Report - broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf

Report Overview

Submitted URL
broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
IP
169.62.57.114
ASN
#36351 SOFTLAYER
Submitted
2023-03-31 19:43:55
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
34

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-31T18:12:04Z	3.0 kB	8.0 kB	23.36.77.32
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-31T19:19:20Z	899 B	455 B	216.239.32.36
broadviewlibrary.org	unknown	2015-10-31T12:52:05Z	2023-03-31T19:29:20Z	880 B	1.3 kB	169.62.57.114
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-31T18:12:03Z	2.7 kB	5.6 kB	142.250.74.3
maps.google.com	1899	2012-09-11T01:07:43Z	2023-03-31T20:16:46Z	589 B	467 B	142.250.74.46
use.typekit.net	494	2012-07-05T03:42:39Z	2023-03-31T18:13:38Z	1.6 kB	98 kB	23.36.76.122
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-31T20:23:24Z	445 B	3.6 kB	142.250.74.74
www.google.com	7	2015-05-10T13:11:19Z	2023-03-31T20:35:26Z	564 B	2.3 kB	142.250.74.132
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-31T18:18:04Z	413 B	5.9 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-31T18:13:52Z	606 B	238 B	34.117.65.55
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-31T07:51:33Z	3.2 kB	59 kB	34.120.237.76
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-31T22:03:32Z	392 B	70 kB	142.250.74.72
p.typekit.net	620	2012-05-23T16:28:57Z	2023-03-31T18:13:40Z	441 B	338 B	23.36.76.96
maps.gstatic.com	unknown	2016-01-11T17:55:17Z	2023-03-31T20:12:43Z	390 B	67 kB	142.250.74.131
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-31T18:14:44Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-31T18:12:09Z	333 B	391 B	34.117.237.239
www.broadviewlibrary.org	unknown	2015-10-31T12:52:05Z	2023-03-31T19:42:07Z	13 kB	460 kB	169.62.57.114

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-03-31	medium	broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf	Phishing
2023-03-31	medium	broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf	Phishing
2023-03-31	medium	www.broadviewlibrary.org/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js	Phishing
2023-03-31	medium	www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/facebook-square-brands.svg	Phishing
2023-03-31	medium	www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/twitter-brands.svg	Phishing
2023-03-31	medium	www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/youtube-brands.svg	Phishing
2023-03-31	medium	www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/instagram-brands.svg	Phishing
2023-03-31	medium	www.broadviewlibrary.org/wp-content/uploads/2022/02/m-logo.svg	Phishing
2023-03-31	medium	www.broadviewlibrary.org/wp-content/uploads/2022/01/logo.svg	Phishing
2023-03-31	medium	www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/scripts/fontawesome.f9e78c7b.js	Phishing
2023-03-31	medium	www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/scripts/modern.47049c77.js	Phishing
2023-03-31	medium	www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/fonts/Arsenal-Regular.woff2	Phishing
2023-03-31	medium	www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/fonts/Arsenal-Italic.woff2	Phishing
2023-03-31	medium	www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/scripts/service-worker.js	Phishing
2023-03-31	medium	www.broadviewlibrary.org/offline/	Phishing
2023-03-31	medium	www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/scripts/service-worker.js	Phishing
2023-03-31	medium	www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (19)

	URL	Size	First Seen	Last Seen
	www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf	6.1 kB	2023-04-01	2023-04-01
Pretty URL www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf IP 169.62.57.114 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:06:59 Last Seen2023-04-01 11:06:59 Times Seen1 Hash 0d3ee451862fb05ac298e89408b47f51 a6491c0f512ebaee6b39dcc14fc89c0aa21b42f1 260591fd9ebb21e6431f098b9cc755ef2ee1de0f97eaedce3e06f5b5869e0f2e Loading...

	www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf	16 B	2023-04-01	2023-04-01
Pretty URL www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf IP 169.62.57.114 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:06:59 Last Seen2023-04-01 11:06:59 Times Seen1 Hash 02d67ba3de019b325fb2f53a53c1189e fa484474eb9341e1099d51fdc144531d906a6619 f63ed160c8ca789ac6aebaf066bec6284cf4a55569f1055a7ad64d31f415fd12 Loading...

	www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/scripts/fontawesome.f9e78c7b.js	64 kB	2023-04-01	2023-04-01
Pretty URL www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/scripts/fontawesome.f9e78c7b.js IP 169.62.57.114 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:06:59 Last Seen2023-04-01 11:06:59 Times Seen1 Hash 7b3e993584e536bd2291e6379069c7d0 13fd3bb62eef429916ca7dedf0590d0deab84888 83ccfa2b2e8541635dca82669f3b43c3c9554a84175b334f8ca51a987c69483b Loading...

	www.google.com/maps/embed?origin=mfe&pb=!1m3!2m1!1sBroadview+Public+Library+District!6i15!3m1!1sen!5m1!1sen	3.6 kB	2023-04-01	2023-04-01
Pretty URL www.google.com/maps/embed?origin=mfe&pb=!1m3!2m1!1sBroadview+Public+Library+District!6i15!3m1!1sen!5m1!1sen IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:06:59 Last Seen2023-04-01 11:06:59 Times Seen1 Hash 068d357570bf97b93428110fb45a3600 e3ce7f344709b7c55648047904cfda641f875f01 877e3964d028db98d4338d9c7a447e6bad6b62bef1f7301ff4623ff3eea9e5c4 Loading...

	maps.gstatic.com/maps-api-v3/embed/js/52/6/init_embed.js	231 kB	2023-03-26	2023-04-05
Pretty URL maps.gstatic.com/maps-api-v3/embed/js/52/6/init_embed.js IP 142.250.74.131 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:31:37 Last Seen2023-04-05 19:09:31 Times Seen290 Hash 40eb9196ce1cb1671d6d0b84ef183385 0c91f8b75b3d12b06cbf6a8d3b9a60f37dc80469 f811335739ea9264f6bde8676a5bf442d34a942d8e9e2705398b680f74ff03b9 Loading...

	maps.googleapis.com/maps-api-v3/api/js/52/6/util.js	165 kB	2023-03-26	2024-01-20
Pretty URL maps.googleapis.com/maps-api-v3/api/js/52/6/util.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:27:24 Last Seen2024-01-20 22:45:59 Times Seen829 Hash db59a2b62c461b092e39a4a7bd83920b 5e1111bcc399eaa3ca075b4c77d3a77cf85e522f cda881db98d107ebd3b91eb46c5d6f3fcd18d9230250b5bdb1d2f0b6abe50673 Loading...

	maps.googleapis.com/maps-api-v3/api/js/52/6/map.js	77 kB	2023-03-26	2023-04-05
Pretty URL maps.googleapis.com/maps-api-v3/api/js/52/6/map.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:32:22 Last Seen2023-04-05 19:28:42 Times Seen410 Hash ea8b86dff3956bc2a844f609282afc4b 7b8737712e5c786cb23dc2e6bd79ba1a17d41778 697f01dc468383b658248a38116acd2067d16d808e5ca4e62011d1d2d5d18b00 Loading...

	www.broadviewlibrary.org/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js	12 kB	2023-03-07	2024-03-08
Pretty URL www.broadviewlibrary.org/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js IP 169.62.57.114 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:28 Last Seen2024-03-08 16:02:30 Times Seen1559 Hash 45f98dec2f0965e8e879f2c7a1f4e996 8187dccc170f82df78e9be302e5ab49e024d4d34 23eb134e746f1e5c265c5d33d045af48c444617adaa281fb993d6070bdc04c9f Loading...

	www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/scripts/modern.47049c77.js	302 kB	2023-04-01	2023-04-01
Pretty URL www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/scripts/modern.47049c77.js IP 169.62.57.114 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:06:59 Last Seen2023-04-01 11:06:59 Times Seen1 Hash cb4eb224511c1ededf7fcfe52d4794dc fbeb021e8c9c0bf31ef2feeff9ba01639cb24f39 b0581d8f2c4aed20c6ff6f4d4719ec7262cc51ef1b6f0bb1cc6d51fd199ad487 Loading...

	www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf	145 B	2023-03-07	2024-04-22
Pretty URL www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf IP 169.62.57.114 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:22 Last Seen2024-04-22 20:51:43 Times Seen3478 Hash 09c7a3dbfcd65973e5cbdb48c5460c07 086b7a4ac6632ec06f2f0e68f4ff3fcfc9a1c71c d81a9dc0c33559bfacc014a5216f454c40183312addc9623d3da987650cd56f3 Loading...

	www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf	1.4 kB	2023-03-07	2024-04-21
Pretty URL www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf IP 169.62.57.114 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:33 Last Seen2024-04-21 05:12:26 Times Seen1941 Hash baa52dd43e0e29340348ae52a88fdcfd a85cd8502fafa4fb5cb0786c1ab1e6c0c957093e 49117ca60d8aeb4aa478d3541e09db31ce6fe2608ff7f96e9409239390e6b1bc Loading...

	maps.googleapis.com/maps-api-v3/api/js/52/6/overlay.js	3.5 kB	2023-03-26	2023-04-05
Pretty URL maps.googleapis.com/maps-api-v3/api/js/52/6/overlay.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:32:22 Last Seen2023-04-05 19:09:31 Times Seen321 Hash 68d52b422935cff542334c822d26d66b eedc1d629c541d046eee1a4a4ecf7717cc0ee35c b5bb26407e5d38426a378b1774fead08d584a5fccd3aaba2895602b593b493ae Loading...

	maps.googleapis.com/maps-api-v3/api/js/52/6/onion.js	27 kB	2023-03-26	2023-04-05
Pretty URL maps.googleapis.com/maps-api-v3/api/js/52/6/onion.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:32:22 Last Seen2023-04-05 19:28:43 Times Seen350 Hash 97cd8d3d1bd2ff14983eda85211075e2 552d84a4272cc7a1efcd92ca851f10f4a95538a5 dc92131c4a350018e53306e49cb8b974c7bdbea2017d3f3fccedb546c2426212 Loading...

	maps.googleapis.com/maps-api-v3/api/js/52/6/search_impl.js	2.8 kB	2023-03-26	2023-04-05
Pretty URL maps.googleapis.com/maps-api-v3/api/js/52/6/search_impl.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:32:22 Last Seen2023-04-05 19:09:31 Times Seen267 Hash e641524001bcb0c1fd9cfd76e21e0b0f 0ee1f79fc1bef6878a196e069263f2b286f5a7e4 0a29a7fef6d8c1d4c6fe699840657437d6df9fc8965d045c807bfb60f884638e Loading...

	www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf	347 B	2023-04-01	2023-04-01
Pretty URL www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf IP 169.62.57.114 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:06:59 Last Seen2023-04-01 11:06:59 Times Seen1 Hash 3d7b52bba09665256d484706d94f7e30 572fc4f16ae4f9d13ab3777dc2e4c72ecd559196 ab99ebcee91ed5a892d257899fe9939bdbd93fb669e70c906b532c05a912a579 Loading...

	www.googletagmanager.com/gtag/js?id=G-GVPHEZK5KT	189 kB	2023-04-01	2023-04-01
Pretty URL www.googletagmanager.com/gtag/js?id=G-GVPHEZK5KT IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:06:59 Last Seen2023-04-01 11:06:59 Times Seen1 Hash e128fc8355e63d1c5a64795ce642c82e 4d47387aa5ef2fc7911aeed89fbef4dbdcb51eae e457dadb4df8ecb4189d0a5b8d1870ba3041e7d01a0a072a6289f399ce036c57 Loading...

	maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en&callback=onApiLoad	176 kB	2023-04-01	2023-04-01
Pretty URL maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en&callback=onApiLoad IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:06:59 Last Seen2023-04-01 11:06:59 Times Seen1 Hash 9db0452dce3fdfde735afb70ce1fb8d2 17ec567d85393b9a44c2e1f9a293be70ba3434d6 c0ebb1d5d1cf0d1ed60c279b73231b23b3ca9eb2669816a6a9aea4375c6f8e55 Loading...

	maps.googleapis.com/maps-api-v3/api/js/52/6/common.js	277 kB	2023-03-26	2024-01-20
Pretty URL maps.googleapis.com/maps-api-v3/api/js/52/6/common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:27:30 Last Seen2024-01-20 22:45:59 Times Seen757 Hash 9787396af8d79c5b0a7ee0e5ab5c88aa 7cd2ea6b5d8014836c032d04eb074049a7390271 f92269e7d728cc563446b301cad9ee4d35e5681db79dfd6a45f8674aa9232b73 Loading...

	www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf	465 B	2023-04-01	2023-04-01
Pretty URL www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf IP 169.62.57.114 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:06:59 Last Seen2023-04-01 11:06:59 Times Seen1 Hash b515cabf76a75b0dfd714ab5b25809ba 89501ff8808d73e581f09c698db51de47d360fa0 96b37d99cf560a85d8909ef525fdee2613a81cba15569e0697107263bf7148f0 Loading...

HTTP Transactions (64)

URL IP Response Size

broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf

169.62.57.114

301 Moved Permanently

276 B

URL HTTP/1.1
broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
276 B (276 bytes)
Hash
3bf5a838e1dddb9fd9b14e5b9f889fdf
88488f36ba423bb2f1096429fac715ceb58dcd29
85d219354484be68c988fc2c22aed0b03e8d58f26ec44b55d6756c0576f7f458

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /uploaded_bvlib/file/kasinimiwamuzen.pdf HTTP/1.1
Host: broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Fri, 31 Mar 2023 19:43:41 GMT
Server: Apache
Strict-Transport-Security: max-age=16070400; includeSubDomains
Location: https://broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
Cache-Control: max-age=0
Expires: Fri, 31 Mar 2023 19:43:41 GMT
Content-Length: 276
Keep-Alive: timeout=1, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cca063332ba9a89eadd62a8dd7f81a9b
d473b2a7a32c964599ff3bac8f98fa578f03d1d1
02fb74c7c695ad99f7f2fd7c02ae2b88e2da1c5db339f883333d9090291931dc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02FB74C7C695AD99F7F2FD7C02AE2B88E2DA1C5DB339F883333D9090291931DC"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6980
Expires: Fri, 31 Mar 2023 21:40:04 GMT
Date: Fri, 31 Mar 2023 19:43:44 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12072
Expires: Fri, 31 Mar 2023 23:04:56 GMT
Date: Fri, 31 Mar 2023 19:43:44 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Length, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 31 Mar 2023 19:16:12 GMT
content-type: application/json
age: 1652
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
374c9e295a804e605c402f48ae7e2446
967394b36ecdff2dd32842f878887f061024c6b3
7652dfcb9e2d620ce1d033be8ecc53166d2881154c15decd60899415e5ac2706

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7652DFCB9E2D620CE1D033BE8ECC53166D2881154C15DECD60899415E5AC2706"
Last-Modified: Thu, 30 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5754
Expires: Fri, 31 Mar 2023 21:19:38 GMT
Date: Fri, 31 Mar 2023 19:43:44 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: kjvoxTXu4LOP8KQW7z8zB0DVvSo1hF/5C3+i+IkWyPyxMtpgxJucoSJ2y6CEIIb7a+HSwWuoJII=
x-amz-request-id: FBD8M07Y38TM5J3J
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 31 Mar 2023 19:03:27 GMT
age: 2417
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:43:44 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ab61862f016dea85f8aa55e59369d905
a5e81f13052b9e9184caf05a9740c345a40d1f22
e0d580c313088d524a5338e63e4acf9f3f3cb45a54f2528c5d1c4915d71b255b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E0D580C313088D524A5338E63E4ACF9F3F3CB45A54F2528C5D1C4915D71B255B"
Last-Modified: Thu, 30 Mar 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11854
Expires: Fri, 31 Mar 2023 23:01:18 GMT
Date: Fri, 31 Mar 2023 19:43:44 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Expires, Cache-Control, Content-Length, Retry-After, Last-Modified, Pragma, ETag, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 31 Mar 2023 19:14:39 GMT
age: 1745
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

push.services.mozilla.com/

34.117.65.55

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.117.65.55:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: LuooAWy90AD975l8WH8psQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: JZx7lA3pgkZNN2YL+yyipAE3ITc=
Date: Fri, 31 Mar 2023 19:43:44 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf

169.62.57.114

301 Moved Permanently

0 B

URL HTTP/2
broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /uploaded_bvlib/file/kasinimiwamuzen.pdf HTTP/1.1
Host: broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
expires: Fri, 31 Mar 2023 20:43:42 GMT
x-redirect-by: WordPress
set-cookie: return_visitor=true; expires=Fri, 07-Apr-2023 19:43:42 GMT; Max-Age=604800; secure; HttpOnly
strict-transport-security: max-age=16070400; includeSubDomains
location: https://www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
x-ua-compatible: IE=edge
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=3600, no-transform
content-length: 0
content-type: text/html; charset=UTF-8
date: Fri, 31 Mar 2023 19:43:41 GMT
server: Apache
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5690
Expires: Fri, 31 Mar 2023 21:18:36 GMT
Date: Fri, 31 Mar 2023 19:43:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5690
Expires: Fri, 31 Mar 2023 21:18:36 GMT
Date: Fri, 31 Mar 2023 19:43:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5690
Expires: Fri, 31 Mar 2023 21:18:36 GMT
Date: Fri, 31 Mar 2023 19:43:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5690
Expires: Fri, 31 Mar 2023 21:18:36 GMT
Date: Fri, 31 Mar 2023 19:43:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5690
Expires: Fri, 31 Mar 2023 21:18:36 GMT
Date: Fri, 31 Mar 2023 19:43:46 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F611db66e-eb19-4ce3-9ee4-93c32afc29a5.jpeg

34.120.237.76

200 OK

8.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F611db66e-eb19-4ce3-9ee4-93c32afc29a5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.8 kB (8795 bytes)
Hash
d1e861b518e06e17ce657c5f9fc15daf
214322b88798120159ab55c7121c8775727b8fc7
3438eb2b7e18d784416c139b42c036eefff3759602e4ce553815c628e1cb5016

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F611db66e-eb19-4ce3-9ee4-93c32afc29a5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8795
x-amzn-requestid: 33d91f7c-7d04-405b-8060-33e438ed09f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkAz2GwKoAMFW5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424ae7e-54ba3517206ac61c50167c3e;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:32:46 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: nORkLBTHqZ_ZrUuEkg9BcVT2TJzP7OLBRQtfUUzRgvwP9Q9dZtMFbg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 4c48e9fb20d53d40e9fe273dbdae1098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:56:12 GMT
age: 78454
etag: "214322b88798120159ab55c7121c8775727b8fc7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11061 bytes)
Hash
39bdd16276747b1445a79e674a2a3347
d0676f63738484298a78b7abf7e4934c3d256065
67aa526299060c2a39c4baa10fd03f121497dccd5e765676639ed73ac529c34b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11061
x-amzn-requestid: 428128ec-c441-4ff7-9c84-880a01672b00
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnVFnFf0IAMFTvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260223-185c48300f161931310fa35f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:41:55 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: gc77o7y-moH1HuMEZFe9-00DVAda9baa-5VEPlMA4SIZDJNzQ8jUlA==
via: 1.1 a87682502db4b394cc6ba84510da9f98.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:47:50 GMT
etag: "d0676f63738484298a78b7abf7e4934c3d256065"
content-type: image/jpeg
age: 78956
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.8 kB (5806 bytes)
Hash
8600e41520408df4865627256a0a0736
dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef
9163d80d7b6087b804e6682a50d4f66339d339894cf1c5808f2e5c2e0b3de930

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5806
x-amzn-requestid: cee5b166-592b-405e-b5f1-e36eb249ec59
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUllFFooAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-01840fa47177285667bca060;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: WnrfQr57EWYnXt1xJt9tr5XCuM3gPYULlDdEVpv2Q2kz7MDIPxSPKA==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:47:50 GMT
age: 78956
etag: "dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6380 bytes)
Hash
8a2b8f737604b7983cf686c82599dc73
aa63be93c4cd641f09ce0d5144ef60aab21caed1
78835586bfd170fee7e6f70b2b426ed186f5aeae969459c6dcbf527ba9c0deec

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6380
x-amzn-requestid: 0a129a69-0720-47a0-8b0e-b3200de24204
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUn6E19IAMF9SQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260165-564474a42e79d1dc4eb9558f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:45 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: L6tgzFrj9t69Rnfd9bziAPiROAX0tvcj9Kcg8sXkto8qRFeKqiwkpg==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 7514e5e25722778fd4b1744d4ecc67e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 22:17:06 GMT
age: 77200
etag: "aa63be93c4cd641f09ce0d5144ef60aab21caed1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10271 bytes)
Hash
424b55535e5fd622b2fc96aac1246324
cf7cf08aa8969a86bf03695af2129686fd62fe86
c4bb26a7b2c431282b53b4df9999b9cc8e61369a79c606688a76499b31a65127

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10271
x-amzn-requestid: db0d1fe4-060a-4e61-90f3-ec9befee1295
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkBoXGh5oAMFfzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424afce-2e9251552b4acdcb19e02dfc;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:38:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: 1cXec9_e-KpzyTwiHaNAaf0y5i12tw7BkZTXnduS5ek7yAAZ0LXTWw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:48:08 GMT
age: 78938
etag: "cf7cf08aa8969a86bf03695af2129686fd62fe86"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba3e3682-3d0e-4ac1-8330-9ea9ebe92041.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10490 bytes)
Hash
0530376e431b6563796e4abb0db0bc4e
6921f4bd83a806e1ea8247854ad4c045fa7ee298
d6371c81d5494d5e50fd5cc1cfe1ce28213dfa70ea5a94df82c9f4b3e6430a53

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba3e3682-3d0e-4ac1-8330-9ea9ebe92041.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10490
x-amzn-requestid: 0525e5c4-485e-47eb-ab95-1136e4d5c29a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUnTEztoAMFzMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260161-54b47454475ff6ee4d880534;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:41 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: jl5cQc_Zqq5xNDMcs5jRHb3HBIjuucl-JHF126hInXrOfv_CG-UqSg==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 b4085435efbe95a420f374958bd145be.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 22:18:02 GMT
age: 77144
etag: "6921f4bd83a806e1ea8247854ad4c045fa7ee298"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.broadviewlibrary.org/wp-content/plugins/events-calendar-pro/src/resources/css/tribe-events-pro-mini-calendar-block.min.css

169.62.57.114

200 OK

249 B

URL HTTP/2
www.broadviewlibrary.org/wp-content/plugins/events-calendar-pro/src/resources/css/tribe-events-pro-mini-calendar-block.min.css
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type
ASCII text, with very long lines (655), with no line terminators
Size
249 B (249 bytes)
Hash
36661db111652ef366bc06a307c135f6
5859f145e53ec65df04327d3a5902dd7d31bb2b5
bb40b736c7c2436e485d3f94ef1ba1568a58f048a3ad43d00c0567325ee3cd29

HTTP Headers

GET /wp-content/plugins/events-calendar-pro/src/resources/css/tribe-events-pro-mini-calendar-block.min.css HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Mon, 20 Mar 2023 19:15:48 GMT
accept-ranges: bytes
cache-control: max-age=31536000, no-transform
expires: Sat, 30 Mar 2024 19:43:43 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
content-length: 249
content-type: text/css; charset=utf-8
date: Fri, 31 Mar 2023 19:43:43 GMT
server: Apache
X-Firefox-Spdy: h2

www.broadviewlibrary.org/wp-includes/css/classic-themes.min.css

169.62.57.114

200 OK

210 B

URL HTTP/2
www.broadviewlibrary.org/wp-includes/css/classic-themes.min.css
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type
ASCII text
Size
210 B (210 bytes)
Hash
a8f5adb01a17d608468beca934ff9e95
20303241ccbdbd180fd959cdf4c263c258870067
bcdca1820dc365b0a6c38b70739928ffb660a1cee9776ce5682a5feedd2824a3

HTTP Headers

GET /wp-includes/css/classic-themes.min.css HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Wed, 29 Mar 2023 19:15:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, no-transform
expires: Sat, 30 Mar 2024 19:43:43 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
content-length: 210
content-type: text/css; charset=utf-8
date: Fri, 31 Mar 2023 19:43:43 GMT
server: Apache
X-Firefox-Spdy: h2

www.broadviewlibrary.org/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js

169.62.57.114

200 OK

3.2 kB

URL HTTP/2
www.broadviewlibrary.org/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type
ASCII text, with very long lines (1571)
Size
3.2 kB (3244 bytes)
Hash
967b1fb5314d24ef7f24fcb9c90e7013
e971e58ebd738600b27b966ded6dab8733f22339
c8d80ecc14430de7c5fd23d9abab5f71a62eb506344da0e1882845478d6eec50

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Wed, 29 Mar 2023 19:15:46 GMT
accept-ranges: bytes
cache-control: max-age=31536000, no-transform
expires: Sat, 30 Mar 2024 19:43:43 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
content-length: 3244
content-type: application/javascript; charset=utf-8
date: Fri, 31 Mar 2023 19:43:43 GMT
server: Apache
X-Firefox-Spdy: h2

www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/facebook-square-brands.svg

169.62.57.114

200 OK

312 B

URL HTTP/2
www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/facebook-square-brands.svg
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (458), with no line terminators
Size
312 B (312 bytes)
Hash
d756913d906ed848f35502275672ca61
eb55f10171d5314c2acba04d8269e60abed28cb9
d1fd62f1a331d19baab614e11d39e0317c5fe33ec4242897c9e242a1c47cbd7a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/broadview-public-library/assets/media/facebook-square-brands.svg HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Wed, 07 Sep 2022 19:22:20 GMT
accept-ranges: bytes
cache-control: max-age=15552000, no-transform
expires: Wed, 27 Sep 2023 19:43:43 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
content-length: 312
content-type: image/svg+xml
date: Fri, 31 Mar 2023 19:43:43 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fc0bc67cb73720019a64ebe2e6cc00a8
1caa960bc9bf478f88d9401ac9784d42641f513e
a8053d663c8bfb024620c710e40c226c0fc1c82620c511ffed5379ad4191acd9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:43:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/styles/modern.edee766b.css

169.62.57.114

200 OK

44 kB

URL HTTP/2
www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/styles/modern.edee766b.css
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type
Unicode text, UTF-8 text, with very long lines (65323)
Size
44 kB (43692 bytes)
Hash
e4a5f1060832c1ae2334bd263175697d
369c1d0b40962f5b9839558e3ea5fa3ecc0d9101
435371ba8edd8124b38cfb8aa84dc7d03360aa55f0b77533751acab1cc5832cd

HTTP Headers

GET /wp-content/themes/broadview-public-library/assets/styles/modern.edee766b.css HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Wed, 07 Sep 2022 19:22:18 GMT
accept-ranges: bytes
cache-control: max-age=31536000, no-transform
expires: Sat, 30 Mar 2024 19:43:43 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
content-length: 43692
content-type: text/css; charset=utf-8
date: Fri, 31 Mar 2023 19:43:43 GMT
server: Apache
X-Firefox-Spdy: h2

www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/twitter-brands.svg

169.62.57.114

200 OK

578 B

URL HTTP/2
www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/twitter-brands.svg
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (982), with no line terminators
Size
578 B (578 bytes)
Hash
6bade5d8f2b5ac1e55b0496fef6a489e
d1265737dfa52e973fffeee5d069b8add438f77a
7d31d5a0a548bf669ddb7498ee71476c10918a9be78016acca347304f2f1332d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/broadview-public-library/assets/media/twitter-brands.svg HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Wed, 07 Sep 2022 19:22:20 GMT
accept-ranges: bytes
cache-control: max-age=15552000, no-transform
expires: Wed, 27 Sep 2023 19:43:43 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
content-length: 578
content-type: image/svg+xml
date: Fri, 31 Mar 2023 19:43:43 GMT
server: Apache
X-Firefox-Spdy: h2

www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/youtube-brands.svg

169.62.57.114

200 OK

389 B

URL HTTP/2
www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/youtube-brands.svg
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (661), with no line terminators
Size
389 B (389 bytes)
Hash
63f6fb1f001923ae2d6dae98c109215e
d853ccc66d32f45c1c2de4fa09c8ae149a3ecce9
1c518c7301b3a222c1529fed190fb841e5c726bf9f67fac452fa99c2b94b6114

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/broadview-public-library/assets/media/youtube-brands.svg HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Wed, 07 Sep 2022 19:22:21 GMT
accept-ranges: bytes
cache-control: max-age=15552000, no-transform
expires: Wed, 27 Sep 2023 19:43:43 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
content-length: 389
content-type: image/svg+xml
date: Fri, 31 Mar 2023 19:43:43 GMT
server: Apache
X-Firefox-Spdy: h2

www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/instagram-brands.svg

169.62.57.114

200 OK

549 B

URL HTTP/2
www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/instagram-brands.svg
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1117), with no line terminators
Size
549 B (549 bytes)
Hash
13141b6af125dc21b5742ad04f8d64fb
61e5cacc5f22156eb2c81c0a0888cd299c3a5523
dcfbe25da5cff3fa4effc1c52d0dbf60cf4686f94ed6fb660814ae8fcc4ca979

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/broadview-public-library/assets/media/instagram-brands.svg HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Wed, 07 Sep 2022 19:22:23 GMT
accept-ranges: bytes
cache-control: max-age=15552000, no-transform
expires: Wed, 27 Sep 2023 19:43:43 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
content-length: 549
content-type: image/svg+xml
date: Fri, 31 Mar 2023 19:43:43 GMT
server: Apache
X-Firefox-Spdy: h2

www.broadviewlibrary.org/wp-content/uploads/2022/02/m-logo.svg

169.62.57.114

200 OK

13 kB

URL HTTP/2
www.broadviewlibrary.org/wp-content/uploads/2022/02/m-logo.svg
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (16822), with no line terminators
Size
13 kB (12679 bytes)
Hash
2079208b8d3a35498f6f5641e6eaac09
28ffe8bcd26a4b14010e7c772088109527063215
db801ca46bfde06aa3ef8992b9d1168a325a5dd2171db4d8d39dbdcfad1ceee7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2022/02/m-logo.svg HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Wed, 16 Feb 2022 15:46:22 GMT
accept-ranges: bytes
cache-control: max-age=15552000, no-transform
expires: Wed, 27 Sep 2023 19:43:43 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
content-length: 12679
content-type: image/svg+xml
date: Fri, 31 Mar 2023 19:43:43 GMT
server: Apache
X-Firefox-Spdy: h2

www.broadviewlibrary.org/wp-content/uploads/2022/01/logo.svg

169.62.57.114

200 OK

28 kB

URL HTTP/2
www.broadviewlibrary.org/wp-content/uploads/2022/01/logo.svg
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (36604), with no line terminators
Size
28 kB (27643 bytes)
Hash
1cad433715c8153bc74c4ffdff512675
994f6ab195b0e514428d6650acaa6429ed0a0902
9f0491a03d8837079d6c844477153e6c6b7dfb2d474fb07126645ab0200fa473

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2022/01/logo.svg HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Wed, 16 Feb 2022 15:46:20 GMT
accept-ranges: bytes
cache-control: max-age=15552000, no-transform
expires: Wed, 27 Sep 2023 19:43:43 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
content-length: 27643
content-type: image/svg+xml
date: Fri, 31 Mar 2023 19:43:43 GMT
server: Apache
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-GVPHEZK5KT

142.250.74.72

200 OK

69 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-GVPHEZK5KT
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (6279)
Size
69 kB (69239 bytes)
Hash
adba75378e0cc68cfc2a644e5f9e4a09
40fddd9d87e818ffdf1a819dc8701b07cb62d05f
6ab5df854698de57dd61af305bbd8c0046590129ce287f719b8be67aa3d68bfb

HTTP Headers

GET /gtag/js?id=G-GVPHEZK5KT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 31 Mar 2023 19:43:46 GMT
expires: Fri, 31 Mar 2023 19:43:46 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 69239
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/menu-open.png

169.62.57.114

200 OK

193 B

URL HTTP/2
www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/menu-open.png
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 72 x 88, 4-bit colormap, non-interlaced\012- data
Size
193 B (193 bytes)
Hash
57deca56f987f6133c093c1d1a01fa32
ee204ba4f8f4871b52349271b8dda2b29dfd78bb
0ffed394876e3c51348d8224e08b5502494db59d77a5c5b6c2a2a6da8e78cc57

HTTP Headers

GET /wp-content/themes/broadview-public-library/assets/media/menu-open.png HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Wed, 07 Sep 2022 19:22:21 GMT
accept-ranges: bytes
content-length: 193
cache-control: max-age=15552000, no-transform
expires: Wed, 27 Sep 2023 19:43:43 GMT
x-content-type-options: nosniff
content-type: image/png
date: Fri, 31 Mar 2023 19:43:43 GMT
server: Apache
X-Firefox-Spdy: h2

www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/menu-close.png

169.62.57.114

200 OK

523 B

URL HTTP/2
www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/menu-close.png
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 76 x 76, 4-bit colormap, non-interlaced\012- data
Size
523 B (523 bytes)
Hash
60cb25c390da08f35531aa171b2dd335
eaf54f7159e4a9fced1c4b0692e11ded7e1eea2c
18676a3d62fa4084f51d7756cc99b346ba07f66e4cdce66c86cc02642251a2b6

HTTP Headers

GET /wp-content/themes/broadview-public-library/assets/media/menu-close.png HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Wed, 07 Sep 2022 19:22:20 GMT
accept-ranges: bytes
content-length: 523
cache-control: max-age=15552000, no-transform
expires: Wed, 27 Sep 2023 19:43:43 GMT
x-content-type-options: nosniff
content-type: image/png
date: Fri, 31 Mar 2023 19:43:43 GMT
server: Apache
X-Firefox-Spdy: h2

www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/search-solid.png

169.62.57.114

200 OK

16 kB

URL HTTP/2
www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/search-solid.png
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
16 kB (15723 bytes)
Hash
75508808dd7895e97795a97a6114b15e
97d8ad779600f15fdba1317d4c01cf4c736bf601
8e2a37e1146c5b9dc42ce43b198bfa622c0f4c1ae615b9c9067eb4c90fc1f70c

HTTP Headers

GET /wp-content/themes/broadview-public-library/assets/media/search-solid.png HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Wed, 07 Sep 2022 19:22:20 GMT
accept-ranges: bytes
content-length: 15723
cache-control: max-age=15552000, no-transform
expires: Wed, 27 Sep 2023 19:43:43 GMT
x-content-type-options: nosniff
content-type: image/png
date: Fri, 31 Mar 2023 19:43:43 GMT
server: Apache
X-Firefox-Spdy: h2

use.typekit.net/uvb8umd.css

23.36.76.122

200 OK

727 B

URL HTTP/2
use.typekit.net/uvb8umd.css
IP
23.36.76.122:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text, with very long lines (516)
Size
727 B (727 bytes)
Hash
43bd020999c5b1b2001750b99f3b1e84
d9bcbeb38d8754392ef0bf151524756f05d11e61
b42d908da323de6304962d81b9e2ff465723546ec9ea4e4bef835da55e23202d

HTTP Headers

GET /uvb8umd.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.broadviewlibrary.org
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 727
date: Fri, 31 Mar 2023 19:43:46 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fc0bc67cb73720019a64ebe2e6cc00a8
1caa960bc9bf478f88d9401ac9784d42641f513e
a8053d663c8bfb024620c710e40c226c0fc1c82620c511ffed5379ad4191acd9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:43:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a5ac29d7d71ef6c0cc7547974c8c4f7b
29108a8370757ef63f347d1fd2ae696f5842342c
3371093d6dab54c7c3b612e3774435f0a592bee4e40fbcc2edd55d29d7715c26

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:43:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

p.typekit.net/p.css?s=1&k=uvb8umd&ht=tk&f=24539.24540.24545.24546&a=3594001&app=typekit&e=css

23.36.76.96

200 OK

5 B

URL HTTP/2
p.typekit.net/p.css?s=1&k=uvb8umd&ht=tk&f=24539.24540.24545.24546&a=3594001&app=typekit&e=css
IP
23.36.76.96:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
5 B (5 bytes)
Hash
83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb

HTTP Headers

GET /p.css?s=1&k=uvb8umd&ht=tk&f=24539.24540.24545.24546&a=3594001&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Thu, 28 Jul 2022 22:24:50 GMT
etag: "62e30cb2-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Fri, 31 Mar 2023 19:43:46 GMT
X-Firefox-Spdy: h2

www.broadviewlibrary.org/wp-content/uploads/2022/01/footer-logo-m.png

169.62.57.114

200 OK

19 kB

URL HTTP/2
www.broadviewlibrary.org/wp-content/uploads/2022/01/footer-logo-m.png
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 813 x 99, 8-bit colormap, non-interlaced\012- data
Size
19 kB (18576 bytes)
Hash
c4ce05c591239d8437d8e2fb8e21cabc
76c5134ec3636ab0cbc8133e6510d2a4068f7022
1707801e292f16da230b0033f66b9b57407b5f2a8b4ac5beb52bf2c7d7329be9

HTTP Headers

GET /wp-content/uploads/2022/01/footer-logo-m.png HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Wed, 16 Feb 2022 15:46:16 GMT
accept-ranges: bytes
content-length: 18576
cache-control: max-age=15552000, no-transform
expires: Wed, 27 Sep 2023 19:43:43 GMT
x-content-type-options: nosniff
content-type: image/png
date: Fri, 31 Mar 2023 19:43:43 GMT
server: Apache
X-Firefox-Spdy: h2

www.broadviewlibrary.org/wp-content/uploads/2022/01/footer-logo.png

169.62.57.114

200 OK

83 kB

URL HTTP/2
www.broadviewlibrary.org/wp-content/uploads/2022/01/footer-logo.png
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 1860 x 228, 8-bit/color RGBA, non-interlaced\012- data
Size
83 kB (83047 bytes)
Hash
6ad6c507f023ff893eda1695313a908e
e9501ea7878abc0816cdd5bd81d92b74e114cd3c
ad36ef121a0ef71b70e3651c232115d63957162732ff6f9d876ae6982268d5e8

HTTP Headers

GET /wp-content/uploads/2022/01/footer-logo.png HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Wed, 16 Feb 2022 15:46:16 GMT
accept-ranges: bytes
content-length: 83047
cache-control: max-age=15552000, no-transform
expires: Wed, 27 Sep 2023 19:43:43 GMT
x-content-type-options: nosniff
content-type: image/png
date: Fri, 31 Mar 2023 19:43:43 GMT
server: Apache
X-Firefox-Spdy: h2

www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/scripts/fontawesome.f9e78c7b.js

169.62.57.114

200 OK

17 kB

URL HTTP/2
www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/scripts/fontawesome.f9e78c7b.js
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type
ASCII text, with very long lines (64072)
Size
17 kB (17253 bytes)
Hash
6da8693e74eb04872946a9ed8f89789d
ac2ace99ce181268e62965bdf7ebf93e9aa1c584
0e73850291de8331d68b1d3fa017f27b33df73ae38111de2be04f9a751d1d816

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/broadview-public-library/assets/scripts/fontawesome.f9e78c7b.js HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Wed, 07 Sep 2022 19:22:19 GMT
accept-ranges: bytes
cache-control: max-age=31536000, no-transform
expires: Sat, 30 Mar 2024 19:43:43 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
content-length: 17253
content-type: application/javascript; charset=utf-8
date: Fri, 31 Mar 2023 19:43:43 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e2d5e4593c830bd9a297e9d820fce16b
a48bacab5839fbc2a379e0e1f8703da462f3c31d
c273a26e5fb94b4aa7c494bd09daf02419f99307f90de3891951535ae93e8028

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:43:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

use.typekit.net/af/19ced7/00000000000000007735f992/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3

23.36.76.122

200 OK

48 kB

URL HTTP/2
use.typekit.net/af/19ced7/00000000000000007735f992/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3
IP
23.36.76.122:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 48000, version 1.0\012- data
Size
48 kB (48000 bytes)
Hash
11eafb300bfecfbe7fcf30a70bf412a5
560288dccf58664d3f6d9475c126706229b65c83
6c01a5f07a9783178c9e434dfe85834a560a235c666c0823b33f12fd29e60fe0

HTTP Headers

GET /af/19ced7/00000000000000007735f992/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.broadviewlibrary.org
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 48000
etag: "1cf1eb3265b4d30744ef1dbe1613bbf94115fc9c"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Fri, 31 Mar 2023 19:43:46 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/5d97ff/00000000000000007735f999/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3

23.36.76.122

200 OK

48 kB

URL HTTP/2
use.typekit.net/af/5d97ff/00000000000000007735f999/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
IP
23.36.76.122:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 48312, version 1.0\012- data
Size
48 kB (48312 bytes)
Hash
ea88861cdb6a662c464084e01c5dcb0f
8db330e5c37ad847d4c61c812fbaef6272ca856c
012c1c40f37b85e86f6e7629241a2bcd0ce665b41954a08d3c2c9a55c42cba89

HTTP Headers

GET /af/5d97ff/00000000000000007735f999/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.broadviewlibrary.org
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 48312
etag: "b4c0d041408776d043674f518c911c68d4f73f57"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Fri, 31 Mar 2023 19:43:46 GMT
X-Firefox-Spdy: h2

www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/scripts/modern.47049c77.js

169.62.57.114

200 OK

89 kB

URL HTTP/2
www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/scripts/modern.47049c77.js
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type
data
Size
89 kB (89365 bytes)
Hash
1576b5f4982e0d7eecaa8c6ac24b1766
e237013647a910ef57d3469c9186ae3404235094
1bd48e1ac92abc20c8281b8753c51de0cf427e878678a26bca09a48eaa58c817

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/broadview-public-library/assets/scripts/modern.47049c77.js HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Wed, 07 Sep 2022 19:22:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, no-transform
expires: Sat, 30 Mar 2024 19:43:43 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
content-type: application/javascript; charset=utf-8
date: Fri, 31 Mar 2023 19:43:43 GMT
server: Apache
X-Firefox-Spdy: h2

maps.google.com/maps?width=100%25&height=600&hl=en&q=+(Broadview%20Public%20Library%20District)&t=&z=15&ie=UTF8&iwloc=B&output=embed

142.250.74.46

301 Moved Permanently

0 B

URL HTTP/2
maps.google.com/maps?width=100%25&height=600&hl=en&q=+(Broadview%20Public%20Library%20District)&t=&z=15&ie=UTF8&iwloc=B&output=embed
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /maps?width=100%25&height=600&hl=en&q=+(Broadview%20Public%20Library%20District)&t=&z=15&ie=UTF8&iwloc=B&output=embed HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
location: https://www.google.com/maps/embed?origin=mfe&pb=!1m3!2m1!1sBroadview+Public+Library+District!6i15!3m1!1sen!5m1!1sen
vary: Origin, X-Origin, Referer
date: Fri, 31 Mar 2023 19:43:46 GMT
content-type: text/html
server: scaffolding on HTTPServer2
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/fonts/Arsenal-Regular.woff2

169.62.57.114

200 OK

55 kB

URL HTTP/2
www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/fonts/Arsenal-Regular.woff2
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type
Web Open Font Format (Version 2), TrueType, length 54800, version 1.0\012- data
Size
55 kB (54800 bytes)
Hash
e81c876a51d0f1f9f0870eb2dd8cfc70
64a96c632cbdc598787370f425db0ee040b49b61
7c4c7dbba6910958516e75121d644d08d5d483a6e50e62eb2a9217bd6101beef

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/broadview-public-library/assets/media/fonts/Arsenal-Regular.woff2 HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/styles/modern.edee766b.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Wed, 07 Sep 2022 19:22:31 GMT
accept-ranges: bytes
content-length: 54800
cache-control: max-age=15552000, no-transform
expires: Wed, 27 Sep 2023 19:43:43 GMT
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: application/font-woff2
date: Fri, 31 Mar 2023 19:43:43 GMT
server: Apache
X-Firefox-Spdy: h2

www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/fonts/Arsenal-Italic.woff2

169.62.57.114

200 OK

56 kB

URL HTTP/2
www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/media/fonts/Arsenal-Italic.woff2
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type
Web Open Font Format (Version 2), TrueType, length 56484, version 1.0\012- data
Size
56 kB (56484 bytes)
Hash
f3839963aab9084a7ecb9b9706102f3c
3ea62818ebc942ae5653f8b6d09136d5364f8062
1bea28323fab03f4e171bfa7e6a41cf3d72b7d567f07a2b86a20424a602f5be4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/broadview-public-library/assets/media/fonts/Arsenal-Italic.woff2 HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/styles/modern.edee766b.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Wed, 07 Sep 2022 19:22:27 GMT
accept-ranges: bytes
content-length: 56484
cache-control: max-age=15552000, no-transform
expires: Wed, 27 Sep 2023 19:43:43 GMT
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: application/font-woff2
date: Fri, 31 Mar 2023 19:43:43 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bd5f736130efca53385a376507e64fbd
60e4def162522bc32731cd670834c76d763e83d4
aa03ff80ff8b3e95f9ff11ad9efaee8a0e4d6dbb4e6acdf36e5fe4a06212625f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:43:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a013b8698c4ff7b527a98379d21f8d51
4cffc2d5925e6daea086b70fecc3e12fd2a75b8d
28f02fdf4c2167dbfc6bd7530f24586626b50b5440f4d1747d31be0d800946f7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:43:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.broadviewlibrary.org/wp-content/uploads/2022/01/logo.png

169.62.57.114

200 OK

2.2 kB

URL HTTP/2
www.broadviewlibrary.org/wp-content/uploads/2022/01/logo.png
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type
PNG image data, 44 x 44, 8-bit/color RGBA, non-interlaced\012- data
Size
2.2 kB (2189 bytes)
Hash
5f7c214351b7246efa132d5f29ad7e92
9037b7a2cc8ac7fea54218e42dd0adf95d2d4c88
845aa0cf938555af59bda0f471fbc1c29bbefa9c0eff5d097d13a44f9a2c7628

HTTP Headers

GET /wp-content/uploads/2022/01/logo.png HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Wed, 16 Feb 2022 15:46:19 GMT
accept-ranges: bytes
content-length: 2189
cache-control: max-age=15552000, no-transform
expires: Wed, 27 Sep 2023 19:43:43 GMT
x-content-type-options: nosniff
content-type: image/png
date: Fri, 31 Mar 2023 19:43:43 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Arsenal:ital,wght@0,400;0,700;1,400;1,700&display=swap

142.250.74.74

200 OK

3.0 kB

URL HTTP/2
fonts.googleapis.com/css2?family=Arsenal:ital,wght@0,400;0,700;1,400;1,700&display=swap
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type
data
Size
3.0 kB (2986 bytes)
Hash
6f8faacb56f62690546e20ba1ff4bfa2
129b5aa493128ab999185738cf7f93a0f4e047d7
c4936408e134cf9a14792fe3711c5112f662bb387a35b8663b9d69143e96b5c4

HTTP Headers

GET /css2?family=Arsenal:ital,wght@0,400;0,700;1,400;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 31 Mar 2023 19:43:46 GMT
date: Fri, 31 Mar 2023 19:43:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/maps/embed?origin=mfe&pb=!1m3!2m1!1sBroadview+Public+Library+District!6i15!3m1!1sen!5m1!1sen

142.250.74.132

200 OK

1.6 kB

URL HTTP/2
www.google.com/maps/embed?origin=mfe&pb=!1m3!2m1!1sBroadview+Public+Library+District!6i15!3m1!1sen!5m1!1sen
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3280)
Size
1.6 kB (1605 bytes)
Hash
e876438bdb71590a06f03f4fe65aeb30
518663b0ef361b21a66b7ccf50f5be4a6822ff83
b6cfce39163b271cece0d777ef6435dd51af32a6982c50a89914ebc0d0f3c01d

HTTP Headers

GET /maps/embed?origin=mfe&pb=!1m3!2m1!1sBroadview+Public+Library+District!6i15!3m1!1sen!5m1!1sen HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.broadviewlibrary.org/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
pragma: no-cache
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-QW2BOApBAp2qcsZJ8ntrNw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 31 Mar 2023 19:43:47 GMT
server: scaffolding on HTTPServer2
content-length: 1605
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5ac54bb3628890e12111d64757053dac
882c767217269bad8ce48c525f3fc09b0b463524
c1ad6c172550ea4fe7b49ec5f913099a74b95f887cb31bfde78e4895b016bc01

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:43:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

maps.gstatic.com/maps-api-v3/embed/js/52/6/init_embed.js

142.250.74.131

200 OK

66 kB

URL HTTP/2
maps.gstatic.com/maps-api-v3/embed/js/52/6/init_embed.js
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2647)
Size
66 kB (66148 bytes)
Hash
3ef6dfbf3b57ddb1cffb291af4dffe5f
0dab8207dfa5a5fedeaa7a959028d574f0773542
15ca67d70d885130a772bff2c7dbc797d48f657e745871d8acedba5e46b12e59

HTTP Headers

GET /maps-api-v3/embed/js/52/6/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 66148
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 11:27:19 GMT
expires: Wed, 27 Mar 2024 11:27:19 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 20 Mar 2023 21:47:34 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 288988
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ff36ec2657d8ee3b0f78d0a8b2bc9c96
7ce770b27771a2417292364a24af2d65bb9085a5
7c6a6029f3d8b5c88c0d52cfa1d8a6d79fe57080cbd88951ce40456d1ae214e0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:43:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

region1.google-analytics.com/g/collect?v=2&tid=G-GVPHEZK5KT&gtm=45je33t0&_p=751835131&gdid=dNDMyYj&cid=817014501.1680291826&ul=en-us&sr=1280x1024&_s=1&dp=%2F404.html%3Fpage%3D%2Fuploaded_bvlib%2Ffile%2Fkasinimiwamuzen.pdf%26from%3D&sid=1680291826&sct=1&seg=0&dl=https%3A%2F%2Fwww.broadviewlibrary.org%2Fuploaded_bvlib%2Ffile%2Fkasinimiwamuzen.pdf&dt=Page%20not%20found%20-%20Broadview%20Public%20Library%20District&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.link_attribution=true

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-GVPHEZK5KT&gtm=45je33t0&_p=751835131&gdid=dNDMyYj&cid=817014501.1680291826&ul=en-us&sr=1280x1024&_s=1&dp=%2F404.html%3Fpage%3D%2Fuploaded_bvlib%2Ffile%2Fkasinimiwamuzen.pdf%26from%3D&sid=1680291826&sct=1&seg=0&dl=https%3A%2F%2Fwww.broadviewlibrary.org%2Fuploaded_bvlib%2Ffile%2Fkasinimiwamuzen.pdf&dt=Page%20not%20found%20-%20Broadview%20Public%20Library%20District&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.link_attribution=true
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-GVPHEZK5KT&gtm=45je33t0&_p=751835131&gdid=dNDMyYj&cid=817014501.1680291826&ul=en-us&sr=1280x1024&_s=1&dp=%2F404.html%3Fpage%3D%2Fuploaded_bvlib%2Ffile%2Fkasinimiwamuzen.pdf%26from%3D&sid=1680291826&sct=1&seg=0&dl=https%3A%2F%2Fwww.broadviewlibrary.org%2Fuploaded_bvlib%2Ffile%2Fkasinimiwamuzen.pdf&dt=Page%20not%20found%20-%20Broadview%20Public%20Library%20District&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.link_attribution=true HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.broadviewlibrary.org
Connection: keep-alive
Referer: https://www.broadviewlibrary.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.broadviewlibrary.org
date: Fri, 31 Mar 2023 19:43:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/scripts/service-worker.js

169.62.57.114

200 OK

11 kB

URL HTTP/2
www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/scripts/service-worker.js
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type
ASCII text, with very long lines (33282), with no line terminators
Size
11 kB (10675 bytes)
Hash
4994c6cf4e54215cec58b1a00f1ae2f2
c8988104779b81c72b3882dc09631693a877237f
6369ff6880c30a77d6524fab43790d4f14e326a6e9f4db2448777a6271747f30

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/broadview-public-library/assets/scripts/service-worker.js HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: _ga_GVPHEZK5KT=GS1.1.1680291826.1.0.1680291826.0.0.0; _ga=GA1.1.817014501.1680291826
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Wed, 07 Sep 2022 19:22:19 GMT
accept-ranges: bytes
cache-control: max-age=31536000, no-transform
expires: Sat, 30 Mar 2024 19:43:44 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
service-worker-allowed: /
content-length: 10675
content-type: application/javascript; charset=utf-8
date: Fri, 31 Mar 2023 19:43:44 GMT
server: Apache
X-Firefox-Spdy: h2

www.broadviewlibrary.org/offline/

169.62.57.114

200 OK

11 kB

URL HTTP/2
www.broadviewlibrary.org/offline/
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type
HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9721)
Size
11 kB (11052 bytes)
Hash
9b2a03c71319a52a13fd4b4a370d1791
8c624d9f555e27855b5813fac7459829ef8f9650
459cbdbfb79f5ac03783027827ef5f3cec604ebbe77cf033387a3bcd1febc3cd

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /offline/ HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/scripts/service-worker.js
Connection: keep-alive
Cookie: _ga_GVPHEZK5KT=GS1.1.1680291826.1.0.1680291826.0.0.0; _ga=GA1.1.817014501.1680291826
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
link: <https://www.broadviewlibrary.org/wp-json/>; rel="https://api.w.org/"
x-tec-api-version: v1
x-tec-api-root: https://www.broadviewlibrary.org/wp-json/tribe/events/v1/
x-tec-api-origin: https://www.broadviewlibrary.org
set-cookie: return_visitor=true; expires=Fri, 07-Apr-2023 19:43:45 GMT; Max-Age=604800; secure; HttpOnly
strict-transport-security: max-age=16070400; includeSubDomains
cache-control: max-age=0, no-transform
expires: Fri, 31 Mar 2023 19:43:44 GMT
vary: Accept-Encoding
content-encoding: gzip
x-ua-compatible: IE=edge
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 11052
content-type: text/html; charset=UTF-8
date: Fri, 31 Mar 2023 19:43:44 GMT
server: Apache
X-Firefox-Spdy: h2

www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/scripts/service-worker.js

169.62.57.114

304 Not Modified

0 B

URL HTTP/2
www.broadviewlibrary.org/wp-content/themes/broadview-public-library/assets/scripts/service-worker.js
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/broadview-public-library/assets/scripts/service-worker.js HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: _ga_GVPHEZK5KT=GS1.1.1680291826.1.0.1680291826.0.0.0; _ga=GA1.1.817014501.1680291826
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
If-Modified-Since: Wed, 07 Sep 2022 19:22:19 GMT
Cache-Control: max-age=0
TE: trailers

HTTP/2 304 Not Modified
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Wed, 07 Sep 2022 19:22:19 GMT
accept-ranges: bytes
cache-control: max-age=31536000, no-transform
expires: Sat, 30 Mar 2024 19:43:45 GMT
x-content-type-options: nosniff
service-worker-allowed: /
date: Fri, 31 Mar 2023 19:43:45 GMT
server: Apache
X-Firefox-Spdy: h2

www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf

169.62.57.114

404 Not Found

0 B

URL HTTP/2
www.broadviewlibrary.org/uploaded_bvlib/file/kasinimiwamuzen.pdf
IP
169.62.57.114:0
ASN
#36351 SOFTLAYER

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /uploaded_bvlib/file/kasinimiwamuzen.pdf HTTP/1.1
Host: www.broadviewlibrary.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
link: <https://www.broadviewlibrary.org/wp-json/>; rel="https://api.w.org/"
x-tec-api-version: v1
x-tec-api-root: https://www.broadviewlibrary.org/wp-json/tribe/events/v1/
x-tec-api-origin: https://www.broadviewlibrary.org
set-cookie: return_visitor=true; expires=Fri, 07-Apr-2023 19:43:43 GMT; Max-Age=604800; secure; HttpOnly
strict-transport-security: max-age=16070400; includeSubDomains
x-ua-compatible: IE=edge
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, must-revalidate, max-age=0, no-transform
content-type: text/html; charset=UTF-8
date: Fri, 31 Mar 2023 19:43:42 GMT
server: Apache
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML