firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 05 Sep 2022 21:45:03 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: gbfP0y0q81Or0CS0JKvxslcLma8Q229V24jjhYU6RCeyYuwGjQ3kww==
Age: 815
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d931e0142ef5ffe9cdb4c4c6bfcb9bc9
d9c4caf525e8926b042a14f38d374cc4033ed768
f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3505
Expires: Mon, 05 Sep 2022 22:57:03 GMT
Date: Mon, 05 Sep 2022 21:58:38 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 05 Sep 2022 01:15:19 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9VsmH-xZUzx_0plcIm-0Yv6UXCS86cxZXL4dHodMbshTZBO6-bMiCQ==
age: 74602
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 21:58:39 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 05 Sep 2022 21:38:16 GMT
Cache-Control: max-age=3600
Expires: Mon, 05 Sep 2022 22:30:15 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: frtfUxxuYyzUH800aEpsFB7Cm7Bj0Tc1CPenY4Yn_rH5PQ6tseg4GA==
Age: 1223
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b57a9dd04797bf34612c80361f1dffb3
56573166d8b9cd9b8dae19fd905e4f3293af306b
b03552109f1e7d1e482aa14614ffb1e38fb53ae4951152aab307b927674dad98
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4957
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 21:58:39 GMT
Last-Modified: Mon, 05 Sep 2022 20:36:02 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.86.38.2101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.86.38.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: YrtRqsxwUejwDfklEAON9Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WzKhDZCVAEP7I2Zwb9kGDC0VSUg=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6014
Expires: Mon, 05 Sep 2022 23:38:55 GMT
Date: Mon, 05 Sep 2022 21:58:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6014
Expires: Mon, 05 Sep 2022 23:38:55 GMT
Date: Mon, 05 Sep 2022 21:58:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6014
Expires: Mon, 05 Sep 2022 23:38:55 GMT
Date: Mon, 05 Sep 2022 21:58:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6014
Expires: Mon, 05 Sep 2022 23:38:55 GMT
Date: Mon, 05 Sep 2022 21:58:41 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c81f3df885bdee8cac46ea9495e6b63b
fc766bca874a352a4acb569577d4cf6527f4f074
e21473f88c613ca33ba6bbe1e0cab338274a06744cdcb088f14873c972445b36
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4426
x-amzn-requestid: b5b68557-e46d-41cd-9b11-d996aabc0de7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzfYTHHFIAMFjFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631145ce-1d3504367cf6ef724a345564;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 23:52:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GSRJIWisH465dPqbKyPj1iZk1jAu3RGrgwj1CX3X8A397zv9Nt0cHA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 08:13:35 GMT
age: 49506
etag: "fc766bca874a352a4acb569577d4cf6527f4f074"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0efc32eccbf76ac0d89f324d09a7fd1f
f8589eb3907582137d8b9373af745d80eddbf1bb
ee0f5e56c97e50e1c20801ad0a5379982feef16a11137f784f404d14e9c65824
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6482
x-amzn-requestid: 5e5b342b-0224-4916-8656-237b4c90ae66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-5FaYIAMFzjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-412f897b451130af70026eab;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kD_wcIHwmUDV9M9Pl2NtUwRw0CElnHhX6NGZ5PQlnchvdxpLAZhm0w==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:46:42 GMT
etag: "f8589eb3907582137d8b9373af745d80eddbf1bb"
content-type: image/jpeg
age: 719
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e36fad7-34cb-448b-b231-07f66a5adf7e.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e36fad7-34cb-448b-b231-07f66a5adf7e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3fe4a321dcd6a94a637a528d74f9321a
3f3aad2cc71226b39549db1a9baa6837d4f1d897
a19b6749429e8ecaeac8fc0849abc4d891bfc628489762b1619a3ee3064536e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e36fad7-34cb-448b-b231-07f66a5adf7e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12573
x-amzn-requestid: 93ac3b01-e2e3-462b-93d4-8f1bf949a015
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-5E5JIAMFTJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-7fa8ddcb4b17c5ff1c214b94;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qU3s1u1OYmhFyNM8dgd4R3mLfgN3VXlj7z0WGWFhmW-U00wuUld96w==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:45:23 GMT
age: 798
etag: "3f3aad2cc71226b39549db1a9baa6837d4f1d897"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa64096ba-be1d-410c-8f5f-91e53e173c69.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa64096ba-be1d-410c-8f5f-91e53e173c69.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 82415c19dc5c495d88093346d9538ea0
d378158dfa08278f1ffa477111c74a5dbb1d4f3c
cb31fff4e6845e445f30f2637e9c45b82af94767845e38a6d675c0651988971f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa64096ba-be1d-410c-8f5f-91e53e173c69.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8792
x-amzn-requestid: 32828d39-6bd8-4367-9f6e-e73c78866465
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-4EZSIAMFeAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-0ae6a63e21ac4c8659c3dee3;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FeVWXyGDdcDvZ82lyKDnkqAenGm40Eb1knTlhJpp5TVrEaoXypEuMQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:46:42 GMT
etag: "d378158dfa08278f1ffa477111c74a5dbb1d4f3c"
content-type: image/jpeg
age: 719
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 983e705542fa78b4d5c876e0c1eada7e
5fc951e5236edd282d4975853ca35dab2e55fb17
fa6e478fc213f6cb6c9f33c96c51105262c857bfe313b3d310755be30b1feeb3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6656
x-amzn-requestid: 2703eaf4-1a5a-41a6-859b-47255865efb0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-3F2ZIAMFpLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-6df026de5a9230ed429d08c1;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FIIvB2jeQ_PBDzi8XRN0jnNxze3OwDbz8TBaIcadRvmQd2EFhCwX7Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:44:33 GMT
age: 848
etag: "5fc951e5236edd282d4975853ca35dab2e55fb17"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f82eaf-49aa-4cfd-ab46-894119225c29.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f82eaf-49aa-4cfd-ab46-894119225c29.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6287f68a964668d9dcd418f0f55cfa41
998cc906e470e1b8ec9b840ab5c3b93f1618a1e3
d1d6a242e8a5e3fa3166271473faa20fe2825f24f02a5e15c02180a066262b4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f82eaf-49aa-4cfd-ab46-894119225c29.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13302
x-amzn-requestid: b3cc28ec-5792-4028-b62f-b24dd50a24af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-5FLgoAMFo9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-3ea9e3b364c0efe24b48e826;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: arLdjfE327MmTML3UwIQK2Y-ptUk35lzGyufht73gjkKYqbAxfUdEA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:46:42 GMT
etag: "998cc906e470e1b8ec9b840ab5c3b93f1618a1e3"
content-type: image/jpeg
age: 719
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
sayp.us/
172.84.132.150301 Moved Permanently 0 B IP 172.84.132.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 05 Sep 2022 21:58:38 GMT
Server: Apache
Expires: Mon, 05 Sep 2022 22:58:41 GMT
Cache-Control: max-age=3600
X-Redirect-By: redirection
Location: https://www.sayp.us/
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.sayp.us/
172.84.132.150200 OK 18 kB IP 172.84.132.150:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (8047)
Hash 0a551b98d0682e2144991743f3b455b7
05a5abfd52c759942b551499bafb08af4a42d07e
ef58c3a2e74dffcd36345920cbf8b41a9aa15cbd4a8c2ef079d3408d82bfa4ca
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:42 GMT
Server: Apache
Link: <https://www.sayp.us/wp-json/>; rel="https://api.w.org/", <https://www.sayp.us/wp-json/wp/v2/pages/1243>; rel="alternate"; type="application/json", <https://www.sayp.us/>; rel=shortlink
X-TEC-API-VERSION: v1
X-TEC-API-ROOT: https://www.sayp.us/wp-json/tribe/events/v1/
X-TEC-API-ORIGIN: https://www.sayp.us
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 18270
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.sayp.us/wp-content/plugins/vc-extensions-bundle/css/admin_icon.css?ver=6.0.2
172.84.132.150200 OK 1.2 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/vc-extensions-bundle/css/admin_icon.css?ver=6.0.2
IP 172.84.132.150:0
Hash 0202ce99274787858f4aa99304b4c1ca
37ef2f1f86ecf3aff617457274d2d7a144a8cb40
a695da2beded20af459a0e9ad36fc95db4f4a4afc4928f22bfecf6e122d8ce89
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/vc-extensions-bundle/css/admin_icon.css?ver=6.0.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:45 GMT
Server: Apache
Last-Modified: Fri, 12 Jun 2020 21:24:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1164
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.0.8
172.84.132.150200 OK 11 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.0.8
IP 172.84.132.150:0
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 9ce0d630f6c29dac0039e510a614d3b9
494d22e31a7fc6e5ad70b38bd00ecc914389e531
814c861fff10990b9eb34849d69444dd2bb616f56ac732c71b29eeb55238ebc4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.0.8 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:45 GMT
Server: Apache
Last-Modified: Fri, 12 Jun 2020 21:24:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 11205
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-content/plugins/events-calendar-pro/src/resources/css/tribe-events-pro-mini-calendar-block.min.css?ver=5.14.5
172.84.132.150200 OK 185 B URL HTTP/1.1 www.sayp.us/wp-content/plugins/events-calendar-pro/src/resources/css/tribe-events-pro-mini-calendar-block.min.css?ver=5.14.5
IP 172.84.132.150:0
File type ASCII text, with very long lines (655), with no line terminators
Hash d8d5b21fb049470cadab3a7e5ce62c5f
0be1c18f8a8a723e90835e825e7a87bafd6fe879
0ba2b23b734617124611ad13b184cac2e02995820133fb82b9368ddcee7b8a10
GET /wp-content/plugins/events-calendar-pro/src/resources/css/tribe-events-pro-mini-calendar-block.min.css?ver=5.14.5 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:45 GMT
Server: Apache
Last-Modified: Fri, 19 Aug 2022 19:48:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 185
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.2
172.84.132.150200 OK 849 B URL HTTP/1.1 www.sayp.us/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.2
IP 172.84.132.150:0
Hash 206db6362f8b7f33b19b3cdbd3a9d057
8985a296fa427906875c57f2725c5b44488a7ab3
649ae4ae461fd7aadfc63f0cb914cb996e2559778721f82dc40daacc06c595d2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:45 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 16:44:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 849
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
172.84.132.150200 OK 11 kB URL HTTP/1.1 www.sayp.us/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 172.84.132.150:0
File type ASCII text, with very long lines (43771)
Hash 069a79d16ded6a02071f286cd2025c44
dd5970e01b8a10dadcf074f72a1c8095f25e947a
78261bccee805c6913bf7e23e2e25314f05f690300a77a40ca36e1e516b20203
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:45 GMT
Server: Apache
Last-Modified: Mon, 01 Aug 2022 17:20:42 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 10912
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=2.3.2
172.84.132.150200 OK 8.1 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=2.3.2
IP 172.84.132.150:0
File type ASCII text, with very long lines (7136)
Hash 43dba65671601d230c7c6f0ee25ef998
57e982ee93f90ad433e3f36207c53736e2079671
25e9a65e6479587f1267f132e63ed511d3b70a283df745e8fbeb29f1af9e004a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=2.3.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:45 GMT
Server: Apache
Last-Modified: Fri, 12 Jun 2020 21:24:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 8147
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=2.3.2
172.84.132.150200 OK 2.1 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=2.3.2
IP 172.84.132.150:0
Hash a85d209fef9224fe16ec8cc6a5c6141d
8610912a07e6e49462dd7d52611d58b718bcd8c9
7cabfe1a57bd55ffabc6c8f1352405074243a362d29719ded5bad2ea6cd3def1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=2.3.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:45 GMT
Server: Apache
Last-Modified: Fri, 12 Jun 2020 21:24:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 2125
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8b3fc7b78a1c498440023dbb6004e984
688d8686e183a4e84577e0f70550350622796e2e
ac1f7b3d1c5bfc1888f50aa3a8e0498c11f7cce672e6de5c048bf31d4d3370c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 21:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8b3fc7b78a1c498440023dbb6004e984
688d8686e183a4e84577e0f70550350622796e2e
ac1f7b3d1c5bfc1888f50aa3a8e0498c11f7cce672e6de5c048bf31d4d3370c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 21:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8b3fc7b78a1c498440023dbb6004e984
688d8686e183a4e84577e0f70550350622796e2e
ac1f7b3d1c5bfc1888f50aa3a8e0498c11f7cce672e6de5c048bf31d4d3370c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 21:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8b3fc7b78a1c498440023dbb6004e984
688d8686e183a4e84577e0f70550350622796e2e
ac1f7b3d1c5bfc1888f50aa3a8e0498c11f7cce672e6de5c048bf31d4d3370c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 21:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.sayp.us/wp-content/plugins/trx_addons/js/swiper/swiper.min.css
172.84.132.150200 OK 2.6 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/trx_addons/js/swiper/swiper.min.css
IP 172.84.132.150:0
File type ASCII text, with very long lines (17459)
Hash 9eb43606614a9d403b7e7c80b35a3e5c
fa143457a09a54390e504c38c4384400582c6f60
704a00743f771a861fb7196073882b8cf820a9a4b332c0037cc3bf039b0ac64d
GET /wp-content/plugins/trx_addons/js/swiper/swiper.min.css HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:45 GMT
Server: Apache
Last-Modified: Fri, 12 Jun 2020 21:24:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 2635
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-content/plugins/trx_addons/js/magnific/magnific-popup.min.css
172.84.132.150200 OK 1.4 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/trx_addons/js/magnific/magnific-popup.min.css
IP 172.84.132.150:0
File type ASCII text, with very long lines (5156), with no line terminators
Hash 18fec46f892877a1c02ffd1af9454ea1
318a91ffc4f2170183e05f07bf951a7c8f5ecc84
9de49016f0c12be725d5f228109d9f169efc48f80eb5ef17eccf9b351e49d635
GET /wp-content/plugins/trx_addons/js/magnific/magnific-popup.min.css HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:45 GMT
Server: Apache
Last-Modified: Fri, 12 Jun 2020 21:24:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1392
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-content/plugins/trx_addons/css/trx_addons.animation.css?ver=6.0.2
172.84.132.150200 OK 4.6 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/trx_addons/css/trx_addons.animation.css?ver=6.0.2
IP 172.84.132.150:0
Hash 87356124602ef5e3290ec772dc021803
801eb8fd01cc127b53dad39755f85e2bd0713bf6
99ffa806e583d9023024086ce261ba8039802c4a1049b60509847fb1b5bca06c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/trx_addons/css/trx_addons.animation.css?ver=6.0.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:45 GMT
Server: Apache
Last-Modified: Fri, 12 Jun 2020 21:24:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 4610
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-content/plugins/trx_addons/css/trx_addons.css
172.84.132.150200 OK 26 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/trx_addons/css/trx_addons.css
IP 172.84.132.150:0
File type ASCII text, with very long lines (65389)
Hash cc6473029afaf336e34a8507b8c7c1b2
1650ae35ddad2d7d2bf068c3a668cfb67480bd94
ca362564b860263d2b02920243ab58e0eba5b95ed8174ade137418ec5aeacfac
GET /wp-content/plugins/trx_addons/css/trx_addons.css HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:45 GMT
Server: Apache
Last-Modified: Fri, 12 Jun 2020 21:24:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 25817
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-content/themes/crework-child/responsive.css?ver=123934890
172.84.132.150200 OK 1.3 kB URL HTTP/1.1 www.sayp.us/wp-content/themes/crework-child/responsive.css?ver=123934890
IP 172.84.132.150:0
Hash 16f35aae0ea7b825ee88d42958445185
8d4d38aa1e343feaa8a0784c355b3fcfa211db0e
cc7c63a7e5c6f32279a911a8fc0a5ac1152d87ba4fd8c393fbd0b0ae55be444c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/crework-child/responsive.css?ver=123934890 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:45 GMT
Server: Apache
Last-Modified: Mon, 18 Apr 2022 14:11:27 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1269
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-content/themes/crework-child/developer.css?ver=396982729
172.84.132.150200 OK 1.2 kB URL HTTP/1.1 www.sayp.us/wp-content/themes/crework-child/developer.css?ver=396982729
IP 172.84.132.150:0
Hash 38aeaa462433cd33cbd2f2ef4c87141d
5f6256dde8296ce04f99e17d5e0cdb17c2a97e64
27f4a67a063a9286657575089567be147f00f6ee28f29cd450e2d3e697a20b80
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/crework-child/developer.css?ver=396982729 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:45 GMT
Server: Apache
Last-Modified: Tue, 12 Apr 2022 14:26:42 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1238
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-content/plugins/business-directory-plugin/assets/css/widgets.min.css?ver=6.2.9
172.84.132.150200 OK 468 B URL HTTP/1.1 www.sayp.us/wp-content/plugins/business-directory-plugin/assets/css/widgets.min.css?ver=6.2.9
IP 172.84.132.150:0
File type ASCII text, with very long lines (3439), with no line terminators
Hash 9ee3c7c6b394c63966fd3376212ea9f7
21e7abddd5d82ce88787f3098f20e91d36f5d596
719e3e56857366a6aa3af7107f0fd14908f8015edb891da6a497963bef6b8d12
GET /wp-content/plugins/business-directory-plugin/assets/css/widgets.min.css?ver=6.2.9 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:45 GMT
Server: Apache
Last-Modified: Tue, 30 Aug 2022 19:48:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 468
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-content/plugins/date-time-picker-field/assets/js/vendor/datetimepicker/jquery.datetimepicker.min.css?ver=6.0.2
172.84.132.150200 OK 4.2 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/date-time-picker-field/assets/js/vendor/datetimepicker/jquery.datetimepicker.min.css?ver=6.0.2
IP 172.84.132.150:0
File type ASCII text, with very long lines (16502)
Hash 558405fb3910f8ae754be8d82606ec38
54238b41a7817604756a6f24af634ea2838ad503
4721490aca04e17091d3f91b8d25ae7c3cc5b112c2fafeaa733fc3d1c170ca6c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/date-time-picker-field/assets/js/vendor/datetimepicker/jquery.datetimepicker.min.css?ver=6.0.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:45 GMT
Server: Apache
Last-Modified: Tue, 26 Apr 2022 19:15:36 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 4182
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-content/plugins/trx_addons/css/font-icons/css/trx_addons_icons-embedded.css?ver=6.0.2
172.84.132.150200 OK 125 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/trx_addons/css/font-icons/css/trx_addons_icons-embedded.css?ver=6.0.2
IP 172.84.132.150:0
File type ASCII text, with very long lines (65169)
Size 125 kB (125014 bytes)
Hash 60a50e6f0a087187920bce5f27a211ae
4b0bd85bbf2390c62ce098f4c85b3827c1c69cfd
701f0a5f291aa57c961e0e01cbc59c58485b7506148aed418eb54b6e81e1a755
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/trx_addons/css/font-icons/css/trx_addons_icons-embedded.css?ver=6.0.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:45 GMT
Server: Apache
Last-Modified: Fri, 12 Jun 2020 21:24:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
www.sayp.us/wp-content/themes/crework/style.css?ver=6.0.2
172.84.132.150200 OK 25 kB URL HTTP/1.1 www.sayp.us/wp-content/themes/crework/style.css?ver=6.0.2
IP 172.84.132.150:0
Hash 80ad5fbf6e2e8050bc4c1c5004949002
ba2f729767bd97f8c238b18ccf872076d7ac3321
03e964e7265f7f27dd2982703fcce73baabba86eae774e3da42d485bbd775fef
GET /wp-content/themes/crework/style.css?ver=6.0.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:45 GMT
Server: Apache
Last-Modified: Thu, 13 Jan 2022 01:23:36 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 24969
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8b3fc7b78a1c498440023dbb6004e984
688d8686e183a4e84577e0f70550350622796e2e
ac1f7b3d1c5bfc1888f50aa3a8e0498c11f7cce672e6de5c048bf31d4d3370c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 21:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3df811ac19fde08f49ef246c29cef161
e1c8d54b357adaf32e80427028cc884fa35959e0
e2749178e0bf0c4045a96388a58029ddd92d13a866021737864cd68e11317292
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 21:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8b3fc7b78a1c498440023dbb6004e984
688d8686e183a4e84577e0f70550350622796e2e
ac1f7b3d1c5bfc1888f50aa3a8e0498c11f7cce672e6de5c048bf31d4d3370c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 21:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6LcRHKUZAAAAAB2lO9f62WXKqepBdTVOGEVH1UI0&ver=3.0
142.250.74.164200 OK 585 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LcRHKUZAAAAAB2lO9f62WXKqepBdTVOGEVH1UI0&ver=3.0
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash f06c996cb469e401ec796ef501ff75b4
17a7117726ce2d4b0bdb0970c90078ae736a5c65
6e8532b88c2bcb47b477dfbf0cf571c914c3ad4cd49ef9661577eb7b50ddda64
GET /recaptcha/api.js?render=6LcRHKUZAAAAAB2lO9f62WXKqepBdTVOGEVH1UI0&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Mon, 05 Sep 2022 21:58:46 GMT
date: Mon, 05 Sep 2022 21:58:46 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.sayp.us/wp-content/plugins/contact-form-7/includes/js/jquery-ui/themes/smoothness/jquery-ui.min.css?ver=1.12.1
172.84.132.150200 OK 7.1 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/contact-form-7/includes/js/jquery-ui/themes/smoothness/jquery-ui.min.css?ver=1.12.1
IP 172.84.132.150:0
File type ASCII text, with very long lines (29523)
Hash f53313a0accf3ee671ae0a51004c22e9
5105aa874518ddbb3598cb498ae9ad77f525c61f
f03fba773d09f7e7ca972556cefc0b5cee81510ad083bfe01d46012830ec5d01
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/jquery-ui/themes/smoothness/jquery-ui.min.css?ver=1.12.1 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:45 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 16:44:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 7127
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-content/plugins/wp-gdpr-compliance/Assets/css/front.css?ver=1659374335
172.84.132.150200 OK 4.1 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/wp-gdpr-compliance/Assets/css/front.css?ver=1659374335
IP 172.84.132.150:0
File type Unicode text, UTF-8 text, with very long lines (26316), with no line terminators
Hash ea4151d064a49ca7671679ff4832ad80
1e1bcb0d68cb68a4f9a231695e09c36f78b50309
971301b13d87729f95ddda928c5aecec138e88c46803881c13c3ff55bb776f68
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-gdpr-compliance/Assets/css/front.css?ver=1659374335 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:45 GMT
Server: Apache
Last-Modified: Mon, 01 Aug 2022 17:18:55 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 4079
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 80f29cbbe260408ee1418a6fbce5a537
96cfe52bcf90cfdba5cba7907d49a91f44adc032
de264b42b7c59bdadf606387adaca04af680705a947096d048f288c3e5be8517
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 21:58:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.sayp.us/wp-content/plugins/business-directory-plugin/themes/default/assets/styles.css?ver=6.2.9
172.84.132.150200 OK 305 B URL HTTP/1.1 www.sayp.us/wp-content/plugins/business-directory-plugin/themes/default/assets/styles.css?ver=6.2.9
IP 172.84.132.150:0
Hash 1aab23e220c0f4ab5c3f6d97bb704316
e88092dfe5b4454729f8c6b56117f3446e3a52c8
563d09f15eb6f55884fd3d982477a1196f14b664f1446e5cd30a53f348b2d015
GET /wp-content/plugins/business-directory-plugin/themes/default/assets/styles.css?ver=6.2.9 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Tue, 30 Aug 2022 19:48:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 305
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-content/themes/crework/style.css
172.84.132.150200 OK 25 kB URL HTTP/1.1 www.sayp.us/wp-content/themes/crework/style.css
IP 172.84.132.150:0
Hash 80ad5fbf6e2e8050bc4c1c5004949002
ba2f729767bd97f8c238b18ccf872076d7ac3321
03e964e7265f7f27dd2982703fcce73baabba86eae774e3da42d485bbd775fef
GET /wp-content/themes/crework/style.css HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Thu, 13 Jan 2022 01:23:36 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 24969
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-content/themes/crework/css/__styles.css?ver=6.0.2
172.84.132.150200 OK 22 kB URL HTTP/1.1 www.sayp.us/wp-content/themes/crework/css/__styles.css?ver=6.0.2
IP 172.84.132.150:0
File type ASCII text, with very long lines (65384)
Hash ed2d758d81cea3808e9c9d7b01e6717c
d4cbaa557d65091bb058a41d8841d93c27f17c95
ef5d55540b501596e14dfcbdb64a8706adcae7a0741fb1fd37fee2f7c0243e6e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/crework/css/__styles.css?ver=6.0.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 12:33:46 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 22158
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0
172.84.132.150200 OK 41 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0
IP 172.84.132.150:0
File type ASCII text, with very long lines (65358)
Hash b29e259d9270f19427d0790406799795
19622e434df6ba379840e9ea31fff9aaf5a8065e
dd6aa1f2c6a61ad9c3af005ab46dc8f642524d7eea9e6dddb1840c6a2249f5a5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:45 GMT
Server: Apache
Last-Modified: Tue, 08 Mar 2022 22:22:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 41048
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
172.84.132.150200 OK 2.4 kB URL HTTP/1.1 www.sayp.us/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
IP 172.84.132.150:0
File type ASCII text, with very long lines (11256), with no line terminators
Hash 1d6e4a77fd29a54c63cacf31066fe58e
270a454d2b87b294ddbdb6594d491c7dda637363
46879cca8816e1802c35e96fb5d7d28519994fd9ae41a7b94299057e3f8c7f79
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Tue, 05 Apr 2022 06:32:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 2397
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-content/themes/crework/css/font-icons/css/fontello-embedded.css?ver=6.0.2
172.84.132.150200 OK 167 kB URL HTTP/1.1 www.sayp.us/wp-content/themes/crework/css/font-icons/css/fontello-embedded.css?ver=6.0.2
IP 172.84.132.150:0
File type ASCII text, with very long lines (65217)
Size 167 kB (166873 bytes)
Hash 93dd27cbf267ceb54e0d79e5030a287c
6fd43db772184721da1cc5fccedd593ae1f890a3
0a58e35c97b5c778ddad26006e1a80221509d601518d8a372842f82f656c6daf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/crework/css/font-icons/css/fontello-embedded.css?ver=6.0.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Thu, 13 Jan 2022 01:23:36 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
www.sayp.us/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2
172.84.132.150200 OK 982 B URL HTTP/1.1 www.sayp.us/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2
IP 172.84.132.150:0
File type ASCII text, with very long lines (4186), with no line terminators
Hash a43bf1705482324d06adb5d2b644a1a2
599069728988582dee8e5ec6a4a4b37c931adb96
78ae77841e94a99977ad8f5d7e7d6757ddf5b6e4da5b66ee6029ec39be4e2204
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Fri, 12 Jun 2020 21:24:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 982
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-content/themes/crework-child/style.css
172.84.132.150200 OK 4.0 kB URL HTTP/1.1 www.sayp.us/wp-content/themes/crework-child/style.css
IP 172.84.132.150:0
Hash 0f81a2c8fb692ec4e1aac0b4fc511fb9
7c40eedaabe5d60db828d44126abdf5bff5fea84
2d42e17e501819af257e7048b8b3c13d42cc0243f8674c6e3f88337ff92880f8
GET /wp-content/themes/crework-child/style.css HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2022 11:57:50 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 3981
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-content/themes/crework/css/__colors.css?ver=6.0.2
172.84.132.150200 OK 32 kB URL HTTP/1.1 www.sayp.us/wp-content/themes/crework/css/__colors.css?ver=6.0.2
IP 172.84.132.150:0
File type ASCII text, with very long lines (65384)
Hash 65dae67a8f19e028b20054d700493a57
447fe6d5e95a2115532af59a9a2427e8dfd0094d
07452fb3bc2c645abde743503cd7a9f551c7c8741445f51c3c0316d210d86ee7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/crework/css/__colors.css?ver=6.0.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 12:33:46 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 32002
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-content/themes/crework/css/responsive.css?ver=6.0.2
172.84.132.150200 OK 14 kB URL HTTP/1.1 www.sayp.us/wp-content/themes/crework/css/responsive.css?ver=6.0.2
IP 172.84.132.150:0
File type assembler source, ASCII text, with very long lines (696)
Hash 5edfaf9e00305397e9a1320976b4dbcf
ce5b7dc0110f410b04e69a0f3eb48020a90f8cbe
5fd0b9b35f36c6f92acfd61b13c73690fff8010fa882c2300d553fa768e1bcc6
GET /wp-content/themes/crework/css/responsive.css?ver=6.0.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Thu, 13 Jan 2022 01:23:36 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 14328
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.sayp.us/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
172.84.132.150200 OK 30 kB URL HTTP/1.1 www.sayp.us/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 172.84.132.150:0
File type ASCII text, with very long lines (65447)
Hash d5935cacfd471ce64891335a0e163f0f
883b406801168b978994e8d8c7f252a31321cf61
caea13ed31fcdedf7f54e2383e8a64c1d86d6767c11f227c046ab2952a7d3ce9
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Fri, 19 Aug 2022 20:23:43 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 30310
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.sayp.us/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
172.84.132.150200 OK 4.0 kB URL HTTP/1.1 www.sayp.us/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 172.84.132.150:0
File type ASCII text, with very long lines (11126)
Hash 1fbb59519536e28eeb7ae7173973c39f
f6542c5d0f96f621eea4f3cb442021dfe33863fa
b1b54befd52c3605721bf8b5a6c0290c572929138358738826873751256b191c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Fri, 19 Aug 2022 20:23:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 3998
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.sayp.us/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0
172.84.132.150200 OK 48 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0
IP 172.84.132.150:0
File type ASCII text, with very long lines (32005), with CRLF line terminators
Hash 098f084750f25dd4820a6bf3529c5825
d4a71f1fd543d8c988733b05727e076e91b9f5a5
a7bce9f33a08d450029d9af28539e2734db98565c842a2110c1c2c3ee134847a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Fri, 12 Jun 2020 21:24:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 48190
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.sayp.us/wp-content/themes/crework-child/custom.js?ver=6.0.2
172.84.132.150200 OK 219 B URL HTTP/1.1 www.sayp.us/wp-content/themes/crework-child/custom.js?ver=6.0.2
IP 172.84.132.150:0
Hash c493146b6a1af49bf8f0c137b8788b0d
36048622c77ad58a0da1b3bf4512d3ce6cba499c
099dc9afe8cb9af6d90ba86e8d4934539dfbdd37358dc79b19db2fb4993d9901
GET /wp-content/themes/crework-child/custom.js?ver=6.0.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2022 16:04:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 219
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.sayp.us/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
172.84.132.150200 OK 4.6 kB URL HTTP/1.1 www.sayp.us/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 172.84.132.150:0
File type ASCII text, with very long lines (15660)
Hash a0083d25b89ea80ecd2393db9f865d62
24eaf2df7c722fb13f2b5bf77ada5ee446720c25
f7533cb93f2efbb9e3bccfa9ff4036a2cafa7dd1bd4d66bea4833306b321e957
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Fri, 19 Aug 2022 20:21:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 4614
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.sayp.us/wp-content/plugins/wp-gdpr-compliance/Assets/js/front.min.js?ver=1659374335
172.84.132.150200 OK 16 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/wp-gdpr-compliance/Assets/js/front.min.js?ver=1659374335
IP 172.84.132.150:0
File type exported SGML document, Unicode text, UTF-8 text, with very long lines (59044)
Hash 4012293ab4ba4d1545ccfe51c3ba6ef9
d031ae2fda07f22c7b698b95cec810c2ce09210a
e8eebadba2e4fc3ede86e21e402ec4e27c4932ddbf2fcd765b8791961b5aa67a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-gdpr-compliance/Assets/js/front.min.js?ver=1659374335 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Mon, 01 Aug 2022 17:18:55 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 15751
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.sayp.us/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
172.84.132.150200 OK 2.4 kB URL HTTP/1.1 www.sayp.us/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 172.84.132.150:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash fd9569e5d4d99499e7712f61cd673089
96c465e0479831743968bdd243bd3bcbfaaa6e44
ea064fac3384ce935085b6a08a0b5379be3b747b3ce9ea87b6c9d41d1cd93f02
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Fri, 19 Aug 2022 20:23:30 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 2362
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.sayp.us/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
172.84.132.150200 OK 6.9 kB URL HTTP/1.1 www.sayp.us/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 172.84.132.150:0
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 4a34d3eeefdfb2b1a548f75ecb99db19
a8f92fe0c33c92570728caf600747febfe2c606f
17c9f16c33e87b7d28f051b238b2142c3cde1de2660e1cbe0942c4f4c524e9c4
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Fri, 19 Aug 2022 20:23:35 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 6896
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.sayp.us/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.2
172.84.132.150200 OK 6.3 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.2
IP 172.84.132.150:0
File type ASCII text, with very long lines (21905), with no line terminators
Hash d394bfce52646b2d2b84e9070f110e99
a18bd144350ced8d64725ef6a8836753ffc8087f
8550e4ad57c12b31e2988c4fe45b557aa8b6b1ce2feb768a2faa9888fcbf786f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 16:44:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 6250
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.sayp.us/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.0.8
172.84.132.150200 OK 63 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.0.8
IP 172.84.132.150:0
File type ASCII text, with very long lines (64288)
Hash 66a357b308f8c56021588dacb10fe852
36e3779feaf63162d93de839d6b0cd025e3267ea
b7c0cc9bb00dbf48eba6c7b8e6ac441fe5302e7c72f3bd27f29f7cfef0d8d268
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.0.8 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Fri, 12 Jun 2020 21:24:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 63326
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.sayp.us/wp-content/plugins/trx_addons/js/magnific/jquery.magnific-popup.min.js
172.84.132.150200 OK 7.1 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/trx_addons/js/magnific/jquery.magnific-popup.min.js
IP 172.84.132.150:0
File type ASCII text, with very long lines (20087)
Hash 8f456881d37ea9492f33986ae7a20985
8fda79318fd0fb51bc8bd7d2bbe6731bf90fe4eb
00489bd2f2f35779c09bb2930ce6818e4f3a37758c72ac89d55b129db8f95c9f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/trx_addons/js/magnific/jquery.magnific-popup.min.js HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Fri, 12 Jun 2020 21:24:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 7055
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.sayp.us/wp-content/plugins/trx_addons/js/swiper/swiper.jquery.min.js
172.84.132.150200 OK 20 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/trx_addons/js/swiper/swiper.jquery.min.js
IP 172.84.132.150:0
File type ASCII text, with very long lines (32020)
Hash b6576c8e0305a1609dcf8cb97f956155
bb505a51bfd83ecaa6f7f2463415556ee066c4f5
22329548b6f5ea30ce70036d25f9cee48521bae00b9ba7926f92e6f3cc3451a7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/trx_addons/js/swiper/swiper.jquery.min.js HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Fri, 12 Jun 2020 21:24:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 20287
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.sayp.us/wp-content/plugins/trx_addons/components/cpt/layouts/shortcodes/menu/superfish.js
172.84.132.150200 OK 2.1 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/trx_addons/components/cpt/layouts/shortcodes/menu/superfish.js
IP 172.84.132.150:0
Hash 1d134400a32ebf5a473b7c91998244ae
bbe163885f731d292849981aa18f741145bd59ea
f61b591f81fcb25e52c7ccba9953a65b6d84a042921156ed110aabb186bec5f4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/trx_addons/components/cpt/layouts/shortcodes/menu/superfish.js HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Fri, 12 Jun 2020 21:24:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 2126
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.sayp.us/wp-content/plugins/date-time-picker-field/assets/js/dtpicker.js?ver=6.0.2
172.84.132.150200 OK 1.5 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/date-time-picker-field/assets/js/dtpicker.js?ver=6.0.2
IP 172.84.132.150:0
Hash 2cd3be1d142e1f0366cf476867d746bc
4eac400e2821c5acf903ac28f694b08a70008d31
2f9e6e17ca6e01b976365dc9e1d039a1c997993fcbb1734d5338c78a9841d34a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/date-time-picker-field/assets/js/dtpicker.js?ver=6.0.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Tue, 26 Apr 2022 19:15:36 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1496
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.sayp.us/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
172.84.132.150200 OK 6.6 kB URL HTTP/1.1 www.sayp.us/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 172.84.132.150:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 7af971b915fcd158098937a176c574b7
66a2017e6b32b1affc1399a8fc0e9091c02f1736
08e49238ac48a6c9e29e53fb2180197bbb0cf4d5f4c16d2b2672a04b4aa122ff
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Fri, 19 Aug 2022 20:22:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 6646
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
www.sayp.us/wp-content/plugins/date-time-picker-field/assets/js/vendor/moment/moment.js?ver=6.0.2
172.84.132.150200 OK 31 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/date-time-picker-field/assets/js/vendor/moment/moment.js?ver=6.0.2
IP 172.84.132.150:0
File type Algol 68 source text\012- Pascal source, ASCII text
Hash dd2be73a916e5e0d2934149c0bd83b30
895e6dc6c0bc7e1b3b6943112dfa8d99737ca4af
9bf6b0e3842eb0b2a66e22ed1ed6729a88d1317686d16dbafbe6a81d0fcc8230
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/date-time-picker-field/assets/js/vendor/moment/moment.js?ver=6.0.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Tue, 26 Apr 2022 19:15:36 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 31266
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.sayp.us/wp-content/plugins/date-time-picker-field/assets/js/vendor/datetimepicker/jquery.datetimepicker.full.min.js?ver=6.0.2
172.84.132.150200 OK 16 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/date-time-picker-field/assets/js/vendor/datetimepicker/jquery.datetimepicker.full.min.js?ver=6.0.2
IP 172.84.132.150:0
File type Unicode text, UTF-8 text, with very long lines (50898)
Hash 62c4253cc18323ab630e80e72d09b0b1
9abe7ff8b5d21a7b9644ab87528a4bc89a6b7e25
7d5dc78e61911068b8d7b44783a3c08e2a3c14bc4b965550996263ac31bff202
GET /wp-content/plugins/date-time-picker-field/assets/js/vendor/datetimepicker/jquery.datetimepicker.full.min.js?ver=6.0.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Tue, 26 Apr 2022 19:15:36 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 16415
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.sayp.us/wp-content/plugins/contact-form-7/includes/js/html5-fallback.js?ver=5.6.2
172.84.132.150200 OK 285 B URL HTTP/1.1 www.sayp.us/wp-content/plugins/contact-form-7/includes/js/html5-fallback.js?ver=5.6.2
IP 172.84.132.150:0
Hash caa3163bb1052d39f058756e610d5b0b
5a9d4414d318b4ddfa1c7681fca17faaf6169f6c
55d0b3f8a36ab0a3aeeca463ae20ca750d597013c34de3f2ea4be592ecce9e4c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/html5-fallback.js?ver=5.6.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 16:44:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 285
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.sayp.us/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1
172.84.132.150200 OK 10 kB URL HTTP/1.1 www.sayp.us/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1
IP 172.84.132.150:0
File type ASCII text, with very long lines (36560)
Hash 3445701cf9fbc79192bcc64cb2817d87
32080589dcaaf2acc45618d32b0d9016dc9832ee
8ee46ed3f4a65b00b8db41c1f411fcf7a707ccd6640cae32400b889d69217b17
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Fri, 19 Aug 2022 20:22:49 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 10520
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0b9528d0aa584b0e7b8b95f31ec1c4ed
79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54
2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 21:58:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0b9528d0aa584b0e7b8b95f31ec1c4ed
79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54
2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 21:58:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/varela/v16/DPEtYwqExx0AWHX5Ax4E.woff2
142.250.74.163200 OK 19 kB URL HTTP/2 fonts.gstatic.com/s/varela/v16/DPEtYwqExx0AWHX5Ax4E.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 18940, version 1.0\012- data
Hash 6a0d6dc61a1082b2f11610c276478635
b5bc496cfbf3ef5677cb5809e4fbb4d2c927bae9
b113dc88c313c4beefc0c00d42ffc7e8c4124154e55a00c2b3f9e9273dd1dba8
GET /s/varela/v16/DPEtYwqExx0AWHX5Ax4E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sayp.us
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18940
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Sep 2022 00:04:16 GMT
expires: Fri, 01 Sep 2023 00:04:16 GMT
cache-control: public, max-age=31536000
age: 424470
last-modified: Wed, 27 Apr 2022 16:06:38 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.163200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sayp.us
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Sep 2022 16:40:18 GMT
expires: Fri, 01 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 364708
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
142.250.74.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data
Hash b4a68b1e743ee317eaaf0bbadd131571
f24f7823d4e3830c7cfa5bcb33733d2897c00f13
ddc148b8a0a27b1449fda6033f4a0defac9bd43210117b50d5d7ad1eda09f394
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sayp.us
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12708
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Sep 2022 06:06:20 GMT
expires: Fri, 01 Sep 2023 06:06:20 GMT
cache-control: public, max-age=31536000
age: 402746
last-modified: Mon, 11 Jul 2022 18:55:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0b9528d0aa584b0e7b8b95f31ec1c4ed
79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54
2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 21:58:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2
142.250.74.163200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 20028, version 1.0\012- data
Hash 2bfde17b9a1384ce64af78db1b87a82f
8effd23e482511e249c3f8e91cdc503729b93598
5c2d662e92bcbf1a5970b97040f901031295e79a96314db8302f549003022087
GET /s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sayp.us
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 17:16:50 GMT
expires: Wed, 30 Aug 2023 17:16:50 GMT
cache-control: public, max-age=31536000
age: 535316
last-modified: Tue, 26 Apr 2022 16:41:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.sayp.us/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.2
172.84.132.150200 OK 440 B URL HTTP/1.1 www.sayp.us/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.2
IP 172.84.132.150:0
File type ASCII text, with very long lines (999), with no line terminators
Hash 7e0636eac344bd243faab84faf0c2e75
37644038940d000ba9496f5356cab0d71a760efc
bce5b2a964a77c6304d49f6dee21d34ab96d6856239fdc08a0bac6cf998380d3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 16:44:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 440
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
www.sayp.us/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.2
172.84.132.150200 OK 479 B URL HTTP/1.1 www.sayp.us/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.2
IP 172.84.132.150:0
File type ASCII text, with very long lines (1191), with no line terminators
Hash cc6e4bb0d08a7af642fb5d7d360b2417
81f2d45689b987e71e986648e1a0547cd62dee88
04e59d9a464d53fecbccadfb29b17f093d9495c32fc6fb2c4f0ec4c4d9300038
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Fri, 19 Aug 2022 20:23:12 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 479
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
www.sayp.us/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
172.84.132.150200 OK 36 kB URL HTTP/1.1 www.sayp.us/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
IP 172.84.132.150:0
File type ASCII text, with very long lines (65266)
Hash 7204ebed6f104585c281e528b070478f
ebd05ae28110ade913d05be324f26f770998a1ba
bfd7c71bfc74664bb5613fa9afb1443ed67c0c1ca57402dc8ecb121ae1c50cb4
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Fri, 19 Aug 2022 20:23:12 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 35851
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
www.sayp.us/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.2
172.84.132.150200 OK 393 B URL HTTP/1.1 www.sayp.us/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.2
IP 172.84.132.150:0
File type HTML document, ASCII text, with very long lines (906), with no line terminators
Hash 104a34e1dc86769921861e29512bc5df
f17c92c5abd8400ded059ee5c8bc7436142d2411
45d10f6cf7538ffb41086d4d4d5d2fecae7f7f96feb53b964be084d9452c0426
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.2 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Fri, 19 Aug 2022 20:22:07 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 393
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
www.sayp.us/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0
172.84.132.150200 OK 5.4 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0
IP 172.84.132.150:0
File type ASCII text, with very long lines (19905)
Hash 1b1201bbecf725836be621fc82297e77
d74b2df211279c2cb2ff8de1497c15b0dfa3bb97
0956aacd25ff56bdc92d509742895f66bdf5b2cb1d5201a4cacc3a2a0e5ed73d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0 HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Tue, 08 Mar 2022 22:23:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 5397
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
www.sayp.us/wp-content/uploads/2022/04/Business-member.jpg
172.84.132.150200 OK 49 kB URL HTTP/1.1 www.sayp.us/wp-content/uploads/2022/04/Business-member.jpg
IP 172.84.132.150:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 930x725, components 3\012- data
Hash ba9baeb6302b76e61018b9135ad71098
c8f60c9f1ed51bf08a40cb13e720abc4a688ef73
2e7c512bf65d207fe260340729c81a82eafafce672c5e59dab7ae55e6a43233f
GET /wp-content/uploads/2022/04/Business-member.jpg HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Wed, 06 Apr 2022 14:33:30 GMT
Accept-Ranges: bytes
Content-Length: 49340
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
www.sayp.us/wp-content/uploads/2022/04/event-home.jpg
172.84.132.150200 OK 83 kB URL HTTP/1.1 www.sayp.us/wp-content/uploads/2022/04/event-home.jpg
IP 172.84.132.150:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 930x725, components 3\012- data
Hash 7d47ca22468ff4493747619dd972cf9e
c0c1783c8eb2c9de21e9c68fe96d0093b21a2d9f
d2b27db04fcce5792a716b4c57d410cbb7b0e0a262047a10db5ca42148b9bc75
GET /wp-content/uploads/2022/04/event-home.jpg HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Wed, 06 Apr 2022 14:35:50 GMT
Accept-Ranges: bytes
Content-Length: 83198
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
www.sayp.us/wp-content/uploads/2020/04/logo_no-text-white-body-300x172.png
172.84.132.150200 OK 10 kB URL HTTP/1.1 www.sayp.us/wp-content/uploads/2020/04/logo_no-text-white-body-300x172.png
IP 172.84.132.150:0
File type PNG image data, 300 x 172, 8-bit/color RGBA, non-interlaced\012- data
Hash da345d8a72942253c7d57584de0788bf
8b2a6cee5c410f3871b095f6ea00825111f5ad92
8d5e46346955042fc6f8f094478d2d0fd8a6edadf435c82592f00e22f80d97ad
GET /wp-content/uploads/2020/04/logo_no-text-white-body-300x172.png HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Fri, 12 Jun 2020 21:24:34 GMT
Accept-Ranges: bytes
Content-Length: 10059
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
www.sayp.us/wp-content/uploads/2020/04/logo_no-text-white-body.png
172.84.132.150200 OK 13 kB URL HTTP/1.1 www.sayp.us/wp-content/uploads/2020/04/logo_no-text-white-body.png
IP 172.84.132.150:0
File type PNG image data, 918 x 526, 8-bit/color RGBA, non-interlaced\012- data
Hash f62768afd6568c56f24d712e6e3e6c15
88807b58ca1fe583ffd58cf5eb708d6211cb3299
32a8def9c82681ff29cec5fe6108c9130aa07504e44b3f161d7b7920fd18afc2
GET /wp-content/uploads/2020/04/logo_no-text-white-body.png HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Fri, 12 Jun 2020 21:24:34 GMT
Accept-Ranges: bytes
Content-Length: 13079
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
www.sayp.us/wp-content/uploads/revslider/home_1/scroll_down.png
172.84.132.150200 OK 886 B URL HTTP/1.1 www.sayp.us/wp-content/uploads/revslider/home_1/scroll_down.png
IP 172.84.132.150:0
File type PNG image data, 69 x 99, 8-bit/color RGBA, non-interlaced\012- data
Hash fef531552f7d7cfda0e48adcde516b83
0e06fe3aa94b23d907d7ab334e4ee4071a1a2d2e
943d2d955988266b6c12b814061d9b351639e8404fd5bfc8d48108cd8efd860e
GET /wp-content/uploads/revslider/home_1/scroll_down.png HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Fri, 12 Jun 2020 21:24:34 GMT
Accept-Ranges: bytes
Content-Length: 886
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sayp.us
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:08 GMT
expires: Thu, 31 Aug 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 440679
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.sayp.us/wp-content/plugins/revslider/public/assets/assets/loader.gif
172.84.132.150200 OK 2.5 kB URL HTTP/1.1 www.sayp.us/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP 172.84.132.150:0
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.0.8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:47 GMT
Server: Apache
Last-Modified: Fri, 12 Jun 2020 21:24:34 GMT
Accept-Ranges: bytes
Content-Length: 2545
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/gif
www.sayp.us/wp-content/uploads/2020/06/iStock-1016779382.jpg
172.84.132.150200 OK 1.4 MB URL HTTP/1.1 www.sayp.us/wp-content/uploads/2020/06/iStock-1016779382.jpg
IP 172.84.132.150:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=17, height=3551, bps=218, compression=none, PhotometricIntepretation=RGB, description=Business conference concept. Young people sitting together on conference and listenning. Multiethnic community. (Business confe, manufacturer=Canon, model=Canon EOS 5D Mark IV, orientation=upper-left, width=6504], baseline, precision 8, 2343x1279, components 3\012- data
Size 1.4 MB (1411894 bytes)
Hash 4feaa9926046902237e3b3a625700d2d
be924a11b12e33b975b47a1ad28a48a7f19fc81f
dbf9b30925cbc5f793bdae581c8abe017a2294574a57d8142d8f80163642d9c0
GET /wp-content/uploads/2020/06/iStock-1016779382.jpg HTTP/1.1
Host: www.sayp.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 21:58:46 GMT
Server: Apache
Last-Modified: Fri, 12 Jun 2020 22:12:37 GMT
Accept-Ranges: bytes
Content-Length: 1411894
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800&ver=6.0.2
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800&ver=6.0.2
IP 142.250.74.10:0
GET /css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 05 Sep 2022 21:58:45 GMT
date: Mon, 05 Sep 2022 21:58:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Raleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&ver=6.0.2
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Raleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&ver=6.0.2
IP 142.250.74.10:0
GET /css?family=Raleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 05 Sep 2022 21:58:45 GMT
date: Mon, 05 Sep 2022 21:58:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Droid+Serif%3A400%2C700&ver=6.0.2
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Droid+Serif%3A400%2C700&ver=6.0.2
IP 142.250.74.10:0
GET /css?family=Droid+Serif%3A400%2C700&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 05 Sep 2022 21:58:45 GMT
date: Mon, 05 Sep 2022 21:58:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CMerriweather%3A300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%7CVarela%3A400&subset=latin%2Clatin-ext&ver=6.0.2
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CMerriweather%3A300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%7CVarela%3A400&subset=latin%2Clatin-ext&ver=6.0.2
IP 142.250.74.10:0
GET /css?family=Montserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CMerriweather%3A300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%7CVarela%3A400&subset=latin%2Clatin-ext&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sayp.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 05 Sep 2022 21:58:45 GMT
date: Mon, 05 Sep 2022 21:58:45 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2