finesttouchpaintings.com/
216.172.184.134302 Found 217 B URL HTTP/1.1 finesttouchpaintings.com/
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2fe5423345e45c9aa2012aba886854aa
95da81660b6ccd9c97f1cfad518fe3f0db02c90c
a1a4d756a5d221b3d0ceca4ad794270a83be10d5c091e7a6350120029f8b2261
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Sat, 03 Dec 2022 09:58:18 GMT
Server: Apache
Location: https://finesttouchpaintings.com/
Cache-Control: max-age=0
Expires: Sat, 03 Dec 2022 09:58:18 GMT
Content-Length: 217
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4542
Expires: Sat, 03 Dec 2022 11:14:00 GMT
Date: Sat, 03 Dec 2022 09:58:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10658
Expires: Sat, 03 Dec 2022 12:55:56 GMT
Date: Sat, 03 Dec 2022 09:58:18 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7439fb99a444b66db1e68ffbfaa38451
4b7742d7956485906f1c392c478515ff89a46184
636327ce88f733e5a1d39af212f97242717a39ce20edaef330fafea238e3a309
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1577
Cache-Control: max-age=89954
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:58:18 GMT
Etag: "6389d3f3-1d7"
Expires: Sun, 04 Dec 2022 10:57:32 GMT
Last-Modified: Fri, 02 Dec 2022 10:31:15 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: miwmOTzsPvR2+kPL+CFh6KUAODhEXDygRFazg1TkUTNyDe1/Z+nKPxX/PAyZk1fecFapSGHlRqQ=
x-amz-request-id: 01KZC29XM5P00JQP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 09:47:04 GMT
age: 674
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 09:18:15 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2403
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:58:18 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 09:08:58 GMT
cache-control: public,max-age=3600
age: 2961
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3d6699d1eb694ee02e0917d29af5631e
425543ea3d8c18f6902a1d04f19cef8b94732eba
2f247f5e961fc9a1423e38df93c0c65f7317722db8491db6d7231b24a3dc2ff5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2F247F5E961FC9A1423E38DF93C0C65F7317722DB8491DB6D7231B24A3DC2FF5"
Last-Modified: Fri, 02 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21597
Expires: Sat, 03 Dec 2022 15:58:16 GMT
Date: Sat, 03 Dec 2022 09:58:19 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a151c326c67e1abb747847c1427db76f
80885d30ef8ba867bf33c40b861976958a27493a
de2b573ee1c8af980e593352e0c331b2595f62bd4499300ace30821d20814760
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2222
Cache-Control: max-age=171934
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:58:19 GMT
Etag: "638b11ab-1d7"
Expires: Mon, 05 Dec 2022 09:43:53 GMT
Last-Modified: Sat, 03 Dec 2022 09:06:51 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
finesttouchpaintings.com/
216.172.184.134200 OK 24 kB URL HTTP/2 finesttouchpaintings.com/
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (9381), with CRLF, LF line terminators
Hash 3d0bec2c9e875ace5b797c97b5b4768e
85aae2b5ec8de0fd887d5d6caf1b119c33211a67
01c0044515d2843fdf1f0dd4a26c7e205262674212e33186761ee4902f2e5e63
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Fri, 02 Dec 2022 23:45:41 GMT
accept-ranges: bytes
content-length: 23695
cache-control: max-age=0
expires: Sat, 03 Dec 2022 09:58:19 GMT
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash e63a3fb1ef1a4ebbbd126969d6ee68ca
8bc9c26950b3899087e25ddea159c28f57b47200
f2ec30377e239f64286ae7dde8032e4e332b6c123f7decc07126fbbcff460a69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:58:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-86100514-1
142.250.74.40200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-86100514-1
IP 142.250.74.40:0
File type ASCII text, with very long lines (1921)
Hash 98b8deeefdef3e3f4ad72c066ea26fde
f7055c00cb718de32be8948c9708f24e718d191d
00e3215a124e1b4002f9c035fa8d853e081150748d3cf793ba65f2253b7cfbfe
GET /gtag/js?id=UA-86100514-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 03 Dec 2022 09:58:19 GMT
expires: Sat, 03 Dec 2022 09:58:19 GMT
cache-control: private, max-age=900
last-modified: Sat, 03 Dec 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43654
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-includes/css/classic-themes.min.css?ver=1
216.172.184.134200 OK 189 B URL HTTP/2 finesttouchpaintings.com/wp-includes/css/classic-themes.min.css?ver=1
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 26 Oct 2022 00:15:16 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 189
content-type: text/css; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
216.172.184.134200 OK 1.3 kB URL HTTP/2 finesttouchpaintings.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4186), with no line terminators
Hash 91bab39b98d7e5c1632717b9ebe349e4
e639a447d06fc7827be5b5b35d603ff16b5f7bb1
47ff151faeb23a5654f6ec58b404e51193f6714849a69de241c2ee79662f74c6
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sat, 08 Jun 2019 07:15:02 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 1298
content-type: text/css; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/uploads/bb-plugin/cache/515-layout.css?ver=2da4e1344ae599568cbb5833c76a2732
216.172.184.134200 OK 6.2 kB URL HTTP/2 finesttouchpaintings.com/wp-content/uploads/bb-plugin/cache/515-layout.css?ver=2da4e1344ae599568cbb5833c76a2732
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (28336), with no line terminators
Hash 307613e5af42de9ffa5885cc15d23432
74fbedf11f869c65f93710138db7c03deaaa6967
e8f82a0d193bae0e13e186d5cf78713aaf0a8e4e1730dca85f065da552995326
GET /wp-content/uploads/bb-plugin/cache/515-layout.css?ver=2da4e1344ae599568cbb5833c76a2732 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 01 Jun 2022 18:21:25 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 6195
content-type: text/css; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
216.172.184.134200 OK 3.2 kB URL HTTP/2 finesttouchpaintings.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11256), with no line terminators
Hash 1054d0d53548e8bae51665b11acc6413
2eea6a05fe18db61fff58c431d34a86b3e0b7ade
cb8b0f0f3f871d9776da32ee6d9e1af9277a211be61e97a831c7f8c98fbebfae
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 30 Sep 2020 02:23:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 3239
content-type: text/css; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/themes/athena/style.css?ver=6.1.1
216.172.184.134200 OK 5.4 kB URL HTTP/2 finesttouchpaintings.com/wp-content/themes/athena/style.css?ver=6.1.1
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (829), with CRLF line terminators
Hash d23e207dbb87a9b2111bca72ba5b53a4
4a0dca85d4ebba086c2bae6521cf914e4fd62a00
535467f2a1737ff59213c0f04261f8f9bea956d597b804777a531b275aacd640
GET /wp-content/themes/athena/style.css?ver=6.1.1 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Dec 2018 03:50:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 5390
content-type: text/css; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/plugins/simple-full-screen-background-image/includes/fullscreen-image.css?ver=6.1.1
216.172.184.134200 OK 257 B URL HTTP/2 finesttouchpaintings.com/wp-content/plugins/simple-full-screen-background-image/includes/fullscreen-image.css?ver=6.1.1
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 6e348589a0ad6a9126170917c5b22668
7bdabfb89b55999b0a8b251f6110c76bb2ec8fcc
d5997169b171fc220726302f74c685f32744f79603f8bbc49a8cf3cebf01232b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/simple-full-screen-background-image/includes/fullscreen-image.css?ver=6.1.1 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 14 Oct 2021 03:51:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 257
content-type: text/css; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash e63a3fb1ef1a4ebbbd126969d6ee68ca
8bc9c26950b3899087e25ddea159c28f57b47200
f2ec30377e239f64286ae7dde8032e4e332b6c123f7decc07126fbbcff460a69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:58:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
35.164.56.167101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.164.56.167:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Qzol/HvQ9a52y2HUlrYZcQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: mNSQduCqRwPgBLRSxYDtmWv/aMY=
finesttouchpaintings.com/wp-content/plugins/wp-customer-reviews/css/wp-customer-reviews.css?ver=3.6.5
216.172.184.134200 OK 2.6 kB URL HTTP/2 finesttouchpaintings.com/wp-content/plugins/wp-customer-reviews/css/wp-customer-reviews.css?ver=3.6.5
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash e94e7e1d117c7040e776491ef17d2e93
c68b92f3b0ccb0a3e8344ed03996ea38c0410010
7791621c36ae1cc200e76ac04d043a513b31f4c933b51b2ee94922edf917e3f4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-customer-reviews/css/wp-customer-reviews.css?ver=3.6.5 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 20 Oct 2021 22:56:32 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 2645
content-type: text/css; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/themes/athena/inc/css/bootstrap-theme.min.css?ver=1.2.3
216.172.184.134200 OK 2.2 kB URL HTTP/2 finesttouchpaintings.com/wp-content/themes/athena/inc/css/bootstrap-theme.min.css?ver=1.2.3
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (13183), with CRLF line terminators
Hash 1c0315206fe59e51ad2e7a568339e562
9898dc42864ddd2a289d8016a0d76dde5420e8d4
8c214cbfda9a9b0860c8acec1e9587e02e72a29f6d5dce09a174411a9d5a27ef
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/athena/inc/css/bootstrap-theme.min.css?ver=1.2.3 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Dec 2018 03:50:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 2246
content-type: text/css; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/themes/athena/inc/css/bootstrap.css?ver=1.2.3
216.172.184.134200 OK 6.4 kB URL HTTP/2 finesttouchpaintings.com/wp-content/themes/athena/inc/css/bootstrap.css?ver=1.2.3
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (540), with CRLF line terminators
Hash afe318b357a2e255d6467cf5c1534a8d
049bab8b0de8e5e7ebfc9ee0d49294d0e12c614e
9b06e0b5b715b1e694b4735a195b413e42826baea794fe9541126f20895bbc38
GET /wp-content/themes/athena/inc/css/bootstrap.css?ver=1.2.3 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Dec 2018 03:50:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 6372
content-type: text/css; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/plugins/squirrly-seo/view/assets/css/frontend.min.css?ver=12.1.14
216.172.184.134200 OK 657 B URL HTTP/2 finesttouchpaintings.com/wp-content/plugins/squirrly-seo/view/assets/css/frontend.min.css?ver=12.1.14
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1561), with no line terminators
Hash d6948f6db898a5f55f14eb7c7bbeb6cb
d19b87ad7b146646200e56ac1f6686328626bfe1
8f7a9d64958dfb72636ec0880f1fb9f59541e4a086ab5c35fb888037a14b1524
GET /wp-content/plugins/squirrly-seo/view/assets/css/frontend.min.css?ver=12.1.14 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 16 Jun 2022 16:00:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 657
content-type: text/css; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/themes/athena/inc/css/style.css?ver=1.2.3
216.172.184.134200 OK 5.8 kB URL HTTP/2 finesttouchpaintings.com/wp-content/themes/athena/inc/css/style.css?ver=1.2.3
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type assembler source, ASCII text, with CRLF line terminators
Hash d46886cceb582cd1a37b5376747ca5f2
5140bc0154542b923ac06bad9987097f403882d0
a212627d23146180750d021eb818051aff9d56b19fd81c3e05fcc7ec9b8ba95a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/athena/inc/css/style.css?ver=1.2.3 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Dec 2018 03:50:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 5787
content-type: text/css; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/plugins/footer-putter/styles/footer-credits.css?ver=1.17
216.172.184.134200 OK 989 B URL HTTP/2 finesttouchpaintings.com/wp-content/plugins/footer-putter/styles/footer-credits.css?ver=1.17
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 956a17133494e9be0f39a2c480aebc21
b1d6b1a67a81994b3aad55ccc1445fad35f27527
8b0161a1df496ab0a7953dba6048c47b69324e9da96aa259b0546e7ac642595c
GET /wp-content/plugins/footer-putter/styles/footer-credits.css?ver=1.17 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 12 Mar 2021 03:48:01 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 989
content-type: text/css; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
216.172.184.134200 OK 4.6 kB URL HTTP/2 finesttouchpaintings.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 18 Nov 2020 20:36:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 4618
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
216.172.184.134200 OK 8.3 kB URL HTTP/2 finesttouchpaintings.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 838560e989767f2ef5951b9eeee20352
6bf8419cb4d68d9beced9e4b79b22b347ae16a46
72e6d275c5229613a59aef94523fc6a96330553976aee003d8544d5806fa0c3d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sat, 24 Sep 2022 06:25:30 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 8344
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/plugins/wp-customer-reviews/js/wp-customer-reviews.js?ver=3.6.5
216.172.184.134200 OK 2.6 kB URL HTTP/2 finesttouchpaintings.com/wp-content/plugins/wp-customer-reviews/js/wp-customer-reviews.js?ver=3.6.5
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash fe2c16f47a2d15d5f4a4b0066782e482
d437f57ecd167002483921764105ea1dcd2b7727
96d4af561f607bfac439de7057c4b4f51b5eb0e01ab403e57cdd8a826b227439
GET /wp-content/plugins/wp-customer-reviews/js/wp-customer-reviews.js?ver=3.6.5 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 23 Apr 2021 09:48:18 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 2595
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-includes/js/imagesloaded.min.js?ver=6.1.1
216.172.184.134200 OK 2.1 kB URL HTTP/2 finesttouchpaintings.com/wp-includes/js/imagesloaded.min.js?ver=6.1.1
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5477)
Hash f0bd7ad12acdee26cbb2701c1ba3610b
53c5d15129860868b60b74cb010b2c6050a64f69
e6d0cb19e56d22e8e511c23ca2bd233bedb40e3c7cf4ff38fe6f059bc7e0c64f
GET /wp-includes/js/imagesloaded.min.js?ver=6.1.1 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 14 Jun 2020 05:23:28 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 2103
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/themes/athena/js/skip-link-focus-fix.js?ver=20130115
216.172.184.134200 OK 492 B URL HTTP/2 finesttouchpaintings.com/wp-content/themes/athena/js/skip-link-focus-fix.js?ver=20130115
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 41f15c922b45ea70f477ea0d675dc4c2
a012f75ed34c31806c78caa22479ea9fe359be39
fe2925a087bbae536036b5d7c17581ae825c8951d7b25fec047163c1d9d96817
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/athena/js/skip-link-focus-fix.js?ver=20130115 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Dec 2018 03:50:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 492
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
216.172.184.134200 OK 724 B URL HTTP/2 finesttouchpaintings.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1626)
Hash e1b8f48388e00a715d3fe1f64ea15476
3ea75fd181dd3630bd8765a2b67f23d6da39edbf
87f4466dda6ad8e1c9aa26ef27e28b3b74ac40327d8daf4a7cf994e5b7893718
GET /wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 19 Aug 2016 05:25:30 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 724
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/themes/athena/inc/js/easing.js?ver=1.2.3
216.172.184.134200 OK 2.8 kB URL HTTP/2 finesttouchpaintings.com/wp-content/themes/athena/inc/js/easing.js?ver=1.2.3
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 67a9c13b6f4d7cae42183eb023408db4
8ddb656ccf578bd01bb4dc05b68c86bb30f1a2ac
cac07485580418d0c8ce6f6510ff5ecdd5b4559eebf9441d95b231359bf6a3bb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/athena/inc/js/easing.js?ver=1.2.3 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Dec 2018 03:50:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 2768
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/themes/athena/inc/css/animate.css?ver=1.2.3
216.172.184.134200 OK 7.8 kB URL HTTP/2 finesttouchpaintings.com/wp-content/themes/athena/inc/css/animate.css?ver=1.2.3
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash d422caf72ad5cd1e9b6d2a5edcde9eff
4a8977273ff92e2bf55fd4bbaf45fa0ad32e2d32
a1a9d2a50a1a50e47f779598c1ba134e66ffe324e3a8c65a0e189bdd16499540
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/athena/inc/css/animate.css?ver=1.2.3 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Dec 2018 03:50:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 7789
content-type: text/css; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/plugins/exactmetrics-premium/assets/js/frontend-gtag.min.js?ver=7.5.3
216.172.184.134200 OK 3.8 kB URL HTTP/2 finesttouchpaintings.com/wp-content/plugins/exactmetrics-premium/assets/js/frontend-gtag.min.js?ver=7.5.3
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1571)
Hash f2694bc14d8b63a7d406f4400b74cca4
eb87c041943667f69b6dc73b1ca12370fff38fb0
28baa20440db143848726898dac1510692b768c9086b97f637cde74db6e96a2a
GET /wp-content/plugins/exactmetrics-premium/assets/js/frontend-gtag.min.js?ver=7.5.3 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 24 May 2022 23:04:25 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 3848
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/themes/athena/inc/css/camera.css?ver=1.2.3
216.172.184.134200 OK 3.7 kB URL HTTP/2 finesttouchpaintings.com/wp-content/themes/athena/inc/css/camera.css?ver=1.2.3
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 0f432205897c0d0f4bbcebd248ad181b
7fa86e7b60db1cb443a0e2c70832fd107a24e2b1
382f31f9eb9345dc353ea51c09ff4d85becebd8338ce7f0f01784a18a7fe16a2
GET /wp-content/themes/athena/inc/css/camera.css?ver=1.2.3 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Dec 2018 03:50:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 3727
content-type: text/css; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/themes/athena/inc/js/wow.js?ver=1.2.3
216.172.184.134200 OK 4.8 kB URL HTTP/2 finesttouchpaintings.com/wp-content/themes/athena/inc/js/wow.js?ver=1.2.3
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 716edcea5c0aeef14871e29b1ad52b92
3c63feba87930e7b7b80e88f031a88d4802b4680
f9cb8cadb3c8589c25b9df3c38745a6b8d85aa80278d5010a4f03bd142ea85de
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/athena/inc/js/wow.js?ver=1.2.3 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Dec 2018 03:50:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 4767
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/themes/athena/inc/css/slicknav.min.css?ver=1.2.3
216.172.184.134200 OK 810 B URL HTTP/2 finesttouchpaintings.com/wp-content/themes/athena/inc/css/slicknav.min.css?ver=1.2.3
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2263), with CRLF line terminators
Hash 548a42761db7a581dd5db6de9d5a7f5c
e9c9cbb56d6b5b22ae469fcdbf744523be732e94
c34d426cda443f60ee3d7076072d8dea54df812d8670e0a6bc8c2905e86d2114
GET /wp-content/themes/athena/inc/css/slicknav.min.css?ver=1.2.3 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Dec 2018 03:50:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 810
content-type: text/css; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
216.172.184.134200 OK 483 B URL HTTP/2 finesttouchpaintings.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (906), with no line terminators
Hash 961b384bf5b28ac673051be024563f79
606ebba9fa8aec74cf413098b084500c8b16b85c
a9c17b0e5a9c12428c6ed8d0c4622ddbae112a9ac19bccf451f125972cd91935
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 21 Jan 2021 01:05:18 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 483
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/themes/athena/inc/css/font-awesome.css?ver=1.2.3
216.172.184.134200 OK 6.5 kB URL HTTP/2 finesttouchpaintings.com/wp-content/themes/athena/inc/css/font-awesome.css?ver=1.2.3
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type troff or preprocessor input, ASCII text, with very long lines (372), with CRLF line terminators
Hash 250cd6dd3f4166d2e53163c12a879ba5
85928e0d8a904f911f7fead1b2cb9fd563273a9a
f4e8a7e38008109516e4ae1865e8111c16e7b4e669bc294c57c82ea1b8aa4a7f
GET /wp-content/themes/athena/inc/css/font-awesome.css?ver=1.2.3 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Dec 2018 03:50:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 6490
content-type: text/css; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
216.172.184.134200 OK 540 B URL HTTP/2 finesttouchpaintings.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1191), with no line terminators
Hash cea5e0013ee4b14895dc0f6c424a03e8
b21c776891ff57c003b385a1aa62ba613b292a21
1cfe89d6aa36aea0e986e379590ab23877257e8416764d18105d1176dfcd64d9
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sat, 09 Apr 2022 06:37:18 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 540
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/themes/athena/inc/css/temps/darkblue.css?ver=1.2.3
216.172.184.134200 OK 710 B URL HTTP/2 finesttouchpaintings.com/wp-content/themes/athena/inc/css/temps/darkblue.css?ver=1.2.3
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 0eef0f1192520e9c7a300071ae4e3417
6e02c8a386a7b87925e2a1cd5c5cc0f4a7d2febd
b6a01e7a99dacc8edb1a8be634c6c7cb16024f63f9fc6b58cc15aa582dd27807
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/athena/inc/css/temps/darkblue.css?ver=1.2.3 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Dec 2018 03:50:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 710
content-type: text/css; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17
216.172.184.134200 OK 2.5 kB URL HTTP/2 finesttouchpaintings.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6194)
Hash d77a0126770eafbb316b8ea63c2bed62
f58933f1067cb63a0ba8d06e307359f4f7e872db
a590f58cb484c440b3b5835b7f4cc5d0ed4dd9af0805053cf318044e375766b8
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 30 Sep 2020 02:23:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 2528
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.12.4
216.172.184.134200 OK 4.0 kB URL HTTP/2 finesttouchpaintings.com/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.12.4
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7874)
Hash 084ee597d9c96fbe362d18cea4fd0ccc
d9737fc0a725b654dbb6ed445a8a752156bf8849
727e817f449359cd310ba42651dc44b2194bd9f3838f2febd855307da5feba0d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.12.4 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 18 Nov 2022 01:02:30 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 3989
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-includes/js/masonry.min.js?ver=4.2.2
216.172.184.134200 OK 9.2 kB URL HTTP/2 finesttouchpaintings.com/wp-includes/js/masonry.min.js?ver=4.2.2
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (23966)
Hash 2a730dafa34e6ff81513d31e486cdbdb
1fce17d256f67ae086d74092a03006997d9b0add
7a5fd36a453a3a7471fa93b8169579f9a98e2df7a262c44d28d3de41a0f7ae1c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sun, 14 Jun 2020 05:23:28 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 9216
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/themes/athena/inc/js/script.js?ver=1.2.3
216.172.184.134200 OK 1.0 kB URL HTTP/2 finesttouchpaintings.com/wp-content/themes/athena/inc/js/script.js?ver=1.2.3
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 33b8d81812d16696fa78a3ff4c4f673d
d09f339a0af7aff07f1993df74d8171b3f74291a
2e10435d9de701aa3f7982af20bab54daebb13368e9cb9a6b7e762595849c405
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/athena/inc/js/script.js?ver=1.2.3 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Dec 2018 03:50:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 1009
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/uploads/bb-plugin/cache/515-layout.js?ver=19aa293cc345a14bb280f6371da97519
216.172.184.134200 OK 7.3 kB URL HTTP/2 finesttouchpaintings.com/wp-content/uploads/bb-plugin/cache/515-layout.js?ver=19aa293cc345a14bb280f6371da97519
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (807)
Hash ff3491e1f964d0bc5cd6a92fe4e4a6a5
de0d52805d53a097cc47a3bb9c088ca738880c1e
ff215258f64866af45c97d357265d4e6f4991446a1be1fe3189a37fc7972eac2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/bb-plugin/cache/515-layout.js?ver=19aa293cc345a14bb280f6371da97519 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 01 Jun 2022 18:21:25 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 7289
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/themes/athena/js/navigation.js?ver=20120206
216.172.184.134200 OK 923 B URL HTTP/2 finesttouchpaintings.com/wp-content/themes/athena/js/navigation.js?ver=20120206
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 44fddc7bfbb9ad60646578aa80be7b64
c9d9ccc1631a062cb407d739e2d34a3718779f74
5423755a8b74e73839de4f9311fad070193d80dfc3a104c6b3d9a3303eb64291
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/athena/js/navigation.js?ver=20120206 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Dec 2018 03:50:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 923
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/themes/athena/inc/js/sticky.min.js?ver=1.2.3
216.172.184.134200 OK 1.1 kB URL HTTP/2 finesttouchpaintings.com/wp-content/themes/athena/inc/js/sticky.min.js?ver=1.2.3
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2624), with no line terminators
Hash 4fb7479cd452b5605c3ee55057a566ed
389947f28aba54615a9506e3557c53317ef7bcc2
5a4ea56db6c2741e5841513d191dcbca3ddce8dfa7ac65fe45e01cf9aee46633
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/athena/inc/js/sticky.min.js?ver=1.2.3 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Dec 2018 03:50:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 1076
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
216.172.184.134200 OK 5.3 kB URL HTTP/2 finesttouchpaintings.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 12 Apr 2022 16:26:24 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 5321
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/themes/athena/inc/js/parallax.min.js?ver=1.2.3
216.172.184.134200 OK 2.3 kB URL HTTP/2 finesttouchpaintings.com/wp-content/themes/athena/inc/js/parallax.min.js?ver=1.2.3
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5890)
Hash 41d73a437f74a7bfe432cf8941852d5a
d901263918b3769948aa4440ed3cb1f0784cda2a
e00797a41dd2b7693b276c104279dda85c8094b7c96573b7facc0e77fb64c2de
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/athena/inc/js/parallax.min.js?ver=1.2.3 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Dec 2018 03:50:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 2321
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/themes/athena/inc/js/owl.carousel.min.js?ver=1.2.3
216.172.184.134200 OK 8.1 kB URL HTTP/2 finesttouchpaintings.com/wp-content/themes/athena/inc/js/owl.carousel.min.js?ver=1.2.3
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (635), with CRLF line terminators
Hash d826d8dfde73b37137771f9536a25503
2883a5a44b97b4456073289f6f7387bea1bcc015
cbe2249e75a23108f7d738b0d2819697bf584ba15023684bd511147f80068dca
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/athena/inc/js/owl.carousel.min.js?ver=1.2.3 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Dec 2018 03:50:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 8124
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/themes/athena/inc/js/camera.js?ver=1.2.3
216.172.184.134200 OK 18 kB URL HTTP/2 finesttouchpaintings.com/wp-content/themes/athena/inc/js/camera.js?ver=1.2.3
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (538), with CRLF line terminators
Hash d11055491e781135c1e6772466ac1dae
ce76634d610cd6bb46c7eabab08e46ed370f289d
b99afd7e6b433f2718f4fb7eea305df4d357160473940d88257d05d4053a8224
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/athena/inc/js/camera.js?ver=1.2.3 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Dec 2018 03:50:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 17683
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/plugins/contact-form-with-a-meeting-scheduler-by-vcita/css/livesite-frontend.css?ver=6.1.1
216.172.184.134409 Conflict 83 B URL HTTP/2 finesttouchpaintings.com/wp-content/plugins/contact-form-with-a-meeting-scheduler-by-vcita/css/livesite-frontend.css?ver=6.1.1
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-with-a-meeting-scheduler-by-vcita/css/livesite-frontend.css?ver=6.1.1 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/plugins/contact-form-with-a-meeting-scheduler-by-vcita/js/livesite-include-sdk.js?ver=0.1.3
216.172.184.134409 Conflict 83 B URL HTTP/2 finesttouchpaintings.com/wp-content/plugins/contact-form-with-a-meeting-scheduler-by-vcita/js/livesite-include-sdk.js?ver=0.1.3
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-with-a-meeting-scheduler-by-vcita/js/livesite-include-sdk.js?ver=0.1.3 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
216.172.184.134200 OK 122 kB URL HTTP/2 finesttouchpaintings.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
Size 122 kB (121525 bytes)
Hash ead761c421b31521d07dd628c0d04db1
b06b3d4dea8c25c07b78ded8a8612597518af0b2
fe2a7d11b3edf9789f1c04b53fcab3f27717d7f1d8846cda7d46a2e0edf310d5
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 30 Sep 2022 00:51:12 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/uploads/2015/08/Finest-Touch-Paintings-Bonita-Springs-Estero-Naples.mp4?_=1
216.172.184.134302 Found 303 B URL HTTP/1.1 finesttouchpaintings.com/wp-content/uploads/2015/08/Finest-Touch-Paintings-Bonita-Springs-Estero-Naples.mp4?_=1
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0a80fa881b2533a18356bed8700d33c3
1f67cc87d2684d7326794ab43082f84f69f0a4f7
06709bf40e3044de8dccca13b17bbee27c818a7e69a6d0a8192e2b21b4560ef3
GET /wp-content/uploads/2015/08/Finest-Touch-Paintings-Bonita-Springs-Estero-Naples.mp4?_=1 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
HTTP/1.1 302 Found
Date: Sat, 03 Dec 2022 09:58:20 GMT
Server: Apache
Location: https://finesttouchpaintings.com/wp-content/uploads/2015/08/Finest-Touch-Paintings-Bonita-Springs-Estero-Naples.mp4?_=1
Cache-Control: max-age=0
Expires: Sat, 03 Dec 2022 09:58:20 GMT
Content-Length: 303
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
finesttouchpaintings.com/wp-content/plugins/contact-form-with-a-meeting-scheduler-by-vcita/js/livesite-include-sdk.js?ver=0.1.3
216.172.184.134409 Conflict 83 B URL HTTP/2 finesttouchpaintings.com/wp-content/plugins/contact-form-with-a-meeting-scheduler-by-vcita/js/livesite-include-sdk.js?ver=0.1.3
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-with-a-meeting-scheduler-by-vcita/js/livesite-include-sdk.js?ver=0.1.3 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Sat, 03 Dec 2022 09:58:20 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
pixel.wp.com/g.gif?v=ext&blog=96436313&post=515&tz=0&srv=finesttouchpaintings.com&j=1%3A11.5.1&host=finesttouchpaintings.com&ref=&fcp=1774&rand=0.34721507181296507
192.0.76.3200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=ext&blog=96436313&post=515&tz=0&srv=finesttouchpaintings.com&j=1%3A11.5.1&host=finesttouchpaintings.com&ref=&fcp=1774&rand=0.34721507181296507
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&blog=96436313&post=515&tz=0&srv=finesttouchpaintings.com&j=1%3A11.5.1&host=finesttouchpaintings.com&ref=&fcp=1774&rand=0.34721507181296507 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:58:20 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/uploads/2015/08/Finest-Touch-Paintings-Bonita-Springs-Estero-Naples.mp4?_=1
216.172.184.134302 Found 303 B URL HTTP/1.1 finesttouchpaintings.com/wp-content/uploads/2015/08/Finest-Touch-Paintings-Bonita-Springs-Estero-Naples.mp4?_=1
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0a80fa881b2533a18356bed8700d33c3
1f67cc87d2684d7326794ab43082f84f69f0a4f7
06709bf40e3044de8dccca13b17bbee27c818a7e69a6d0a8192e2b21b4560ef3
GET /wp-content/uploads/2015/08/Finest-Touch-Paintings-Bonita-Springs-Estero-Naples.mp4?_=1 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
HTTP/1.1 302 Found
Date: Sat, 03 Dec 2022 09:58:20 GMT
Server: Apache
Location: https://finesttouchpaintings.com/wp-content/uploads/2015/08/Finest-Touch-Paintings-Bonita-Springs-Estero-Naples.mp4?_=1
Cache-Control: max-age=0
Expires: Sat, 03 Dec 2022 09:58:20 GMT
Content-Length: 303
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4627
Expires: Sat, 03 Dec 2022 11:15:27 GMT
Date: Sat, 03 Dec 2022 09:58:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4627
Expires: Sat, 03 Dec 2022 11:15:27 GMT
Date: Sat, 03 Dec 2022 09:58:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4627
Expires: Sat, 03 Dec 2022 11:15:27 GMT
Date: Sat, 03 Dec 2022 09:58:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4627
Expires: Sat, 03 Dec 2022 11:15:27 GMT
Date: Sat, 03 Dec 2022 09:58:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4627
Expires: Sat, 03 Dec 2022 11:15:27 GMT
Date: Sat, 03 Dec 2022 09:58:20 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F652bfe35-9b09-4fba-b7b5-c6bd90cccdbe.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F652bfe35-9b09-4fba-b7b5-c6bd90cccdbe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ffa12df550123f63b20f67437cd8a04
398fd2d837c73f54c4591b69cd683f29bdf9184a
fd9ac4396488098923c27531295e64475047dd008a901e59915109a73a69f305
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F652bfe35-9b09-4fba-b7b5-c6bd90cccdbe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6119
x-amzn-requestid: b0bf3aed-f968-4ebb-953e-35300d74ef16
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdCe8GgNIAMFQag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63884ac5-4b20ca67753e65c5232660f5;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 06:33:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: axyk2U1R7AX1RVQmdc303S2S2CUs_RgphyeYPsbGveGHMAjY3KEzdw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 13:19:35 GMT
age: 74325
etag: "398fd2d837c73f54c4591b69cd683f29bdf9184a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 06:00:50 GMT
age: 14250
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528dcb40-0960-4efd-98b7-a07004a61b22.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528dcb40-0960-4efd-98b7-a07004a61b22.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3abdcce275bb9723b4ac1d0c38cc8891
91f0d888c38db0899f106b652e3dcac062648099
ff411fc0d5abaf519d6600961ec51ad71ad9a02e23cc02ad818e27f0324b3d1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528dcb40-0960-4efd-98b7-a07004a61b22.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7657
x-amzn-requestid: c0dbd862-41cf-4fa8-ab6b-256763c63fbf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZN1Fo6IAMF9EQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f25-554ffbc83fd70c557437120f;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ElvfdUly4Rb3YOQyMO2C_VelFUe6xcFbMh6x5fNrRzGjKCITdGSwLQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:37:47 GMT
age: 44433
etag: "91f0d888c38db0899f106b652e3dcac062648099"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XvG2dAUeB914GQ1qJwQRHovAtra8OSjG-CsXeR8UOBq5r8qVjEbPBQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 22:39:04 GMT
age: 40756
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20049904-a818-4d1c-9585-79edf76dcc61.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20049904-a818-4d1c-9585-79edf76dcc61.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9b77186d0d93f7ccfe729edd9d184af3
458aa485b9abef3b72427d308a172d1c24eceabd
8bed5a8e56e8c43fcbdc807245c2b651d014a06368574e57a25b718399a4a701
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20049904-a818-4d1c-9585-79edf76dcc61.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6966
x-amzn-requestid: 2b40c185-e050-4bfd-9b08-bb70e6f89824
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfAb7Ev3oAMFnrQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6389144c-65301ace20da6f580ed77e82;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 20:53:32 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qweaKZsigecnsWw0Cqz_dizuuFZmXkK1gGP0EN3pZx-yYK6eF7YjUg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 05:22:26 GMT
age: 16554
etag: "458aa485b9abef3b72427d308a172d1c24eceabd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F231cb69d-ef31-41ab-9446-6cfaebcbc544.webp
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F231cb69d-ef31-41ab-9446-6cfaebcbc544.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash be863c89aae9b81ce6aae9b6a560f54b
c879d5cd69263f4034aed5dec94e7a43bfc00840
c68ab0b0daf449e3ed059da94150a686aae2f76d2d0212c11634409b49b85bdc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F231cb69d-ef31-41ab-9446-6cfaebcbc544.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7491
x-amzn-requestid: 4cd45131-6fd8-45e6-8bc5-fdbfd886b224
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cSsiBEB2IAMFblg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638427a6-725a0f1639a61f5d3c154456;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 03:14:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qzgfdl0MsBXjjOqW2iy1Oyqgd-igLKulIze6uE9ynMjK8VZVl47stQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 02:14:43 GMT
age: 27817
etag: "c879d5cd69263f4034aed5dec94e7a43bfc00840"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/themes/athena/inc/images/camera-loader.gif
216.172.184.134200 OK 9.3 kB URL HTTP/2 finesttouchpaintings.com/wp-content/themes/athena/inc/images/camera-loader.gif
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 30 x 30\012- data
Hash cd2e13291ecdcac7f575beea6d84b099
349fcf8940beb50be3cf0089fa5f4f38f890645c
54ecb255faaf5ef40b325def1fe3ed203589d761ddaacc784fd9401c651156d2
GET /wp-content/themes/athena/inc/images/camera-loader.gif HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/wp-content/themes/athena/inc/css/camera.css?ver=1.2.3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Dec 2018 03:50:53 GMT
accept-ranges: bytes
content-length: 9289
cache-control: max-age=2592000, public
expires: Mon, 02 Jan 2023 09:58:20 GMT
content-type: image/gif
date: Sat, 03 Dec 2022 09:58:20 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/themes/athena/inc/images/camera_skins.png
216.172.184.134200 OK 24 kB URL HTTP/2 finesttouchpaintings.com/wp-content/themes/athena/inc/images/camera_skins.png
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 220 x 1280, 8-bit/color RGBA, non-interlaced\012- data
Hash 44234b21bebe6b318aab47d9e9bbbee9
4e04ceab44860e1863ee24b83cb77750920b2638
a99f5a6bab7efec1d87835d754900adffe01497c407a8749fec13456a3f5baa2
GET /wp-content/themes/athena/inc/images/camera_skins.png HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/wp-content/themes/athena/inc/css/camera.css?ver=1.2.3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Dec 2018 03:50:53 GMT
accept-ranges: bytes
content-length: 24198
cache-control: max-age=2592000, public
expires: Mon, 02 Jan 2023 09:58:20 GMT
content-type: image/png
date: Sat, 03 Dec 2022 09:58:20 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-includes/js/mediaelement/mejs-controls.svg
216.172.184.134200 OK 1.4 kB URL HTTP/2 finesttouchpaintings.com/wp-includes/js/mediaelement/mejs-controls.svg
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (4597)
Hash d82444778486713d21d76c4b37861ee8
75062c49164162f25a0326d7fa6b97a3b1e0091c
261e21aa3e3a7c9ce04855161ea26dc34b2a19541ee92627c321d4a362a4c90d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mejs-controls.svg HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 01 Aug 2017 15:13:52 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Mon, 02 Jan 2023 09:58:20 GMT
content-encoding: gzip
content-length: 1392
content-type: image/svg+xml
date: Sat, 03 Dec 2022 09:58:20 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/uploads/2020/04/img_2443-300x225.jpg
216.172.184.134200 OK 10 kB URL HTTP/2 finesttouchpaintings.com/wp-content/uploads/2020/04/img_2443-300x225.jpg
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 300x225, components 3\012- data
Hash 95ef49418a91293a152c1b6fddf33e48
338259598d40f58f03bc7946fe01351adf915c81
9883dfc4b88a0bfb519a5f9a12ec18e79936728c0220e967ec9207c946ce7e1c
GET /wp-content/uploads/2020/04/img_2443-300x225.jpg HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sat, 18 Apr 2020 03:52:51 GMT
accept-ranges: bytes
content-length: 10466
cache-control: max-age=2592000, public
expires: Mon, 02 Jan 2023 09:58:20 GMT
content-type: image/jpeg
date: Sat, 03 Dec 2022 09:58:20 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 933bd2bc7dd004d74961dfc0878c1d22
8a4f50edb54fea8ffa604f5ca593345341ce15a1
252363badd64d5ec8ad9eb56af41e44bb094d8c80646dd228e90dba5e56c87b8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4125
Cache-Control: max-age=155127
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:58:21 GMT
Etag: "638ac897-1d7"
Expires: Mon, 05 Dec 2022 05:03:48 GMT
Last-Modified: Sat, 03 Dec 2022 03:55:03 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 03 Dec 2022 08:41:08 GMT
expires: Sat, 03 Dec 2022 10:41:08 GMT
cache-control: public, max-age=7200
age: 4633
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 9NPH5DrfgsTwpW0UmWyIdbglIvNHYt2ItaRoezA4qTYkdsv/aa2ldcYk8yhGnWDNqdvlqKzzudPuig6Bkq2qpg==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 2074150462
date: Sat, 03 Dec 2022 09:58:21 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.google-analytics.com/plugins/ua/linkid.js
142.250.74.110200 OK 859 B URL HTTP/2 www.google-analytics.com/plugins/ua/linkid.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1335)
Hash 904463ce35aee800847ab85ec948aaf6
904e4d2647466c7f7e0f7412019984e3b2ccfb24
057b4d29359dfe2536a2ec40243bdfa7b151222efcc1eb358608994a14c34237
GET /plugins/ua/linkid.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 859
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Dec 2022 09:41:50 GMT
expires: Sat, 03 Dec 2022 10:41:50 GMT
cache-control: public, max-age=3600
age: 991
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 933bd2bc7dd004d74961dfc0878c1d22
8a4f50edb54fea8ffa604f5ca593345341ce15a1
252363badd64d5ec8ad9eb56af41e44bb094d8c80646dd228e90dba5e56c87b8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4125
Cache-Control: max-age=155127
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:58:21 GMT
Etag: "638ac897-1d7"
Expires: Mon, 05 Dec 2022 05:03:48 GMT
Last-Modified: Sat, 03 Dec 2022 03:55:03 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 08ca0238100c906a665f21b1caa97f47
3f605891faeafb51a36cecd25d331bcc450d34e9
35dac74d71c723f7a8e7585174fad51a0115e4a294a2c0d80b63026e25825618
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:58:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 08ca0238100c906a665f21b1caa97f47
3f605891faeafb51a36cecd25d331bcc450d34e9
35dac74d71c723f7a8e7585174fad51a0115e4a294a2c0d80b63026e25825618
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:58:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-86100514-1&cid=694621399.1670061499&jid=284733925&gjid=442018468&_gid=418328187.1670061499&_u=IEBAAEIgAAAAACAAI~&z=475970333
64.233.165.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-86100514-1&cid=694621399.1670061499&jid=284733925&gjid=442018468&_gid=418328187.1670061499&_u=IEBAAEIgAAAAACAAI~&z=475970333
IP 64.233.165.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-86100514-1&cid=694621399.1670061499&jid=284733925&gjid=442018468&_gid=418328187.1670061499&_u=IEBAAEIgAAAAACAAI~&z=475970333 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://finesttouchpaintings.com
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://finesttouchpaintings.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 03 Dec 2022 09:58:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-86100514-1&cid=694621399.1670061499&jid=1718365147&gjid=1697612056&_gid=418328187.1670061499&_u=aGDAAUIhAAAAACAAI~&z=212106029
64.233.165.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-86100514-1&cid=694621399.1670061499&jid=1718365147&gjid=1697612056&_gid=418328187.1670061499&_u=aGDAAUIhAAAAACAAI~&z=212106029
IP 64.233.165.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-86100514-1&cid=694621399.1670061499&jid=1718365147&gjid=1697612056&_gid=418328187.1670061499&_u=aGDAAUIhAAAAACAAI~&z=212106029 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://finesttouchpaintings.com
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://finesttouchpaintings.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 03 Dec 2022 09:58:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 08ca0238100c906a665f21b1caa97f47
3f605891faeafb51a36cecd25d331bcc450d34e9
35dac74d71c723f7a8e7585174fad51a0115e4a294a2c0d80b63026e25825618
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:58:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
finesttouchpaintings.com/favicon.icon
216.172.184.134200 OK 560 B URL HTTP/2 finesttouchpaintings.com/favicon.icon
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash 1c2db487896a551ec4f47c6b1235d991
8318a6bbf01edd422946043c50b286c743f5c343
2ca96dee0e95ede3ec9e5b9c86584f29c87b94cd82cf74e613050e68b1970a1f
Analyzer Verdict Alert fortinet Phishing
GET /favicon.icon HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
cache-control: max-age=604800
expires: Sat, 10 Dec 2022 09:58:21 GMT
content-encoding: gzip
content-length: 560
content-type: image/x-icon
date: Sat, 03 Dec 2022 09:58:21 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/touch-icon152.png
216.172.184.134200 OK 12 kB URL HTTP/2 finesttouchpaintings.com/touch-icon152.png
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
File type MS Windows icon resource - 4 icons, 32x32, 32 bits/pixel, 76x76, 32 bits/pixel\012- data
Hash 75762dfe5dfafc13d577d820c65ca09c
a42ef348f03f6d96c4d526f750185346c5d22a7d
a511df43a2aef94d7f6e3676b2da1601052201a812c671f38c7cdeb1490d45ce
GET /touch-icon152.png HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
cache-control: max-age=2592000
expires: Mon, 02 Jan 2023 09:58:21 GMT
content-encoding: gzip
content-length: 11896
content-type: image/png
date: Sat, 03 Dec 2022 09:58:21 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 1377c2956f6d4d989e6fafbe01600b49
7a550dd67e42a8f1ba1468646af02691d0580345
4e0206cd8e1112cdefa7f974876461a968bbcbbf016b1b1c2e3af77346507886
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:58:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 1377c2956f6d4d989e6fafbe01600b49
7a550dd67e42a8f1ba1468646af02691d0580345
4e0206cd8e1112cdefa7f974876461a968bbcbbf016b1b1c2e3af77346507886
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:58:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash d177680f261fa0b5bf3d5ae3ed69af85
96cdc11262db0a9531fe0cd00e908f3e824c89b3
08eac8282cf4566d382816edac93db8581b65dc2898fc7ea80d7424224ed29ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:58:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 86 kB IP 216.58.211.3:0
File type gzip compressed data, from Unix\012- data
Hash 5b5dc01a7cb37ddff47bc9170618c50c
c7b2a6cebf4985763d248c31d58d0b1f35ae5814
9663125f7a84ec10434a932b551c390db1c02e7b0b4621911cabfe61141a1874
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:58:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-86100514-1&cid=694621399.1670061499&jid=284733925&_u=IEBAAEIgAAAAACAAI~&z=1890794912
216.58.211.4200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-86100514-1&cid=694621399.1670061499&jid=284733925&_u=IEBAAEIgAAAAACAAI~&z=1890794912
IP 216.58.211.4:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-86100514-1&cid=694621399.1670061499&jid=284733925&_u=IEBAAEIgAAAAACAAI~&z=1890794912 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 03 Dec 2022 09:58:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-86100514-1&cid=694621399.1670061499&jid=1718365147&_u=aGDAAUIhAAAAACAAI~&z=2082587922
216.58.211.4200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-86100514-1&cid=694621399.1670061499&jid=1718365147&_u=aGDAAUIhAAAAACAAI~&z=2082587922
IP 216.58.211.4:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-86100514-1&cid=694621399.1670061499&jid=1718365147&_u=aGDAAUIhAAAAACAAI~&z=2082587922 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 03 Dec 2022 09:58:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-86100514-1&cid=694621399.1670061499&jid=284733925&_u=IEBAAEIgAAAAACAAI~&z=1890794912
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-86100514-1&cid=694621399.1670061499&jid=284733925&_u=IEBAAEIgAAAAACAAI~&z=1890794912
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-86100514-1&cid=694621399.1670061499&jid=284733925&_u=IEBAAEIgAAAAACAAI~&z=1890794912 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 03 Dec 2022 09:58:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-86100514-1&cid=694621399.1670061499&jid=1718365147&_u=aGDAAUIhAAAAACAAI~&z=2082587922
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-86100514-1&cid=694621399.1670061499&jid=1718365147&_u=aGDAAUIhAAAAACAAI~&z=2082587922
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-86100514-1&cid=694621399.1670061499&jid=1718365147&_u=aGDAAUIhAAAAACAAI~&z=2082587922 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 03 Dec 2022 09:58:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=914284328675906&ev=PageView&dl=https%3A%2F%2Ffinesttouchpaintings.com%2F&rl=&if=false&ts=1670061499374&cd=%7B%22page%22%3A%22https%3A%2F%2Ffinesttouchpaintings.com%22%2C%22domain%22%3A%22https%3A%2F%2Ffinesttouchpaintings.com%22%7D&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670061499373.717022096&it=1670061499076&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=914284328675906&ev=PageView&dl=https%3A%2F%2Ffinesttouchpaintings.com%2F&rl=&if=false&ts=1670061499374&cd=%7B%22page%22%3A%22https%3A%2F%2Ffinesttouchpaintings.com%22%2C%22domain%22%3A%22https%3A%2F%2Ffinesttouchpaintings.com%22%7D&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670061499373.717022096&it=1670061499076&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=914284328675906&ev=PageView&dl=https%3A%2F%2Ffinesttouchpaintings.com%2F&rl=&if=false&ts=1670061499374&cd=%7B%22page%22%3A%22https%3A%2F%2Ffinesttouchpaintings.com%22%2C%22domain%22%3A%22https%3A%2F%2Ffinesttouchpaintings.com%22%7D&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670061499373.717022096&it=1670061499076&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 03 Dec 2022 09:58:21 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 1f3a4f3edea56419c58836a0c80d5cea
1558a7ad0acc0c09cdf39ec92030f7ee5736e595
70aeda0cb136ac1add86931a338558b9f302576cd65537575d232fda623fe2f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:58:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash d177680f261fa0b5bf3d5ae3ed69af85
96cdc11262db0a9531fe0cd00e908f3e824c89b3
08eac8282cf4566d382816edac93db8581b65dc2898fc7ea80d7424224ed29ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:58:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
finesttouchpaintings.com/wp-content/uploads/2015/08/Finest-Touch-Paintings-Bonita-Springs-Estero-Naples.mp4?_=1
216.172.184.134206 Partial Content 0 B URL HTTP/2 finesttouchpaintings.com/wp-content/uploads/2015/08/Finest-Touch-Paintings-Bonita-Springs-Estero-Naples.mp4?_=1
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2015/08/Finest-Touch-Paintings-Bonita-Springs-Estero-Naples.mp4?_=1 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
vary: Accept-Encoding
last-modified: Sun, 11 Sep 2016 02:34:19 GMT
accept-ranges: bytes
content-length: 14411657
cache-control: max-age=2592000, public
expires: Mon, 02 Jan 2023 09:58:20 GMT
content-range: bytes 0-14411656/14411657
content-type: video/mp4
date: Sat, 03 Dec 2022 09:58:20 GMT
server: Apache
X-Firefox-Spdy: h2
stats.wp.com/e-202248.js
192.0.76.3200 OK 0 B IP 192.0.76.3:0
GET /e-202248.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:58:19 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-3508"
content-encoding: br
expires: Mon, 20 Nov 2023 01:50:03 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/plugins/jetpack/css/jetpack.css?ver=11.5.1
216.172.184.134200 OK 0 B URL HTTP/2 finesttouchpaintings.com/wp-content/plugins/jetpack/css/jetpack.css?ver=11.5.1
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jetpack/css/jetpack.css?ver=11.5.1 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 25 Oct 2022 18:51:34 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-type: text/css; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/uploads/2017/03/My-Video1.mp4?_=2
216.172.184.134206 Partial Content 0 B URL HTTP/2 finesttouchpaintings.com/wp-content/uploads/2017/03/My-Video1.mp4?_=2
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/uploads/2017/03/My-Video1.mp4?_=2 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
last-modified: Thu, 30 Mar 2017 23:10:44 GMT
accept-ranges: bytes
content-length: 32003829
cache-control: max-age=2592000, public
expires: Mon, 02 Jan 2023 09:58:20 GMT
vary: Accept-Encoding
content-range: bytes 0-32003828/32003829
content-type: video/mp4
date: Sat, 03 Dec 2022 09:58:20 GMT
server: Apache
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-content/themes/athena/inc/js/slicknav.min.js?ver=1.2.3
216.172.184.134200 OK 0 B URL HTTP/2 finesttouchpaintings.com/wp-content/themes/athena/inc/js/slicknav.min.js?ver=1.2.3
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/athena/inc/js/slicknav.min.js?ver=1.2.3 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 18 Dec 2018 03:50:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-length: 2405
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
key-cdn.printfriendly.com/api/v3/domain_settings/a?callback=pfMod.saveDSSettings&hostname=finesttouchpaintings.com&client_version=client
185.76.9.25200 OK 0 B URL HTTP/2 key-cdn.printfriendly.com/api/v3/domain_settings/a?callback=pfMod.saveDSSettings&hostname=finesttouchpaintings.com&client_version=client
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
GET /api/v3/domain_settings/a?callback=pfMod.saveDSSettings&hostname=finesttouchpaintings.com&client_version=client HTTP/1.1
Host: key-cdn.printfriendly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:58:20 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: max-age=3600, public
etag: W/"9a16adfd6501ee212185125f1bf41bf1"
x-request-id: 3b4e3b93-2ad2-459c-9173-dd6f69a61d92
x-runtime: 0.012045
via: 1.1 google
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39", h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-accel-expires: @1670065100
server: CDN77-Turbo
x-77-nzt: AblMCRQre/Kh
x-77-nzt-ray: af5856300c9c6713bc1d8b63f825801c
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: br
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
216.172.184.134200 OK 0 B URL HTTP/2 finesttouchpaintings.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 16 Nov 2022 03:44:45 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-type: text/css; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2
cdn.printfriendly.com/printfriendly.js
185.76.9.16200 OK 0 B URL HTTP/2 cdn.printfriendly.com/printfriendly.js
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
GET /printfriendly.js HTTP/1.1
Host: cdn.printfriendly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:58:19 GMT
content-type: application/javascript; charset=utf-8
x-guploader-uploadid: ADPycdvGYOt5Y2EnhGhoQgBi3z0Ib-eJEr3WL4K2DTdxvYGYG8Y3FN_hCLQdh5dgUjzYLVYh9i3S8n4OD9PGr0s1f6DyCA
x-goog-generation: 1664450714822979
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 14415
x-goog-hash: crc32c=+IJaoQ==, md5=TbX796gwShrkq9yrLNeALw==
x-goog-storage-class: STANDARD
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: Content-Type
expires: Thu, 06 Oct 2022 00:24:41 GMT
cache-control: public, max-age=300
last-modified: Thu, 29 Sep 2022 11:25:14 GMT
age: 6
x-accel-expires: @1670061671
server: CDN77-Turbo
x-77-nzt: AblMCQ0JuCX/gAAAAA
x-77-nzt-ray: c0a4cc2844d2bb96bb1d8b6375245222
x-cache: HIT
x-age: 128
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
finesttouchpaintings.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
216.172.184.134200 OK 0 B URL HTTP/2 finesttouchpaintings.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 216.172.184.134:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: finesttouchpaintings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://finesttouchpaintings.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 20 Sep 2022 00:46:24 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 03 Dec 2023 09:58:19 GMT
content-encoding: gzip
content-type: application/javascript; charset=utf-8
date: Sat, 03 Dec 2022 09:58:19 GMT
server: Apache
X-Firefox-Spdy: h2