r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b0d651d83075c7a68e3c6a9204226150
294785e3f3a67cdd5f1a530b83a2cbd2c2cc0665
17cbb43fd6662576ba3fe8e06cf44247c903c1313cc419053599c41e286a2442
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17CBB43FD6662576BA3FE8E06CF44247C903C1313CC419053599C41E286A2442"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5897
Expires: Sat, 17 Sep 2022 11:06:39 GMT
Date: Sat, 17 Sep 2022 09:28:22 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 17 Sep 2022 09:11:16 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: oiy_Spa5gcyktr47jEQjpPAHF29RD4JHrwXHDNQbelX1lhw28MZDNA==
Age: 1026
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 17 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FeLhny2Yvv2wdXMhyLaIqtLtcOyJTGV4a19Fh9XfMtjFTCjDJd-KgQ==
age: 21460
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 09:28:22 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sat, 17 Sep 2022 09:03:22 GMT
Cache-Control: max-age=3600
Expires: Sat, 17 Sep 2022 09:07:25 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: l6JY5LNigQIfBoLd5psQJXs5UKgIxz0OImaX_ZUitAaPk6SGSMh8vg==
Age: 1501
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3db421016cf0e3ad25f324cf0faf0fac
b15909de1105d4d2fb5be5b3920c454daf022445
914b15f28636e0a5e851540ffb0625ecd09d0546b2f1f7af90b267ceebcf1d5d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5727
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:28:23 GMT
Last-Modified: Sat, 17 Sep 2022 07:52:56 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.27.12.161101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.27.12.161:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ViuF53lf1Fz/KVtKRBGFvQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: kInvsZw4IHAzP0yqUYMXA9Lin+E=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11064
Expires: Sat, 17 Sep 2022 12:32:48 GMT
Date: Sat, 17 Sep 2022 09:28:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11064
Expires: Sat, 17 Sep 2022 12:32:48 GMT
Date: Sat, 17 Sep 2022 09:28:24 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F965c1f46-ea3e-498e-b9dd-07a252ce51c2.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F965c1f46-ea3e-498e-b9dd-07a252ce51c2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6656c96d31803728c2fcd707289bcd27
5139023bb709d865d26a9b2fac4b02260966c347
41c958a36909953f47208de41fb76081ce2c5bb80afec7c15b7c544b464880b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F965c1f46-ea3e-498e-b9dd-07a252ce51c2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6991
x-amzn-requestid: 799f17de-b856-4be7-abbf-0d444f605a94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXe-WE9toAMF41A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fab8e-6f2639d75967c1d2213d2d8b;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:58:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: EvWc_HiIQ23ll8soCl8tWfARIqe_B5HKpchZaGKSoZy576KLyjcfCw==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:56:33 GMT
age: 41511
etag: "5139023bb709d865d26a9b2fac4b02260966c347"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50373a4c-fa87-4ca5-b0b7-67ee2f12abd1.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50373a4c-fa87-4ca5-b0b7-67ee2f12abd1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f108cfb79dd8405677b7406910d11ba5
5ef30af418df5e44a0927361b679b8117c38c473
b4b973702c6c98eaf28345b019c8cf022e8056e07f508e17d156c9e136f11936
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50373a4c-fa87-4ca5-b0b7-67ee2f12abd1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7305
x-amzn-requestid: 15096102-8ffe-47df-bfc7-ff1a1fb9fd1e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YknUqFJmIAMF5Ew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ec1d-5c5ca26a24f39af979c17495;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:35:25 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5lUx834-NLHpKCxmdiAdNxCXqqNKGcDJlt9wmGR-XxdlroBfwVTrNg==
via: 1.1 e943d5f0cbb0d255d29da0ddf6639ba8.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:41:22 GMT
age: 42422
etag: "5ef30af418df5e44a0927361b679b8117c38c473"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77aee3f-a7fb-4d87-92a7-6b33dd4ebf28.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77aee3f-a7fb-4d87-92a7-6b33dd4ebf28.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e1b42bfa9fc6593b0444391dc260329a
b9c4cd422b818c859ac6ca928bc9e932a578ce30
89eee7200bf7a8bf100f64aee2208d7852265a85feb133fc87846b15cd96e842
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77aee3f-a7fb-4d87-92a7-6b33dd4ebf28.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5983
x-amzn-requestid: ba84a9a2-3ebe-4dc9-9604-98d5cccb4f2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YknUqFxpoAMFrpw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ec1d-55cd6d0a6e39357c226dd21d;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:35:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kWRS1NfiK9etmIoDtGu3C6uf8oqrL3r-mkM6BaTFPyNb6z4lYB38pw==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:53:58 GMT
age: 41666
etag: "b9c4cd422b818c859ac6ca928bc9e932a578ce30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7a22ab7dcdf50f4a297b8e117d336eae
e139a0974317212f094fdbe59e26ca5cf6b9e56d
9b4c23c1bb2e4fcd140ce34bf83f315f09b45202c569cb74113c2e65c4031dcd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7788
x-amzn-requestid: 2cb48f87-8b72-4ff7-b041-a6e704b854a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YIP2-HFHoAMFssA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6319935f-693e2f2e5a0bcd9f690f21fa;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 07:01:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 65YRttsQYzjUMMZXrtAFPdgTPNQuRGnLFliXrcoc24iQgrdBCHolNQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:31:11 GMT
age: 39433
etag: "e139a0974317212f094fdbe59e26ca5cf6b9e56d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48175642-3cf3-4778-a740-c2b7f09853e1.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48175642-3cf3-4778-a740-c2b7f09853e1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c1898b54c79423102c5bd010ac7b1220
beba56afde25abd753d162aaaa95b5e01ba60fb6
b93af660bef22579c03f943df26147b9e364915eaf011464d6891331138a2b6b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48175642-3cf3-4778-a740-c2b7f09853e1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7465
x-amzn-requestid: 658c3d9d-1527-4126-8639-1e9701ddcda9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ybve0FbpIAMFhhw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63215f91-7ac260200d96b950512fe55f;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 04:58:57 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: DFstleiMhGKuPQv-fvlL7TcuhlK6F5tg9j6bOD71i7gL5hvyMW5mOA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:54:56 GMT
age: 41608
etag: "beba56afde25abd753d162aaaa95b5e01ba60fb6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d46a910081eb782408f1a2fa3c6aabba
28ac45ef155c66dd79a306f14d3b38f597b6a32e
d5787a6a12d275555c627e3245b37d4e751148345a09d5671b343cfebe7173b4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: e1ca6cef-c033-4887-80cf-2014ab8e620c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ykn5cEnLIAMFrzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ed09-3afc16cf66fef0e62dd6f3cc;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:39:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BaRpWB_XOMxTJPufnSjd4KSfecRwLe9U5W7uEoXy7pgAa4KSC0n7eg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:03:28 GMT
age: 41096
etag: "28ac45ef155c66dd79a306f14d3b38f597b6a32e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
206.72.196.187301 Moved Permanently 0 B URL HTTP/1.1 bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
IP 206.72.196.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /particuliers-societegenerale/2c5d3a6f844356d/login.php HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 17 Sep 2022 09:28:22 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
206.72.196.187404 Not Found 39 kB URL HTTP/1.1 bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
IP 206.72.196.187:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash c42085bf56a01516939de262bc4bc0c4
6baeea5e1e31615748174d05ecf451b114cd4256
fb25bf1fa2f6524aecb8c50c8cba0e07d168db391ac7f54a3550361abb9a6fdb
Analyzer Verdict Alert fortinet Phishing
GET /particuliers-societegenerale/2c5d3a6f844356d/login.php HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Sat, 17 Sep 2022 09:28:25 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://bonydashacofoundation.org/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4cc0aaf293fed6c16e1dde02c50c8f40
e94f11cd8fa955f28856a02aa7115aa5f3626d98
b1592dc8fc0d63052f66b7be9b5ff1f562f6fbd05f6365ce828758bfbb3f1a12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:28:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bonydashacofoundation.org/wp-content/plugins/sina-extension-for-elementor/assets/css/sina-morphing.min.css?ver=3.4.2
206.72.196.187200 OK 1.8 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/plugins/sina-extension-for-elementor/assets/css/sina-morphing.min.css?ver=3.4.2
IP 206.72.196.187:0
File type ASCII text, with very long lines (1847), with no line terminators
Hash 0159c8fb01bbbb9a5779495da43e9dbc
1cee7216e241d49784886c7866589c673982bf39
2bd80c12d347c3d0087d6201c540db11565371216c47ec65ccb15d8566a62c4b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sina-extension-for-elementor/assets/css/sina-morphing.min.css?ver=3.4.2 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:53:42 GMT
Accept-Ranges: bytes
Content-Length: 1847
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
bonydashacofoundation.org/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6
206.72.196.187200 OK 2.7 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6
IP 206.72.196.187:0
Hash e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:53:37 GMT
Accept-Ranges: bytes
Content-Length: 2731
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
bonydashacofoundation.org/wp-content/plugins/google-language-translator/css/toolbar.css?ver=6.0.15
206.72.196.187200 OK 5.7 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/plugins/google-language-translator/css/toolbar.css?ver=6.0.15
IP 206.72.196.187:0
File type ASCII text, with very long lines (681)
Hash 00e7963b92387d2483ebe810f453d32e
bdcde0805e6a1dbc1513e1365486ad7ead26de38
306a340d77c015bebd34348e2df7636595f40e1fc50273d1a4cba9321d5e82ce
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/google-language-translator/css/toolbar.css?ver=6.0.15 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:53:39 GMT
Accept-Ranges: bytes
Content-Length: 5732
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9730b7d7d5f0481f65712991a899f4b8
facb4df5e4a4ac98b9bdd126c7dbb531cf0fe1e7
15d7d8acbcd94d9ca8579cc31a9ec621e76408663bc4b047e5e127acb14334a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:28:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9730b7d7d5f0481f65712991a899f4b8
facb4df5e4a4ac98b9bdd126c7dbb531cf0fe1e7
15d7d8acbcd94d9ca8579cc31a9ec621e76408663bc4b047e5e127acb14334a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:28:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b4a24f9aebdfdb06d10cd53e92a70bb8
c4532479dbd9636d8f5206faa085c520651eb5f2
1d330af2b423e351355f710f14cb771fa9918e8b6638c5076aba7bcda6c30936
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:28:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4cc0aaf293fed6c16e1dde02c50c8f40
e94f11cd8fa955f28856a02aa7115aa5f3626d98
b1592dc8fc0d63052f66b7be9b5ff1f562f6fbd05f6365ce828758bfbb3f1a12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:28:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bonydashacofoundation.org/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
206.72.196.187200 OK 19 kB URL HTTP/1.1 bonydashacofoundation.org/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 206.72.196.187:0
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:51:40 GMT
Accept-Ranges: bytes
Content-Length: 18617
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.google.com/recaptcha/api.js?render=6LcbWb8UAAAAALGRSQkEvtsB92SP-wyIIkZkF-gr&ver=3.0
142.250.74.164200 OK 586 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LcbWb8UAAAAALGRSQkEvtsB92SP-wyIIkZkF-gr&ver=3.0
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 2d14a68f2b8cbb803530dadc5eebd57b
0b96796a8ea8d3afacb87a98f97df6d5d2f4a515
3487b8c089d651384072d243eb90e4a78699d3fd8478b1133399888a292312bc
GET /recaptcha/api.js?render=6LcbWb8UAAAAALGRSQkEvtsB92SP-wyIIkZkF-gr&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 17 Sep 2022 09:28:26 GMT
date: Sat, 17 Sep 2022 09:28:26 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 586
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bonydashacofoundation.org/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.15
206.72.196.187200 OK 129 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.15
IP 206.72.196.187:0
Size 129 kB (128983 bytes)
Hash f3bd90ed9190418715605b8aaa05debd
5ef128434040cdc17b99048da8c56287894ed542
e2fb63ea3b3d832a17e88ce1bdc0ec080117e17f1c9331697c822015e501cb13
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/google-language-translator/css/style.css?ver=6.0.15 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:53:39 GMT
Accept-Ranges: bytes
Content-Length: 128983
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9730b7d7d5f0481f65712991a899f4b8
facb4df5e4a4ac98b9bdd126c7dbb531cf0fe1e7
15d7d8acbcd94d9ca8579cc31a9ec621e76408663bc4b047e5e127acb14334a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:28:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bonydashacofoundation.org/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
206.72.196.187200 OK 31 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 206.72.196.187:0
File type ASCII text, with very long lines (30837)
Hash 008e0bb5ebfa7bc298a042f95944df25
93897ebc560b38a1d2bff43c22dd6a3b7ee90c0c
c4047043368afb4baf1aed25d358a5c2a333842a3b436b58491ab36aeee65b9d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:53:38 GMT
Accept-Ranges: bytes
Content-Length: 30999
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
bonydashacofoundation.org/wp-content/plugins/ht-mega-for-elementor/assets/css/htmega-keyframes.css?ver=1.9.0
206.72.196.187200 OK 4.7 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/plugins/ht-mega-for-elementor/assets/css/htmega-keyframes.css?ver=1.9.0
IP 206.72.196.187:0
Hash f9d59ee0895e36a14481c6c587f4eaaa
2cd7cc7e8e2bc484d701cb897e2b98e4c0270226
dc22ae03545c512c391d5dc7d683000cbfaf4d78a8d60b22d806d574804350ca
GET /wp-content/plugins/ht-mega-for-elementor/assets/css/htmega-keyframes.css?ver=1.9.0 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:53:40 GMT
Accept-Ranges: bytes
Content-Length: 4730
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
bonydashacofoundation.org/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
206.72.196.187200 OK 89 kB URL HTTP/1.1 bonydashacofoundation.org/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 206.72.196.187:0
File type ASCII text, with very long lines (43771)
Hash b7915926fe42d76e9c802353ab01dae4
3a8192a4312f25f53de25b100d62829c0f14d67c
d7705700d24d5919255576642ad2c28bfc790390b7183a369038ff5c1e814d51
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Wed, 13 Jul 2022 03:00:21 GMT
Accept-Ranges: bytes
Content-Length: 88932
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
bonydashacofoundation.org/wp-content/plugins/ht-mega-for-elementor/assets/css/animation.css?ver=1.9.0
206.72.196.187200 OK 71 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/plugins/ht-mega-for-elementor/assets/css/animation.css?ver=1.9.0
IP 206.72.196.187:0
Hash 07250d3980bb58ba190eb0495a6699c8
8d2820bcd4a35ccbff24e71a44d9e6d5c54c1c25
65984ed028c8220f893d5532579dced7d1b20911edaf53364c93777c9902d1a1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ht-mega-for-elementor/assets/css/animation.css?ver=1.9.0 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:53:40 GMT
Accept-Ranges: bytes
Content-Length: 71292
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
bonydashacofoundation.org/wp-content/themes/vw-charity-ngo/css/blocks.css?ver=0.8.4
206.72.196.187200 OK 9.4 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/themes/vw-charity-ngo/css/blocks.css?ver=0.8.4
IP 206.72.196.187:0
File type ASCII text, with CRLF line terminators
Hash 6d3f666954cf9c8f9bea67266fdacdde
a1e268d0611b29097d765ff3009cbe51c09dded7
7be847febce00469f2de4b62259c310cde611db0f995178991eec09e3cdaa1b3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/vw-charity-ngo/css/blocks.css?ver=0.8.4 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:54:49 GMT
Accept-Ranges: bytes
Content-Length: 9421
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
bonydashacofoundation.org/wp-content/plugins/sina-extension-for-elementor/admin/assets/css/icofont.min.css?ver=3.4.2
206.72.196.187200 OK 90 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/plugins/sina-extension-for-elementor/admin/assets/css/icofont.min.css?ver=3.4.2
IP 206.72.196.187:0
File type ASCII text, with very long lines (65354), with CRLF line terminators
Hash 81d3059e3cf9e1ea349d5564321da49f
0acb861000d7a7213ac827cc411bd467d08c9406
1cd092bfee09e9ec364fd7eea1e7534bbd391b6bd03bda6650d0013b447736c6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sina-extension-for-elementor/admin/assets/css/icofont.min.css?ver=3.4.2 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:53:42 GMT
Accept-Ranges: bytes
Content-Length: 89973
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
bonydashacofoundation.org/wp-content/plugins/ht-mega-for-elementor/assets/css/htbbootstrap.css?ver=1.9.0
206.72.196.187200 OK 58 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/plugins/ht-mega-for-elementor/assets/css/htbbootstrap.css?ver=1.9.0
IP 206.72.196.187:0
File type ASCII text, with very long lines (1028), with CRLF line terminators
Hash 90c52c2e82a5755d0bc0dbef608f4b29
b69afe63144fbcc575ab67112cb00c0211b4fea9
5e4f20284396758175470562ef6cd50ddf67b6267bdd0be4509f5b13802ecdf1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ht-mega-for-elementor/assets/css/htbbootstrap.css?ver=1.9.0 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:53:40 GMT
Accept-Ranges: bytes
Content-Length: 57778
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
bonydashacofoundation.org/wp-content/themes/vw-charity-ngo/inc/block-patterns/css/block-frontend.css?ver=0.8.4
206.72.196.187200 OK 2.7 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/themes/vw-charity-ngo/inc/block-patterns/css/block-frontend.css?ver=0.8.4
IP 206.72.196.187:0
Hash c80ce42c0e0687d1e697c38616bdc775
1e88da80f40704540660c3904b1106bde4c6faa2
f8eb0b44e2e9780361c4f6106ed855e9e089255680f83e28d2e262a15b19b396
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/vw-charity-ngo/inc/block-patterns/css/block-frontend.css?ver=0.8.4 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:54:49 GMT
Accept-Ranges: bytes
Content-Length: 2738
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
bonydashacofoundation.org/wp-content/themes/vw-charity-ngo/style.css?ver=0.8.4
206.72.196.187200 OK 50 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/themes/vw-charity-ngo/style.css?ver=0.8.4
IP 206.72.196.187:0
File type ASCII text, with very long lines (2028)
Hash b4d247cbf81e8d6e02d60eae44920393
e546b526f5a07d330540ccc2a2e0e5f9c4f70c3f
215bfdff8c232ff3926e92eec7a0d0751db738aad6eda2ebda36b41df61a7895
GET /wp-content/themes/vw-charity-ngo/style.css?ver=0.8.4 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:54:49 GMT
Accept-Ranges: bytes
Content-Length: 49951
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
bonydashacofoundation.org/wp-content/themes/vw-charity-ngo/css/effect.css?ver=0.8.4
206.72.196.187200 OK 1.6 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/themes/vw-charity-ngo/css/effect.css?ver=0.8.4
IP 206.72.196.187:0
Hash ad8f2f3a48031691477683b670b127ab
5ba8979bf1a59e378c78a96553cbba74a2447fdb
22eb9fc0c2964165f80a8fbfb771de0cab51affed4592651f0ccb4ca83f2e434
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/vw-charity-ngo/css/effect.css?ver=0.8.4 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:54:49 GMT
Accept-Ranges: bytes
Content-Length: 1628
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
bonydashacofoundation.org/wp-content/themes/vw-charity-ngo/css/fontawesome-all.css?ver=0.8.4
206.72.196.187200 OK 71 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/themes/vw-charity-ngo/css/fontawesome-all.css?ver=0.8.4
IP 206.72.196.187:0
Hash 51d29024d1baa27ec59afd175eacabc9
5999cad39d9caabf93fcd0f0905cd0ab0c2e46cd
7802ab7abd053752bebf764dbf39c389fa17e47909fcdd317225f39efa6de14f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/vw-charity-ngo/css/fontawesome-all.css?ver=0.8.4 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:54:49 GMT
Accept-Ranges: bytes
Content-Length: 70942
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
bonydashacofoundation.org/wp-includes/css/dashicons.min.css?ver=6.0.2
206.72.196.187200 OK 59 kB URL HTTP/1.1 bonydashacofoundation.org/wp-includes/css/dashicons.min.css?ver=6.0.2
IP 206.72.196.187:0
File type ASCII text, with very long lines (58981)
Hash d68d6bf519169d86e155bad0bed833f8
27ba9c67d0e775fc4e6dd62011daf4c3902698fc
c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e
GET /wp-includes/css/dashicons.min.css?ver=6.0.2 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:51:40 GMT
Accept-Ranges: bytes
Content-Length: 59016
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
bonydashacofoundation.org/wp-content/themes/vw-charity-ngo/css/bootstrap.css?ver=0.8.4
206.72.196.187200 OK 196 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/themes/vw-charity-ngo/css/bootstrap.css?ver=0.8.4
IP 206.72.196.187:0
File type Unicode text, UTF-8 text, with very long lines (560)
Size 196 kB (195836 bytes)
Hash f6e962ab807e8058302d1272f059fe45
2ad339e5167d5541bc909802909864bedc9dc7c0
04d7687506d61e95371d3f311a1904bac4f8721e07123bf0cdc6c3715b8747e1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/vw-charity-ngo/css/bootstrap.css?ver=0.8.4 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:54:49 GMT
Accept-Ranges: bytes
Content-Length: 195836
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
bonydashacofoundation.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
206.72.196.187200 OK 11 kB URL HTTP/1.1 bonydashacofoundation.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 206.72.196.187:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:51:40 GMT
Accept-Ranges: bytes
Content-Length: 11224
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
bonydashacofoundation.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
206.72.196.187200 OK 90 kB URL HTTP/1.1 bonydashacofoundation.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 206.72.196.187:0
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:51:40 GMT
Accept-Ranges: bytes
Content-Length: 89521
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
bonydashacofoundation.org/wp-content/themes/vw-charity-ngo/css/animate.css?ver=0.8.4
206.72.196.187200 OK 71 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/themes/vw-charity-ngo/css/animate.css?ver=0.8.4
IP 206.72.196.187:0
Hash 55d2d0ffc90b1eea0e0c3174c2517022
f7f44dceb535cbed99dd46abbc4162d2a53d75b4
1738bc074d140f6bdfc5121ceb17887d926a8f09701aad8328ece31d8db48a5c
GET /wp-content/themes/vw-charity-ngo/css/animate.css?ver=0.8.4 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:54:49 GMT
Accept-Ranges: bytes
Content-Length: 70661
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
bonydashacofoundation.org/wp-content/themes/vw-charity-ngo/js/custom.js?ver=6.0.2
206.72.196.187200 OK 3.0 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/themes/vw-charity-ngo/js/custom.js?ver=6.0.2
IP 206.72.196.187:0
Hash 20e28ef5f53dad8095311bac556f34ce
083819808cc04bb892a06eaddc7cf269ad38c548
e86292d4b76d98cc911bbd51dd1cc19d7a0352ad756305e9ed0560117f7f2c58
GET /wp-content/themes/vw-charity-ngo/js/custom.js?ver=6.0.2 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:54:49 GMT
Accept-Ranges: bytes
Content-Length: 2993
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
bonydashacofoundation.org/wp-content/themes/vw-charity-ngo/js/wow.js?ver=6.0.2
206.72.196.187200 OK 16 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/themes/vw-charity-ngo/js/wow.js?ver=6.0.2
IP 206.72.196.187:0
Hash 521583389daef7bf759055e65bd9ea82
87c36443747243d074e4b3676f17b365cbabf909
c9f2bf38ab29fb171d00c0aff8bdf716c636f38cec35469c6e24ec3f3503f793
GET /wp-content/themes/vw-charity-ngo/js/wow.js?ver=6.0.2 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:54:49 GMT
Accept-Ranges: bytes
Content-Length: 15552
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
bonydashacofoundation.org/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
206.72.196.187200 OK 19 kB URL HTTP/1.1 bonydashacofoundation.org/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 206.72.196.187:0
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 57459b58fd7665a5e20b2345463df9c9
71c3b177ad1412d5e0b56d99f18bc345148df88b
6fecb89a29ee2bd397bb1bf58ecaa530a76f0654db71fadefd3cc70b0bc302bf
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:51:40 GMT
Accept-Ranges: bytes
Content-Length: 19142
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
bonydashacofoundation.org/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6
206.72.196.187200 OK 22 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6
IP 206.72.196.187:0
File type ASCII text, with very long lines (21821), with no line terminators
Hash 3f97a68905d330bde2987f0e70052cb2
9c48e323c34652828c3b5bcf4251fc4edd8a7038
7abd36a2f651330420d86187c125331d679408d1be7b6cd93efa64e08eaf80c7
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:53:37 GMT
Accept-Ranges: bytes
Content-Length: 21821
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
translate.googleapis.com/translate_static/css/translateelement.css
142.250.74.74200 OK 3.6 kB URL HTTP/2 translate.googleapis.com/translate_static/css/translateelement.css
IP 142.250.74.74:0
File type ASCII text, with very long lines (18670)
Hash 897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 09:18:56 GMT
expires: Sat, 17 Sep 2022 10:18:56 GMT
cache-control: public, max-age=3600
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
age: 571
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bonydashacofoundation.org/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
206.72.196.187200 OK 6.5 kB URL HTTP/1.1 bonydashacofoundation.org/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 206.72.196.187:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash 61449413a42d2daaa79dbe7298b40e21
d86c474164c603084397bdc50fb0e469d28b5772
f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:51:40 GMT
Accept-Ranges: bytes
Content-Length: 6475
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
bonydashacofoundation.org/wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.15
206.72.196.187200 OK 14 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.15
IP 206.72.196.187:0
Hash 9ce2ef9c51d872136c9bd85bd5428ea8
4b4f270db4ec228296f5127f22df9a0b502cec84
37b945e5fe609563e83b37edcbfe3d18aac072a55fc8962978afdf597a3c4aa8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.15 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:26 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:53:39 GMT
Accept-Ranges: bytes
Content-Length: 13797
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:28:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bonydashacofoundation.org/wp-content/plugins/ht-mega-for-elementor/assets/js/popper.min.js?ver=1.9.0
206.72.196.187200 OK 19 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/plugins/ht-mega-for-elementor/assets/js/popper.min.js?ver=1.9.0
IP 206.72.196.187:0
File type ASCII text, with very long lines (18860)
Hash 3621381129597bf34d48a9e2623e05c9
edb00146d1636c247c7afaa61f11aad0c0fc5120
3675f226f985b64eea6ae8544d5496a32d19993aae1ac4a3fa101263ef3206f7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ht-mega-for-elementor/assets/js/popper.min.js?ver=1.9.0 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:27 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:53:40 GMT
Accept-Ranges: bytes
Content-Length: 18994
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:28:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bonydashacofoundation.org/wp-content/plugins/ht-mega-for-elementor/assets/js/htbbootstrap.js?ver=1.9.0
206.72.196.187200 OK 63 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/plugins/ht-mega-for-elementor/assets/js/htbbootstrap.js?ver=1.9.0
IP 206.72.196.187:0
File type ASCII text, with very long lines (483)
Hash f2f60e70a7c89e10fcb5a0624167dbca
fea6d4919d9ec8d00ad46a4eaef058a10a1be6a6
0c28b1328b50f36e646f70a0e818f268e5c41435371a5011169ea255688bf585
GET /wp-content/plugins/ht-mega-for-elementor/assets/js/htbbootstrap.js?ver=1.9.0 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:27 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:53:40 GMT
Accept-Ranges: bytes
Content-Length: 62890
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.163200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bonydashacofoundation.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 16:40:18 GMT
expires: Fri, 15 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 146889
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:28:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bonydashacofoundation.org/wp-content/plugins/ht-mega-for-elementor/assets/js/waypoints.js?ver=1.9.0
206.72.196.187200 OK 9.0 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/plugins/ht-mega-for-elementor/assets/js/waypoints.js?ver=1.9.0
IP 206.72.196.187:0
File type Unicode text, UTF-8 text, with very long lines (8864)
Hash 0278360babe563031f14717901af810a
f6cf7b7b52fe55227871bbb39aa30bbcf2ae5673
52f4920ebcceb1b8a8f1553603c001846c55c14607df4df2eb749a48c875d392
GET /wp-content/plugins/ht-mega-for-elementor/assets/js/waypoints.js?ver=1.9.0 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:27 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:53:40 GMT
Accept-Ranges: bytes
Content-Length: 9029
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
bonydashacofoundation.org/wp-content/themes/vw-charity-ngo/js/bootstrap.js?ver=6.0.2
206.72.196.187200 OK 148 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/themes/vw-charity-ngo/js/bootstrap.js?ver=6.0.2
IP 206.72.196.187:0
File type ASCII text, with very long lines (620)
Size 148 kB (148253 bytes)
Hash 79b0236a5c469be970cf864236848729
0d908e852d5a7bdf57fa41dc5a02b8ec75ca82d3
2e19ab4c5320fbf4262cd16a9fc8f8c4ca8ed19b6a6ad536b47220c53f5686b9
GET /wp-content/themes/vw-charity-ngo/js/bootstrap.js?ver=6.0.2 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:27 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:54:49 GMT
Accept-Ranges: bytes
Content-Length: 148253
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
bonydashacofoundation.org/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6
206.72.196.187200 OK 999 B URL HTTP/1.1 bonydashacofoundation.org/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6
IP 206.72.196.187:0
File type ASCII text, with very long lines (999), with no line terminators
Hash 6a0e8318d42803736d2fafcc12238026
c955314a7e0a9a9871329b0f042c8f0b5df49a78
2648a1333fa24d383fd73a6beaac17156ae78f4267ff7407ad60e05a788df44c
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:27 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:53:37 GMT
Accept-Ranges: bytes
Content-Length: 999
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
bonydashacofoundation.org/wp-content/uploads/2020/08/cropped-Untitled-1-1-1.png
206.72.196.187200 OK 3.5 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/uploads/2020/08/cropped-Untitled-1-1-1.png
IP 206.72.196.187:0
File type PNG image data, 1600 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash 61f372e6522d1b0649e4a9e485fb6fb7
55ea5c66f515af86b7bab67a516c493a10608053
6103a7a51e5f12117c6407dec86bbb90ca8d4c1b0da5fdacd31769f43a12c9f3
GET /wp-content/uploads/2020/08/cropped-Untitled-1-1-1.png HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:27 GMT
Server: Apache
Last-Modified: Wed, 26 Aug 2020 16:56:56 GMT
Accept-Ranges: bytes
Content-Length: 3492
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
bonydashacofoundation.org/wp-content/themes/vw-charity-ngo/js/jquery.superfish.js?ver=6.0.2
206.72.196.187200 OK 7.4 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/themes/vw-charity-ngo/js/jquery.superfish.js?ver=6.0.2
IP 206.72.196.187:0
Hash 529d3118b334b9e3c5b18164b732ce9d
37482b4fd29d93164a55037d419d33312fc7942b
996862df1686747b978037477df2c3ec70effb20a7c5fbd9b4db095772d78b2c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/vw-charity-ngo/js/jquery.superfish.js?ver=6.0.2 HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:27 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:54:49 GMT
Accept-Ranges: bytes
Content-Length: 7423
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
bonydashacofoundation.org/wp-content/uploads/2020/08/cropped-cropped-logo1-1.png
206.72.196.187200 OK 8.7 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/uploads/2020/08/cropped-cropped-logo1-1.png
IP 206.72.196.187:0
File type PNG image data, 240 x 52, 8-bit/color RGBA, non-interlaced\012- data
Hash 3a9d58f76a0a8039675adc31e7ad14e3
ee708de3f77d2d43f424ab55bd4a4e670652a897
1228e2c8a94bd821a5b6051c741cf19a5066717dfec6aef204abbbadec80bf89
GET /wp-content/uploads/2020/08/cropped-cropped-logo1-1.png HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:27 GMT
Server: Apache
Last-Modified: Wed, 26 Aug 2020 13:42:21 GMT
Accept-Ranges: bytes
Content-Length: 8748
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
www.gstatic.com/recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js
142.250.74.163200 OK 158 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (581)
Size 158 kB (157726 bytes)
Hash 6519c7c04cf32a57b1c5ee45a73c233e
4939bb921988e9eb13780cc2244f3099776e9bfb
8352dd4e3e0fe82562cdc280c020fc31d2c6d054f7ead441a3b18de8ef04401b
GET /recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bonydashacofoundation.org
Connection: keep-alive
Referer: https://bonydashacofoundation.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 05:37:29 GMT
expires: Thu, 14 Sep 2023 05:37:29 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Sep 2022 00:24:01 GMT
content-type: text/javascript
age: 273058
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bonydashacofoundation.org/wp-content/uploads/2019/10/Capture.png
206.72.196.187200 OK 6.4 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/uploads/2019/10/Capture.png
IP 206.72.196.187:0
File type PNG image data, 180 x 65, 8-bit/color RGBA, non-interlaced\012- data
Hash 28742d2403a4ee5be7a9ab6693eb6f87
b3cedb4f1f3186dc19e4de560a0d9c1db5d7cc95
9041b55deabb2616c0daf8bb84ef7b739132c1605d8ac33b101f0a430f315c6c
GET /wp-content/uploads/2019/10/Capture.png HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:27 GMT
Server: Apache
Last-Modified: Thu, 10 Oct 2019 15:38:39 GMT
Accept-Ranges: bytes
Content-Length: 6387
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
bonydashacofoundation.org/wp-content/uploads/2019/10/Capture-150x65.png
206.72.196.187200 OK 6.7 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/uploads/2019/10/Capture-150x65.png
IP 206.72.196.187:0
File type PNG image data, 150 x 65, 8-bit/color RGBA, non-interlaced\012- data
Hash bd475950984dddd9694ff2503ee612f7
07039892e1eb4064e37e3dbe6ed7a27a91828313
95f8269fa90e3aac2476320d3c99d9682115612c31d748dcf129c5bef73ba766
GET /wp-content/uploads/2019/10/Capture-150x65.png HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/particuliers-societegenerale/2c5d3a6f844356d/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:27 GMT
Server: Apache
Last-Modified: Thu, 10 Oct 2019 15:38:39 GMT
Accept-Ranges: bytes
Content-Length: 6673
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
translate.google.com/translate_a/element.js?cb=GoogleLanguageTranslatorInit
142.250.74.46200 OK 184 kB URL HTTP/2 translate.google.com/translate_a/element.js?cb=GoogleLanguageTranslatorInit
IP 142.250.74.46:0
File type ASCII text, with very long lines (560)
Size 184 kB (184430 bytes)
Hash 8a33bd176850447c88f8b8caf52a3087
b9f5dda6f37b938b1b2ce7a06a0b7df25570bc73
da265353aae8f3882c40cc8d52cb3bdf795f0cf3f223f2e4eb478e111d1a9814
GET /translate_a/element.js?cb=GoogleLanguageTranslatorInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 17 Sep 2022 09:28:26 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+132; expires=Mon, 16-Sep-2024 09:28:26 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bonydashacofoundation.org/wp-content/plugins/google-language-translator/images/flags.png
206.72.196.187200 OK 55 kB URL HTTP/1.1 bonydashacofoundation.org/wp-content/plugins/google-language-translator/images/flags.png
IP 206.72.196.187:0
File type PNG image data, 169 x 520, 8-bit/color RGBA, non-interlaced\012- data
Hash 89c95031b56b90591fd4ef80558f8c25
9599f52c93b38f3e68686f299b3184be0a9de63a
d64c12a76a61096f3a14aa795d12c3fc0de8e5781ef2e1af3b66517e65d7f00e
GET /wp-content/plugins/google-language-translator/images/flags.png HTTP/1.1
Host: bonydashacofoundation.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.15
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:28:27 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 13:53:39 GMT
Accept-Ranges: bytes
Content-Length: 54996
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
142.250.74.170200 OK 1.4 kB URL HTTP/2 translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP 142.250.74.170:0
Hash 3ad547ec47ef63d87eff80e53d6dd861
20cd334266b4bc9b47966d5487f0a2b2d41db765
c9b9dc1b30d38db2a72068eb7d8a5d1af32006b64263cab5e89f500f62856ea3
GET /v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 17 Sep 2022 09:28:27 GMT
server: ESF
cache-control: private
content-length: 1392
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expires: Sat, 17 Sep 2022 09:28:27 GMT
set-cookie: NID=511=txd8QSAFojTPdIC2VBNAPnocxUtJiG66Jc7cxFLXMAFiTCP79-GHovdxumSQ6qNUr-_q5r3hiveVUn5jS7WpPaELDWmJzfLoSYeibDiF7_zdXuo99oQM9xzYRpGagTlhMOX8zFyWLnTbDVUfOe0poXeDfi-qftHRXapikSgUujQ; expires=Sun, 19-Mar-2023 09:28:27 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+980; expires=Mon, 16-Sep-2024 09:28:27 GMT; path=/; domain=.googleapis.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
142.250.74.170200 OK 1.4 kB URL HTTP/2 translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP 142.250.74.170:0
Hash 3ad547ec47ef63d87eff80e53d6dd861
20cd334266b4bc9b47966d5487f0a2b2d41db765
c9b9dc1b30d38db2a72068eb7d8a5d1af32006b64263cab5e89f500f62856ea3
GET /v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 17 Sep 2022 09:28:27 GMT
server: ESF
cache-control: private
content-length: 1392
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expires: Sat, 17 Sep 2022 09:28:27 GMT
set-cookie: NID=511=WNWe5yHYKSn_zLrxtjRHEEqzq1FEg1QPIrlreG4u413aCbE-nwoyY8RBKvXixytz6mha9BsgihUSlKTlCL9qKpxELJqL_g0XvPqDiBnbCJdr0vaIFJ_ynXSTLRlaHT6uDSav0wWIP5FQJ5Rcgkduuv-KjePLDs5P11wzcnjJVvA; expires=Sun, 19-Mar-2023 09:28:27 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+480; expires=Mon, 16-Sep-2024 09:28:27 GMT; path=/; domain=.googleapis.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2
142.250.74.46200 OK 0 B URL HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2
IP 142.250.74.46:0
GET /translate_a/element.js?cb=googleTranslateElementInit2 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 17 Sep 2022 09:28:26 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+861; expires=Mon, 16-Sep-2024 09:28:26 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=PT+Sans%3A300%2C400%2C600%2C700%2C800%2C900%7CRoboto%3A400%2C700%7CRoboto+Condensed%3A400%2C700%7COpen+Sans%7COverpass%7CMontserrat%3A300%2C400%2C600%2C700%2C800%2C900%7CPlayball%3A300%2C400%2C600%2C700%2C800%2C900%7CAlegreya%3A300%2C400%2C600%2C700%2C800%2C900%7CJulius+Sans+One%7CArsenal%7CSlabo%7CLato%7COverpass+Mono%7CSource+Sans+Pro%7CRaleway%7CMerriweather%7CDroid+Sans%7CRubik%7CLora%7CUbuntu%7CCabin%7CArimo%7CPlayfair+Display%7CQuicksand%7CPadauk%7CMuli%7CInconsolata%7CBitter%7CPacifico%7CIndie+Flower%7CVT323%7CDosis%7CFrank+Ruhl+Libre%7CFjalla+One%7COxygen%7CArvo%7CNoto+Serif%7CLobster%7CCrimson+Text%7CYanone+Kaffeesatz%7CAnton%7CLibre+Baskerville%7CBree+Serif%7CGloria+Hallelujah%7CJosefin+Sans%7CAbril+Fatface%7CVarela+Round%7CVampiro+One%7CShadows+Into+Light%7CCuprum%7CRokkitt%7CVollkorn%7CFrancois+One%7COrbitron%7CPatua+One%7CAcme%7CSatisfy%7CJosefin+Slab%7CQuattrocento+Sans%7CArchitects+Daughter%7CRusso+One%7CMonda%7CRighteous%7CLobster+Two%7CHammersmith+One%7CCourgette%7CPermanent+Marker%7CCherry+Swash%7CCormorant+Garamond%7CPoiret+One%7CBenchNine%7CEconomica%7CHandlee%7CCardo%7CAlfa+Slab+One%7CAveria+Serif+Libre%7CCookie%7CChewy%7CGreat+Vibes%7CComing+Soon%7CPhilosopher%7CDays+One%7CKanit%7CShrikhand%7CTangerine%7CIM+Fell+English+SC%7CBoogaloo%7CBangers%7CFredoka+One%7CBad+Script%7CVolkhov%7CShadows+Into+Light+Two%7CMarck+Script%7CSacramento%7CUnica+One&ver=6.0.2
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=PT+Sans%3A300%2C400%2C600%2C700%2C800%2C900%7CRoboto%3A400%2C700%7CRoboto+Condensed%3A400%2C700%7COpen+Sans%7COverpass%7CMontserrat%3A300%2C400%2C600%2C700%2C800%2C900%7CPlayball%3A300%2C400%2C600%2C700%2C800%2C900%7CAlegreya%3A300%2C400%2C600%2C700%2C800%2C900%7CJulius+Sans+One%7CArsenal%7CSlabo%7CLato%7COverpass+Mono%7CSource+Sans+Pro%7CRaleway%7CMerriweather%7CDroid+Sans%7CRubik%7CLora%7CUbuntu%7CCabin%7CArimo%7CPlayfair+Display%7CQuicksand%7CPadauk%7CMuli%7CInconsolata%7CBitter%7CPacifico%7CIndie+Flower%7CVT323%7CDosis%7CFrank+Ruhl+Libre%7CFjalla+One%7COxygen%7CArvo%7CNoto+Serif%7CLobster%7CCrimson+Text%7CYanone+Kaffeesatz%7CAnton%7CLibre+Baskerville%7CBree+Serif%7CGloria+Hallelujah%7CJosefin+Sans%7CAbril+Fatface%7CVarela+Round%7CVampiro+One%7CShadows+Into+Light%7CCuprum%7CRokkitt%7CVollkorn%7CFrancois+One%7COrbitron%7CPatua+One%7CAcme%7CSatisfy%7CJosefin+Slab%7CQuattrocento+Sans%7CArchitects+Daughter%7CRusso+One%7CMonda%7CRighteous%7CLobster+Two%7CHammersmith+One%7CCourgette%7CPermanent+Marker%7CCherry+Swash%7CCormorant+Garamond%7CPoiret+One%7CBenchNine%7CEconomica%7CHandlee%7CCardo%7CAlfa+Slab+One%7CAveria+Serif+Libre%7CCookie%7CChewy%7CGreat+Vibes%7CComing+Soon%7CPhilosopher%7CDays+One%7CKanit%7CShrikhand%7CTangerine%7CIM+Fell+English+SC%7CBoogaloo%7CBangers%7CFredoka+One%7CBad+Script%7CVolkhov%7CShadows+Into+Light+Two%7CMarck+Script%7CSacramento%7CUnica+One&ver=6.0.2
IP 142.250.74.10:0
GET /css?family=PT+Sans%3A300%2C400%2C600%2C700%2C800%2C900%7CRoboto%3A400%2C700%7CRoboto+Condensed%3A400%2C700%7COpen+Sans%7COverpass%7CMontserrat%3A300%2C400%2C600%2C700%2C800%2C900%7CPlayball%3A300%2C400%2C600%2C700%2C800%2C900%7CAlegreya%3A300%2C400%2C600%2C700%2C800%2C900%7CJulius+Sans+One%7CArsenal%7CSlabo%7CLato%7COverpass+Mono%7CSource+Sans+Pro%7CRaleway%7CMerriweather%7CDroid+Sans%7CRubik%7CLora%7CUbuntu%7CCabin%7CArimo%7CPlayfair+Display%7CQuicksand%7CPadauk%7CMuli%7CInconsolata%7CBitter%7CPacifico%7CIndie+Flower%7CVT323%7CDosis%7CFrank+Ruhl+Libre%7CFjalla+One%7COxygen%7CArvo%7CNoto+Serif%7CLobster%7CCrimson+Text%7CYanone+Kaffeesatz%7CAnton%7CLibre+Baskerville%7CBree+Serif%7CGloria+Hallelujah%7CJosefin+Sans%7CAbril+Fatface%7CVarela+Round%7CVampiro+One%7CShadows+Into+Light%7CCuprum%7CRokkitt%7CVollkorn%7CFrancois+One%7COrbitron%7CPatua+One%7CAcme%7CSatisfy%7CJosefin+Slab%7CQuattrocento+Sans%7CArchitects+Daughter%7CRusso+One%7CMonda%7CRighteous%7CLobster+Two%7CHammersmith+One%7CCourgette%7CPermanent+Marker%7CCherry+Swash%7CCormorant+Garamond%7CPoiret+One%7CBenchNine%7CEconomica%7CHandlee%7CCardo%7CAlfa+Slab+One%7CAveria+Serif+Libre%7CCookie%7CChewy%7CGreat+Vibes%7CComing+Soon%7CPhilosopher%7CDays+One%7CKanit%7CShrikhand%7CTangerine%7CIM+Fell+English+SC%7CBoogaloo%7CBangers%7CFredoka+One%7CBad+Script%7CVolkhov%7CShadows+Into+Light+Two%7CMarck+Script%7CSacramento%7CUnica+One&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bonydashacofoundation.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 17 Sep 2022 09:28:26 GMT
date: Sat, 17 Sep 2022 09:28:26 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2