r3.o.lencr.org/
23.36.76.249200 OK 503 B IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash 1456357aecbd23f21ad98da57e0127eb
7074815b39fa8da9013883971d665e4c1b0797ea
f3eba265ee64870b2f822f1511b36c747d763c382557789cdad8be1d3b52d1f5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F3EBA265EE64870B2F822F1511B36C747D763C382557789CDAD8BE1D3B52D1F5"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8602
Expires: Thu, 24 Nov 2022 00:12:51 GMT
Date: Wed, 23 Nov 2022 21:49:29 GMT
Connection: keep-alive
blog.mackrell.com/
91.197.229.41200 OK 13 kB IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 8f0fe2ac88f8f09b2686f3f36632cd7f
ac65755b8311c028849b0946123e2da91e01d1c2
2a4791758ade5f32dbea19ba291b9e8827492b0e37d6e524f4fa5e02e3d9d114
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/7.4.33
set-cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
link: <https://blog.mackrell.com/wp-json/>; rel="https://api.w.org/"
content-length: 12614
content-encoding: gzip
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:49:29 GMT
r3.o.lencr.org/
23.36.76.249200 OK 503 B IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash 8a6c553d89cb6fd1de4787fee2a0e0dc
b974e022ea8675c0a09f58864cc99df05b5b1241
a62ecedcb0953814f982237818a3d902fdca501f82b675629d28b5d476e0fbfa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A62ECEDCB0953814F982237818A3D902FDCA501F82B675629D28B5D476E0FBFA"
Last-Modified: Mon, 21 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15671
Expires: Thu, 24 Nov 2022 02:10:40 GMT
Date: Wed, 23 Nov 2022 21:49:29 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 770d09773b5f304acf141fd66a4862b4
5ddc46ab75de26c858a9a6f6d1beaaec9bb181f5
c7bcc6928fa1c0bb225ce8a2f6badd6cb1bd6ea002fb808ed34e8dafbd7b3b26
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5647
Cache-Control: max-age=137754
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:49:29 GMT
Etag: "637df674-1d7"
Expires: Fri, 25 Nov 2022 12:05:23 GMT
Last-Modified: Wed, 23 Nov 2022 10:31:16 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: nkvTzxD2dfDQjb7J20xJGRE03urvgII2dTUFBPuAuYLoC7LNCL5Wy+9j00+XSSLgaKaFjv/2uyo=
x-amz-request-id: 5TYBF3MY6EJAWG4H
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 23 Nov 2022 21:43:08 GMT
age: 381
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 23 Nov 2022 21:18:50 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1839
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 23 Nov 2022 21:49:29 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
blog.mackrell.com/wp-content/plugins/add-local-avatar/avatars.css?ver=6.0.3
91.197.229.41200 OK 292 B URL HTTP/1.1 blog.mackrell.com/wp-content/plugins/add-local-avatar/avatars.css?ver=6.0.3
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
Hash 1cdb7fb006ee9bad1ba3a64bb7a34fb3
70af7046e12f13748621b777c2c1e259721ea6ed
4b516ecd62f5fbc06e6c1ac5d0f8d7ca538d19e62aafede8fa28eda79a3b2dff
GET /wp-content/plugins/add-local-avatar/avatars.css?ver=6.0.3 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: text/css
last-modified: Thu, 30 Jun 2022 15:32:30 GMT
accept-ranges: bytes
content-length: 292
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-includes/js/imgareaselect/imgareaselect.css?ver=0.9.8
91.197.229.41200 OK 267 B URL HTTP/1.1 blog.mackrell.com/wp-includes/js/imgareaselect/imgareaselect.css?ver=0.9.8
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
Hash 76e40f625bfd9e0a6c786843a07b7841
6249c08e177a839cdf6eaa3179f45e0fbe80147e
f54211c2ed03195cf1fe85dfed166ccb5b853377fda105551049e1665db4a65f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imgareaselect/imgareaselect.css?ver=0.9.8 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: text/css
last-modified: Thu, 30 Jun 2022 15:40:56 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 267
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-includes/js/thickbox/thickbox.css?ver=6.0.3
91.197.229.41200 OK 951 B URL HTTP/1.1 blog.mackrell.com/wp-includes/js/thickbox/thickbox.css?ver=6.0.3
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
Hash 517189a424a93baa1a83ce7a02db7d66
1d14409b80339b7697dcd578297f8440bc58e33a
927210a16af089d2d73122a66ef9891bfaaec22ee0d1b4ce0e9cb3f9fa076c2d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/thickbox/thickbox.css?ver=6.0.3 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: text/css
last-modified: Thu, 30 Jun 2022 15:40:17 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 951
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-content/plugins/ultimate-social-media-plus/css/sfsi-style.css?ver=3.5.1
91.197.229.41200 OK 14 kB URL HTTP/1.1 blog.mackrell.com/wp-content/plugins/ultimate-social-media-plus/css/sfsi-style.css?ver=3.5.1
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type ASCII text, with CRLF line terminators
Hash 275d67c7c95b17242f9297ec15254078
8c4d7a7320b6f9fbb020bd64f5b800dc43bb252c
5cabdbc095f1ec1790102b3ea734941d8d29fae8208dcd3983e5189c30eaae54
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-social-media-plus/css/sfsi-style.css?ver=3.5.1 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: text/css
last-modified: Fri, 12 Aug 2022 10:47:43 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 14202
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
91.197.229.41200 OK 12 kB URL HTTP/1.1 blog.mackrell.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type ASCII text, with very long lines (43771)
Hash ad7a4eb645a7c803e8aa5fb06636d485
4cee4d244c7b280a3b159f22039a744441683c46
cf3ba5d4ef256c6f4583f414fd6899bf7849ba0e12d78862e3b85f6c933aba83
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: text/css
last-modified: Fri, 12 Aug 2022 10:25:06 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 11557
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-content/plugins/fancier-author-box/css/ts-fab.min.css?ver=1.4
91.197.229.41200 OK 918 B URL HTTP/1.1 blog.mackrell.com/wp-content/plugins/fancier-author-box/css/ts-fab.min.css?ver=1.4
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type ASCII text, with very long lines (3680), with no line terminators
Hash 86ed9bf1b44fe9febd97077bc578603e
038983e81524386be06cbf0e607c17ee3c18d0f8
b0c9d9de7238d54641bb74b5c73efe188e00069b096d27e5529fbadb97eb1051
GET /wp-content/plugins/fancier-author-box/css/ts-fab.min.css?ver=1.4 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: text/css
last-modified: Thu, 30 Jun 2022 15:39:32 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 918
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-content/themes/mtg/js/script.js
91.197.229.41200 OK 290 B URL HTTP/2 blog.mackrell.com/wp-content/themes/mtg/js/script.js
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
Hash 791610cbc69ce11a6ce1bbf832f384aa
adc8ad53118dbe71693ef3983bde5ce19ef7ade5
49600da29c841453461a81db6a950e1a349e77ac8f1d1048a5dd667ca2c7c3d3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/mtg/js/script.js HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://blog.mackrell.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: application/javascript
last-modified: Tue, 05 Jul 2022 12:49:34 GMT
accept-ranges: bytes
content-length: 290
date: Wed, 23 Nov 2022 21:49:29 GMT
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
blog.mackrell.com/wp-content/themes/mtg/style.css?ver=6.0.3
91.197.229.41200 OK 6.4 kB URL HTTP/1.1 blog.mackrell.com/wp-content/themes/mtg/style.css?ver=6.0.3
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type assembler source, ASCII text, with very long lines (348)
Hash df157633b744a531e53b78b48d7186b1
3e14310e979324e10971b4e23b8fb35a4707e354
68f017b2ba87f84ea176281a3a48175d751d370569769fa25b6d065065a3fc35
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/mtg/style.css?ver=6.0.3 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: text/css
last-modified: Tue, 05 Jul 2022 12:49:31 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 6377
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-includes/css/dashicons.min.css?ver=6.0.3
91.197.229.41200 OK 36 kB URL HTTP/1.1 blog.mackrell.com/wp-includes/css/dashicons.min.css?ver=6.0.3
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type ASCII text, with very long lines (58981)
Hash 7ff2574ffb6fc63b8083fdd5e17c5477
080b346c56ee6b5b19918d23595f32d25395bd20
ba1177b8eb3bc2eeab00ba00000549a772b19a5233cd3b3b2a52879ac43caabb
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.min.css?ver=6.0.3 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: text/css
last-modified: Thu, 30 Jun 2022 15:42:19 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 35536
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-content/plugins/sassy-social-share/public/css/sassy-social-share-public.css?ver=3.3.43
91.197.229.41200 OK 2.3 kB URL HTTP/1.1 blog.mackrell.com/wp-content/plugins/sassy-social-share/public/css/sassy-social-share-public.css?ver=3.3.43
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type ASCII text, with very long lines (9700), with no line terminators
Hash c462cb25a858e33bc538bfbfc66a27c2
faa2aff0f5c2ea36dcf5086111cd53c54a8d3eff
786008bef920dd5bf9b4ece90860a7d51d2a21bd86ab79453a9cabd49ee54d78
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sassy-social-share/public/css/sassy-social-share-public.css?ver=3.3.43 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 09:30:52 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2337
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-content/uploads/2022/06/Mackrell-Solicitors-Logo.png
91.197.229.41200 OK 27 kB URL HTTP/2 blog.mackrell.com/wp-content/uploads/2022/06/Mackrell-Solicitors-Logo.png
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type PNG image data, 390 x 270, 8-bit/color RGBA, non-interlaced\012- data
Hash b59e6118918169bf8cebdd102ee4898f
714f9d7007998a76f816dd8bc245c2c9915f6f16
84d1c4253aa63051ebbf9baf85ad1249fee315378cdab39b546204877fad06e4
GET /wp-content/uploads/2022/06/Mackrell-Solicitors-Logo.png HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://blog.mackrell.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: image/png
last-modified: Thu, 30 Jun 2022 15:15:07 GMT
accept-ranges: bytes
content-length: 27448
date: Wed, 23 Nov 2022 21:49:29 GMT
X-Firefox-Spdy: h2
blog.mackrell.com/wp-content/plugins/kingcomposer/assets/css/animate.css?ver=2.9.6
91.197.229.41200 OK 2.8 kB URL HTTP/1.1 blog.mackrell.com/wp-content/plugins/kingcomposer/assets/css/animate.css?ver=2.9.6
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type ASCII text, with very long lines (36512)
Hash c8ceff0ba5ad37dd0e1458e14bc48368
237aecb9c96b717428768067bb43341598e0480e
da3069f356e8197d37aaea5d0ad14e6b846f31fae6972f11919ea10ae02c4637
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/kingcomposer/assets/css/animate.css?ver=2.9.6 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: text/css
last-modified: Thu, 30 Jun 2022 15:33:01 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2811
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.9.6
91.197.229.41200 OK 11 kB URL HTTP/1.1 blog.mackrell.com/wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.9.6
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type ASCII text, with very long lines (35475)
Hash ea2831b8ae41f7c5b06ab7a8956fe23b
d77f4a2971def6f70ea812511b941e3a41d947fc
36e8677b7655f2a072d5e2f60313c919547a0efedc45f3fd95b3e3dbfd7eae2a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.9.6 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: text/css
last-modified: Thu, 30 Jun 2022 15:33:01 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 10623
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-content/themes/mesmerize/assets/css/theme.bundle.min.css?ver=6.0.3
91.197.229.41200 OK 16 kB URL HTTP/1.1 blog.mackrell.com/wp-content/themes/mesmerize/assets/css/theme.bundle.min.css?ver=6.0.3
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type ASCII text, with very long lines (34446)
Hash 53efe1bb1d5cf6f728c1a335ba77fa4d
4d0c53e3853ffe1b772d443aefe500dd9410f8dd
4493444d8219dd42a2d3dbf05b4062821fd96e08ea6e86ddb8cbc0b4f58b4f41
GET /wp-content/themes/mesmerize/assets/css/theme.bundle.min.css?ver=6.0.3 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: text/css
last-modified: Thu, 30 Jun 2022 15:06:15 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 15574
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-content/uploads/2022/06/35-years-logo-1-small.png
91.197.229.41200 OK 21 kB URL HTTP/2 blog.mackrell.com/wp-content/uploads/2022/06/35-years-logo-1-small.png
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type PNG image data, 300 x 104, 8-bit/color RGBA, non-interlaced\012- data
Hash 3e1dc059f58f12ac8f9c82630e393bfa
4602af1fbcfbe3ecab88f723ae2637625f7d7660
798ffa8ec92c39a6e713527afb827ef88a666e5afc735c836abf4c4111a2f75a
GET /wp-content/uploads/2022/06/35-years-logo-1-small.png HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://blog.mackrell.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: image/png
last-modified: Thu, 30 Jun 2022 15:15:15 GMT
accept-ranges: bytes
content-length: 21186
date: Wed, 23 Nov 2022 21:49:29 GMT
X-Firefox-Spdy: h2
blog.mackrell.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
91.197.229.41200 OK 31 kB URL HTTP/1.1 blog.mackrell.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type ASCII text, with very long lines (65447)
Hash 141fb600108e5cdbb4af358f6aeb240f
b4f991f17b786fdec01fb0ac726d407265ebe64a
3365d55bebe1cd8c3ce765c7df5fb4c823236392ba36c978ea64706682e84695
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: application/javascript
last-modified: Thu, 30 Jun 2022 15:40:28 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 30900
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
91.197.229.41200 OK 4.2 kB URL HTTP/1.1 blog.mackrell.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type ASCII text, with very long lines (11126)
Hash 0d5bb2a36d1fc2e095235bc201eb5579
98f0154e2ed5322a9f65077f954868d6c800b337
fe6382620c35c12aa4f3f96fe395e5813defe330c1d95fd3de1e94f8f5d1f0a5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: application/javascript
last-modified: Thu, 30 Jun 2022 15:40:36 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4165
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-content/themes/mtg/js/jquery.js
91.197.229.41200 OK 30 kB URL HTTP/2 blog.mackrell.com/wp-content/themes/mtg/js/jquery.js
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type ASCII text, with very long lines (65447)
Hash 9f255cdf3a953fa1c9b59373a9b9f7c5
68b7ea4f2fe6347147ae5ec52b9fcd5e6fb00896
5be85948572be7888c1f7f6e37981ba846d501489b8f8f11bf44ce6165c97ef2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/mtg/js/jquery.js HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://blog.mackrell.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: application/javascript
last-modified: Tue, 05 Jul 2022 12:49:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 29956
date: Wed, 23 Nov 2022 21:49:29 GMT
X-Firefox-Spdy: h2
blog.mackrell.com/wp-includes/js/thickbox/thickbox.js?ver=3.1-20121105
91.197.229.41200 OK 4.0 kB URL HTTP/1.1 blog.mackrell.com/wp-includes/js/thickbox/thickbox.js?ver=3.1-20121105
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type HTML document, ASCII text, with very long lines (597)
Hash 5767a9b86f9eb227ca245937723afe53
a469442c25397dba2f387790249d85b5492f55b0
3e3473554315ecf81c76a0defa624d4749aa38859283f7511f142f96734ae38e
GET /wp-includes/js/thickbox/thickbox.js?ver=3.1-20121105 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: application/javascript
last-modified: Thu, 30 Jun 2022 15:40:17 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4013
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-content/plugins/fancier-author-box/js/ts-fab.min.js?ver=1.4
91.197.229.41200 OK 263 B URL HTTP/1.1 blog.mackrell.com/wp-content/plugins/fancier-author-box/js/ts-fab.min.js?ver=1.4
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type ASCII text, with very long lines (498), with no line terminators
Hash b803e04d25b8e3c8eb2bc1bd2afbc03a
eaf366db770dfcd0114e3f09e419a62036873551
75aad95f3dd9e95d7bfddafa888e48a0e36b4cbeeb5fea446b53fa20d5c2cf4b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/fancier-author-box/js/ts-fab.min.js?ver=1.4 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: application/javascript
last-modified: Thu, 30 Jun 2022 15:39:25 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 263
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-includes/js/imgareaselect/jquery.imgareaselect.min.js?ver=6.0.3
91.197.229.41200 OK 3.7 kB URL HTTP/1.1 blog.mackrell.com/wp-includes/js/imgareaselect/jquery.imgareaselect.min.js?ver=6.0.3
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type ASCII text, with very long lines (9712), with no line terminators
Hash 4b15ee064a5f0700e2f0d240c8281bd6
a6ce0a88f5476c6cc3f4bd07b3e5af66537eb843
30045d29f0f0662969bf8ca71572618d11af60fa8ddc4fe954eb3ad7c418d694
GET /wp-includes/js/imgareaselect/jquery.imgareaselect.min.js?ver=6.0.3 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: application/javascript
last-modified: Fri, 12 Aug 2022 10:25:24 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3722
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-content/plugins/ultimate-social-media-plus/js/shuffle/modernizr.custom.min.js?ver=6.0.3
91.197.229.41200 OK 1.5 kB URL HTTP/1.1 blog.mackrell.com/wp-content/plugins/ultimate-social-media-plus/js/shuffle/modernizr.custom.min.js?ver=6.0.3
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type HTML document, ASCII text, with very long lines (2861), with CRLF line terminators
Hash 75dd6777e073552ab123892afa1bf65a
7593cd240acb8612a500822ae5ef88d7315a4c57
120f6a768722295053d7f37a5d4b1825b16f8b3a93eaf8257ab472b142b59923
GET /wp-content/plugins/ultimate-social-media-plus/js/shuffle/modernizr.custom.min.js?ver=6.0.3 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: application/javascript
last-modified: Fri, 12 Aug 2022 10:47:48 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1499
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-content/plugins/ultimate-social-media-plus/js/custom.js?ver=3.5.1
91.197.229.41200 OK 7.0 kB URL HTTP/1.1 blog.mackrell.com/wp-content/plugins/ultimate-social-media-plus/js/custom.js?ver=3.5.1
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type Unicode text, UTF-8 text, with very long lines (993), with CRLF line terminators
Hash d9843d94b5cc4eb7f294beb090b494e4
20fe314b89f4bd5f6d6d47bc5fa45b30024730f0
5bac7a9336ac78320c2c6c67919b6af3b0868087933ec2ea55ca4db3c291d9c8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-social-media-plus/js/custom.js?ver=3.5.1 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: application/javascript
last-modified: Fri, 12 Aug 2022 10:47:48 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 7020
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
91.197.229.41200 OK 1.8 kB URL HTTP/1.1 blog.mackrell.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type ASCII text, with very long lines (5477)
Hash 5bc847fcae1a1a6c4b7f79c00d2b7e29
b2237db0dd679c2c8e397e833f04df00d43165e7
bfa7a74e5830c0c26da7ccc50b8e44b401ce1ee8604fceb62e6c1310c47ddb2a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: application/javascript
last-modified: Thu, 30 Jun 2022 15:40:25 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1831
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-includes/js/masonry.min.js?ver=4.2.2
91.197.229.41200 OK 7.4 kB URL HTTP/1.1 blog.mackrell.com/wp-includes/js/masonry.min.js?ver=4.2.2
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type ASCII text, with very long lines (23966)
Hash 6ce3f21f929ba0582a1aebcac0392fe6
b328e3a868d0e515fecd0b9c1fe273ba893d9cc0
7cd5ef9624b8a0425c875c005df78cb5626b23c4a9526b0668ec278cd17e4517
GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: application/javascript
last-modified: Thu, 30 Jun 2022 15:40:14 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 7368
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-content/themes/mesmerize/assets/js/theme.bundle.min.js?ver=6.0.3
91.197.229.41200 OK 23 kB URL HTTP/1.1 blog.mackrell.com/wp-content/themes/mesmerize/assets/js/theme.bundle.min.js?ver=6.0.3
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5298c87906d030e1e9d196ab1fa63c1a
ff4adbed526f16d7c5ce7a961f6cea0d423edca3
2070573ce0d7978aaa1e2f1b6b71847ee76c38af38f6104e934b57830a7561e2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/mesmerize/assets/js/theme.bundle.min.js?ver=6.0.3 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: application/javascript
last-modified: Thu, 30 Jun 2022 15:06:05 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 23024
date: Wed, 23 Nov 2022 21:49:29 GMT
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fb4ee3082622f9f3340432290d63437e
852ca64934462e133e34043fca561aca215e6255
d4c2f665873baede94309128e276df6fdf7f0e1ec15699e75cd6bae2c24d556a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:49:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
blog.mackrell.com/wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.min.js?ver=2.9.6
91.197.229.41200 OK 7.8 kB URL HTTP/1.1 blog.mackrell.com/wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.min.js?ver=2.9.6
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type ASCII text, with very long lines (17655)
Hash ca72763f4016a4cc695708c0fbf688af
459f671247fb821c852519a794e403a696d05bf5
0353cd86b948dc479f5b1eb084910ab016a1b0f1a237eb7652ecd9803da31314
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.min.js?ver=2.9.6 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: application/javascript
last-modified: Thu, 30 Jun 2022 15:33:06 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 7783
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-content/themes/mesmerize/style.css
91.197.229.41200 OK 27 kB URL HTTP/1.1 blog.mackrell.com/wp-content/themes/mesmerize/style.css
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type ASCII text, with very long lines (636)
Hash e8e58d89fe7fff7feabfc350e3664f62
7cc2778d9ea889a196da90df134785a614217856
2c217cd11e949577ab695a040d8a9f5f10d68bf32432eb5c13e0184f7201ae98
GET /wp-content/themes/mesmerize/style.css HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/wp-content/themes/mtg/style.css?ver=6.0.3
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: text/css
last-modified: Thu, 30 Jun 2022 15:05:46 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 26851
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
91.197.229.41200 OK 5.0 kB URL HTTP/1.1 blog.mackrell.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type ASCII text, with very long lines (15660)
Hash bbb097231c0fb01c0d2f6b36ed6671f8
c816b9446535131259db1107069b5096354f993b
aca781b166c02a50a9de1f82c51f0ebbd808b59e58e6dfe5f29ae84c881926c5
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: application/javascript
last-modified: Fri, 12 Aug 2022 10:25:17 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4963
date: Wed, 23 Nov 2022 21:49:29 GMT
www.googletagmanager.com/gtag/js?id=UA-27425782-2
142.250.74.168200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-27425782-2
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 53abc64e842ebcbf3ac1b70ba9a44fed
e2ac52ecfc8ac6ea4bff31d245ff80f2919352e0
64a75d88a6a0394234d44ece8e122c991ab1a60beadaa23d0b2c2631a31394e6
GET /gtag/js?id=UA-27425782-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://blog.mackrell.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:49:30 GMT
expires: Wed, 23 Nov 2022 21:49:30 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44738
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fb4ee3082622f9f3340432290d63437e
852ca64934462e133e34043fca561aca215e6255
d4c2f665873baede94309128e276df6fdf7f0e1ec15699e75cd6bae2c24d556a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:49:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash eb52164d651f5f45416e873aec29eb04
405b29bb7e7cd4367cf82988f8603e53db65f139
ed885e05db822ff30fe951e10b6d4f21e574d053939afca792992a1549a15301
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6282
Cache-Control: max-age=133325
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:49:30 GMT
Etag: "637de2ad-1d7"
Expires: Fri, 25 Nov 2022 10:51:35 GMT
Last-Modified: Wed, 23 Nov 2022 09:06:53 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 065495ec7a963a205abd9c8dbc75cb5d
ea416d0df4f6706150bda5da2077174f5cdd986b
1b2a2afee887651b23a849f14ace89b330329f6bf61c331545a3f6d12037aee5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:49:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
blog.mackrell.com/wp-content/plugins/kingcomposer/assets/css/fonts/fa-solid-900.woff2
91.197.229.41200 OK 44 kB URL HTTP/1.1 blog.mackrell.com/wp-content/plugins/kingcomposer/assets/css/fonts/fa-solid-900.woff2
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type Web Open Font Format (Version 2), TrueType, length 44068, version 1.0\012- data
Hash 84f351b3972185aed620f78489e48b2d
27c88aea3904d48cde4c8cd6fa85a414b547feea
cb7aa6b06aa5a8eea3670662c4b0c37104041c14575fc170dc48677a0506a33a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/kingcomposer/assets/css/fonts/fa-solid-900.woff2 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://blog.mackrell.com/wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.9.6
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: font/woff2
last-modified: Thu, 30 Jun 2022 15:32:59 GMT
accept-ranges: bytes
content-length: 44068
date: Wed, 23 Nov 2022 21:49:30 GMT
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 23 Nov 2022 21:11:11 GMT
cache-control: public,max-age=3600
age: 2299
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 065495ec7a963a205abd9c8dbc75cb5d
ea416d0df4f6706150bda5da2077174f5cdd986b
1b2a2afee887651b23a849f14ace89b330329f6bf61c331545a3f6d12037aee5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:49:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
blog.mackrell.com/wp-content/themes/mesmerize/assets/fonts/fontawesome-webfont.woff2?v=4.7.0
91.197.229.41200 OK 77 kB URL HTTP/1.1 blog.mackrell.com/wp-content/themes/mesmerize/assets/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/mesmerize/assets/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://blog.mackrell.com/wp-content/themes/mesmerize/assets/css/theme.bundle.min.css?ver=6.0.3
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: font/woff2
last-modified: Thu, 30 Jun 2022 15:06:07 GMT
accept-ranges: bytes
content-length: 77160
date: Wed, 23 Nov 2022 21:49:30 GMT
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f22437494cab8f3b1de6d48c3677f43
42461557365b59e300ae356c37b95f652e10dacd
420bc8cc7c6624d9201c6e12fb6478f4a9cf77e90aad033b4d12687968003ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:49:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f22437494cab8f3b1de6d48c3677f43
42461557365b59e300ae356c37b95f652e10dacd
420bc8cc7c6624d9201c6e12fb6478f4a9cf77e90aad033b4d12687968003ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:49:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://blog.mackrell.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 05:42:51 GMT
expires: Fri, 17 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 576399
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f22437494cab8f3b1de6d48c3677f43
42461557365b59e300ae356c37b95f652e10dacd
420bc8cc7c6624d9201c6e12fb6478f4a9cf77e90aad033b4d12687968003ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:49:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/muli/v28/7Auwp_0qiz-afTLGLQ.woff2
216.58.207.195200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/muli/v28/7Auwp_0qiz-afTLGLQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 31196, version 1.0\012- data
Hash ea2343c7dccad57360fb611d67204445
b603d9e68bb1ed5e4b33d5e31121160cb4d23452
2a04078f9550381b5148170ceaf5b378a1b31ed8274c6d0094aeba6f599462cc
GET /s/muli/v28/7Auwp_0qiz-afTLGLQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://blog.mackrell.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31196
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 06:19:58 GMT
expires: Fri, 17 Nov 2023 06:19:58 GMT
cache-control: public, max-age=31536000
age: 574172
last-modified: Mon, 11 Jul 2022 20:43:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.164.183.116101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.164.183.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2Ah/cymLSyKzAfLJkONbUA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: iZOyG6NGsRv0vSnZfpDT907PnVc=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f22437494cab8f3b1de6d48c3677f43
42461557365b59e300ae356c37b95f652e10dacd
420bc8cc7c6624d9201c6e12fb6478f4a9cf77e90aad033b4d12687968003ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:49:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
blog.mackrell.com/wp-includes/js/thickbox/loadingAnimation.gif
91.197.229.41200 OK 15 kB URL HTTP/1.1 blog.mackrell.com/wp-includes/js/thickbox/loadingAnimation.gif
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
File type GIF image data, version 89a, 416 x 26\012- data
Hash ce2268030dd2151b63cdf4ffc2f626ba
15280f21eb43f5fa7838dcf011f67d79e301b15f
6a486bb6036ea984d293ab009566e99e522abc19f8833c5fd49630be7eba0135
GET /wp-includes/js/thickbox/loadingAnimation.gif HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:30 GMT
content-type: image/gif
last-modified: Thu, 30 Jun 2022 15:40:17 GMT
accept-ranges: bytes
content-length: 15238
date: Wed, 23 Nov 2022 21:49:30 GMT
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://blog.mackrell.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 23 Nov 2022 20:41:08 GMT
expires: Wed, 23 Nov 2022 22:41:08 GMT
cache-control: public, max-age=7200
age: 4102
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-KJ2GVRP159>m=2oeb90&_p=1100716389&cid=433684298.1669240171&ul=en-us&sr=1280x1024&_s=1&sid=1669240170&sct=1&seg=0&dl=http%3A%2F%2Fblog.mackrell.com%2F&dt=Blog%20-&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-KJ2GVRP159>m=2oeb90&_p=1100716389&cid=433684298.1669240171&ul=en-us&sr=1280x1024&_s=1&sid=1669240170&sct=1&seg=0&dl=http%3A%2F%2Fblog.mackrell.com%2F&dt=Blog%20-&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-KJ2GVRP159>m=2oeb90&_p=1100716389&cid=433684298.1669240171&ul=en-us&sr=1280x1024&_s=1&sid=1669240170&sct=1&seg=0&dl=http%3A%2F%2Fblog.mackrell.com%2F&dt=Blog%20-&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://blog.mackrell.com
Connection: keep-alive
Referer: http://blog.mackrell.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://blog.mackrell.com
date: Wed, 23 Nov 2022 21:49:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.249200 OK 503 B IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15064
Expires: Thu, 24 Nov 2022 02:00:36 GMT
Date: Wed, 23 Nov 2022 21:49:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.249200 OK 503 B IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15064
Expires: Thu, 24 Nov 2022 02:00:36 GMT
Date: Wed, 23 Nov 2022 21:49:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.249200 OK 503 B IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15064
Expires: Thu, 24 Nov 2022 02:00:36 GMT
Date: Wed, 23 Nov 2022 21:49:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.249200 OK 503 B IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15064
Expires: Thu, 24 Nov 2022 02:00:36 GMT
Date: Wed, 23 Nov 2022 21:49:32 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dea5eab-be63-42c8-bad6-cf6b625f2084.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dea5eab-be63-42c8-bad6-cf6b625f2084.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c3297aead753caaa06187c966d295823
d1ae75ccf04fa5f66f9ee88ac46014dd0d6f7008
8d7e1670c95439219e8a4af3c306b4ce50a6d8efeb00fc10709bf5981a00c753
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dea5eab-be63-42c8-bad6-cf6b625f2084.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7632
x-amzn-requestid: ce38bd20-c727-4c33-a339-a9f5eebd8b36
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsFr9IAMFWbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-5aab88d66bbda34b06fa9c12;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0kj1HVlBauqyBnerS11-Id1e_P2fBM7wpDs2bpc9pjR0UNiB8rlwHw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:44:50 GMT
etag: "d1ae75ccf04fa5f66f9ee88ac46014dd0d6f7008"
content-type: image/jpeg
age: 282
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F004aa6ae-7a76-4671-acda-0f0a01e41292.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F004aa6ae-7a76-4671-acda-0f0a01e41292.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cfb61d1d2a4d3e62e410c926cfa4a1ab
5c3f269cd16e9dd6bbb2e32efd46a4b2599ca436
4297b6c45e7dca6f841ae56da1040e1287f2e70c98e5f7fc674a674b59ebc7a2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F004aa6ae-7a76-4671-acda-0f0a01e41292.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8702
x-amzn-requestid: 9687d5fa-c9f8-4afc-8278-0f0c12b28329
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvx9FQ4oAMFWmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e933f-397fca41442c0d7309395e4b;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4cgRxjx6TQRxl4FIKsjrBPDZmhoDgbG72UAMRUnxZBUqV7yCfj3PyQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:44:50 GMT
age: 282
etag: "5c3f269cd16e9dd6bbb2e32efd46a4b2599ca436"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg
34.120.237.76200 OK 23 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg
IP 34.120.237.76:0
Hash 5351ce59ec070eb978600ea700d7e62b
6be7eb925aff2f90be815a0fa7ef19ba111cdc8a
b639164189400e85b8b8ebf0da96eaea4722bff284436bc0765b0d50f7ff4748
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7589
x-amzn-requestid: 533d7650-cb21-4090-a50a-e205adad316d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: brr5zH4qoAMF79Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63748d0b-017f7bf4390eb124097af648;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 07:11:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: nwXP5jm9A2Cl3_-Lm194ycXkeClig1L9hwgUgE8i8NF-Vv2gNfj_4Q==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 15:14:08 GMT
age: 23724
etag: "22884cbc78622d6f78c1c3397c9b440946144a99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb020826f-fdb4-41cc-b94d-7a66bca91753.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb020826f-fdb4-41cc-b94d-7a66bca91753.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dd3f1be747f6b2f1c35afb01db67b792
a4373037b8b379939b1b099c3ef63f8792e67579
fdbd778a505e1928e9b5296b6150763c2dca9876ec0ef8f772e73ca386ab74d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb020826f-fdb4-41cc-b94d-7a66bca91753.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8441
x-amzn-requestid: c050c897-c6d4-44ef-93c2-cfbf32cd8bff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvClG-AoAMFwxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9210-039834877c2b792b5feb6819;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H31vJjvBF3eWF37DqfsaL-KxOnEHJS1JSmehtTYPhzjZjj-PIhm9pQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:43:25 GMT
age: 367
etag: "a4373037b8b379939b1b099c3ef63f8792e67579"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18708671-8ed1-458b-a0a3-fba50832ecb7.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18708671-8ed1-458b-a0a3-fba50832ecb7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash af618f978f520f4f15acd660f5e91ad4
fcbe3938574e2a3b0d303b7464ae6f414d7dc356
6f8c21090c99c98e8ae89f60b1cf1cd882194dc83db96808a0b5bd553ece8a56
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18708671-8ed1-458b-a0a3-fba50832ecb7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9119
x-amzn-requestid: 0321de47-3dae-4ad5-86e7-fd766326c6c8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvClGQWoAMFWqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9210-5bc883d93cedf8ec36517fe3;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gvEmzs6OvdD0s03wFTgS0RYBkikZ9VHk0eOArDVQwZ1vNSMBcJ97mQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:44:50 GMT
etag: "fcbe3938574e2a3b0d303b7464ae6f414d7dc356"
content-type: image/jpeg
age: 282
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F65d6aa89-922d-4c2b-9601-956358f8ac22.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F65d6aa89-922d-4c2b-9601-956358f8ac22.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1234c13159d1531a698ece38a3bd7ff6
6bd60504d4450a090e6f82d15f2f28b371e4dfcc
488a827d4d2074371860dd556b3611c56a19502d3348e0a7d35c4f7556f63b3a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F65d6aa89-922d-4c2b-9601-956358f8ac22.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11969
x-amzn-requestid: e7ab6bb2-9bc5-4862-901b-32f18322db46
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwBJFkUoAMFRFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e93a0-56d902c0481eef0932dad57c;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:41:52 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zluh8EkvyvbxVT_lmb1uh3eLph9eMUrsuLlwPYAOmP9-sWAhGyxeMw==
via: 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:44:50 GMT
age: 282
etag: "6bd60504d4450a090e6f82d15f2f28b371e4dfcc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
blog.mackrell.com/wp-content/plugins/kingcomposer/assets/frontend/css/kingcomposer.min.css?ver=2.9.6
91.197.229.41200 OK 0 B URL HTTP/1.1 blog.mackrell.com/wp-content/plugins/kingcomposer/assets/frontend/css/kingcomposer.min.css?ver=2.9.6
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/kingcomposer/assets/frontend/css/kingcomposer.min.css?ver=2.9.6 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: text/css
last-modified: Thu, 30 Jun 2022 15:33:06 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 12408
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
91.197.229.41200 OK 0 B URL HTTP/1.1 blog.mackrell.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: application/javascript
last-modified: Fri, 12 Aug 2022 10:25:23 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 6897
date: Wed, 23 Nov 2022 21:49:29 GMT
blog.mackrell.com/wp-content/plugins/sassy-social-share/public/js/sassy-social-share-public.js?ver=3.3.43
91.197.229.41200 OK 0 B URL HTTP/1.1 blog.mackrell.com/wp-content/plugins/sassy-social-share/public/js/sassy-social-share-public.js?ver=3.3.43
IP 91.197.229.41:0
ASN #29017 NTT Global Data Centers EMEA UK Ltd.
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sassy-social-share/public/js/sassy-social-share-public.js?ver=3.3.43 HTTP/1.1
Host: blog.mackrell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blog.mackrell.com/
Cookie: PHPSESSID=597fa8900229cefe1e9257dd4c942a07
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:49:29 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 09:30:52 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 39795
date: Wed, 23 Nov 2022 21:49:29 GMT
fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700%7CMuli%3A300%2C300italic%2C400%2C400italic%2C600%2C600italic%2C700%2C700italic%2C900%2C900italic%7CPlayfair+Display%3A400%2C400italic%2C700%2C700italic&subset=latin%2Clatin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700%7CMuli%3A300%2C300italic%2C400%2C400italic%2C600%2C600italic%2C700%2C700italic%2C900%2C900italic%7CPlayfair+Display%3A400%2C400italic%2C700%2C700italic&subset=latin%2Clatin-ext
IP 142.250.74.10:0
GET /css?family=Open+Sans%3A300%2C400%2C600%2C700%7CMuli%3A300%2C300italic%2C400%2C400italic%2C600%2C600italic%2C700%2C700italic%2C900%2C900italic%7CPlayfair+Display%3A400%2C400italic%2C700%2C700italic&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://blog.mackrell.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 23 Nov 2022 21:49:30 GMT
date: Wed, 23 Nov 2022 21:49:30 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2