www.memararch.com/
108.167.172.202301 Moved Permanently 0 B IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 15 Dec 2022 22:49:16 GMT
Server: nginx/1.23.2
Content-Type: text/html; charset=UTF-8
Content-Length: 0
X-UA-Compatible: IE=edge
X-Redirect-By: WordPress
Location: https://memararch.com/
Cache-Control: max-age=7200
Expires: Fri, 16 Dec 2022 00:41:54 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
X-Server-Cache: true
X-Proxy-Cache: HIT
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 96367f956a4177aec7e7e80221539d58
8dcad10fde96c139d1ef212388cb6755fe3fe077
f4f9bdb5180359dfd734cef1e6f1b54bc9d8f72cae557366eb74f22100b94dc4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F4F9BDB5180359DFD734CEF1E6F1B54BC9D8F72CAE557366EB74F22100B94DC4"
Last-Modified: Thu, 15 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3265
Expires: Thu, 15 Dec 2022 23:43:41 GMT
Date: Thu, 15 Dec 2022 22:49:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4a5e9bc8b7891ac5f4552c29bcbaedb0
39735081eeb64eae477c61c1147daeb68fb37b22
c465efaf205ff2992af02c16187ca14a658cd5335b892903374f3adab32a8cd9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C465EFAF205FF2992AF02C16187CA14A658CD5335B892903374F3ADAB32A8CD9"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4355
Expires: Fri, 16 Dec 2022 00:01:51 GMT
Date: Thu, 15 Dec 2022 22:49:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5b38399fcc8246505e5e6b0f62803a5a
bb374f8d97b2bd798873d74c6bbab20ad6843e96
406ab3af8adf2b151c052a06c0379fd8d83d3362e90c17ac2e5481b6b9a7441f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "406AB3AF8ADF2B151C052A06C0379FD8D83D3362E90C17AC2E5481B6B9A7441F"
Last-Modified: Thu, 15 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14189
Expires: Fri, 16 Dec 2022 02:45:45 GMT
Date: Thu, 15 Dec 2022 22:49:16 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 15 Dec 2022 22:45:06 GMT
content-type: application/json
age: 250
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: CFGowVH5NnqCndOwF+Yr5yZw5CeJC2rBF+4BXuHIp9QJO+JENxRYQyJ8ZKbVMw+28A5rsJ5i46U=
x-amz-request-id: 846G1PWYWB1S4MPT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 15 Dec 2022 21:51:04 GMT
age: 3492
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Dec 2022 22:49:16 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 15 Dec 2022 22:08:00 GMT
age: 2477
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d35ca70c687f432e7a941c9eba6a320b
dca35ec747e2b2ff313d493442759bb467384193
dc48e5be0f7f7bfd26e164ecf2b332323dd689db73d97b156fdb9005fe110b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DC48E5BE0F7F7BFD26E164ECF2B332323DD689DB73D97B156FDB9005FE110B0D"
Last-Modified: Wed, 14 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21577
Expires: Fri, 16 Dec 2022 04:48:54 GMT
Date: Thu, 15 Dec 2022 22:49:17 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b9f0adeb27a19629aeff6f34de67f3ad
3876d1b871d7da6d18de23c2edb301eb30728066
c5744a90c8f66629aa2331465a32afe0d430b36d16fd98bc821e370f1b24463c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2797
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 22:49:17 GMT
Last-Modified: Thu, 15 Dec 2022 22:02:40 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7554f75e4959d216038e95962579e741
10f237248a234544391eb351e97515d385a372b3
cb2bc78887ed330dee49076c04ba87723fdc2a869a124dba2a475cac174480da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 22:49:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
memararch.com/wp-includes/css/dist/editor/style.min.css?ver=6.1.1
108.167.172.202200 OK 5.4 kB URL HTTP/2 memararch.com/wp-includes/css/dist/editor/style.min.css?ver=6.1.1
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (18793), with no line terminators
Hash d48b1d0e0700f3e9c25ac2f201774d81
459fda3f8d5143e274443b6287e7f7652b93e4d3
c44fcaf2e516d1d859d05f8593332aa5a951cb3f60b1c3e5a4cbd57e30505de7
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/editor/style.min.css?ver=6.1.1 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 20 Sep 2022 22:43:30 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 5371
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/360-image/dist/blocks.style.build.css
108.167.172.202200 OK 166 B URL HTTP/2 memararch.com/wp-content/plugins/360-image/dist/blocks.style.build.css
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (348)
Hash 0cc5e3c7359d8a6418b8332d0700e8cb
f0fa1323ddfd9e8bffa7d5a4918f399580f4f72e
fe3ed87db6ed4ee8cd5134a203be2dfbe44888598e29cb1e3d170228833a21b7
GET /wp-content/plugins/360-image/dist/blocks.style.build.css HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Dec 2021 02:36:36 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 166
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-includes/css/classic-themes.min.css?ver=1
108.167.172.202200 OK 189 B URL HTTP/2 memararch.com/wp-includes/css/classic-themes.min.css?ver=1
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 25 Oct 2022 20:45:16 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 189
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/wp-pagenavi/pagenavi-css.css?ver=2.70
108.167.172.202200 OK 239 B URL HTTP/2 memararch.com/wp-content/plugins/wp-pagenavi/pagenavi-css.css?ver=2.70
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 21fec527969cbcfec759744ce51f94c0
827130fb99b0005a5206028abfe82e93610184f2
fe2a280a5ffe9f5d3b1bf125035d478e46bae689a2f0cde07d48bef1ba7c74b1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-pagenavi/pagenavi-css.css?ver=2.70 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 11 Aug 2022 12:07:42 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 239
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7554f75e4959d216038e95962579e741
10f237248a234544391eb351e97515d385a372b3
cb2bc78887ed330dee49076c04ba87723fdc2a869a124dba2a475cac174480da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 22:49:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
memararch.com/wp-includes/css/dist/nux/style.min.css?ver=6.1.1
108.167.172.202200 OK 775 B URL HTTP/2 memararch.com/wp-includes/css/dist/nux/style.min.css?ver=6.1.1
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2210)
Hash 09a634a6bf2f5c12f6a440d03cbc3a38
9ffb0528a119c216f4ce1dabe5d47fc1ca5504a6
4961dddaf2c23bc69c1a12bdf9b194bf28702de75be6828729e8c13243fa5355
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/nux/style.min.css?ver=6.1.1 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 20 Sep 2022 22:43:30 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 775
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-includes/css/dist/reusable-blocks/style.min.css?ver=6.1.1
108.167.172.202200 OK 256 B URL HTTP/2 memararch.com/wp-includes/css/dist/reusable-blocks/style.min.css?ver=6.1.1
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (522), with no line terminators
Hash 6e681c05f195de8a13c788100a52efbe
bc3f86c694b77564ad8e5c6ea1b886582e856615
19ef86dff84d2754d90efd3fe887eaf56333833a01fc60bb7bbb93a54f8a025a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/reusable-blocks/style.min.css?ver=6.1.1 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 08 Nov 2021 22:29:22 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 256
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.43.228.5101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.228.5:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: XtEKG64in68SSavl+CCcXA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Cgt8FV+yqB4qc2POdsOIUz1t64Q=
memararch.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
108.167.172.202409 Conflict 83 B URL HTTP/2 memararch.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
memararch.com/wp-content/uploads/elementor/css/post-943.css?ver=1668887347
108.167.172.202200 OK 178 B URL HTTP/2 memararch.com/wp-content/uploads/elementor/css/post-943.css?ver=1668887347
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (410), with no line terminators
Hash ed7a7897450bd3a454bd590d68aa4bbd
8ab771f43ce04dee30f461ee6a25f7f169b848b0
d149edb72bb88c46acbd064326515a0b4127a6884710bafe800f7fdb6d038845
GET /wp-content/uploads/elementor/css/post-943.css?ver=1668887347 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:49:07 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 178
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
108.167.172.202409 Conflict 83 B URL HTTP/2 memararch.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
memararch.com/wp-content/themes/oceanwp/assets/js/blog-masonry.min.js?ver=3.3.6
108.167.172.202200 OK 1.2 kB URL HTTP/2 memararch.com/wp-content/themes/oceanwp/assets/js/blog-masonry.min.js?ver=3.3.6
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3445), with no line terminators
Hash 535690d26a0be3369ca8eaadd3fe32de
f2d30161ef37bea38a1a314756eca519ef1534d9
c4285d3bd507fd9955e11a54e67923d9384dbc432ca034c1b96ea96abd768b3d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/blog-masonry.min.js?ver=3.3.6 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:50:19 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 1249
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/uploads/elementor/css/post-5.css?ver=1668887346
108.167.172.202200 OK 397 B URL HTTP/2 memararch.com/wp-content/uploads/elementor/css/post-5.css?ver=1668887346
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1515), with no line terminators
Hash 6f4f0a71da7c8a50961f3bbc7b5fdd4d
3f1e48c800ec446c59a271a642975ab39192227a
706e4fe1da0139356035f19d9bccced13844899d791b4bb739c6e2cc67eaf8f7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-5.css?ver=1668887346 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:49:06 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 397
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
108.167.172.202200 OK 309 B URL HTTP/2 memararch.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (483)
Hash 0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:48:47 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 309
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.2
108.167.172.202200 OK 900 B URL HTTP/2 memararch.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.2
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3432)
Hash 1e0ef5b4ebd931aecd01564980628978
e618b92e03a6c4bd4abffed22abb1e835c05a601
1deef467f6db854d82e8c6288086664c7cf60a41b18bb7216d63bb83061ba878
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.2 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:48:49 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 900
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.6
108.167.172.202200 OK 1.6 kB URL HTTP/2 memararch.com/wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.6
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4111), with no line terminators
Hash 55c28a96019c2ed1d7b32ca9c480c3a9
5d09ff66dc86346a2cac13d4fa183b1f4cf03a98
25bd6cd722365cd513dc49de290bc7700ac8812154669f443bf435b5591a0cb8
GET /wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.6 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:50:19 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 1587
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/uploads/elementor/css/post-295.css?ver=1668887347
108.167.172.202200 OK 1.3 kB URL HTTP/2 memararch.com/wp-content/uploads/elementor/css/post-295.css?ver=1668887347
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2646)
Hash d0d709b53249010c5ead58ef846684ba
ccb69f42bad881b02d02b6429ddb9f5d94daa61f
d0be8e05187162cf09f25c37c4392e3497d1235b657ef40534b346c2d1bcbd48
GET /wp-content/uploads/elementor/css/post-295.css?ver=1668887347 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:49:07 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 1334
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1
108.167.172.202200 OK 3.0 kB URL HTTP/2 memararch.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10019)
Hash c2b5af6052f630a96e450e5e2a3cea52
00ca76a8828a1bbec1534eb10786804fd36492f2
58f6cc2d4fa3e528622102975fb62949dc0170bd47b588a67318d18552a57d59
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:48:47 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 2997
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
108.167.172.202200 OK 4.6 kB URL HTTP/2 memararch.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Nov 2020 17:06:06 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4618
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
108.167.172.202200 OK 13 kB URL HTTP/2 memararch.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (57726)
Hash dc63c0a8e2d5857cc7a00a4b5456dabb
ee29df5eb2a4bf3eb805b160551c1afd84b42599
035ef40b1dd3df1eefb2dd3c8c2096425727fb939b06f3aa0bc6ef91dafd5441
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:48:47 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 12577
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
108.167.172.202200 OK 323 B URL HTTP/2 memararch.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash b24c24b7da3ffeed6ae8ade102a4d317
c4445b3977ce704b927508108e100213eea67a3c
5421ad49b70f379553eaceec744d753e74d4b065966c08aa7c7dd949553ca9a8
GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 09:17:48 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 323
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0
108.167.172.202200 OK 2.7 kB URL HTTP/2 memararch.com/wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10927), with no line terminators
Hash 33837e3bef6f61af0e1e62cda4a4c553
cbf40ac1011f4f33c732c0016ce776768a8b2347
f304fccd957ef59832306ba68e90ad93989058d7e03808dd6ad67d39f711c19a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:50:19 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 2692
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.6
108.167.172.202200 OK 945 B URL HTTP/2 memararch.com/wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.6
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2002), with no line terminators
Hash ae241cb19b037d25fc677aafe4ec169a
926623983727480bdcb1d052696ea689f12f0145
c18ae0249ebf2095a3c984cd3beaa3696e3b1d100b2d4dfce77fb1a7957e0666
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.6 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:50:19 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 945
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
108.167.172.202409 Conflict 83 B URL HTTP/2 memararch.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
memararch.com/wp-content/themes/oceanwp/assets/js/drop-down-search.min.js?ver=3.3.6
108.167.172.202200 OK 2.4 kB URL HTTP/2 memararch.com/wp-content/themes/oceanwp/assets/js/drop-down-search.min.js?ver=3.3.6
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7540), with no line terminators
Hash 066f7d5c418e8ffed3432d290e15c51a
cff05ac32f7ee7476095962a96dbf8ae2f261121
6bbaaee2d35d65c853e5386d324445c4c4e0bb0ed3ec002afa6ad13b0ce94c57
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/drop-down-search.min.js?ver=3.3.6 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:50:19 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 2358
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
108.167.172.202200 OK 2.1 kB URL HTTP/2 memararch.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5477)
Hash f0bd7ad12acdee26cbb2701c1ba3610b
53c5d15129860868b60b74cb010b2c6050a64f69
e6d0cb19e56d22e8e511c23ca2bd233bedb40e3c7cf4ff38fe6f059bc7e0c64f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Jun 2020 01:53:28 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 2103
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.6
108.167.172.202200 OK 1.7 kB URL HTTP/2 memararch.com/wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.6
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5181), with no line terminators
Hash 699f1a1811abd2c2f90b725cd6f64a8b
d750447caaf519625c420597badb9b37e42f765c
713262847a1d4b57ac7a77318577eab726eb3725e76f5b59d30029c7bbad0efe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.6 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:50:19 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 1671
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
108.167.172.202200 OK 2.3 kB URL HTTP/2 memararch.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4918)
Hash afe0ea20b00c3b25a89a6b2d6a98c6ac
53c0425fb9abdc217a90ec20509996cd2a5f9e1d
f70c2aa0ee7d185b9ded30b1f2037e4fbd828583d61f68eab99fd2f37b36b2a3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:48:47 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 2312
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.2
108.167.172.202200 OK 2.9 kB URL HTTP/2 memararch.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.2
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8014), with no line terminators
Hash 1c44ef5e10d4a8e0d89d78ad512e2cbc
6b5a049fefb1c791a9f84e9a97c9256ad0fae8ac
7f3df0933239d81fd6c58b50ea4b943db51c48aecd636b249514937c91c03d62
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.2 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:48:49 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 2937
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1
108.167.172.202200 OK 1.2 kB URL HTTP/2 memararch.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2620), with no line terminators
Hash 55936584085d0d310919b755eda1ab3f
be317c3b2ed5143669375295b3107e591bf708da
aad2265c39cafa6e01b791b1ef5025a2d237ee91346ef446beb722fdcd578d58
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:48:47 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 1187
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/uploads/elementor/css/global.css?ver=1668887347
108.167.172.202200 OK 3.6 kB URL HTTP/2 memararch.com/wp-content/uploads/elementor/css/global.css?ver=1668887347
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (21760)
Hash aa0f10f41835f836115ce80a91aefa04
49d043ba183533dc0a2038e90eea6c8625b2fe79
b3b5d5d5bec8c73129cb993c86d450bc7bc28e5e71a0a5046b687b67d3aaed75
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/global.css?ver=1668887347 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:49:07 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 3628
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8
108.167.172.202200 OK 374 B URL HTTP/2 memararch.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (754), with no line terminators
Hash ef785f463505633971eae5c08ad626d4
624e22257f386801822229db3a4bbd2e24b25e2f
b2a0dc77f0f79d81698a7e3893e16ecba7b0d980b80a5233656d9b11f1d8160d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:48:55 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 374
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-includes/js/wp-util.min.js?ver=6.1.1
108.167.172.202200 OK 758 B URL HTTP/2 memararch.com/wp-includes/js/wp-util.min.js?ver=6.1.1
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1391)
Hash 60bc75e3b14030c62d9fd3a3d317d8a8
6d919bbd05a3984a8e5e67b693e6d5d41cc885f9
e22df84be1a3ffe3b54352a4a39e14adb3fac69f2ce755e4c7babbc243c5bb4b
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-util.min.js?ver=6.1.1 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 20 Sep 2022 10:52:10 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 758
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
108.167.172.202200 OK 4.0 kB URL HTTP/2 memararch.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19233)
Hash 2701214b028ad24fa347df8335b36d12
156bc8a7ad2657f00881890637f07c6052636499
9a6e62615ceeec7a9763e4f9614e4715d04fd87873b23db2b3ead06c996cad27
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:48:47 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4008
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.6
108.167.172.202200 OK 4.4 kB URL HTTP/2 memararch.com/wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.6
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14087), with no line terminators
Hash d83fe1f96cfff395d21804efba678e06
bf3f14c77ab0e4732d613047ede2ffcb22212762
d9e47185010cf203421df4f8e76bcd15b050e9be79fff841882b916e3ccec30a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.6 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:50:19 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4428
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
108.167.172.202200 OK 5.3 kB URL HTTP/2 memararch.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 12:56:24 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 5321
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.6
108.167.172.202200 OK 6.1 kB URL HTTP/2 memararch.com/wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.6
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19789), with no line terminators
Hash 515432617a2f12b04ac2e982f322b250
735b841662863bd0564feb8d6bc7b7c6b9e16680
18919c29b8417eeccc5e0e9d3d2356dded751ffdb74cde8fd341e77862280b3d
GET /wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.6 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:50:19 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 6113
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13
108.167.172.202200 OK 6.4 kB URL HTTP/2 memararch.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 1a7cae61a8acbbcbd0eee38e317f0252
9234b65965a461535a05fc527c9ab420d13e5da0
54e1cad5404f393f2edf04a7c90a79acdec2eeaae6d7cf167701f952dc8d7e9b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 09:17:48 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 6389
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1
108.167.172.202200 OK 13 kB URL HTTP/2 memararch.com/wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (59158), with CRLF line terminators
Hash 584d74a59e0891520fd39d9c48d78af7
a5aca696eb48cbd6f162b011b250906f3995b9c4
6d413b154af81e9abec7a4bcd0a77ddb5272bbf017c304a9e6c487a91f53287d
GET /wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:50:19 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 12867
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
108.167.172.202200 OK 12 kB URL HTTP/2 memararch.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (1646)
Hash e56098a703c5beb99abc9c3a870be594
76e54634e0628ab91310c760d619360151e26be1
0eb4438e57550f2c2a321d45a5cb1c92fb22d58f6dbcc9c189fc3bd1e4f78b8f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 09:17:48 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 11654
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
108.167.172.202200 OK 4.2 kB URL HTTP/2 memararch.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10544)
Hash 552977febe8ef2c71b0806dfaefd2552
01baebfd09383c5d44f066e7b5540fcca6a5eae4
7895907f5a4f54c08c4705b1a194e21c556d68027c5e0a70d4c05b377e712b1d
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:48:47 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4200
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.6
108.167.172.202200 OK 3.9 kB URL HTTP/2 memararch.com/wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.6
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12402), with no line terminators
Hash 9aa01f8e3ffba4f4764144bd99f7174f
5368c505b4f9255011cebd0783336d425ac1d358
60d49256633b3b3f4fcb29156b5b8f3720e1fc21cbb7c3fad1ac108e9582fead
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.6 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:50:19 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 3913
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.6
108.167.172.202200 OK 9.2 kB URL HTTP/2 memararch.com/wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.6
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (20087), with CRLF line terminators
Hash 988289756c037bb0681eb46c632c3ba5
8327b20ee783345d4333df7ad1f69e2dd2767f5f
abcf4d4666ef0f6e42ef979c17894322d0f4022efeb7b95db5ed8cdf562d5479
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.6 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:50:19 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 9206
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
108.167.172.202200 OK 8.3 kB URL HTTP/2 memararch.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 838560e989767f2ef5951b9eeee20352
6bf8419cb4d68d9beced9e4b79b22b347ae16a46
72e6d275c5229613a59aef94523fc6a96330553976aee003d8544d5806fa0c3d
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 24 Sep 2022 02:55:30 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 8344
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-includes/js/underscore.min.js?ver=1.13.4
108.167.172.202200 OK 8.3 kB URL HTTP/2 memararch.com/wp-includes/js/underscore.min.js?ver=1.13.4
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (18798)
Hash ac9c7baaab74ef2576932d5798161987
fa202113e12b09696788a7024984879bddd29143
c03d52f8f157e9209646e3e696e9845d7d2b3cf3e73c8204f371b7393e738026
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 27 Sep 2022 22:18:26 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 8305
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/themes/oceanwp/assets/js/vendors/isotope.pkgd.min.js?ver=3.0.6
108.167.172.202200 OK 13 kB URL HTTP/2 memararch.com/wp-content/themes/oceanwp/assets/js/vendors/isotope.pkgd.min.js?ver=3.0.6
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32019), with CRLF line terminators
Hash 9e4c7c84c5c37bb9020c65610f5bcb20
4a701612443fa4891f711ba88fc6a298deabf82d
806ea2ffabf83d4c253dfbd74b829931c61d1852ecb50b62798c036cb53d59df
GET /wp-content/themes/oceanwp/assets/js/vendors/isotope.pkgd.min.js?ver=3.0.6 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:50:19 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 13113
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
108.167.172.202200 OK 13 kB URL HTTP/2 memararch.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (32907)
Hash ec532bc72e833d74239248a507033f2d
e682bb6b3a3d8dce061c9974064efa177b286cbc
5225c44ca2b4081202505c1b0a9c16446eda2d51038ac8ed1a5eea1630b0541b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:48:47 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 13291
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
108.167.172.202200 OK 16 kB URL HTTP/2 memararch.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (40474)
Hash 6aeb2153cae643eef82bc2bfd981284f
72ded3873d2eca2490b951a270c2ad90d2be820f
e1f85226ca5e06d9aa02a495ab567529e78f5aeae6924566e58e18debe6f38bb
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:48:47 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 16151
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.1
108.167.172.202200 OK 17 kB URL HTTP/2 memararch.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.1
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (43101)
Hash 38a87ff524e8c045d28f62eb94a0cd7a
fe483c45a46432fdec74917f92e814730adef61b
e9c68236f1feaae21075cfdc23e4f06c99e303b089c0e5718a93ca83a42b27dc
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.1 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:48:47 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 16899
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d8ee7b5ed9f1ce2717492af01f420e1f
1e1cfe7134e0d88f1398c5e8b54c2632a7d3459b
1b0f0eff510a5eee48139d1f2a02a4f98109541998da638034bc04b05ef72d32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 22:49:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2e709a04ea80113c435ca4f9d37e93e7
053f34d74eded192d698bb20956897ec3e3ad23b
2535554bd9d9004c7888cde496278d847002218fb1d35a3d4bacdd98c8a92ff9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 22:49:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-KSNBPLZ
142.250.74.168200 OK 39 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-KSNBPLZ
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash df932312bbf7c454f9a597d2634bda35
48fd777889f8f08b9f510362e8f3241c51607843
aa88a440c5792f66bb49cabea1fcae3bed82bbb3589e641392858926a6ae6b3a
GET /gtm.js?id=GTM-KSNBPLZ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 15 Dec 2022 22:49:18 GMT
expires: Thu, 15 Dec 2022 22:49:18 GMT
cache-control: private, max-age=900
last-modified: Thu, 15 Dec 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 38996
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://memararch.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Dec 2022 18:52:41 GMT
expires: Tue, 12 Dec 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 273397
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
108.167.172.202200 OK 83 B URL HTTP/2 memararch.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:48:47 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 3747
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/uploads/2021/04/logo-110px-white.png
108.167.172.202200 OK 18 kB URL HTTP/2 memararch.com/wp-content/uploads/2021/04/logo-110px-white.png
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 110 x 30, 8-bit gray+alpha, non-interlaced\012- data
Hash afd0fdee9a21d43b9c678fe9b0b4cca5
388dda89ca9953e10fc137798e3b0a3f96294678
308a6c980fa230e1ba2699f053169c0ae4ff019d40aaa4c55245989ed9e616cf
GET /wp-content/uploads/2021/04/logo-110px-white.png HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Dec 2021 02:36:36 GMT
accept-ranges: bytes
content-length: 17707
cache-control: max-age=31536000
expires: Fri, 15 Dec 2023 22:49:18 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Thu, 15 Dec 2022 22:49:18 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d8ee7b5ed9f1ce2717492af01f420e1f
1e1cfe7134e0d88f1398c5e8b54c2632a7d3459b
1b0f0eff510a5eee48139d1f2a02a4f98109541998da638034bc04b05ef72d32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 22:49:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6eab05ad76b8e184bcfc74c40f7e3278
ea5548fe4b2d46ecc6659c0bb6197119d67442a1
124bf9140ccdb6cfdcde9939aea5c60ee478ad64e5e3fde620257860df22bb8b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 22:49:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
memararch.com/wp-content/uploads/2021/04/transparent.png
108.167.172.202200 OK 16 kB URL HTTP/2 memararch.com/wp-content/uploads/2021/04/transparent.png
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 110 x 30, 8-bit gray+alpha, non-interlaced\012- data
Hash b6ce6470adb35aa5bc4fbe064c49a101
a17e082764e94099f959e22e04f02e76de117a5c
73f1b4709d686157904625cffe75674896b863b7bfadf7d04a8f563c4ae10a48
GET /wp-content/uploads/2021/04/transparent.png HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Dec 2021 02:36:36 GMT
accept-ranges: bytes
content-length: 16398
cache-control: max-age=31536000
expires: Fri, 15 Dec 2023 22:49:18 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Thu, 15 Dec 2022 22:49:18 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
108.167.172.202409 Conflict 83 B URL HTTP/2 memararch.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Thu, 15 Dec 2022 22:49:18 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C923AA7RAOSJ17FRD4A0&lib=ttq
23.36.79.17200 OK 1.1 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C923AA7RAOSJ17FRD4A0&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2305)
Hash 278af6b3f56b284034bfa0d84c2818c9
a877ee8cf28ed27d0b5f154a0c4f3d2ca1e6f36e
059debe7f7d2c8b89854b94a7228953b5f7a5d1aec3c3a7c4f3d2af6092c7bf6
GET /i18n/pixel/events.js?sdkid=C923AA7RAOSJ17FRD4A0&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221215224918313FEE6F6654373309BD
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf605d07fea1c21d79ffb9149b994acaddc58b28d15be2aab67bf5326f3f77aa856e58eb687275925389ddf8a78197d4247e1555cfb90d553fbb62f79f73ae8f5ef80e4eeeba5c09fad2361dd62276050aec
content-encoding: gzip
content-length: 1137
x-origin-response-time: 92,23.46.239.28
x-akamai-request-id: 30d48859.1198baa3
expires: Thu, 15 Dec 2022 22:49:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 15 Dec 2022 22:49:18 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2IyChsfW6Ge3b9plFl5Okw9lpNJ; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-46-239-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=102, origin; dur=92, inner; dur=4
x-parent-response-time: 194,23.36.79.13
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/main.MWQ1ZmU4ZWYyMA.js
23.36.79.17200 OK 66 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MWQ1ZmU4ZWYyMA.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21716)
Hash 249fcfb28a209abcffe4c393f8e8f561
4a832f42c9c35d84ffc32eee255404fae546448c
98239bb1c212c9a79228afec221a0eb389802408ebbd9b7cecfbb9c0a945c68a
GET /i18n/pixel/static/main.MWQ1ZmU4ZWYyMA.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Cookie: _ttp=2IyChsfW6Ge3b9plFl5Okw9lpNJ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 202212151514297A30CBAAFF9E3A25257E
x-tt-trace-host: 01f0d1421616ecb80a5ba629b3cf1d7590da63d5ea0b3c44f63354b6cdede41c790b58791f904966931b561501fd2855ec3d79a40dda94e323849b384624286af7b1c927d472a9a5383f2f8f90531f8ef2
content-encoding: gzip
date: Thu, 15 Dec 2022 22:49:18 GMT
content-length: 66454
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 1198be21
X-Firefox-Spdy: h2
memararch.com/wp-includes/css/dist/block-editor/style.min.css?ver=6.1.1
108.167.172.202200 OK 27 kB URL HTTP/2 memararch.com/wp-includes/css/dist/block-editor/style.min.css?ver=6.1.1
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 848bb393e2c10bc7f42ed27129b67b9e
e5e8e569c067ff396ff1c5bc79d32d57afdfbaaa
67f914ef00b1b6fbf26e03bf0d380930b6d776bf5f68bdeafa1ce25c26ef4979
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-editor/style.min.css?ver=6.1.1 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Nov 2022 22:56:46 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0e5a8cf5962c05bf28a3b45f5c8745e2
9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f
f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2693
Expires: Thu, 15 Dec 2022 23:34:11 GMT
Date: Thu, 15 Dec 2022 22:49:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0e5a8cf5962c05bf28a3b45f5c8745e2
9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f
f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2693
Expires: Thu, 15 Dec 2022 23:34:11 GMT
Date: Thu, 15 Dec 2022 22:49:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0e5a8cf5962c05bf28a3b45f5c8745e2
9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f
f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2693
Expires: Thu, 15 Dec 2022 23:34:11 GMT
Date: Thu, 15 Dec 2022 22:49:18 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d8a75a5-042d-41ee-9e3c-3c9119423298.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d8a75a5-042d-41ee-9e3c-3c9119423298.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 655824c14c7b451288ca64183ed30849
c4e2b016f2b259a492c990378d24b8758331bf1e
7121822ba21bee302c7d449a1a3beec2ec62bd17af342221f4378543c6d31ef1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d8a75a5-042d-41ee-9e3c-3c9119423298.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11728
x-amzn-requestid: 17ffb8aa-4fd2-46f3-80cd-718310fd6528
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dNQ7fERkIAMF59w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639b9516-5a3637da4b3232c5214a189c;Sampled=0
x-amzn-remapped-date: Thu, 15 Dec 2022 21:43:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lY3uVYKOTrbR--1vBWqs_on26H61dT72pHRry1XvW1mKdncZd7UxLw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 21:56:47 GMT
etag: "c4e2b016f2b259a492c990378d24b8758331bf1e"
content-type: image/jpeg
age: 3151
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ae976ce-079c-4e5f-b8b9-c1ee2adaa868.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ae976ce-079c-4e5f-b8b9-c1ee2adaa868.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78c629538ec0e3052bbfc30143472461
4730867561c6116e461a82d5448d7fb10d5df533
8987e66414a582c18eaf65e0c2139213817cdc524dcffe2abc4f4a7c7cb3342e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ae976ce-079c-4e5f-b8b9-c1ee2adaa868.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12785
x-amzn-requestid: 55fe73e5-e843-4f9b-88ee-fc3aa5365dc6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dNQQLFqaoAMFQHQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639b9400-0a135ed9618b37ea59813d56;Sampled=0
x-amzn-remapped-date: Thu, 15 Dec 2022 21:39:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WKzermMXjxJ_I7wum86KjSEfxd-OvBXbsYdNCshK0n7mhnfb2fPHVw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 21:57:04 GMT
age: 3134
etag: "4730867561c6116e461a82d5448d7fb10d5df533"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
memararch.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
108.167.172.202200 OK 23 kB URL HTTP/2 memararch.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash b2f7ba7b7f283ceca2284b8abb635000
2588459deff3d64fb9e0de80b070eec6298f7537
830ba5e84188cc9745939c41aa7bcf5890a8871c2e11ad3e61661b1ebdd0fe3e
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Nov 2022 22:56:46 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-includes/css/dist/components/style.min.css?ver=6.1.1
108.167.172.202200 OK 34 kB URL HTTP/2 memararch.com/wp-includes/css/dist/components/style.min.css?ver=6.1.1
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash ded69397e55f678a7dda8218d333f33b
92afb40654d99d26e476d53f6e41d3b34c66ea6e
aa3cf5593057f6f842babe9091368d5c9028f4792fcd48611b527d0dfc10bed4
GET /wp-includes/css/dist/components/style.min.css?ver=6.1.1 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 20 Sep 2022 22:43:30 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.6
108.167.172.202200 OK 32 kB URL HTTP/2 memararch.com/wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.6
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash b8b2e4f0c5ccd95384102cacc2c88197
b81f7f04b6cde6071f326745b585bf430c302765
ab2efa1048645b0565981272a3139e2c46c20dd7abe494e30ed8ca75e12b6b2f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.6 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:50:19 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/identify_8e5dc.js
23.36.79.17200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_8e5dc.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 27f11f3531f13f16fe249f9694f41481
2a811c9f3639ea9d8142b5f3c3efe432fd22ea7d
1b7943199c4909ab3a698d6d56733a95da55d7c5f3fd41c7f10000957c723c25
GET /i18n/pixel/static/identify_8e5dc.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Cookie: _ttp=2IyChsfW6Ge3b9plFl5Okw9lpNJ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20221215151429E3645B61D5AD2620F40A
x-tt-trace-host: 01f0d1421616ecb80a5ba629b3cf1d7590da63d5ea0b3c44f63354b6cdede41c79c472a9171184ce0dd6643849da88d62fa1e2ad96584d7a77017ea545acfa808e001c72460c6e8e8b8fbc95385166d99d
content-encoding: gzip
date: Thu, 15 Dec 2022 22:49:18 GMT
content-length: 30772
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=4
x-akamai-request-id: 1198bf40
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ea75fa-e30c-4f7a-b0f6-24942168a508.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ea75fa-e30c-4f7a-b0f6-24942168a508.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83be48c5771e071d94ac0d912357ac99
97e31d3e2c268fe9335e1111bd2eb8cc9dd729d1
dc7eaffae4521f6bc297ce21c0abe99fe92bf8938266b550f8e38ff9705bdeda
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ea75fa-e30c-4f7a-b0f6-24942168a508.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11196
x-amzn-requestid: 1bcdd4c6-14db-40bc-90aa-226a0e411a09
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dNQQJFFeIAMFQgQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639b9400-65c676d06a24e0252e8828dc;Sampled=0
x-amzn-remapped-date: Thu, 15 Dec 2022 21:39:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: vUSF9t0-H5wLQ6vjt5IR5xraq0i-m6kTYbiGmUbZTA43i_257ieS_Q==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 22:10:30 GMT
etag: "97e31d3e2c268fe9335e1111bd2eb8cc9dd729d1"
content-type: image/jpeg
age: 2328
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
108.167.172.202200 OK 78 kB URL HTTP/2 memararch.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://memararch.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:48:47 GMT
accept-ranges: bytes
content-length: 78196
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:18 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: font/woff2
date: Thu, 15 Dec 2022 22:49:18 GMT
server: Apache
X-Firefox-Spdy: h2
player.vimeo.com/api/player.js
162.159.138.60200 OK 6.3 kB URL HTTP/1.1 player.vimeo.com/api/player.js
IP 162.159.138.60:0
File type Unicode text, UTF-8 text, with very long lines (21087)
Hash be35514553399a516ec9a8a782341d76
cc471c8a2ad4a645656f72e0833a3cd1a9131b63
ab060007b859a933f8fb7bbc505c9c0a06eef5813ab909d9f09f9656c2d53505
GET /api/player.js HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 15 Dec 2022 22:49:18 GMT
Content-Type: application/javascript;charset=utf-8
Content-Length: 6272
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: default-src 'none'; style-src 'unsafe-inline'
x-content-type-options: nosniff
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Thu, 15 Dec 2022 23:09:07 GMT
x-host: player-545bcb5fc7-ghnxf
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-varnish-0
x-backend-proxy: playproxy1
x-bapp-server: player-545bcb5fc7-ghnxf
Accept-Ranges: bytes
Age: 612
X-Served-By: cache-bma1656-BMA
X-Cache: HIT
X-Cache-Hits: 341
X-Timer: S1671144559.891882,VS0,VE0
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=q17KPPlJAYfleaQX4tl4J_2IyGjet6TTEKI9gQ5jus4-1671144558-0-AS1uKgrjeGC4Q7tJXMO0r6s8ry+RW8r8gafWLJ9LauDjX3UdO6qTKgzJ8hv61ut3J9auFz6bj8eeZmJpl5K5nY8=; path=/; expires=Thu, 15-Dec-22 23:19:18 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 77a2bb550889b500-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 265916d2a0593eb24feac5fbc15140ed
ab86ab5c1da114c82fabd9752f98fbf65502648d
40da94ba8f4698a6671d41eebb2fb54b1d7ed31b3a7583892f11ee7cea975c5b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4006
Cache-Control: max-age=143662
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 22:49:18 GMT
Etag: "639b22f6-1d7"
Expires: Sat, 17 Dec 2022 14:43:40 GMT
Last-Modified: Thu, 15 Dec 2022 13:36:54 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 8b26cd4609e2025e51e90573a0fbd6f7
efc2006ae5297ad5ae5e064188b9fba73f6b868f
e288b6a1e220f5fb781cfbb0b739b36c6acfdceccff8f0278fc151c241b0b50b
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: xuMGW6v23WA3LiMr6SnoXGS6LeMYusUcMH35oI3yszgJTSCLWcEaxN95JIoHeAHTyNJ7nCmM77dlCWI0XvyHGQ==
priority: u=3,i
content-length: 27298
x-fb-trip-id: 1904183273
date: Thu, 15 Dec 2022 22:49:18 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 265916d2a0593eb24feac5fbc15140ed
ab86ab5c1da114c82fabd9752f98fbf65502648d
40da94ba8f4698a6671d41eebb2fb54b1d7ed31b3a7583892f11ee7cea975c5b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4006
Cache-Control: max-age=143662
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 22:49:18 GMT
Etag: "639b22f6-1d7"
Expires: Sat, 17 Dec 2022 14:43:40 GMT
Last-Modified: Thu, 15 Dec 2022 13:36:54 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 702
Origin: https://memararch.com
Connection: keep-alive
Referer: https://memararch.com/
Cookie: _ttp=2IyChsfW6Ge3b9plFl5Okw9lpNJ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221215224918BCF2D771D4845D34379B
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf605d07fea1c21d79ffb9149b994acaddc5ad09f546ed3e32d82db9a2e48df093c0e9000554a5f6bda47fc3431ce153bd0207dd0135c0a98f3c9a0e0be0024c4c1971b6093a7690bc0b88fc2ad11721d6ff
x-origin-response-time: 14,23.46.239.63
x-akamai-request-id: 2044c3c7.1198bfaf
expires: Thu, 15 Dec 2022 22:49:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 15 Dec 2022 22:49:18 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-cache-remote: TCP_MISS from a23-46-239-63.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=103, origin; dur=14, inner; dur=11
x-parent-response-time: 114,23.36.79.13
X-Firefox-Spdy: h2
memararch.com/wp-content/uploads/2021/04/cropped-faveicon-192x192.png
108.167.172.202200 OK 3.8 kB URL HTTP/2 memararch.com/wp-content/uploads/2021/04/cropped-faveicon-192x192.png
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 192 x 192, 8-bit colormap, non-interlaced\012- data
Hash eccb0cae0e4d066b90ee96aefc78c8db
12d7da3cf04e927e73c35faeb1fb4645f6415f4a
1ddd8483616c13b0cd12b82425be8f2f813ab279aae8719883ba1a12559e4cd8
GET /wp-content/uploads/2021/04/cropped-faveicon-192x192.png HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Dec 2021 02:36:36 GMT
accept-ranges: bytes
content-length: 3752
cache-control: max-age=31536000
expires: Fri, 15 Dec 2023 22:49:18 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Thu, 15 Dec 2022 22:49:18 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/uploads/2021/04/cropped-faveicon-32x32.png
108.167.172.202200 OK 1.2 kB URL HTTP/2 memararch.com/wp-content/uploads/2021/04/cropped-faveicon-32x32.png
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash e1f98e5a211e26aac899c022e55ed92d
f12c6207735cbc9832bd69ae9e0119d226854b2e
4c518a774311200ec5fcbef53a1b7077a6d19ec50f165ac2599ceed4b15563e8
GET /wp-content/uploads/2021/04/cropped-faveicon-32x32.png HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Dec 2021 02:36:36 GMT
accept-ranges: bytes
content-length: 1156
cache-control: max-age=31536000
expires: Fri, 15 Dec 2023 22:49:18 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Thu, 15 Dec 2022 22:49:18 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash d4690e298d7a4ae05517cd2a596f2cda
c0cf6bad0cc590cd091de8db6939b571318abf02
dff2615f4033fd6c797e55de75607539e55f6262c612c85b43f49bfa00d31f8d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3971
Cache-Control: max-age=121652
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 22:49:19 GMT
Etag: "639acd20-118"
Expires: Sat, 17 Dec 2022 08:36:51 GMT
Last-Modified: Thu, 15 Dec 2022 07:30:40 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280
www.facebook.com/tr/?id=2136111949872962&ev=PageView&dl=https%3A%2F%2Fmemararch.com%2F&rl=&if=false&ts=1671144556351&sw=1280&sh=1024&v=2.9.90&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1671144556350.992019336&it=1671144556164&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=2136111949872962&ev=PageView&dl=https%3A%2F%2Fmemararch.com%2F&rl=&if=false&ts=1671144556351&sw=1280&sh=1024&v=2.9.90&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1671144556350.992019336&it=1671144556164&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=2136111949872962&ev=PageView&dl=https%3A%2F%2Fmemararch.com%2F&rl=&if=false&ts=1671144556351&sw=1280&sh=1024&v=2.9.90&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1671144556350.992019336&it=1671144556164&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 15 Dec 2022 22:49:19 GMT
X-Firefox-Spdy: h2
vimeo.com/api/oembed.json?url=https%3A%2F%2Fvimeo.com%2F657598737&url=https%3A%2F%2Fvimeo.com%2F657598737&width=undefined&autoplay=true&loop=true&transparent=false&background=true&muted=true
162.159.128.61200 OK 593 B URL HTTP/1.1 vimeo.com/api/oembed.json?url=https%3A%2F%2Fvimeo.com%2F657598737&url=https%3A%2F%2Fvimeo.com%2F657598737&width=undefined&autoplay=true&loop=true&transparent=false&background=true&muted=true
IP 162.159.128.61:0
File type JSON data\012- , ASCII text, with very long lines (1160), with no line terminators
Hash 65b5b889805491c9d998516f89456054
53c00f08ede7d78155fc8da0e9edff38a6f0914f
991f9900f1f3fb945c9f05621e3755bbf0bbe6935c875e80dd50f6b4a6433f76
GET /api/oembed.json?url=https%3A%2F%2Fvimeo.com%2F657598737&url=https%3A%2F%2Fvimeo.com%2F657598737&width=undefined&autoplay=true&loop=true&transparent=false&background=true&muted=true HTTP/1.1
Host: vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://memararch.com
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 15 Dec 2022 22:49:19 GMT
Content-Type: application/json
Content-Length: 593
Connection: keep-alive
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
x-content-type-options: nosniff
x-frame-options: sameorigin
last-modified: Thu, 15 Dec 2022 20:07:41 GMT
etag: "fcbf047ff7e83a64c1b9fd3c199904671dc17d52"
x-ua-compatible: IE=edge
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy-report-only: default-src https: data: blob: wss: 'unsafe-inline' 'unsafe-eval'; report-uri /_csp
x-bapp-server: pweb-666b5565bf-7zrcl
via: 1.1 varnish, 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: webproxy-rollout-prod-varnish-3
x-backend-proxy: webproxy4
Content-Encoding: gzip
Accept-Ranges: bytes
Age: 0
X-Served-By: cache-iad-kiad7000112-IAD, cache-bma1660-BMA
X-Cache: MISS, MISS
X-Cache-Hits: 0, 0
X-Timer: S1671144559.092468,VS0,VE179
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=avGdYlOOrlOm647R2E5LGbDviNsrPWbidxrG02oVDdg-1671144559-0-AShNLP7nBn1EPkK5RkguSAW9PQcWBTnv1zcUs0uC1NhyPYqFU0Tis/EfJm6JA7EYuY3LVDhw55mXnwCYK1uPc/0=; path=/; expires=Thu, 15-Dec-22 23:19:19 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 77a2bb564a4d0b3d-OSL
player.vimeo.com/video/657598737?h=f2450e89ab&muted=1&autoplay=1&loop=1&transparent=0&background=1&app_id=122963
162.159.138.60200 OK 5.7 kB URL HTTP/1.1 player.vimeo.com/video/657598737?h=f2450e89ab&muted=1&autoplay=1&loop=1&transparent=0&background=1&app_id=122963
IP 162.159.138.60:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (18603), with no line terminators
Hash c97bcdd61cdae85178373f9db241001c
6b96fb9910139830754509de70e744a0789ecaa2
92b9df4176e4b0aaef63722c5c5f174a9923befa4cae0bec8f561f18a663767e
GET /video/657598737?h=f2450e89ab&muted=1&autoplay=1&loop=1&transparent=0&background=1&app_id=122963 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 15 Dec 2022 22:49:19 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Thu, 15 Dec 2022 22:59:19 GMT
x-host: player-545bcb5fc7-wcplk
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-varnish-3
x-backend-proxy: playproxy4
x-bapp-server: player-545bcb5fc7-wcplk
Age: 0
X-Served-By: cache-bma1679-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1671144559.296497,VS0,VE241
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=tHst_zhyQtc3uzo7mSriim7_Qew3.b9EaUTKXidgLhc-1671144559-0-AWEiomuleEA2RRxA0gFEIM43Smp10golFleBVJC7Fv5k9UpPUcetiCa6gGznfOy8XgxN4gIIVxCeWG7XAYKBBHg=; path=/; expires=Thu, 15-Dec-22 23:19:19 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 77a2bb578ae5b500-OSL
Content-Encoding: gzip
f.vimeocdn.com/p/4.16.1/css/player.css
151.101.86.109200 OK 194 kB URL HTTP/2 f.vimeocdn.com/p/4.16.1/css/player.css
IP 151.101.86.109:0
Size 194 kB (193816 bytes)
Hash 02f56c4a53e166cadd3042e03d376ed6
511e32bcf653468051df70d30a33d6751f3f3a4d
1b0b8f94b579732847790cd358d6b3f53ad223da3588505a2c2c93b07f17b60d
GET /p/4.16.1/css/player.css HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 15 Dec 2022 22:49:19 GMT
age: 28922
x-served-by: cache-iad-kiad7000036-IAD, cache-bma1675-BMA
x-cache: HIT, HIT
x-cache-hits: 17, 8564
x-timer: S1671144560.624798,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 22073
X-Firefox-Spdy: h2
f.vimeocdn.com/p/4.16.1/js/player.module.js
151.101.86.109200 OK 117 kB URL HTTP/2 f.vimeocdn.com/p/4.16.1/js/player.module.js
IP 151.101.86.109:0
File type Unicode text, UTF-8 text, with very long lines (65445)
Size 117 kB (117299 bytes)
Hash cdef1e66d9f5f5f30517d0fa7d582594
a722508ecd749722196cde00dca89928e6a4379d
aaca72da4cfb24013160b2b21c14b7a852ea743975be81c777e5126f76054b4e
GET /p/4.16.1/js/player.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 15 Dec 2022 22:49:19 GMT
age: 28923
x-served-by: cache-iad-kiad7000077-IAD, cache-bma1661-BMA
x-cache: HIT, HIT
x-cache-hits: 16, 6325
x-timer: S1671144560.698298,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 117299
X-Firefox-Spdy: h2
f.vimeocdn.com/p/4.16.1/js/vendor.module.js
151.101.86.109200 OK 93 kB URL HTTP/2 f.vimeocdn.com/p/4.16.1/js/vendor.module.js
IP 151.101.86.109:0
File type ASCII text, with very long lines (65457)
Hash ef98ac70987973e7009573c031cc91c1
89cee95e4afb8e2ef1629438c31d70395be57d9b
fa2f5a15b102428bcbd07164a53eb13d5da554ba7be420c0de1f993dfc11f8df
GET /p/4.16.1/js/vendor.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://f.vimeocdn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 15 Dec 2022 22:49:19 GMT
age: 28923
x-served-by: cache-iad-kcgs7200172-IAD, cache-bma1661-BMA
x-cache: HIT, HIT
x-cache-hits: 12, 7872
x-timer: S1671144560.833842,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 92564
X-Firefox-Spdy: h2
f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
151.101.86.109200 OK 997 B URL HTTP/2 f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
IP 151.101.86.109:0
File type ASCII text, with very long lines (1839)
Hash b81408535edef4b73951fa7683a0ecb4
2be1041a686c8d5130ce96600bc7ec68538b4cd9
7b68a0f94a2376708329d7fabc0000c92eb45755267bde5dc8983184b77f3ec7
GET /js_opt/modules/utils/vuid.min.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
cache-control: public, max-age=2592000
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 15 Dec 2022 22:49:19 GMT
age: 2352721
x-served-by: cache-iad-kiad7000106-IAD, cache-bma1675-BMA
x-cache: HIT, HIT
x-cache-hits: 30, 393159
x-timer: S1671144560.957697,VS0,VE0
vary: Accept-Encoding,x-http-method-override
content-length: 997
X-Firefox-Spdy: h2
i.vimeocdn.com/portrait/49451553_60x60
151.101.86.109200 OK 987 B URL HTTP/2 i.vimeocdn.com/portrait/49451553_60x60
IP 151.101.86.109:0
File type ISO Media, AVIF Image\012- data
Hash 4a5c0a3ed85742b9a9fb50d4da3d4913
6887fb93f808b7c3e7d2677dcbc0f436bacc8000
34e8289b6d5ecc57790e29872339f53fc00eceb57869a007b8900e373be703ab
GET /portrait/49451553_60x60 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
etag: 4a5c0a3ed85742b9a9fb50d4da3d4913
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-nww8
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Thu, 15 Dec 2022 22:49:20 GMT
age: 2257277
x-served-by: cache-dfw-kdfw8210063-DFW, cache-bma1675-BMA
x-cache: miss, HIT, MISS
x-cache-hits: 48, 0
x-timer: S1671144560.098835,VS0,VE136
vary: Accept
content-length: 987
X-Firefox-Spdy: h2
126vod-adaptive.akamaized.net/exp=1671148459~acl=%2F44582f38-ac68-4aae-94f2-c8e386a2f01d%2F%2A~hmac=3244ef9e395a13f85b2ae90c693fa486d7085de9f953573eb5d4eb41eedd706c/44582f38-ac68-4aae-94f2-c8e386a2f01d/sep/video/bb4090ac,622b48d7,7542eaa7,45d067e2,faecaffb/master.json?query_string_ranges=1&base64_init=1
23.73.2.146200 OK 2.1 kB URL HTTP/1.1 126vod-adaptive.akamaized.net/exp=1671148459~acl=%2F44582f38-ac68-4aae-94f2-c8e386a2f01d%2F%2A~hmac=3244ef9e395a13f85b2ae90c693fa486d7085de9f953573eb5d4eb41eedd706c/44582f38-ac68-4aae-94f2-c8e386a2f01d/sep/video/bb4090ac,622b48d7,7542eaa7,45d067e2,faecaffb/master.json?query_string_ranges=1&base64_init=1
IP 23.73.2.146:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with very long lines (7811)
Hash 09d3c9c4f392de25b3a90636a4153408
6d1202de75f2846c86e23468a3af0cc64ad8fdbf
6e118af268e531e0755ec2e88010866bfb7d2f2d511589d5c4391fdb0c1ffe29
GET /exp=1671148459~acl=%2F44582f38-ac68-4aae-94f2-c8e386a2f01d%2F%2A~hmac=3244ef9e395a13f85b2ae90c693fa486d7085de9f953573eb5d4eb41eedd706c/44582f38-ac68-4aae-94f2-c8e386a2f01d/sep/video/bb4090ac,622b48d7,7542eaa7,45d067e2,faecaffb/master.json?query_string_ranges=1&base64_init=1 HTTP/1.1
Host: 126vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
origin-retrieved-hour: 1658401200
Access-Control-Max-Age: 86400
timing-allow-origin: *
Content-Encoding: gzip
Content-Length: 2069
Aka-c-hit: cache-hit
Cache-Control: max-age=31536000
Date: Thu, 15 Dec 2022 22:49:20 GMT
Connection: keep-alive
Vary: Accept-Encoding
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.92014917.1671144560.636ad7e
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.73.2.146
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
i.vimeocdn.com/video/1327553122-35b9d231c0c578b9d8eb6672fb0de71a72769fde9c052d8b28482a48869908b7-d?mw=1700&mh=958
151.101.86.109200 OK 5.7 kB URL HTTP/2 i.vimeocdn.com/video/1327553122-35b9d231c0c578b9d8eb6672fb0de71a72769fde9c052d8b28482a48869908b7-d?mw=1700&mh=958
IP 151.101.86.109:0
File type ISO Media, AVIF Image\012- data
Hash f74533832b8b787529e332ae02d85e8c
850d7471ad710269bd47b98f8274bec9498a8ffb
f8d1efcf53c6529c95b3fea8c19a5b581676d9c951665dbbe4aae4ce2022be1b
GET /video/1327553122-35b9d231c0c578b9d8eb6672fb0de71a72769fde9c052d8b28482a48869908b7-d?mw=1700&mh=958 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
etag: f74533832b8b787529e332ae02d85e8c
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-east1-5lq2
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Thu, 15 Dec 2022 22:49:20 GMT
age: 703997
x-served-by: cache-dfw-kdfw8210106-DFW, cache-bma1675-BMA
x-cache: miss, HIT, MISS
x-cache-hits: 2, 0
x-timer: S1671144560.333122,VS0,VE239
vary: Accept
content-length: 5699
X-Firefox-Spdy: h2
i.vimeocdn.com/video/1327553122-35b9d231c0c578b9d8eb6672fb0de71a72769fde9c052d8b28482a48869908b7-d?mw=1300&mh=246
151.101.86.109200 OK 1.4 kB URL HTTP/2 i.vimeocdn.com/video/1327553122-35b9d231c0c578b9d8eb6672fb0de71a72769fde9c052d8b28482a48869908b7-d?mw=1300&mh=246
IP 151.101.86.109:0
File type ISO Media, AVIF Image\012- data
Hash 90123015a4793bb24ad5337b5be7a2a8
c95df49d69cde0e455520be85f8bac9d4e37b869
80b87d6149657eac654af554ca57303a7514298369f07b19cb1f524e9f53cb38
GET /video/1327553122-35b9d231c0c578b9d8eb6672fb0de71a72769fde9c052d8b28482a48869908b7-d?mw=1300&mh=246 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
etag: 90123015a4793bb24ad5337b5be7a2a8
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-3c5w
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Thu, 15 Dec 2022 22:49:20 GMT
age: 0
x-served-by: cache-dfw-kdfw8210058-DFW, cache-bma1675-BMA
x-cache: miss, MISS, MISS
x-cache-hits: 0, 0
x-timer: S1671144560.984525,VS0,VE589
vary: Accept
content-length: 1438
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/E4colUoO91Q
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/E4colUoO91Q
IP 142.250.74.131:0
Hash 9e707030057db48704ab5dc3beba3927
a98bc79118c3e75f6d20c5f259809838cdb234f9
8d4b8e00bfe99d8e11ba6a90931963bbc7884ed0d57a7dc618a33c1f3cf39b42
POST /s/gts1d4/E4colUoO91Q HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 22:49:20 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/E4colUoO91Q
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/E4colUoO91Q
IP 142.250.74.131:0
Hash 9e707030057db48704ab5dc3beba3927
a98bc79118c3e75f6d20c5f259809838cdb234f9
8d4b8e00bfe99d8e11ba6a90931963bbc7884ed0d57a7dc618a33c1f3cf39b42
POST /s/gts1d4/E4colUoO91Q HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 22:49:20 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
126vod-adaptive.akamaized.net/exp=1671148459~acl=%2F44582f38-ac68-4aae-94f2-c8e386a2f01d%2F%2A~hmac=3244ef9e395a13f85b2ae90c693fa486d7085de9f953573eb5d4eb41eedd706c/44582f38-ac68-4aae-94f2-c8e386a2f01d/parcel/video/622b48d7.mp4?r=dXM%3D&range=890-133647
23.73.2.146200 OK 133 kB URL HTTP/1.1 126vod-adaptive.akamaized.net/exp=1671148459~acl=%2F44582f38-ac68-4aae-94f2-c8e386a2f01d%2F%2A~hmac=3244ef9e395a13f85b2ae90c693fa486d7085de9f953573eb5d4eb41eedd706c/44582f38-ac68-4aae-94f2-c8e386a2f01d/parcel/video/622b48d7.mp4?r=dXM%3D&range=890-133647
IP 23.73.2.146:0
ASN #20940 Akamai International B.V.
Size 133 kB (132758 bytes)
Hash bbff5a8c18674869707b5df34c194c67
263b1d63409c0ad8232b585b99a7ea29ee11104b
248f1bdf62a047ced89612c81cffb470fb14f32fab88c32d2dc616a3f859e459
GET /exp=1671148459~acl=%2F44582f38-ac68-4aae-94f2-c8e386a2f01d%2F%2A~hmac=3244ef9e395a13f85b2ae90c693fa486d7085de9f953573eb5d4eb41eedd706c/44582f38-ac68-4aae-94f2-c8e386a2f01d/parcel/video/622b48d7.mp4?r=dXM%3D&range=890-133647 HTTP/1.1
Host: 126vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 132758
Last-Modified: Thu, 16 Dec 2021 21:17:41 GMT
Server: parcel
origin-retrieved-hour: 1651410000
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: private, max-age=31536000
Expires: Fri, 15 Dec 2023 22:49:20 GMT
Date: Thu, 15 Dec 2022 22:49:20 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.92014917.1671144560.636add0
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.73.2.146
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
Set-Cookie: aka_debug=cpcode:877678~clientip:91.90.42.154~ghostip:23.73.2.146~requestid:636add0~time:1671144560~ghostforwardip:2.16.106.91~edgecache:cache-miss~rtt:8~region:NO-; path=/; domain=.akamaized.net;
fresnel.vimeocdn.com/add/player-test-impression?beacon=1
34.120.202.204200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-test-impression?beacon=1
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-test-impression?beacon=1 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 116
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Thu, 15 Dec 2022 22:49:20 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=d5c5ada88f0063f3f987fc540441a86cfa2cc45e1671144559
34.120.202.204200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=d5c5ada88f0063f3f987fc540441a86cfa2cc45e1671144559
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-stats?beacon=1&session-id=d5c5ada88f0063f3f987fc540441a86cfa2cc45e1671144559 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1731
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Thu, 15 Dec 2022 22:49:20 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=d5c5ada88f0063f3f987fc540441a86cfa2cc45e1671144559
34.120.202.204200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=d5c5ada88f0063f3f987fc540441a86cfa2cc45e1671144559
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-stats?beacon=1&session-id=d5c5ada88f0063f3f987fc540441a86cfa2cc45e1671144559 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1439
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Thu, 15 Dec 2022 22:49:20 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
player-telemetry.vimeo.com/player-events/log/play
34.120.202.204200 OK 0 B URL HTTP/2 player-telemetry.vimeo.com/player-events/log/play
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /player-events/log/play HTTP/1.1
Host: player-telemetry.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 649
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
content-type: text/html; charset=UTF-8
date: Thu, 15 Dec 2022 22:49:20 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/E4colUoO91Q
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/E4colUoO91Q
IP 142.250.74.131:0
Hash 9e707030057db48704ab5dc3beba3927
a98bc79118c3e75f6d20c5f259809838cdb234f9
8d4b8e00bfe99d8e11ba6a90931963bbc7884ed0d57a7dc618a33c1f3cf39b42
POST /s/gts1d4/E4colUoO91Q HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 22:49:20 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/E4colUoO91Q
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/E4colUoO91Q
IP 142.250.74.131:0
Hash 9e707030057db48704ab5dc3beba3927
a98bc79118c3e75f6d20c5f259809838cdb234f9
8d4b8e00bfe99d8e11ba6a90931963bbc7884ed0d57a7dc618a33c1f3cf39b42
POST /s/gts1d4/E4colUoO91Q HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 22:49:20 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
126vod-adaptive.akamaized.net/exp=1671148459~acl=%2F44582f38-ac68-4aae-94f2-c8e386a2f01d%2F%2A~hmac=3244ef9e395a13f85b2ae90c693fa486d7085de9f953573eb5d4eb41eedd706c/44582f38-ac68-4aae-94f2-c8e386a2f01d/sep/video/45d067e2/chop/segment-1.m4s?r=dXM%3D
23.73.2.146200 OK 1.9 MB URL HTTP/1.1 126vod-adaptive.akamaized.net/exp=1671148459~acl=%2F44582f38-ac68-4aae-94f2-c8e386a2f01d%2F%2A~hmac=3244ef9e395a13f85b2ae90c693fa486d7085de9f953573eb5d4eb41eedd706c/44582f38-ac68-4aae-94f2-c8e386a2f01d/sep/video/45d067e2/chop/segment-1.m4s?r=dXM%3D
IP 23.73.2.146:0
ASN #20940 Akamai International B.V.
Size 1.9 MB (1855578 bytes)
Hash 352b48bb356a49160978e2f4d2babacc
f8e493e86392e907a2ea8b36e7b0a5019ad61283
27717d9a2f765219be7e68404dae2a367fe81423f56c5c6f0ad24558d08eb918
GET /exp=1671148459~acl=%2F44582f38-ac68-4aae-94f2-c8e386a2f01d%2F%2A~hmac=3244ef9e395a13f85b2ae90c693fa486d7085de9f953573eb5d4eb41eedd706c/44582f38-ac68-4aae-94f2-c8e386a2f01d/sep/video/45d067e2/chop/segment-1.m4s?r=dXM%3D HTTP/1.1
Host: 126vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 1855578
using-starlord: true
origin-retrieved-hour: 1658419200
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=31535950
Date: Thu, 15 Dec 2022 22:49:20 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.92014917.1671144560.636ae4c
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.73.2.146
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
126vod-adaptive.akamaized.net/exp=1671148459~acl=%2F44582f38-ac68-4aae-94f2-c8e386a2f01d%2F%2A~hmac=3244ef9e395a13f85b2ae90c693fa486d7085de9f953573eb5d4eb41eedd706c/44582f38-ac68-4aae-94f2-c8e386a2f01d/sep/video/45d067e2/chop/segment-2.m4s?r=dXM%3D
23.73.2.146200 OK 1.4 MB URL HTTP/1.1 126vod-adaptive.akamaized.net/exp=1671148459~acl=%2F44582f38-ac68-4aae-94f2-c8e386a2f01d%2F%2A~hmac=3244ef9e395a13f85b2ae90c693fa486d7085de9f953573eb5d4eb41eedd706c/44582f38-ac68-4aae-94f2-c8e386a2f01d/sep/video/45d067e2/chop/segment-2.m4s?r=dXM%3D
IP 23.73.2.146:0
ASN #20940 Akamai International B.V.
Size 1.4 MB (1405178 bytes)
Hash f29e5c7cbe11c3c4a4b53e908a5f0261
7f894a8590236e4effefbfc43ea0bd09d2f642f2
22e22bd0c13985c4b6205a6add969ddf53861c45cd918fdee35491b11989be48
GET /exp=1671148459~acl=%2F44582f38-ac68-4aae-94f2-c8e386a2f01d%2F%2A~hmac=3244ef9e395a13f85b2ae90c693fa486d7085de9f953573eb5d4eb41eedd706c/44582f38-ac68-4aae-94f2-c8e386a2f01d/sep/video/45d067e2/chop/segment-2.m4s?r=dXM%3D HTTP/1.1
Host: 126vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 1405178
using-starlord: true
origin-retrieved-hour: 1658386800
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=31536000
Date: Thu, 15 Dec 2022 22:49:21 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.92014917.1671144561.636aed5
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.73.2.146
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
fonts.googleapis.com/css?family=Open+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP 142.250.74.106:0
GET /css?family=Open+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 15 Dec 2022 22:49:17 GMT
date: Thu, 15 Dec 2022 22:49:17 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/visual-portfolio/assets/vendor/swiper-5-3-6/swiper.min.js?ver=5.3.6
108.167.172.202200 OK 0 B URL HTTP/2 memararch.com/wp-content/plugins/visual-portfolio/assets/vendor/swiper-5-3-6/swiper.min.js?ver=5.3.6
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/visual-portfolio/assets/vendor/swiper-5-3-6/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Oct 2022 22:48:49 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/themes/oceanwp/assets/css/style.min.css?ver=3.3.6
108.167.172.202200 OK 0 B URL HTTP/2 memararch.com/wp-content/themes/oceanwp/assets/css/style.min.css?ver=3.3.6
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/css/style.min.css?ver=3.3.6 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:50:19 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/360-image/dist/aframe-v1.0.4.min.js?ver=6.1.1
108.167.172.202200 OK 0 B URL HTTP/2 memararch.com/wp-content/plugins/360-image/dist/aframe-v1.0.4.min.js?ver=6.1.1
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/plugins/360-image/dist/aframe-v1.0.4.min.js?ver=6.1.1 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Dec 2021 02:36:36 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
108.167.172.202200 OK 0 B URL HTTP/2 memararch.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 19 Sep 2022 21:16:24 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Fri, 16 Dec 2022 04:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: application/javascript
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2
memararch.com/
108.167.172.202200 OK 0 B IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
content-type: text/html; charset=UTF-8
x-ua-compatible: IE=edge
link: <https://memararch.com/wp-json/>; rel="https://api.w.org/", <https://memararch.com/wp-json/wp/v2/pages/943>; rel="alternate"; type="application/json", <https://memararch.com/>; rel=shortlink
cache-control: max-age=7200
expires: Thu, 15 Dec 2022 23:52:12 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
x-server-cache: true
x-proxy-cache: HIT
X-Firefox-Spdy: h2
memararch.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1
108.167.172.202200 OK 0 B URL HTTP/2 memararch.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1
IP 108.167.172.202:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1 HTTP/1.1
Host: memararch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://memararch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 19 Nov 2022 19:48:47 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 14 Jan 2023 22:49:17 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: text/css
date: Thu, 15 Dec 2022 22:49:17 GMT
server: Apache
X-Firefox-Spdy: h2