha1:   1dcd61728b65f2aff28c18456a0a8e970d9baf12
Sha256: 0e75a596d454ba298602ec5fd2a7619eca853606b7945c146b217abfa026e8aa
                                        
                                            GET /wp-content/uploads/elementor/css/global.css?ver=1634094303 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:28 GMT
etag: "3ccb-6335ef84-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1274
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6697)
Size:   1274
Md5:    fc6edda31e164cee7091e25022bf94dd
Sha1:   689541cb538ad30d128ed13bfdded51fad82d3e8
Sha256: 704545d1d0d5ef3cc50b0cb5301da68ff6669f1cf1a734b05be20f8198a24530
                                        
                                            GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Sun, 13 Nov 2022 14:44:07 GMT
etag: "27687-637102b7-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18162
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65497)
Size:   18162
Md5:    658aaed4541f4ab9e1cf3b910e8ff957
Sha1:   39a27939e4b628ac536113eabf1de908ddb45a95
Sha256: 33d83c4806116d2a94ac1e178f4cbc9c0651a9342ff2fe88dcedfdf9e8dabf0e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/holmes/style.css?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "273-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 331
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   331
Md5:    c5b5dbdece8ffa20e4240e194844e980
Sha1:   3a990a009c0e2cb9f0d984eb98622ff9e31f200a
Sha256: 5b242e1a31866fa0301bdd0d2bfc5737651ec6aa876d5079c336322430721c8e
                                        
                                            GET /wp-content/themes/holmes/framework/lib/icons-pack/elegant-icons/style.min.css?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "5509-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4073
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (21769), with no line terminators
Size:   4073
Md5:    a211ff7edbfa20f37a4255dd408fea1e
Sha1:   b844983f4a2742adfb08d37a0885313e45efa4a7
Sha256: 41afc3a1d4ecc028e45d4191063307548d98059d56b0234ca4a626b85a9a129c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:22 GMT
etag: "105a-6335ef7e-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 982
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4186), with no line terminators
Size:   982
Md5:    24f4d7f425e792ab35adaab50816e54a
Sha1:   9e25bf79b674ddb7ba09ad7f118c50ec473c02c8
Sha256: 1c78bfb4d523785a4ebd37bb1f79f214f9bdb16673f7cc50805f7f1a26ad7f83

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/holmes/framework/lib/icons-pack/simple-line-icons/simple-line-icons.css?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "3037-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2477
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (344)
Size:   2477
Md5:    981d61f505f2f512f81bb7f5174dabf2
Sha1:   c4b0ef97e3c8feeb247477d5119da77c6ed1fa02
Sha256: 494d25ecbd4c599f52778660cb9abb42fed2ffe856864e4cfecbba0ba5550610

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:22 GMT
etag: "4a7-6335ef7e-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 479
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1191), with no line terminators
Size:   479
Md5:    62b3593ce258f7488f936d31b1ab1b6e
Sha1:   34c14a9bf90463e4456add8d8d039453b8bb8b8e
Sha256: be4b9efdf77f14940f6b8aa22e7287411cf0377f99009d49276b5cfa47c4f3ad
                                        
                                            GET /wp-content/themes/holmes/assets/js/modules/plugins/fluidvids.min.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "52c-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 629
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (1234)
Size:   629
Md5:    6ee0ec057b7c34fbc65c5fca1d77339c
Sha1:   dd00c0ee2b7d064b0660a6d4d76da3cdb2cd2851
Sha256: 44a967965544e66b8eedf1c9b3fe768f41e9789c60c7d6accf1e35b61193415b
                                        
                                            GET /wp-content/themes/holmes/assets/js/modules/plugins/perfect-scrollbar.jquery.min.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "4672-6335ef74-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 6158
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (17959)
Size:   6158
Md5:    545a41d4ee331770e97551c4254a214a
Sha1:   f84af709fa547aa7284ce3f625835416d2a9c711
Sha256: 224e562dfe0c4e4355d032e58f06dbca836e6ff6ba087623c03a1c2e08610c15
                                        
                                            GET /wp-content/plugins/holmes-core/shortcodes/counter/assets/js/plugins/counter.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:08 GMT
etag: "39c-6335ef70-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 377
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (884)
Size:   377
Md5:    9f7d11982b30146e7c613e55af27c2dd
Sha1:   114246ed63607ca4e325aec911080787c3dde045
Sha256: 45294f12f0b0578e476b9e488f8aa1f9194c5890f56f2bba6b1fc97728b3dddd

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:22 GMT
etag: "194b-6335ef7e-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2354
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6475), with no line terminators
Size:   2354
Md5:    4e773d7cec56bacab6d2db420be6f262
Sha1:   c95573d884c1caec0ec9c6f3e2a8c0fbf28d939a
Sha256: 5c8839d0b02f21e8d83d856bbf85a6b87fbedf9ba0b70711b11a1c378d5443e7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/holmes/assets/css/style_dynamic_responsive.css?ver=1664739288 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Sun, 02 Oct 2022 19:34:48 GMT
etag: "199-6339e7d8-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 147
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   147
Md5:    caf3af9fd15de345c91cd964380c60a8
Sha1:   8c8bde0ec7ad98b12948593802eb4de53a8aca60
Sha256: 0b355810485509abb27ace98b7d089b4c33617eeaef95ed3a4920b06c07ae759
                                        
                                            GET /wp-content/plugins/holmes-core/shortcodes/countdown/assets/js/plugins/jquery.countdown.min.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:08 GMT
etag: "3525-6335ef70-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4226
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13345)
Size:   4226
Md5:    56bcbf7c6dea8e801f21591c1abc2fc1
Sha1:   ae3cc7762d0b5f4db748b40195b9bdff9d05d711
Sha256: d1a4e4019d8f1b3493b5671ff2c3bf4782a63123f48f4ac88f3f17fabf75ef25

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/holmes-core/core-dashboard/assets/css/core-dashboard.min.css?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:08 GMT
etag: "28f2-6335ef70-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1446
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10482), with no line terminators
Size:   1446
Md5:    784baeed9c493e19458df15b6344d5f6
Sha1:   bf57d8c2ff7c5ab15f349f0cf0bb03ae0b32d0b2
Sha256: f592fdcc97034156c4e86bfd8ef6499a0bbf0a9943ac2c5de6496984084954ad
                                        
                                            GET /wp-content/uploads/2021/05/cropped-Lyme-Haus-logo-02-1.png HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:20 GMT
etag: "4dfc-6335ef7c-0;;;"
accept-ranges: bytes
content-length: 19964
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size:   19964
Md5:    6d7bcf9b35f9869d0e6cb287b9af48e2
Sha1:   2dbd59e251957370811daea34538646a616d8534
Sha256: 989827974886e4e176ff18a91adf5ee1dc68abe3d5bba0d04684cd73d3714d11
                                        
                                            GET /wp-content/uploads/2021/05/Lyme-Haus-logo-01-e1622135736967.png HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:20 GMT
etag: "dc0-6335ef7c-0;;;"
accept-ranges: bytes
content-length: 3520
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 88 x 95, 8-bit/color RGBA, non-interlaced\012- data
Size:   3520
Md5:    f05fb2c5ac4fa02e005f9a05f397aa95
Sha1:   26d609abfcd0e0800b59e249cb08cc762bf6d800
Sha256: b2ebdde2c48327c07c63e507ca8c42124e43c80ff46768b0107ec02878e68c62
                                        
                                            GET /wp-content/themes/holmes/assets/css/style_dynamic.css?ver=1664739288 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Sun, 02 Oct 2022 19:34:48 GMT
etag: "587-6339e7d8-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 402
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1415), with no line terminators
Size:   402
Md5:    76c49d5051c6befb39d4e3acfeea0aed
Sha1:   e3e5bd9ee1b0e11a2ba924b660073f13eca298e3
Sha256: abe5abc8732bcdd27cc629558f1edb276b5ba7140313becfdcb94abd5304893c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/holmes/assets/js/modules/plugins/jquery.waitforimages.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "7a7-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 873
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1913)
Size:   873
Md5:    aeedf32e76e3e6b1d0cd594583e9c1b7
Sha1:   87094fc327887256f784ee6796f0b1bae32becf6
Sha256: 8c8945d0774fd8c6072723b30ced055ec32e982c7217bf74cd21045413be0ab5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Wed, 02 Nov 2022 02:59:28 GMT
etag: "226e-6361dd10-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2646
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (8632)
Size:   2646
Md5:    8238287357a4279c2ae038a097965ad3
Sha1:   3a677770d91002d75e397397671b82332724af10
Sha256: b5c3686973bb5e86e3328dc87298dee495dd6908355ac1d6e7fee730c364e92e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Wed, 19 Oct 2022 14:36:23 GMT
etag: "3e7-63500b67-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 439
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (999), with no line terminators
Size:   439
Md5:    941c9d44f1c480a37006540de948ef9a
Sha1:   29bc99b84660341fc37d60774b3083025a19147c
Sha256: d297692ee1e68d1e2499576903508be06859340a25eded15b2565631a592851e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/holmes/assets/js/modules/plugins/ScrollToPlugin.min.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "d7d-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1451
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3070)
Size:   1451
Md5:    7fe35df5801d207206cf69ac6427d8cf
Sha1:   8b595626cdd7e7afca48a18adbe5001de7c539a3
Sha256: ea23f688725e7aa157003c4e6d28d41cc974d5adfd1f3ec7eacafda33e82d4f1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/holmes-core/shortcodes/pie-chart/assets/js/plugins/easypiechart.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:08 GMT
etag: "f80-6335ef70-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1210
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3968), with no line terminators
Size:   1210
Md5:    97a9ec1e6fff830f0023a78748a4e07e
Sha1:   27e9fde1f314327f6345ebbf40be0582778f5ba2
Sha256: fd2f18aad5bae76bcebc18d5c4d2ac8fa711968cdfbc07c935b6c2298d71ab14
                                        
                                            GET /wp-content/themes/holmes/framework/lib/icons-pack/dripicons/dripicons.css?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "2d1a-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1690
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1690
Md5:    01f67987067b61ea8d95fd8a798e1581
Sha1:   d73f78b56fd8b727f0850fecd0d688d832c1c30c
Sha256: 4cb2a4b75d2e6c2c30365cae564c890639c1eb16bc7d069da12c8e360a6e9bb3
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Wed, 02 Nov 2022 02:59:28 GMT
etag: "53c0-6361dd10-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6800
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (8189)
Size:   6800
Md5:    3d0ff0f6731d9cef860af9a5a0e3ce62
Sha1:   13aed444304d782039e261475c8b4450b83e743e
Sha256: e8d05db77732c71843ced6f386ea82eb32243ac36e7ca3e071cb7f53e2ffbce5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/holmes/framework/lib/icons-pack/linear-icons/style.css?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "2098-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1501
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1501
Md5:    e7df62f6d67f00a82a50366f32a6498f
Sha1:   27b156af6a9e927b88e18155449051c9a4702f69
Sha256: 52c7662dee068b9d9952163822aec5b5d843682cab6b468ca827dde69c5577c8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:22 GMT
etag: "2bf8-6335ef7e-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2394
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11256), with no line terminators
Size:   2394
Md5:    ce94f62588d05264ac0148712111cb11
Sha1:   518bcd922f54169aeb199c0ccbc5877165ac218e
Sha256: 84ab658a69c39f424be0b27f61d612447d01606fce33beb962cbea53627d8c81
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:22 GMT
etag: "2bd8-6335ef7e-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   3995
Md5:    7e058b51f939eacfa31cdface14dded5
Sha1:   9d732e5afdeb42edef9e1b9631b7e95e054787cc
Sha256: 4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
                                        
                                            POST /g/collect?v=2&tid=G-33115E54SM&gtm=2oeb90&_p=198963188&gdid=dZGIzZG&cid=929899477.1669636026&ul=en-us&sr=1280x1024&_s=1&sid=1669636025&sct=1&seg=0&dl=https%3A%2F%2Flymehaus.com%2Fportfolio-item%2Fbima-microinsurance%2F&dt=BIMA%20Microinsurance%20Education%20and%20Awareness%20Campaign%20-%20Lyme%20Haus%20Solutions&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.link_attribution=true HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lymehaus.com
Connection: keep-alive
Referer: https://lymehaus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

search
                                         216.239.32.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://lymehaus.com
date: Mon, 28 Nov 2022 11:47:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /wp-content/themes/holmes/assets/js/modules/plugins/owl.carousel.min.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "aca4-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11069
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (31987)
Size:   11069
Md5:    366bbc7ebff5a1b69cbf3c55b9ad0b87
Sha1:   ad194e9627506b5379a54ce45b27c14fb5e0f1ff
Sha256: 43fd8f9016f7bd847ec63f01810262fe66fd0f160285aecd7c0f43653485d80a
                                        
                                            GET /wp-content/themes/holmes/assets/css/mkdf-scrollbar.css?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "15a-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 132
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   132
Md5:    bea0d26b7faa409cb3db9a085aac55b1
Sha1:   f39b7166a243c3fee12395a3d2858be1e81908d8
Sha256: 32cef27d4d5a6e03f4cc5fc62729338902e43fdbee8dde0bd5e2fb60a169b984

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/holmes-core/shortcodes/line-graph/assets/js/plugins/Chart.min.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:08 GMT
etag: "7db8-6335ef70-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5301
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32184), with no line terminators
Size:   5301
Md5:    dd3fea0e58d66ba0dc217f27ddc7fb61
Sha1:   cd2aca4b9249c66fa88121ea85428ae5a36b35b5
Sha256: df2db0a93a75e8cc132e6fcfffc2ecbcef1199545f8fd58cebb0002b5e89d95f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:22 GMT
etag: "48b9-6335ef7e-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4619
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15660)
Size:   4619
Md5:    0232689bd203f330529b36a437f41a68
Sha1:   9046583f7469ad38297969f10a9513eb895d5316
Sha256: feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.6.0 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:09 GMT
etag: "8b8a-6335ef71-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9730
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32004)
Size:   9730
Md5:    7c29284509c9e3e29b2fecba106a7192
Sha1:   7fb67e10072b40d7f33aeecb0a728529d4916f35
Sha256: 898f6730527e8c17d06ce52de22c22f90888d125f6195dcbe156f6de002338aa

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/holmes-core/shortcodes/vertical-split-slider/assets/js/plugins/jquery.multiscroll.min.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:09 GMT
etag: "2813-6335ef71-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3175
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10079)
Size:   3175
Md5:    ce2d5a8de99586a9418032d194dc792d
Sha1:   fe86baf4c197668b34acb5f18c97e75b58570fb2
Sha256: f4290c818ef4dbd3f179d18ea982f263a37a5f00e7a1dcffa0ff75bcf70deda4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Wed, 19 Oct 2022 14:36:23 GMT
etag: "3016-63500b67-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3706
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (12310), with no line terminators
Size:   3706
Md5:    dc6411bfa6891b75944f0074c945752d
Sha1:   03c1a8b686c287068c61ab90f58d905496d65085
Sha256: 96abeabc9cc7b4c2b7d46579f2827c67ccd02fbaef0343ae052f71accd381b0d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Wed, 19 Oct 2022 14:36:23 GMT
etag: "26d1-63500b67-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2817
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9937), with no line terminators
Size:   2817
Md5:    4317b1c024df372435f6482deadddeb3
Sha1:   5c8824a17e40a44ea8fc51568b98bdb1e2e7fab5
Sha256: 3798fb16289ba55459fb6d3b2efa915e3c019c5942759abb7bd19a0ef622b85d
                                        
                                            GET /wp-content/themes/holmes/assets/js/modules/plugins/jquery.plugin.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "120f-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1543
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3447)
Size:   1543
Md5:    d750d699fe11a55541cb3bdba92b8f36
Sha1:   1287bf190e41cce0f3b5f57f164c6f50bfab5316
Sha256: 32b64b1207f11fb09c2d374732fa0843162acb66b6a1180386daf3604d15303b
                                        
                                            GET /wp-content/themes/holmes/assets/js/modules/plugins/jquery.waypoints.min.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "2349-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2597
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (8863)
Size:   2597
Md5:    42f715b0c8668e229ed2644cac398f3c
Sha1:   055abf1eb79087e6a5fc9a03c03552e89476735e
Sha256: 5ac87b7aedef27f3f3536f95e16d1e92ed51262a6c89c7d1071d9addb75d426b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:22 GMT
etag: "5db-6335ef7e-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 668
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1464)
Size:   668
Md5:    b57bb5f7f55be8837811df1bbfebd197
Sha1:   a9fd3372526724938daa13cba926cff79395cbae
Sha256: 26512154e931a4b5441386af49e0e6d93a298ec6ae9ce2088d292cba42d61c7c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9459
Expires: Mon, 28 Nov 2022 14:24:46 GMT
Date: Mon, 28 Nov 2022 11:47:07 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9459
Expires: Mon, 28 Nov 2022 14:24:46 GMT
Date: Mon, 28 Nov 2022 11:47:07 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9459
Expires: Mon, 28 Nov 2022 14:24:46 GMT
Date: Mon, 28 Nov 2022 11:47:07 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ibLuLI6j9EWh0dgk51O7kiPBRyURZ0UdNtlgbBD-SXnDg_GT_tJm8Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:16 GMT
age: 49551
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9430
Md5:    1f434933b5bd6377d299ada22d1ae7ef
Sha1:   075531f525e625b117b2497f31139c9824d0e9c5
Sha256: b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10119
x-amzn-requestid: 20bfd6a6-2981-42ca-8997-9363676773c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR782HEZIAMFTKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9eb-552581a92a69d6cd322bf334;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: U_gitOWWMPO7M5Dd0WktaigfRERa93d86MhziLjZ2qnuON_K5NauyQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:54:37 GMT
age: 49950
etag: "9a3ca698ca1aeae695923277ed2244465e01a1ea"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10119
Md5:    15bd53848c7082464273007e010c54e0
Sha1:   9a3ca698ca1aeae695923277ed2244465e01a1ea
Sha256: 36cfa29965173ea683992d4b436f393e92c978350347f869355d933613e2c005
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:25:51 GMT
age: 48076
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4803
Md5:    cc0a257323f882caff067adb86d906e4
Sha1:   cedf2f21be7cd366bd46055b62b5513db3011dfc
Sha256: c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1f41832-bc78-4527-a3e7-8099266ecb52.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8517
x-amzn-requestid: 12456791-0e7f-45d7-97ae-d663c8fa841d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMozvHHLoAMFVqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bb4a-54ed1ec101789247052c9ec8;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:07:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UzzTPZIBjoow9PK-oM9rfGh5HkrivyPDofbTXy-I-9e4_baQnyKVhQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 07:21:27 GMT
age: 15940
etag: "9442f111d329f721ddc55100cd246586d8204048"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8517
Md5:    577b69fd08ad8368ea5a94fe41476c1c
Sha1:   9442f111d329f721ddc55100cd246586d8204048
Sha256: bdafc5068032dcf5e207cf2685a1b9350dbe8d990ba181520ff47889524532f2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8885
x-amzn-requestid: 71b8367f-f79f-42a7-bcb8-c441a154babf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGDTEFSeIAMF3rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f18e0-631b775d3430a8c30c3b4420;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:10:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jsmd6yxjJxLMEgv1jDa87iEoZXL2OuALsmUZ9Nxx1rUN-xOTdtN1-A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 08:11:39 GMT
age: 12928
etag: "70c2a238f06ca7e56ef80c83738e081bf0de3330"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8885
Md5:    3a1a4e00f1f15827cf651f373863c379
Sha1:   70c2a238f06ca7e56ef80c83738e081bf0de3330
Sha256: 3d936e1f0c96297f121faece12d6f8173e12eed5087165cd4eefc0fab368419f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa0bb072-3065-47f5-88ac-e3977adf0cba.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3532
x-amzn-requestid: 12f95833-5aca-4633-8eac-011f194953ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cJWisFi5IAMFgCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63806add-77d024405c7fe57124c4ae1c;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 07:12:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FfwgJjX9r1rqeeN9Va2apka3gXe6L610KxF8UHT5AzbM-wZtMqQDBA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 07:43:12 GMT
age: 14635
etag: "cd268c0301ee9ec2de1aaaf5fff3efede4973916"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3532
Md5:    f7d70dfcfffed4941f9766906c52776c
Sha1:   cd268c0301ee9ec2de1aaaf5fff3efede4973916
Sha256: 024dcb67aca1c6491ca045b1384b623ff934362b77bac2916ad2744e5c6c4bd2
                                        
                                            GET /wp-content/themes/holmes/assets/js/modules/plugins/jquery.easing.1.3.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "15bd-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1799
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (3601)
Size:   1799
Md5:    e15dbc3155c720a8bb83eff82d8973be
Sha1:   0f919b621bf97f5c2fdb0b6fefcc11aef481aab4
Sha256: 159208ad74ada99fef7110bc765dc63ecaf55245f5674cd47b68157952b93bd2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Wed, 02 Nov 2022 02:59:28 GMT
etag: "2ea1-6361dd10-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3760
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11760)
Size:   3760
Md5:    3a8c0c6bf695efea9e3acfaff14c3ca5
Sha1:   38e58a427812d0655192a36bf644d51853febe8b
Sha256: fe50234a7e2fa53617f7379107d8e4f2baba0a98fc8a20e001fc5b2766292743

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/holmes/assets/js/modules/plugins/jquery.appear.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "630-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 710
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1281)
Size:   710
Md5:    e95cca0236b26c2424fc47f8ce32c970
Sha1:   cd9975125bbca38978b7330e87d7d5b40f8ccd77
Sha256: b28d10c3e5b659e5726dea46353682d9af902dd42770a2844223715e574bbd62
                                        
                                            GET /wp-content/themes/holmes/assets/js/modules/plugins/packery-mode.pkgd.min.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "3538-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4000
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13554)
Size:   4000
Md5:    ca7a15ab57fc1ba7a9029116ef56a3a2
Sha1:   7fce1fa3d5110b3c2679404641d44559bfe8cda4
Sha256: a3b68b2290bca10c4430e3706b61a6c9d7495bf329fa0f007f618cc4443480ca

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/holmes/assets/js/modules/plugins/parallax.min.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "577-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 568
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1075)
Size:   568
Md5:    815ecd232b25f06b18fbc14248b9a08e
Sha1:   38f2feb5f08a8e498f78bad0771c58ce4f216278
Sha256: 3197e340882e2384c50567ab93d80b8952b99e464d14ee2f218ee076c9580601

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/holmes-core/shortcodes/custom-font/assets/js/plugins/typed.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:08 GMT
etag: "19ab-6335ef70-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2401
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5412)
Size:   2401
Md5:    1031aa1e683d68824fe141aa6f5c9c8d
Sha1:   8efcabf51748a0b9b86c1ac486759ce174f53ed1
Sha256: d035b8d5f962ad4609f754dfb5a78ec2de2cd5caf9dc92c858b90f65e105606b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:22 GMT
etag: "38a-6335ef7e-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 392
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (906), with no line terminators
Size:   392
Md5:    200d0ec78a54a35bb97450e75bddfe52
Sha1:   25a0c90e7c2a7f49b4d5abf3165eb2d03849c2cb
Sha256: 9555fae27002a4036ca476b62143a67552e3870a1ff46c5869611b5edbe1deac

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/comment-reply.min.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:22 GMT
etag: "ba5-6335ef7e-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1228
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2946)
Size:   1228
Md5:    7d8acf37582bf5212cbf4e31105de2ac
Sha1:   19581f31ceed66b11804eb6a2b3d00d43f73f071
Sha256: d48d28cdb9d3dd8b812129663e5cc8b373b67629e2e65988d2b274960f7b847f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/holmes/assets/js/modules/plugins/jquery.mousewheel.min.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "ad3-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1127
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2609)
Size:   1127
Md5:    47b998c4287cbc7c6a937715c57fb2e2
Sha1:   36c555f88c12b40198021fe3b8a48b1cfc4755fc
Sha256: 727dcadcb46d22c183334fe1d60f52ca714e38e786001d8bde2b0d8318b9cb85

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/holmes-core/shortcodes/counter/assets/js/plugins/absoluteCounter.min.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:08 GMT
etag: "4ed-6335ef70-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 532
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1238)
Size:   532
Md5:    7cb839b088765b79f5e5612ca587dafd
Sha1:   249a7e370f22e2573b5f43ffd3f7d9600b194903
Sha256: 001bc92878799d096daef94d70d18a3ec447215c2de20b50f55faf62a680e1f5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/holmes/framework/lib/icons-pack/ion-icons/css/ionicons.min.css?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "c83f-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7773
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (50786)
Size:   7773
Md5:    32175585e24b311d865e618529cb91c5
Sha1:   b3a853db5c97d1c3af32e6aa325ac73a5adc831c
Sha256: d937655be1f97d6925dd80d70a40f85ca3d73f846bdf2b90b4875f16ff0d1c23

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/holmes/framework/lib/icons-pack/font-awesome/css/fontawesome-all.min.css?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "8a1f-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7451
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (35179)
Size:   7451
Md5:    c9dfc412bce4a65e08f1055b0f952f8b
Sha1:   c939fe4d797262343247bb97ca9f9600236394cf
Sha256: 1584fc676eea6b74ab5dbd98dfaa785939c0af14d00f4a617f84eeaf69a290b9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/holmes/assets/css/modules-responsive.min.css?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "9715-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4099
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (38677), with no line terminators
Size:   4099
Md5:    552f83fe64f25270cd1ac0731937ac3a
Sha1:   f819148011016800a34fdb0562787f2796d2da0f
Sha256: c394286aefc2564f194e6e92aff12e014a39354b187badd9d6067d50e036b2c0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/holmes/framework/lib/icons-pack/linea-icons/style.css?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "13100-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7337
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (369)
Size:   7337
Md5:    60f8b842b9aadc413db91298b0a22277
Sha1:   253e26c13304a308b85f1f11a1bbb92cfaf26ebf
Sha256: ad96d8dac53bfa3dc81d5c8b86cb70b712cd71d2080921569c5e736db9070c47

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.js?ver=8.10.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 10 Nov 2022 02:28:39 GMT
etag: "78a3-636c61d7-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5917
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  C source, ASCII text
Size:   5917
Md5:    3ec0af3ec3bf0b9b53ceab174c523b25
Sha1:   98bfdd8f44df656d3b5557488798a6a4d46b8f2f
Sha256: c56851778e3e08739470192deef5c66ba52c063017f004612002be3f8830d7af
                                        
                                            GET /wp-content/themes/holmes/assets/js/modules/plugins/slick.min.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "a76f-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10097
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (42862)
Size:   10097
Md5:    09ed72c756aef05979d1c10d176eeb7a
Sha1:   1f3c35043f1aae481a38b40327fefb959ff63885
Sha256: 8638bee02f96fc15e4a3dae0ae220e31f020ee0b10c8eb5f829d9986b3fc53c4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/holmes/assets/js/modules/plugins/jquery.prettyPhoto.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "56b9-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5621
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (21918)
Size:   5621
Md5:    6a4edb650833e0db8e5134736af03d6c
Sha1:   8548d580ce9685640dd1c2cc751b9889fbfb233f
Sha256: f4007297411e74f4e922782b9b4d8043389f79b4426bd846f0f0ca000d5d4ecc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Wed, 02 Nov 2022 02:59:28 GMT
etag: "459f-6361dd10-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6335
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Size:   6335
Md5:    fecbc00e8af71d8cfb678cd811c7cb2e
Sha1:   44e5dd77f62cb5c67271442b75cdff10d45f2f8d
Sha256: d6f03fb4728d0c23251451df8d66b5107d3c87458dc624aacfbad437e99d01f1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/holmes/assets/js/modules/plugins/modernizr.min.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "380e-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5635
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (13826)
Size:   5635
Md5:    ea2f6f42bc01ed8357ba4b08827993f1
Sha1:   778f0f6536cc4b922c2c11184f181ba2e5668252
Sha256: 461eaaa9238404b507434516cb011c55d1d983bb90f723775617bc21e7f953bd
                                        
                                            GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Wed, 02 Nov 2022 02:59:27 GMT
etag: "26935-6361dd0f-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 36433
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65266)
Size:   36433
Md5:    eabd3755fb73f0e4ef1ac6e474373dd8
Sha1:   cd92121ebac48f10a27821172202bb1d06267663
Sha256: 37f62084aa872e3b695e87f549c236fda5828bc68036875a771768cd90bf2436
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Wed, 02 Nov 2022 02:59:28 GMT
etag: "15e54-6361dd10-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30324
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   30324
Md5:    3a1740685bd5c0bbd5f2b812e1eb7fb4
Sha1:   488e07695da787fed18361c50292aef35abb5e81
Sha256: 4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/holmes/assets/js/modules.min.js?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "175ba-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 20674
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   20674
Md5:    3d45a4fa51b48018ab151d6df853cf41
Sha1:   a0fd93ce87f34014dbe2637dec9cfdbd9cb9e1ad
Sha256: be1c056bed9a42937731160bc0da54e95bdbb00fd8cb8bc98c98dd17403f7cbb
                                        
                                            GET /wp-content/themes/holmes/assets/css/modules.min.css?ver=6.1.1 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "8bc7e-6335ef74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 58055
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   58055
Md5:    1077264d9bed27dc1c3f5597572e7215
Sha1:   bb99279ff4a2a2a032b9856f715de529a38347d3
Sha256: 0bc24f51fcc9493f93885865612b703f3558dbeaef9edffa64083d525c0e5022

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.4 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:10 GMT
etag: "1e437-6335ef72-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 45472
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (42889)
Size:   45472
Md5:    7b6e082bde2cd00810b3413baa28da45
Sha1:   4b18394c3ab61e2dae4eae87b00cdc74f2339447
Sha256: 30fe548881461bdef9c96b8faf55eaeeb8759dcb83049beef418e939b9f965b0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 11:47:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 11:47:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/sourceserifpro/v15/neIQzD-0qpwxpaWvjeD0X88SAOeauXQ-oA.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lymehaus.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19980
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:39:36 GMT
expires: Thu, 23 Nov 2023 19:39:36 GMT
cache-control: public, max-age=31536000
age: 403652
last-modified: Wed, 27 Apr 2022 15:45:12 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 19980, version 1.0\012- data
Size:   19980
Md5:    98704f42d118d52a4979dc08df276440
Sha1:   0066115b1dfedfe4cb6294fbdc73f921e6062ab9
Sha256: 547a2c05a1b8744633148a704ddba5adac238c5cbaf05bbd25606827a372b019
                                        
                                            GET /s/sourceserifpro/v15/neIXzD-0qpwxpaWvjeD0X88SAOeasc8btSyqxA.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lymehaus.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 23:44:02 GMT
expires: Thu, 23 Nov 2023 23:44:02 GMT
cache-control: public, max-age=31536000
age: 388986
last-modified: Wed, 27 Apr 2022 15:27:39 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 20884, version 1.0\012- data
Size:   20884
Md5:    6f83b212799af717170a27228aa65771
Sha1:   68ff4fa008f3d06bdb2950ad19d7020abf12c479
Sha256: d42a2e1e2995c1b5d0716ac0c6f2eef70ad416c8993b87b95954e15a3c77b26a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 11:47:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.6 HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:10 GMT
etag: "575f9-6335ef72-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 89947
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64270)
Size:   89947
Md5:    6595e7d135bbe98be8f42fbb5a62d3a2
Sha1:   8c30aff0d0305c6ae0ef90e1a47f87c617ac83cf
Sha256: 33385779002fe2988837a9df929180c214fb12ca292d6d82f715ac8d4f358a3d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2018/09/Picture3.png.webp HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: image/webp
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:14 GMT
etag: "14bfc-6335ef76-0;;;"
accept-ranges: bytes
content-length: 84988
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 892x594, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   84988
Md5:    fa035b39e25ca8946462c39a455d2d78
Sha1:   007b45f68c626d43efdffb5a30cf974a71efabcb
Sha256: c16cf01bd0653ab719d9de798571f8765cbf4eabdce59fa11bf01a3047f08706

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/sourceserifpro/v15/neIXzD-0qpwxpaWvjeD0X88SAOeasasatSyqxA.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lymehaus.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20864
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 23:57:53 GMT
expires: Thu, 23 Nov 2023 23:57:53 GMT
cache-control: public, max-age=31536000
age: 388156
last-modified: Wed, 27 Apr 2022 15:27:58 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 20864, version 1.0\012- data
Size:   20864
Md5:    fe8c10a818058a638df99287425dc986
Sha1:   30ce5d31a26c5e00233c2a47ae1dca7e773aa713
Sha256: 6889a7789d4db6452dd58c9f2b0ae003221eae0cfe30e2402d0d941f7f371fe8
                                        
                                            GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lymehaus.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 16:40:18 GMT
expires: Fri, 24 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 328011
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size:   30928
Md5:    ac0d2859ea5f8fd6bcb3c305c08ec184
Sha1:   7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
Sha256: ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
                                        
                                            GET /wp-content/uploads/2018/09/Picture1.png.webp HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: image/webp
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:06 GMT
last-modified: Thu, 29 Sep 2022 19:18:14 GMT
etag: "1b2dc-6335ef76-0;;;"
accept-ranges: bytes
content-length: 111324
date: Mon, 28 Nov 2022 11:47:06 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   111324
Md5:    e1c99724f843392e79f3b08bcfa6fc8b
Sha1:   4a05c6a1944bb26c3ed29c6b7cf311fbbec4b977
Sha256: 3c4cc22ffd646e42114b940cf110906463d720008151f949dd93538e0c1bc5d8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/holmes/framework/modules/title/assets/img/theme-pattern.png HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/wp-content/themes/holmes/assets/css/modules.min.css?ver=6.1.1
Connection: keep-alive
Cookie: _ga_33115E54SM=GS1.1.1669636025.1.0.1669636025.0.0.0; _ga=GA1.1.929899477.1669636026
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:09 GMT
last-modified: Thu, 29 Sep 2022 19:18:12 GMT
etag: "65-6335ef74-0;;;"
accept-ranges: bytes
content-length: 101
date: Mon, 28 Nov 2022 11:47:09 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 4 x 4, 1-bit colormap, non-interlaced\012- data
Size:   101
Md5:    03b6601165ea13436e64137e1df6ab07
Sha1:   c14d95a5a85d06137c32a62735916aad20f599b1
Sha256: d1368440384ffd1848b2a2dddfaa4fc1af4077da845821175729b9e103400ef9
                                        
                                            GET /wp-content/uploads/2018/12/side-area-bckgr.jpg HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/wp-content/themes/holmes/assets/css/style_dynamic.css?ver=1664739288
Connection: keep-alive
Cookie: _ga_33115E54SM=GS1.1.1669636025.1.0.1669636025.0.0.0; _ga=GA1.1.929899477.1669636026
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:09 GMT
last-modified: Thu, 29 Sep 2022 19:18:19 GMT
etag: "79a4-6335ef7b-0;;;"
accept-ranges: bytes
content-length: 31140
date: Mon, 28 Nov 2022 11:47:09 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, software=Adobe Photoshop CS6 (Windows), datetime=2018-12-04T12:27:55+01:00], baseline, precision 8, 938x1159, components 3\012- data
Size:   31140
Md5:    d997d749f511a311aa6b49003032412b
Sha1:   dee16aabb7c9c96eb480e156ea6e85b3e60fa931
Sha256: 4c3ea6d40406bfdc9c279fb9d85cc637bd774506d1aecc1653bac1e36bfbaf7f
                                        
                                            GET /wp-content/uploads/2019/01/footer-logo-white.jpg HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Cookie: _ga_33115E54SM=GS1.1.1669636025.1.0.1669636025.0.0.0; _ga=GA1.1.929899477.1669636026
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:09 GMT
last-modified: Thu, 29 Sep 2022 19:18:19 GMT
etag: "aa7-6335ef7b-0;;;"
accept-ranges: bytes
content-length: 2727
date: Mon, 28 Nov 2022 11:47:09 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 146x98, components 3\012- data
Size:   2727
Md5:    d6a31eae38c7378ba2aa0b252bb0f8ae
Sha1:   c9c1b11f968fc4cdd0249f8df9ff3e8ace8f9fb4
Sha256: 24bfa703fe93053e5c4ea4e5b472b81e4bbdbc2a34ffa46704999fcfda059f95
                                        
                                            GET /wp-content/uploads/2019/01/side-area-custom-img-01.png HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Cookie: _ga_33115E54SM=GS1.1.1669636025.1.0.1669636025.0.0.0; _ga=GA1.1.929899477.1669636026
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:09 GMT
last-modified: Thu, 29 Sep 2022 19:18:19 GMT
etag: "8ff-6335ef7b-0;;;"
accept-ranges: bytes
content-length: 2303
date: Mon, 28 Nov 2022 11:47:09 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 53 x 46, 8-bit/color RGBA, non-interlaced\012- data
Size:   2303
Md5:    b7ef817cd3b8c19695cdff7edcdae64d
Sha1:   d67839499a36deb37b689a897cd5151d41fa31d6
Sha256: 3de888c3f9b93ec3c7e087ee402a9685baf6d76872ad5a1c4c2fa25a1d2d8a2b
                                        
                                            GET /wp-content/uploads/2018/10/fs-menu-background-img-3.jpg HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/wp-content/themes/holmes/assets/css/style_dynamic.css?ver=1664739288
Connection: keep-alive
Cookie: _ga_33115E54SM=GS1.1.1669636025.1.0.1669636025.0.0.0; _ga=GA1.1.929899477.1669636026
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:09 GMT
last-modified: Thu, 29 Sep 2022 19:18:17 GMT
etag: "1855d-6335ef79-0;;;"
accept-ranges: bytes
content-length: 99677
date: Mon, 28 Nov 2022 11:47:09 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, software=Adobe Photoshop CS6 (Windows), datetime=2018-10-02T14:17:55+02:00], baseline, precision 8, 1875x1017, components 3\012- data
Size:   99677
Md5:    9c699521af64afa64cf4516db1fff05c
Sha1:   95cdb959fee84e645d2e6e2071c35d28a550e148
Sha256: 6307cb781808d428fefcc152d4cebeb0e1a03870ce23a443263ee98095ad187d
                                        
                                            GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lymehaus.com
Connection: keep-alive
Referer: https://lymehaus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 21:26:04 GMT
expires: Sun, 26 Nov 2023 21:26:04 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
age: 138067
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (730)
Size:   162976
Md5:    79d18cf4265108d7cecca1bf4ada6109
Sha1:   e51d0285a545381d4c39e9e0292a650ffeeecbb9
Sha256: 59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
                                        
                                            GET /wp-content/uploads/2018/09/New-Project-11-1.jpg HTTP/1.1 
Host: lymehaus.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lymehaus.com/portfolio-item/bima-microinsurance/
Connection: keep-alive
Cookie: _ga_33115E54SM=GS1.1.1669636025.1.0.1669636025.0.0.0; _ga=GA1.1.929899477.1669636026
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.188.200.229
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=31536000
expires: Tue, 28 Nov 2023 11:47:09 GMT
last-modified: Thu, 29 Sep 2022 19:18:14 GMT
etag: "21821-6335ef76-0;;;"
accept-ranges: bytes
content-length: 137249
date: Mon, 28 Nov 2022 11:47:09 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: