Overview

URL nato-intl.com/?p=877
IP167.114.64.93
ASNOVH SAS
Location United States
Report completed2022-10-06 00:35:07 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-10-06 2 nato-intl.com/wp-content/plugins/advanced-post-slider/advps-style.css?ver=5.5.10 Malware
2022-10-06 2 nato-intl.com/wp-content/plugins/recent-tweets-widget/tp_twitter_plugin.css (...) Malware
2022-10-06 2 nato-intl.com/wp-content/plugins/wp-pagenavi/pagenavi-css.css?ver=2.70 Malware
2022-10-06 2 nato-intl.com/wp-content/themes/cascara/assets/css/Pe-icon-7-stroke.min.css (...) Malware
2022-10-06 2 nato-intl.com/wp-content/themes/cascara/assets/css/loaders.min.css?ver=2.4 Malware
2022-10-06 2 nato-intl.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/ (...) Malware
2022-10-06 2 nato-intl.com/wp-content/themes/cascara/assets/css/magnific-popup.min.css?v (...) Malware
2022-10-06 2 nato-intl.com/wp-content/plugins/js_composer/assets/lib/bower/flexslider/fl (...) Malware
2022-10-06 2 nato-intl.com/wp-content/themes/cascara/assets/css/weather-icons.min.css?ver=2.0 Malware
2022-10-06 2 nato-intl.com/wp-content/themes/cascara/assets/css/meanmenu.css?ver=2.0.7 Malware
2022-10-06 2 nato-intl.com/wp-content/themes/cascara/assets/js/load-more-tab.js?ver=1.4.1 Malware
2022-10-06 2 nato-intl.com/wp-content/themes/cascara/style.css?ver=5.5.10 Malware
2022-10-06 2 nato-intl.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4 Malware
2022-10-06 2 nato-intl.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b Malware
2022-10-06 2 nato-intl.com/wp-content/plugins/wp-post-modules/assets/js/wppm.frontend.js (...) Malware
2022-10-06 2 nato-intl.com/wp-content/plugins/wp-post-modules/assets/js/jquery.easing.mi (...) Malware
2022-10-06 2 nato-intl.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.1 Malware
2022-10-06 2 nato-intl.com/wp-content/plugins/uk-cookie-consent/assets/js/uk-cookie-cons (...) Malware
2022-10-06 2 nato-intl.com/wp-content/themes/cascara/assets/js/html5shiv.min.js?ver=3.7.0 Malware
2022-10-06 2 nato-intl.com/wp-content/themes/cascara/assets/js/respond.min.js?ver=1.4.2 Malware
2022-10-06 2 nato-intl.com/wp-content/themes/cascara/assets/js/placeholders.min.js?ver=4.0.1 Malware
2022-10-06 2 nato-intl.com/wp-content/themes/cascara/assets/js/jquery.sticky.min.js?ver=1.0.4 Malware
2022-10-06 2 nato-intl.com/wp-content/themes/cascara/assets/js/jquery.matchHeight-min.js (...) Malware
2022-10-06 2 nato-intl.com/wp-content/themes/cascara/assets/js/smoothscroll.min.js?ver=1.4.0 Malware
2022-10-06 2 nato-intl.com/wp-content/themes/cascara/assets/js/loaders.min.js?ver=1.4.1 Malware
2022-10-06 2 nato-intl.com/wp-content/plugins/js_composer/assets/lib/waypoints/waypoints (...) Malware
2022-10-06 2 nato-intl.com/wp-content/themes/cascara/assets/js/scripts.js?ver=1.4.1 Malware
2022-10-06 2 nato-intl.com/wp-includes/js/comment-reply.min.js?ver=5.5.10 Malware
2022-10-06 2 nato-intl.com/wp-content/plugins/cascara-core/assets/main.js Malware
2022-10-06 2 nato-intl.com/wp-content/plugins/advanced-post-slider/bxslider/jquery.bxsli (...) Malware
2022-10-06 2 nato-intl.com/wp-includes/js/masonry.min.js?ver=4.2.2 Malware
2022-10-06 2 nato-intl.com/wp-content/plugins/wp-post-modules/assets/js/owl.carousel.min (...) Malware
2022-10-06 2 nato-intl.com/wp-content/themes/cascara/assets/js/bootstrap.min.js?ver=3.3.6 Malware
2022-10-06 2 nato-intl.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/ (...) Malware
2022-10-06 2 nato-intl.com/wp-content/themes/cascara/assets/js/owl.carousel.min.js?ver=2.1.6 Malware
2022-10-06 2 nato-intl.com/wp-content/themes/cascara/assets/js/jquery.magnific-popup.min (...) Malware
2022-10-06 2 nato-intl.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_fro (...) Malware
2022-10-06 2 nato-intl.com/wp-includes/js/wp-emoji-release.min.js?ver=5.5.10 Malware
2022-10-06 2 nato-intl.com/wp-content/themes/cascara/assets/js/jquery.validate.min.js?ve (...) Malware
2022-10-06 2 nato-intl.com/wp-content/themes/cascara/assets/css/styles.css?ver=1.4.1 Malware
2022-10-06 2 nato-intl.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css (...) Malware
2022-10-06 2 nato-intl.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp Malware
2022-10-06 2 nato-intl.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/ (...) Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (13)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-10-05 12:33:02 UTC 34.120.237.76
mnemonic passive DNS fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-10-05 23:38:30 UTC 142.250.74.10
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-10-05 20:25:03 UTC 54.230.111.65
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-10-05 05:01:05 UTC 34.117.237.239
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-10-05 22:41:55 UTC 93.184.220.29
mnemonic passive DNS nato-intl.com (75) 0 2019-11-02 11:56:44 UTC 2022-10-05 18:07:22 UTC 167.114.64.93 Unknown ranking
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-10-05 09:14:56 UTC 44.240.140.78
mnemonic passive DNS r3.o.lencr.org (7) 344 2020-12-02 08:52:13 UTC 2022-10-05 07:13:38 UTC 23.36.76.226
mnemonic passive DNS getpocket.cdn.mozilla.net (1) 1369 2017-08-31 07:41:15 UTC 2022-10-05 05:48:01 UTC 34.120.5.221
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-10-05 06:03:19 UTC 34.160.144.191
mnemonic passive DNS ocsp.pki.goog (8) 175 2017-06-14 07:23:31 UTC 2022-10-05 06:59:18 UTC 142.250.74.3
mnemonic passive DNS www.nato.int (8) 159088 2012-07-04 09:09:51 UTC 2022-10-05 22:18:52 UTC 23.36.79.19
mnemonic passive DNS fonts.gstatic.com (7) 0 2014-08-29 13:43:22 UTC 2022-10-05 11:30:49 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540


Recent reports on same IP/ASN/Domain/Screenshot

Last 4 reports on IP: 167.114.64.93

Date UQ / IDS / BL URL IP
2022-12-03 21:54:47 +0000
0 - 0 - 8 homeimproveinc.com/ 167.114.64.93
2022-11-17 23:40:47 +0000
0 - 0 - 5 sistointl.com/ 167.114.64.93
2022-10-06 00:35:07 +0000
0 - 0 - 43 nato-intl.com/?p=877 167.114.64.93
2022-09-23 22:24:20 +0000
0 - 0 - 11 corporateegg.com/panosfx-complete-bundle-pack (...) 167.114.64.93

Last 5 reports on ASN: OVH SAS

Date UQ / IDS / BL URL IP
2022-12-04 08:47:04 +0000
0 - 0 - 16 chez-henriette.fr/ 46.105.51.211
2022-12-04 08:46:26 +0000
0 - 0 - 39 izdehar-alwatan.com/ 51.68.34.33
2022-12-04 08:24:26 +0000
0 - 0 - 28 149.56.245.38/ 149.56.245.38
2022-12-04 08:24:26 +0000
0 - 0 - 3 51.210.254.243/ 51.210.254.243
2022-12-04 08:19:14 +0000
0 - 0 - 3 excelcare.com.sa/ 145.239.140.147

Last 1 reports on domain: nato-intl.com

Date UQ / IDS / BL URL IP
2022-10-06 00:35:07 +0000
0 - 0 - 43 nato-intl.com/?p=877 167.114.64.93

No other reports with similar screenshot



JavaScript

Executed Scripts (49)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (119)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "AB48F17E54075E1ECF034278E82BCACD2E3689773186CC84FBA9B79AAC907294"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5979
Expires: Thu, 06 Oct 2022 02:14:35 GMT
Date: Thu, 06 Oct 2022 00:34:56 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B7CA4E48A9DAF0C904C7D7B946FAE3B283CCA683444EAFF18C5E7B346222A108"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4556
Expires: Thu, 06 Oct 2022 01:50:52 GMT
Date: Thu, 06 Oct 2022 00:34:56 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A9FB1F7ADE7C8A79D2EE83E9B7215E66DC89AC733B11079297A8F4B9ACEAE1F5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6869
Expires: Thu, 06 Oct 2022 02:29:25 GMT
Date: Thu, 06 Oct 2022 00:34:56 GMT
Connection: keep-alive

                                        
                                            GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US&region=NO&count=30 HTTP/1.1 
Host: getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.5.221
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
vary: Accept-Encoding
content-location: global-recs.php
tcn: choice
x-frame-options: SAMEORIGIN
status: 200 OK
x-source: Pocket
pragma: cache
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE"
x-cache: Hit from cloudfront
x-amz-cf-pop: SEA73-P2
x-amz-cf-id: -GVdW_9I1pyLsUlTTv7avwM9kLRP_vh7HLnrAIT0zAtOfTR_Rv2m-Q==
content-encoding: gzip
via: 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 00:33:57 GMT
age: 595
content-length: 42064
cache-control: s-maxage=900,public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size:   42064
Md5:    953d081439ca86a248fdcc6dd037e4a5
Sha1:   10c2bd53d194565dbc3cac69711c609c8cd2422e
Sha256: 7e7267762b00d88dffda03bf9bdfc64c10d0627953ba3c37ffd2994ed747ffa3
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: 1lFBLJifTlWXpTANgo0svDJd6IZqSkDtmXmbL//zIDdx4BEjBvVYfPnSNoK1jMxQCY0fvgTIyJs=
x-amz-request-id: 7NNGVZQHBH8Q69YY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 06 Oct 2022 00:30:32 GMT
age: 264
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    67d5a988edcda47bc3b3b3f65d32b4b6
Sha1:   d4f0e0da8b3690cc7da925026d3414b68c7d954f
Sha256: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Uiczy3o19cPgH9-Qypf5yt0BoQlreHwaLakVi54z9wnGUAXxVkgOFA==
Age: 31658


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 06 Oct 2022 00:34:56 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 06 Oct 2022 00:29:33 GMT
Expires: Thu, 06 Oct 2022 00:55:57 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ETKLViH010n46QkLNvUetFbGHfcBCO-f9cnesYH6DRWLTi1kpx2yFA==
Age: 323


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2302
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 00:34:57 GMT
Last-Modified: Wed, 05 Oct 2022 23:56:35 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /?p=877 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         167.114.64.93
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Set-Cookie: empd_com_wp_session=d224f9ec8878076ebfb2604799e905cf%7C%7C1665059696%7C%7C1665057896; expires=Thu, 06-Oct-2022 12:34:56 GMT; Max-Age=43200; path=/
X-Pingback: http://nato-intl.com/xmlrpc.php
X-Redirect-By: WordPress
Location: https://nato-intl.com/?p=877
Content-Length: 0
Date: Thu, 06 Oct 2022 00:34:57 GMT
Server: LiteSpeed
Vary: User-Agent
Access-Control-Allow-Origin: *

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: W1sb3+Je5qLtclDuXleudA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         44.240.140.78
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 84JyxsDhJx1919Bx41laoUTLvpw=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5E5E7706B8AC89339EE1B8DE405FB53C1719EF8D82156B1EBF717E53F8508AA9"
Last-Modified: Tue, 04 Oct 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21586
Expires: Thu, 06 Oct 2022 06:34:43 GMT
Date: Thu, 06 Oct 2022 00:34:57 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12026
Expires: Thu, 06 Oct 2022 03:55:24 GMT
Date: Thu, 06 Oct 2022 00:34:58 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12026
Expires: Thu, 06 Oct 2022 03:55:24 GMT
Date: Thu, 06 Oct 2022 00:34:58 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12026
Expires: Thu, 06 Oct 2022 03:55:24 GMT
Date: Thu, 06 Oct 2022 00:34:58 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d3175ca-da8b-4a6f-a315-9f1d92299891.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6693
x-amzn-requestid: 1531f482-cdf5-4506-ba1c-18a66173457b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQNxF45oAMFxJQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfa57-28e8e572281d5f110c26dcf1;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:42:47 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: RIa9NLHuV7fSlBeUyYv0LF3sapZQiWMRqKgY9Oa3cdLywQznXbTDOQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 a4479a6315f90864adc6175b280f8f44.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 22:56:19 GMT
age: 5919
etag: "0f37ee870c8855919900c99204ffffe736548a3f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6693
Md5:    57f90a95d91632baf3b89d7b3b46361f
Sha1:   0f37ee870c8855919900c99204ffffe736548a3f
Sha256: a3449e46854b90fdcda4a0ba83b4b0892a7888b17211d814c0db930116bb9a32
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7270
x-amzn-requestid: f2f15f43-6054-40f5-943a-530671e772dd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjOZjF3aIAMFW9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df770-5e2253791a927c8c40a0ff0d;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:30:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: xRuMce_9OkP3R2DqHjZI34GwkDezdfGKsgntCMTZG2c6SJUcyv0Ckg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:56:40 GMT
etag: "447cbf348ef10d0136a1811e843c46937defbba1"
age: 9498
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7270
Md5:    e238ccaa3b9fa88476a8514855e8232f
Sha1:   447cbf348ef10d0136a1811e843c46937defbba1
Sha256: 43dce3c1eb388dfaddca4176acb6eb32f76fc4c03fca18e7a315c9ddb43d2b02
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb1f9d9-58f2-4af5-b299-6a59b5768aba.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8651
x-amzn-requestid: 8bbdbc11-92fe-4cdf-8469-1c1ffac9e65b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjPLIGG0IAMFehw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df8ad-132ee26478d791850dd14462;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:35:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: KBuHj1vlNgk4oflp8uIxuxuPoWh7B7O0SWrMrNP-lAhnp2m53ttPMw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 22:01:22 GMT
age: 9216
etag: "d839f3aa41455d818da9a794b0688b1144b3a03a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8651
Md5:    2d101e6535dfc8ea8c193d3e97c07e1d
Sha1:   d839f3aa41455d818da9a794b0688b1144b3a03a
Sha256: d73e79f203ef50354e078de30fcb52d298e14ad53924e0387ab586a9cb4376a2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e949d36-f543-4757-9bc2-dbfc1a880438.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7597
x-amzn-requestid: 1c7002f7-2369-4547-82ff-b873f7b055b9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZdZPmFarIAMFTtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ba263-785f9ddd7c8485be32388494;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 03:02:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sZAR42mouK9Tsiv7ZVRdA_1vuo1c3x7nBkynlsnB7lAppLZZCVM3mA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 03:11:59 GMT
age: 76979
etag: "03bc7fa2fe6a4b291dc3ffb3ace50e21cf6478f4"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7597
Md5:    e2d931d10ab5596a26616db46797f248
Sha1:   03bc7fa2fe6a4b291dc3ffb3ace50e21cf6478f4
Sha256: 15ac08b069bf5128c8def9d261ce1bd3834fbe7bbb17c49b69c07330a9f325fa
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6646df0-31a7-4c5a-8148-5fe9e20f3baf.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9338
x-amzn-requestid: 4ca2eb3c-eba4-43a4-b79a-89546da3d660
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQBfG7soAMF9cw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfa09-1b5bd53052718f620b920a00;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:41:29 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 6pHftE0vUMqrH2NR_7DzrWlnD0yal7BkAfee7UeVG7DKZNEAYRa9HQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 d1d67b07408bba8c682597d8303642e2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:45:26 GMT
age: 10172
etag: "f350f295dd70152712162d4be5b3b5f0d12cde57"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9338
Md5:    b5958f828ccc16a41b22d9ae812bccfc
Sha1:   f350f295dd70152712162d4be5b3b5f0d12cde57
Sha256: 230d7d8e570e433d18ec53b6ca114e2a206e8c265c0c66d73388c49db5c91c64
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10158
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqZCH7doAMFcPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: szhtD9f4RuQaDKXe7LElSR0yOKo9cYa1i2YMeG3eSpBXP8ePcdzQig==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 07:29:32 GMT
age: 61526
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10158
Md5:    4fc2ddd86450d64d3fb659ab4e78be58
Sha1:   bbe71936b78a8c34d03ab87948dc840b35c6948f
Sha256: 84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f
                                        
                                            GET /wp-content/plugins/advanced-post-slider/advps-style.css?ver=5.5.10 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "19a9-5da8ed10-cf28032eb98bd816;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1522
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1522
Md5:    64c8f10917e2bb8c204603e273352ea8
Sha1:   001e4dc836e02f941de09d65ffa1f89ba723df92
Sha256: 7c0eb948205f38639fc79d2a8210fe1042c67ac89dd1a930f802def0caed98e0

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.1 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:03 GMT
etag: "695-5da8ed0f-17733fe12506e4b6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 557
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   557
Md5:    22abae7a448d0f1ce2d2c9e1c2d4f08f
Sha1:   2591e602d87b77bf7cf543f133f15678c596148f
Sha256: 48510198ab1b793ab7fccda6568222ce27d6ad0abfbe69f38589d0c73161991a
                                        
                                            GET /wp-content/plugins/recent-tweets-widget/tp_twitter_plugin.css?ver=1.0 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:03 GMT
etag: "211-5da8ed0f-67be636572fed71c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 215
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   215
Md5:    2876398829358ef0469a3c68396c94a8
Sha1:   cd64e5bf68f585b608a59b83bf090250718c3e0f
Sha256: 2e58028194008737ae4ba303faecea49c450e79c65bb08f98e2ff225e9adb84e

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/uk-cookie-consent/assets/css/style.css?ver=5.5.10 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "1230-5da8ed10-e739370a441b0840;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 969
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   969
Md5:    23d20172553b39a370d6e4cbddca196e
Sha1:   fede3d30d43bb94222af1c9883dca4eaeb64240f
Sha256: 2f95f890ddacd65df9cb6159f986a79db0d1c5633ac794dfd86f4c4c307e0052
                                        
                                            GET /wp-content/plugins/wp-pagenavi/pagenavi-css.css?ver=2.70 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:03 GMT
etag: "176-5da8ed0f-a3430959db2daf7a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 183
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   183
Md5:    0db927906d58a427b489ed942018f967
Sha1:   f7dd9aab39d08aa140ec69dc0f5a9c15ed56c16c
Sha256: 6212fb8db9276b34a0e7cc61af432c98df2e18ec1b2f531f12aab1221f0ad977

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 00:34:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/cascara/assets/css/Pe-icon-7-stroke.min.css?ver=2.4 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "2001-5da8ed10-8632e597032ebd70;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1617
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (8180)
Size:   1617
Md5:    ddb347d66e52c7eba05b9824773371a3
Sha1:   3bd1bb8164d20d5c230871f1387844c20369ffb2
Sha256: 8b4a6f5bbce2b37f33816598c99fa3e319a84d193cb437cde65ca15b151089a9

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/cascara/assets/css/loaders.min.css?ver=2.4 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "95de-5da8ed10-bdd8da9e6d6b9c94;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3776
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (38348)
Size:   3776
Md5:    efdebcac7cfb2642f53e561452a74d0d
Sha1:   88bcaaec8650dd83a51c8a78dd678140c3966c5c
Sha256: 0413d13456f69443f9d9c6f4b87f00ca08e3534e15d23a77f3f39fbded8f9209

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 00:34:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /nato_static_fl2014/assets/pictures/stock_2013/20130430_130430-sto-logo_rdax_226x150.jpg HTTP/1.1 
Host: www.nato.int
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.19
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: Web Server 1.443
content-length: 13356
strict-transport-security: max-age=63072000; includeSubDomains; preload;
last-modified: Tue, 30 Apr 2013 16:58:02 GMT
etag: "342c-4db96e7818130"
accept-ranges: bytes
x-frame-options: SAMEORIGIN
x-xss-protection: 1
x-content-type-options: nosniff
cache-control: max-age=300
expires: Thu, 06 Oct 2022 00:39:59 GMT
date: Thu, 06 Oct 2022 00:34:59 GMT
set-cookie: WCM-WWW-PROD=ffffffff098dc30945525d5f4f58455e445a4a423660;Version=1;Max-Age=120;path=/;httponly
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 226x150, components 3\012- data
Size:   13356
Md5:    d0d4683d7f103ff3e0904afecfc8a4b7
Sha1:   2058d782a5aa613564ce58bacca88f409b2e5c5c
Sha256: 0e4fb507d9ee01bf150df83a1bf2fe6014d8f362b6b5be7b09be9bad82dab26b
                                        
                                            GET /wp-content/plugins/wp-post-modules/assets/css/wppm.frontend.css?ver=2.4.1 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:03 GMT
etag: "27205-5da8ed0f-d433666d19a17edd;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 17020
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  assembler source, ASCII text, with CRLF line terminators
Size:   17020
Md5:    c36889c602183fcad72fb643c53c05b0
Sha1:   a0862ef4f302da8d12284a76c9afa87d205f2bf8
Sha256: 1e0100c4bbd76e7286feb66faf42b6ac0f68e3bfe206cb055462ad39de3715fa
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=5.5.10 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Fri, 23 Oct 2020 19:55:25 GMT
etag: "d293-5f93352d-c78b82deb847f1c7;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7455
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27100)
Size:   7455
Md5:    bd31b2b1085f1595b77592174490b5e6
Sha1:   f11b8bd4d75033ed07ef0288c9177dc614d9e214
Sha256: 43cd7e52a79bbc27b1d70717ccf5a7c73cb4b04f3837c7dd8af45d05a47aea0d
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=5.7 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "7793-5da8ed10-7187c768443590a0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6584
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30449)
Size:   6584
Md5:    fa6937023888411664ad6501fcce0b10
Sha1:   3245416fbf393d3b163546f3730da7bb5c1a6d4f
Sha256: f2ecf4cd1d79eda4fc991d4d7448f295457db297f238a1258b10feb23e96144c

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/cascara/assets/css/magnific-popup.min.css?ver=2.4 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "149f-5da8ed10-114672e04f84e954;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1432
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5254)
Size:   1432
Md5:    c6e16bf499dd6a31ede383b7a985ed5b
Sha1:   36089b4dc68f4e2089d79a8fa59e0d4396b9d370
Sha256: 05a2447ed755c6c624acf8cc6e51585a57a35de0efa35cc2d4a1b578e71e04ef

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/flexslider/flexslider.min.css?ver=5.7 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "df9-5da8ed10-5a5e471113451934;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 967
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3577), with no line terminators
Size:   967
Md5:    b6dd0910188a38a3f59fceaabee8ac83
Sha1:   d397194d7c75852f8c4584183fe19db31e2ad335
Sha256: 7b7ace9556ea5a740fe45680ac41d8a6ecc091521e0aa406a3b668c4685b438f

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/cascara/assets/css/owl.carousel.min.css?ver=2.4 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "b78-5da8ed10-16fb610a4b608d9d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 789
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2846)
Size:   789
Md5:    f28411148e2c4159c779ed6cb9060a03
Sha1:   3e28a7725e7dec0a774b30f749ccc2f4664cc03b
Sha256: 5e569c50803725ebc0c486d05135852e56a7b8b320c9cf6cfe3b201965de0004
                                        
                                            GET /wp-content/themes/cascara/assets/css/weather-icons.min.css?ver=2.0 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "6841-5da8ed10-2567b6daddcfa5c8;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3463
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (24964)
Size:   3463
Md5:    a5fa378ccfd6f7f7c23c2a9b06daf5a7
Sha1:   506dfbc8858a33c2e3240ff11d7edf1e3406c029
Sha256: e6f0c80712352aab200514dbd0c77c1dd15ab8c3e459cbeb21388b01b8fbb718

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/cascara/assets/css/meanmenu.css?ver=2.0.7 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "c7d-5da8ed10-fe0cc6d218d4c893;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 832
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   832
Md5:    50aba6f8bb5b4c046760eba0ec6f4c13
Sha1:   6d81cb313a023ca07d29a4041e671f4ac5d64714
Sha256: 1818802d0f036b83af9f0da9da03382517c61b1b3b39d479380bbdd1b0ad5780

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/cascara/assets/css/responsive.css?ver=1.4.1 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "44b1-5da8ed10-d1d0b32ef65ee474;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3214
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   3214
Md5:    1c34fb5e330df27649e86f7edc491522
Sha1:   016675cb9fabb6ee1db2040bfd50f63908034451
Sha256: 198a03b392d55bf204dcd5c4b48b717df3f550720875c3c40a8245d97d187fd5
                                        
                                            GET /wp-content/plugins/cascara-core/assets/css/style.css HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "e6-5da8ed10-7caec48cd12a51f9;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 102
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   102
Md5:    c1c2489994659da053fb2bc2db380d6a
Sha1:   6b5f4856fc0c75b11ee7e7c942f7e192d1ea64e4
Sha256: 44f1d2019d0a564677e89cfc639756aed36bc23633e3b15bcee268e9abe73e8b
                                        
                                            GET /wp-content/plugins/advanced-post-slider/js/advps.frnt.script.js?ver=5.5.10 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "398-5da8ed10-f7db184603017670;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 274
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   274
Md5:    33078e2b2ff829efa307923cdb7f9f7e
Sha1:   a62c213f394955eea0595265512cb2368799acf0
Sha256: 2131feae47acd5c05a881957c8bb81044846863e9cebc2b193cbbd9be3bd955d
                                        
                                            GET /wp-content/themes/cascara/assets/js/load-more-tab.js?ver=1.4.1 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "5fc-5da8ed10-1668e8aeff1c2d3b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 615
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   615
Md5:    8de435f15701ee9fc70c00f6d1a869a1
Sha1:   8e406961d26a3d119928e6153a8b879bfe277741
Sha256: 0931618417d6fe7037640deb8553492a6239a2154f7f0b1411a595ffea5d60b6

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/cascara/style.css?ver=5.5.10 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "293-5da8ed10-f58fd3e1999d04bb;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 351
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   351
Md5:    e44df01dd277a6866ccbcc6c708b1110
Sha1:   f5614cd72234938594b9f66f1f34ec4073e9f463
Sha256: 88d2e1cf4ef1fcceb17446862803025559b09157f823f6324e4aa5df9ebdfd70

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Fri, 23 Oct 2020 19:55:34 GMT
etag: "15fd-5f933536-6d40970d4fb2a3be;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1733
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5477)
Size:   1733
Md5:    fa921f07ecc438baf227765de450e215
Sha1:   1fdd49d8bb681cb118ea8d67d4fc61b0ad46cc95
Sha256: b2cc68637048b04952a2f33163f64571145dbe0817a14c68fe6f1661bd81091f

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "71b-5da8ed10-fc0d14f56a5548d9;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 628
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1626)
Size:   628
Md5:    67cf4663ab50b96f6cfbef1de915ac71
Sha1:   b019f521a2ec93c24ff288ca16b39263168d9e64
Sha256: 4f51279a3e89fb1e36130b8802a119ac113a50423fbfdc6d7ea7d18e8a892bf9

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/wp-post-modules/assets/js/wppm.frontend.js?ver=5.5.10 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:03 GMT
etag: "3d8d-5da8ed0f-cc34b5259d99fba7;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2976
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   2976
Md5:    b6a5b08a0112cdb2d22d74a458a6441e
Sha1:   79d69c7bd8371ca99fcbfd1c3eb778ea99b953b9
Sha256: 3bfe0de979104fbc8eb3ca2e0bab22e5f3b0b38558d337d952df87a575f8776a

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/wp-post-modules/assets/js/jquery.easing.min.js?ver=5.5.10 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:03 GMT
etag: "14f6-5da8ed0f-b0fa9c4eccf35d9f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1709
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (3524), with CRLF line terminators
Size:   1709
Md5:    bf9157468d9608b8daa735fbb2cab9db
Sha1:   073a4af29992056a550580a421cd783aaba75d28
Sha256: 7af399e87598b10d0643ab02dcadb6e002992f6c30a5624b9068f6e892c002b1

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/wp-post-modules/assets/js/jquery.marquee.min.js?ver=5.5.10 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:03 GMT
etag: "161a-5da8ed0f-683e5891bfb8e356;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1838
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5480)
Size:   1838
Md5:    2af471f6e149c9c8fe0b6b87c70dc55c
Sha1:   d306f5e4eba91a7f8c6ac1ba94f8c10173143f30
Sha256: 944cd832e0388d0849d97b554870dae7ce6abf3b9297568e592e4e5eef12ce68
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.1 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:03 GMT
etag: "3868-5da8ed0f-1b04dada7e4d9f34;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3752
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   3752
Md5:    f644bc34a89d97aedb4b3b90263e069d
Sha1:   fc4569b75426c65dd5bda5929cc3c72d7bb4c055
Sha256: 298de39bc7e3ea98932954fca45be9f89af97eca4d0ddcb6a0a355bddbc6fac1

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/uk-cookie-consent/assets/js/uk-cookie-consent-js.js?ver=2.3.0 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "62d-5da8ed10-583a85cc0b9e8de2;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 586
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   586
Md5:    1d47cf76fe7bf21828841ce7ccbaecf8
Sha1:   5ef7cc91b233d548a8c163e7428de2d0f2839ac9
Sha256: fcef168cfd73bd9a7889330a9a16217ff1533d319fbbdc3602d2ce8d5f85fbd8

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/cascara/assets/js/html5shiv.min.js?ver=3.7.0 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "979-5da8ed10-458860e329ea1dbb;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1087
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2344)
Size:   1087
Md5:    dbc8d23793c7aa397ae34a8e25f1af9f
Sha1:   d95fd55386c0adf3f68a7d8ac3242ef830b17425
Sha256: 68840850e540055b10526edec88c331a8ddddfc09d964754a5710923a08f06e7

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/cascara/assets/js/respond.min.js?ver=1.4.2 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "1119-5da8ed10-7c838628c6a1041f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1972
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (4204)
Size:   1972
Md5:    338fc8c50f09f7cddfd5a03bab94f58d
Sha1:   ba427651f2b4635767b6ec302a69de2ecc6934d7
Sha256: de27b54fe3480c8da49da1d324664c516f139771bf14ccf9a07fab9e946d8270

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/cascara/assets/js/placeholders.min.js?ver=4.0.1 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "13d8-5da8ed10-2908d276ab6e96b8;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2069
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3907)
Size:   2069
Md5:    d550e27962696027947cf0400d33f894
Sha1:   d296487cc8e3d798ffffd96ad3eecf801ad3638b
Sha256: 82831e7802714c876c6ae92834e2308bffca1e0a03c1eac23d790da6b38213a2

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/cascara/assets/js/jquery.sticky.min.js?ver=1.0.4 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "12a2-5da8ed10-4f2444a06b05265e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1662
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4276)
Size:   1662
Md5:    bf83b4983af2104af3c8118a3c1601be
Sha1:   23e1a65895d02684adfa05290b71932d6bc1a11a
Sha256: 41214b41ce76d22050ccf025463dbaef30ef4b3792f495736130d59288635128

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/cascara/assets/js/jquery.matchHeight-min.js?ver=0.7.2 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "d2f-5da8ed10-c4d09b725bf52b5;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1257
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3278)
Size:   1257
Md5:    ae511a22dddc8a86ca2688717da68f2f
Sha1:   70bdce33421e7efa3edd60e165bc573630945fd7
Sha256: 9618873828d764c1df5c23105af3df44d4bb238755b0d6b20348cf0474d490fb

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/cascara/assets/js/theia-sticky-sidebar.min.js?ver=1.5.0 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "1aca-5da8ed10-848742dc7e34b27c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1849
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (6588)
Size:   1849
Md5:    43225984f4b734e0ec0e5c21d08c11a7
Sha1:   27e469ec367a90328d74d855efe0f3577f532cde
Sha256: 2221482dbebaa517bea73f1305efc831543706bf75e258f514e6d741b70b6633
                                        
                                            GET /wp-content/themes/cascara/assets/js/jquery.meanmenu.js?ver=2.0.8 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "2cb7-5da8ed10-f13fa16cdbbb42ae;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3231
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   3231
Md5:    8be594a0e53b497dc75802832d60984c
Sha1:   6bdd448f944ce1ca3e3921a5240150794e6f291f
Sha256: 34425cbaf9af4757028c61a5765f23b40573705ffece6d44cd9f65d371d54fd9
                                        
                                            GET /wp-content/themes/cascara/assets/js/packery-mode.pkgd.min.js?ver=2.0.0 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "3539-5da8ed10-ce25a8e4dbff7113;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3974
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13498)
Size:   3974
Md5:    f3fbd1def551975ecd61b17b737812a9
Sha1:   b6d4588c852186aac964292d75dd854648e7ef30
Sha256: cf7f1d27a38abc99291b7a3aba9ab58aafe2e490c9a7bb91a548a19c04afef9b
                                        
                                            GET /wp-content/themes/cascara/assets/js/smoothscroll.min.js?ver=1.4.0 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "1b58-5da8ed10-75ecfb0225522682;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2880
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6589)
Size:   2880
Md5:    19fbd1dd7180a4788273d636222d2039
Sha1:   ea396d97105bad8b9d5e6ce21dad739774334c39
Sha256: ef320c66f2d3154a6b5a41310c33d60a6a4da829c75f444d14560ceeff501b57

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/cascara/assets/js/jarallax.min.js?ver=1.7.3 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "26f5-5da8ed10-560f0f4d64e49057;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3447
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9817)
Size:   3447
Md5:    68754f09f0657f438ac51bed834d7e8c
Sha1:   faabd70b51cb52dea52021c330d5e0a9fa9926ae
Sha256: 8c32c1dcf09297f77a6d8f238bfb38bd15b3dfd460c1558029a3ca8e4dca435b
                                        
                                            GET /wp-content/themes/cascara/assets/js/loaders.min.js?ver=1.4.1 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "456-5da8ed10-946a5d6202763cf0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 491
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (955)
Size:   491
Md5:    1b027c4e64132a4bd62779941b6f7981
Sha1:   29533eacda65a88230f5287e8f4cafa0c9cb5bca
Sha256: d10b2a96caf50821e6d31fa547161b3c8ef8ec55e5e5655e299e2b2807bf1b27

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/cascara/assets/js/lazyload.min.js?ver=2.0.0 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "139f-5da8ed10-b3c58c637f5b98aa;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2207
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4890)
Size:   2207
Md5:    b613a174d75113a17324dfdde9b3c462
Sha1:   a40c5afb2fc2874ba17a97726115b827dd87184f
Sha256: 983be30f7ff63a07e568c1f378e57dc292eefe4d08bb29cef150552da6c8611e
                                        
                                            GET /wp-content/themes/cascara/assets/js/jquery.marquee.min.js?ver=1.4.1 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "235b-5da8ed10-a24ce5e31e2f9b2c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2212
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1219)
Size:   2212
Md5:    8c5471bf7f788373d9bf29ebf7866aa1
Sha1:   fab165680e17b21c259bb03f345ae8604e941a8f
Sha256: 36cd346577e50b524938a19af4a01186be65d837f40fda10506abb7178810e46
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/waypoints/waypoints.min.js?ver=5.7 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "1f6c-5da8ed10-ffd7d78c7423a2d7;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2461
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7808)
Size:   2461
Md5:    0542321a933f5ff465bc2e22dc718bac
Sha1:   c445c46eb69c2982b6b714b83e9fb4e15635c665
Sha256: b615979ed3db9b9b9b41cf78e7830dbeeff10b7eb6e649f0bf2931d0d3a744ed

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/cascara/assets/js/scripts.js?ver=1.4.1 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "455a-5da8ed10-6c06ae7150af8b15;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3971
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   3971
Md5:    2c0284286c16b3f11445cb19e29ec1a1
Sha1:   78cd17d1c80f7bbe220d7adb0033ae0227a614c0
Sha256: 571e8d9738178e5fa13b6dc7cbe944873fbb754f4f4e4c52ba77aed4f48a733a

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/comment-reply.min.js?ver=5.5.10 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 15 Apr 2021 10:16:35 GMT
etag: "ba8-60781283-221754575ea95e0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1228
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2949)
Size:   1228
Md5:    bcfb4d4521838dfaf1ecdbe9a74ef9b7
Sha1:   2e5fc11dae14cfe3081991ffaa684bc6e97a6223
Sha256: 70c6f139e01564819effae87a898afb404a4ab6d9635d983aa89d537f26173b3

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/cascara-core/assets/main.js HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "5197-5da8ed10-c0ec089bf6f631e0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3164
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1092), with CRLF line terminators
Size:   3164
Md5:    4707c09b693be60ce7b9ee7340ae82d9
Sha1:   770898dd0f6736ae6cd202805d76342378604eac
Sha256: bbadb7002f278bc60a17b12c6b2e6d86c72f7a21bde8f3e542fbbb2a49c211fe

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=5.5.10 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 15 Apr 2021 10:16:55 GMT
etag: "592-60781297-763d88ec0376669d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 663
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1391)
Size:   663
Md5:    992198ff853eb696f88bb0ec8586d015
Sha1:   a6262428de1b6c68cccf617d2a503f5a3bd3aecd
Sha256: ae0480bd571a7f57cccdbd08f77706edca84029f95bd90bc325224169528d21c
                                        
                                            GET /wp-content/uploads/2019/05/aoda1-1.png HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "35b1-5da8ed10-db36dd7ec46eb8c1;;;"
accept-ranges: bytes
content-length: 13745
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
vary: User-Agent
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 292 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size:   13745
Md5:    5944471babe729c1ff1547be133c4fda
Sha1:   33d16778b81ae53b2c5ff3e685964a8cf242d82c
Sha256: bfcf818780669ac50356eaa2c8c744cc253b8cac0f88c7aa9c08971fd0b7f1c5
                                        
                                            GET /wp-content/plugins/advanced-post-slider/bxslider/jquery.bxslider.min.js?ver=5.5.10 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "4b9f-5da8ed10-73a8b83e90c69090;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4925
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19040)
Size:   4925
Md5:    d2c26da9ce67516d1c19f4896b5b9c41
Sha1:   1979bb8c67596d0edd349d2209cb65110beea664
Sha256: deef64f20a8ad1238a721449bc80cfb2e1a41cfe0085e5fe23b3562a108c1d92

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Fri, 23 Oct 2020 19:55:35 GMT
etag: "5e4a-5f933537-bfbd7132e0dd279a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7117
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (23966)
Size:   7117
Md5:    acbcd70975a7cfaf92dc02b2ede1fd24
Sha1:   7a50461999972abb541d4baf1ccf23d8e435aad6
Sha256: c1250ec4943afb181633078eb9d67c5944fc64b2bb219c98406c286e9449189e

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/wp-post-modules/assets/js/owl.carousel.min.js?ver=5.5.10 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:03 GMT
etag: "9dd0-5da8ed0f-660c5a5c622f0ae1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 10322
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32066), with CRLF line terminators
Size:   10322
Md5:    78919cf0ea66c3756559f49b1d9f5a19
Sha1:   837bbde8505cfe84d7656204ba986d013f262c7e
Sha256: 1a54d6fcb94b6feacfbf1494f1d74c5b9342ea1e345221cce938ac1c86edd301

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/cascara/assets/js/bootstrap.min.js?ver=3.3.6 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "9004-5da8ed10-8cb64da53481eca8;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 9449
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32003)
Size:   9449
Md5:    3e4e33daed0042acd19ecdb38acb6a16
Sha1:   871f31e91ceb294bf259e32dd50bd71864540623
Sha256: ab6d694af8c9fac8616ee1256b507daa4056114128cba3da3e88804581210a6c

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/cascara/assets/js/enscroll.min.js?ver=0.6.2 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "4649-5da8ed10-fdada7cbb8861c7f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4770
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (17921)
Size:   4770
Md5:    51d8f7a877e669506ee7e1bbd83fd5c0
Sha1:   7dc2b70852b3f47e9aaea72e27863e94d9314686
Sha256: 73fe93b0d42096033d10c04e17c33f5a82836fbf03132a5e5b0e138d4d99f9d1
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=5.7 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "8aaf-5da8ed10-2ae6695da217c514;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 9626
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32004)
Size:   9626
Md5:    c3276e6deb5aceac3a929e30d0a31c99
Sha1:   e972f225499625c94f553fb85764b5975ab4e01b
Sha256: c5a14f5501be889bc3b2b12a65339d802e4015f4c8450ed03af9a4092429cb7a

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/cascara/assets/js/owl.carousel.min.js?ver=2.1.6 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "a767-5da8ed10-8a9a64d82d7bb2b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 10693
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32012)
Size:   10693
Md5:    624858a859260a58283e9ecdc6db44e8
Sha1:   04f13bbeb7c3e3389ad19a28fb15072e20688829
Sha256: e4e6141e78fe39c21605431ab66dae7f18ecc989dc7fa2120959aba3f2c6baf4

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /?p=877 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
set-cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898; expires=Thu, 06-Oct-2022 12:34:58 GMT; Max-Age=43200; path=/; secure
x-pingback: https://nato-intl.com/xmlrpc.php
link: <https://nato-intl.com/index.php?rest_route=/>; rel="https://api.w.org/", <https://nato-intl.com/index.php?rest_route=/wp/v2/posts/877>; rel="alternate"; type="application/json", <https://nato-intl.com/?p=877>; rel=shortlink
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2282), with CRLF, LF line terminators
Size:   19885
Md5:    b91a8a98adf9a63012bd975f3468bb31
Sha1:   f795712b37b986bbc68aa3f7a978a0be0b10e4b3
Sha256: 7f62046947a97e685da4f48dc1bd79b0872d1f02d3b7649ea745760f5de17a5c
                                        
                                            GET /wp-content/themes/cascara/assets/js/jquery.magnific-popup.min.js?ver=1.1.0 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "4ef9-5da8ed10-bcb422856dd793e0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7045
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (20087)
Size:   7045
Md5:    32b89ac1ec051e57ed2cf91dd76976db
Sha1:   fd7762fbb976089c6a121c6c28f82111b2196242
Sha256: 554062c00f8427164e4636d13b929cdaafc04e37aa6708a604bf08268d58a338

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=5.7 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:03 GMT
etag: "4cfa-5da8ed0f-9ae1ad57996639e1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5387
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19706), with no line terminators
Size:   5387
Md5:    c44e2aafcb3d9a864dcbd28b3219b439
Sha1:   5f566ccd94c458f6c83f5b8a84833d89680da23f
Sha256: cef4947bffe4f760616eab95c424fb4121abdd7d808bb3f248283c3c043adbb1

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=5.5.10 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 15 Apr 2021 10:16:43 GMT
etag: "3795-6078128b-d9e0176878f01fc6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4316
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11272)
Size:   4316
Md5:    cbe8cb2fedf8a769a95b7fb14607cb1f
Sha1:   bd8a18991728b257e9eefb89ba6ea9058860983a
Sha256: 0be8d8f894d47080f1723551cb8adf6c158249dc6f99fb06639ee9e5d332be4f

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/cascara/assets/js/jquery.validate.min.js?ver=1.9.0 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "5461-5da8ed10-750438de049630fa;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6204
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (1290)
Size:   6204
Md5:    5026266ec34741df89f09c81211c0d75
Sha1:   f1ef144630b0ff2603353559930bdba23ac7f79f
Sha256: 1f0e4eac43a93773ac6c8d9ce152029a6251d6e97103fabd291650e23413736b

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/cascara/assets/css/bootstrap.min.css?ver=3.3.6 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "1d97e-5da8ed10-c656a7084008d1c8;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 18236
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65371)
Size:   18236
Md5:    205bd60fc5d8a46ec27075d321509edf
Sha1:   a8a94253a99fffa01f15c46424d174a83f2cde61
Sha256: 77931d726d9808a238ea1b3511e93c202e389470762158b2179f5364cc685a9a
                                        
                                            GET /wp-content/themes/cascara/assets/css/styles.css?ver=1.4.1 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "1b9a1-5da8ed10-89b15186bcbcc169;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 18649
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   18649
Md5:    b44ef478f0bda6435775131d756d9a67
Sha1:   1db1a3f75e728aad93e6bc8f4497210ccbc03ee5
Sha256: 77d0f63a7b3136ed097a1f3636d6435a206f798ce1d469ea6849c61d246fc8a0

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=5.7 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "76596-5da8ed10-e58ec5328512a6c5;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 41860
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   41860
Md5:    10f8b6c806a4d6f540bcac22657a4ed8
Sha1:   8f434fb6485d7e90b185a5cd3c3f761b697a1a46
Sha256: 3b8eee1fc8a3873e43ac996ec83750cdf70e1928ea22b53ef68f30e4aca16b5e

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "17a69-5da8ed10-654d99bb52fedba;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 32853
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (31997)
Size:   32853
Md5:    a95303ca3b1a9372809d72ffa31bca40
Sha1:   65130bca144d3b49d5f97387173c423b9b4abfe3
Sha256: c5d914b6693616fcf2c61bc363660dcc5f6ea7de5a25b1d6a5a2a95f39846565

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/uploads/2019/05/1_013-gio-foto-in-volo-01-09-08-low-res-1-565x330.jpg HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "40c6-5da8ed10-aadac5f0b1b4e5c4;;;"
accept-ranges: bytes
content-length: 16582
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
vary: User-Agent
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 565x330, components 3\012- data
Size:   16582
Md5:    2bf18c30f8bcfaed3bf4237695940109
Sha1:   a7b6c346e17477cfa1502862f7174fd6849e0026
Sha256: f14a1a663a753f4181b91eb66acf73226c77fa4fa9c397c6696198922e691446
                                        
                                            GET /wp-content/uploads/2019/05/1_ex-sea-shield3-edit-565x330.jpg HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "5876-5da8ed10-8c293979b37d0c65;;;"
accept-ranges: bytes
content-length: 22646
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
vary: User-Agent
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 565x330, components 3\012- data
Size:   22646
Md5:    f5e333c243ee3d5fcb5048d59737b9af
Sha1:   5617e21bc596067e69d3a97d102cee0827a22ccc
Sha256: 9fd4eb5eac721ec7e6517197b049cddd1910f2aa030643f6382937935a8970f9
                                        
                                            GET /wp-content/uploads/2019/05/20190424_190424-wps_rdax_775x440-565x330.jpg HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "8d78-5da8ed10-3b9b2af68954eda8;;;"
accept-ranges: bytes
content-length: 36216
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
vary: User-Agent
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 565x330, components 3\012- data
Size:   36216
Md5:    f190ef66e48450d5d69fa4f93ffefe25
Sha1:   a1ea61fd037e307fcbde76c081ebc5e60cfa7fc0
Sha256: aa7a64138767f370ffc3cf965722758346d9c88c1cdb6a8b5f200e3893559f43
                                        
                                            GET /wp-content/uploads/2019/05/1_190411-f-ip756-2050_1-1-565x330.jpg HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "b911-5da8ed10-4f7fb20259d9829d;;;"
accept-ranges: bytes
content-length: 47377
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
vary: User-Agent
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 565x330, components 3\012- data
Size:   47377
Md5:    63a3ea7012d53f43a929cd8328ebb60c
Sha1:   9c32b36ee6fe5e9e9e378958275df5b571911634
Sha256: a8c17d13f8671b1f4454469f673a87256c1e563ac2ec98ff3d867009428117a3
                                        
                                            GET /wp-content/uploads/2019/05/20190417_190417-eager-leopard1-565x330.jpg HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "9393-5da8ed10-7d46d1f743551ad4;;;"
accept-ranges: bytes
content-length: 37779
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
vary: User-Agent
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 565x330, components 3\012- data
Size:   37779
Md5:    a530250a801c3240016223bf371e49d4
Sha1:   6179d4defa1d50c42f86af49d9ce89b657cca55c
Sha256: 2517470f7a29186a4ee33aa23469f0d26fa21c7e8cba79b56051bedc6cbe5223
                                        
                                            GET /wp-content/uploads/2019/05/20150707_collective-defence-img2-565x330.jpg HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "9af1-5da8ed10-22f517340513ee1e;;;"
accept-ranges: bytes
content-length: 39665
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
vary: User-Agent
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 565x330, components 3\012- data
Size:   39665
Md5:    a2d1b9592262deec084f2012170e4eec
Sha1:   e350bb15f50960d7c762634fc32421bf347664df
Sha256: 05a4e91d4572f52a704df7e40d1b1e06b906136e220423ef796fcbeb12c61908
                                        
                                            GET /wp-content/uploads/2019/05/20141013_141013-infocus-capabilities_rdax_375x192-565x330.jpg HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "5df7-5da8ed10-4c09e39e2067896e;;;"
accept-ranges: bytes
content-length: 24055
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
vary: User-Agent
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 565x330, components 3\012- data
Size:   24055
Md5:    c6d20f1dbbf75dae836a281de65981aa
Sha1:   e29150ef7007983067aa2df508d8aba0e1a00246
Sha256: 06b9881e42abbaea8b334f10d0f8e0ed21b9ee3f7061c066826d0583fb954694
                                        
                                            GET /wp-content/uploads/2019/05/20190501_190501-dsg-us-2_rdax_775x440-565x330.jpg HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "9282-5da8ed10-316b9c13333ef223;;;"
accept-ranges: bytes
content-length: 37506
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
vary: User-Agent
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 565x330, components 3\012- data
Size:   37506
Md5:    72aad5be5ad49ebc70cb4f46e2b4dde0
Sha1:   05b7a6c0bb6f550ee1ba9c28617dfb3eec93dd20
Sha256: ea845aa21c3d5f472453b147310203bfcab29bfb6235f23a12efc777d5a405ad
                                        
                                            GET /wp-content/uploads/2019/05/2_bap-50-announcement-draft-1-565x330.jpg HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:34:59 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "a8cd-5da8ed10-d86edd1a667f402c;;;"
accept-ranges: bytes
content-length: 43213
date: Thu, 06 Oct 2022 00:34:59 GMT
server: LiteSpeed
vary: User-Agent
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 565x330, components 3\012- data
Size:   43213
Md5:    89d76f2480fdf5d89eece1e6df5aebc8
Sha1:   f7d98a82ed185f2ec60e7250a72f307efa908365
Sha256: 048664e05a3dbcf86bd54da395a12bdb9eb94e0f82de99c5e39c8648831ea0b6
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 00:35:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nato-intl.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Sep 2022 16:40:18 GMT
expires: Fri, 29 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 546882
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size:   30928
Md5:    ac0d2859ea5f8fd6bcb3c305c08ec184
Sha1:   7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
Sha256: ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 00:35:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/lato/v23/S6uyw4BMUTPHjxAwXjeu.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nato-intl.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5472
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 17:19:57 GMT
expires: Wed, 04 Oct 2023 17:19:57 GMT
cache-control: public, max-age=31536000
age: 112503
last-modified: Tue, 26 Apr 2022 15:50:06 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 5472, version 1.0\012- data
Size:   5472
Md5:    4bde07f991ba6af69a1e009fd7ce9d1a
Sha1:   ed53e9f8967142ea4aa2fd113f696799319d91b2
Sha256: 1c2fc265baaeba4f3f5b8c7285b93343aead25590f08be73d3056718b376c5d7
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 00:35:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nato-intl.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:30:59 GMT
expires: Thu, 05 Oct 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 18241
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Size:   7816
Md5:    25b0e113ca7cce3770d542736db26368
Sha1:   cb726212d5d525021752a1d8470a0fb593e0c49e
Sha256: 9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 00:35:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 00:35:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nato-intl.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:30:59 GMT
expires: Thu, 05 Oct 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 18241
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Size:   8000
Md5:    72993dddf88a63e8f226656f7de88e57
Sha1:   179f97ec0275f09603a8db94d4380eb584d81cd5
Sha256: f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
                                        
                                            GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nato-intl.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 17:17:26 GMT
expires: Wed, 04 Oct 2023 17:17:26 GMT
cache-control: public, max-age=31536000
age: 112654
last-modified: Tue, 26 Apr 2022 16:04:12 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data
Size:   23236
Md5:    716309aab2bca045f9627f63ad79d0bf
Sha1:   38804233a29aaf975d557fe14e762c627bef76e0
Sha256: 115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
                                        
                                            GET /wp-content/themes/cascara/assets/images/icons/close-icon.png HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/wp-content/themes/cascara/assets/css/styles.css?ver=1.4.1
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:35:00 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "3d04-5da8ed10-911cb57e20e46143;;;"
accept-ranges: bytes
content-length: 15620
date: Thu, 06 Oct 2022 00:35:00 GMT
server: LiteSpeed
vary: User-Agent
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 15 x 15, 8-bit/color RGBA, non-interlaced\012- data
Size:   15620
Md5:    37be1137b9d24874d817ae7328a5540b
Sha1:   9c0b6fa3778ac2e9708064021ca28b86be45fc34
Sha256: 1d312848822295eca6c8490a0f4837c9cb8bf1ad2c27aef591b33e30706a563f
                                        
                                            GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nato-intl.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 17:10:21 GMT
expires: Wed, 04 Oct 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 113079
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size:   23580
Md5:    e1b3b5908c9cf23dfb2b9c52b9a023ab
Sha1:   fcd4136085f2a03481d9958cc6793a5ed98e714c
Sha256: 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
                                        
                                            GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nato-intl.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 17:10:21 GMT
expires: Wed, 04 Oct 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 113079
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Size:   23040
Md5:    de69cf9e514df447d1b0bb16f49d2457
Sha1:   2ac78601179c3a63ba3f3f3081556b12ddcaf655
Sha256: c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 00:35:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://nato-intl.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=5.7
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: font/woff2
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:35:00 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "12d68-5da8ed10-821863de965c0eb6;;;"
accept-ranges: bytes
content-length: 77160
date: Thu, 06 Oct 2022 00:35:00 GMT
server: LiteSpeed
vary: User-Agent
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size:   77160
Md5:    af7ae505a9eed503f8b8e6982036873e
Sha1:   d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
Sha256: 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/uploads/2019/05/favicon.png HTTP/1.1 
Host: nato-intl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/?p=877
Cookie: empd_com_wp_session=d090a2156653bf49fbaa4fb1bb9c5ea9%7C%7C1665059698%7C%7C1665057898
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         167.114.64.93
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 00:35:01 GMT
last-modified: Thu, 17 Oct 2019 22:37:04 GMT
etag: "2dbf-5da8ed10-8b9548860c09cf5d;;;"
accept-ranges: bytes
content-length: 11711
date: Thu, 06 Oct 2022 00:35:01 GMT
server: LiteSpeed
vary: User-Agent
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 340 x 340, 8-bit/color RGBA, non-interlaced\012- data
Size:   11711
Md5:    d7359b8ccf1e80170ae1728ec966dee4
Sha1:   6890d2386c49a60aa806ef9cec17ef4462feb9be
Sha256: 3fa509873c5952ddd3758a629d980d4ea85af1e257bfe4dc09e6494e816b713a
                                        
                                            GET /nato_static_fl2014/assets/pictures/stock_2015/150401-NSPA-logo-en-2.jpg HTTP/1.1 
Host: www.nato.int
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.19
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: Web Server 1.443
content-length: 11995
last-modified: Wed, 01 Apr 2015 09:24:40 GMT
etag: "2edb-512a648ed5228"
accept-ranges: bytes
x-frame-options: SAMEORIGIN
x-xss-protection: 1
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload;
cache-control: max-age=300
expires: Thu, 06 Oct 2022 00:40:02 GMT
date: Thu, 06 Oct 2022 00:35:02 GMT
set-cookie: WCM-WWW-PROD=ffffffff098dc30945525d5f4f58455e445a4a423660;Version=1;Max-Age=120;path=/;httponly
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 226x136, components 3\012- data
Size:   11995
Md5:    a5683ef1d9f0ea07b07fc228d7c2d80c
Sha1:   cfec1fdd222d485c599ca8a7f161dbb8e324a8ab
Sha256: 4df12e98cf0fa6274cfe7e384623669d63fff3ae67df85e845b0348fc3ec581a
                                        
                                            GET /nato_static_fl2014/assets/pictures/stock_2013/20130322_130322-ncia-logo_rdax_226x150.jpg HTTP/1.1 
Host: www.nato.int
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.19
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: Web Server 1.443
content-length: 29474
strict-transport-security: max-age=63072000; includeSubDomains; preload;
last-modified: Fri, 22 Mar 2013 11:04:11 GMT
etag: "7322-4d8816a400913"
accept-ranges: bytes
x-frame-options: SAMEORIGIN
x-xss-protection: 1
x-content-type-options: nosniff
cache-control: max-age=300
expires: Thu, 06 Oct 2022 00:40:02 GMT
date: Thu, 06 Oct 2022 00:35:02 GMT
set-cookie: WCM-WWW-PROD=ffffffff098dc30945525d5f4f58455e445a4a423660;Version=1;Max-Age=120;path=/;httponly
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2013:03:22 12:02:57], baseline, precision 8, 226x150, components 3\012- data
Size:   29474
Md5:    fe666fcdede6c783bb7d15447ead04cb
Sha1:   9267bb4398feb332823ad90fb681eb18cf369f08
Sha256: 70dc934bb183dd2c6909a1df948c1ffdbf54610c062d68afbf1725e2a5a9f04a
                                        
                                            GET /nato_static_fl2014/assets/pictures/stock_2013/20130322_130322-nato-logo_rdax_226x150.jpg HTTP/1.1 
Host: www.nato.int
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.19
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: Web Server 1.443
content-length: 30844
strict-transport-security: max-age=63072000; includeSubDomains; preload;
last-modified: Fri, 22 Mar 2013 12:00:44 GMT
etag: "787c-4d8823477d95f"
accept-ranges: bytes
x-frame-options: SAMEORIGIN
x-xss-protection: 1
x-content-type-options: nosniff
cache-control: max-age=300
expires: Thu, 06 Oct 2022 00:40:02 GMT
date: Thu, 06 Oct 2022 00:35:02 GMT
set-cookie: WCM-WWW-PROD=ffffffff098dc30945525d5f4f58455e445a4a423660;Version=1;Max-Age=120;path=/;httponly
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2013:03:22 13:03:50], baseline, precision 8, 226x150, components 3\012- data
Size:   30844
Md5:    eb05c6f3d2cea8ce43c6b7a3c4cf0191
Sha1:   f441ebf48b873b4d913e6888748fc9b3bf072cf4
Sha256: 215240233cb46c3c75fcb22890a8ec8cdd9b2d78451e99641a11ab44ba25c1dc
                                        
                                            GET /nato_static_fl2014/assets/pictures/stock_2016/20160112_act-logo_226x150.jpg HTTP/1.1 
Host: www.nato.int
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.19
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: Web Server 1.443
content-length: 37295
strict-transport-security: max-age=63072000; includeSubDomains; preload;
last-modified: Tue, 12 Jan 2016 10:57:49 GMT
etag: "91af-52920eca35a30"
accept-ranges: bytes
x-frame-options: SAMEORIGIN
x-xss-protection: 1
x-content-type-options: nosniff
cache-control: max-age=300
expires: Thu, 06 Oct 2022 00:40:03 GMT
date: Thu, 06 Oct 2022 00:35:03 GMT
set-cookie: WCM-WWW-PROD=ffffffff098dc30945525d5f4f58455e445a4a423660;Version=1;Max-Age=120;path=/;httponly
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=150, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=226], baseline, precision 8, 226x150, components 3\012- data
Size:   37295
Md5:    4e7f77f8bbbaf1c9fd04ebc6624aeea0
Sha1:   cee1d6879ad7521d37e1fb0ee4f2fcfb8a754844
Sha256: 1dd1b608b1d1d7d1017d092152ed1551669272cf21a1e7bb01efee84da89a5b7
                                        
                                            GET /nato_static_fl2014/assets/pictures/stock_2016/20160112_nicp-logo.jpg HTTP/1.1 
Host: www.nato.int
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.19
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: Web Server 1.443
content-length: 29235
strict-transport-security: max-age=63072000; includeSubDomains; preload;
last-modified: Tue, 12 Jan 2016 11:34:40 GMT
etag: "7233-5292170754b20"
accept-ranges: bytes
x-frame-options: SAMEORIGIN
x-xss-protection: 1
x-content-type-options: nosniff
cache-control: max-age=300
expires: Thu, 06 Oct 2022 00:40:03 GMT
date: Thu, 06 Oct 2022 00:35:03 GMT
set-cookie: WCM-WWW-PROD=ffffffff098dc30945525d5f4f58455e445a4a423660;Version=1;Max-Age=120;path=/;httponly
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=150, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=226], baseline, precision 8, 226x150, components 3\012- data
Size:   29235
Md5:    1b2d1753e62c54ab1471f258006c7f16
Sha1:   ba2d3d866ac0cd1db7379f2922e298d693b48696
Sha256: 1226b2016c6959c1cb414fbfdbf28d3d2b891c485831087ca14538967c7b06c0
                                        
                                            GET /nato_static_fl2014/assets/pictures/stock_2013/20130430_130430-aco-logo_rdax_226x150.jpg HTTP/1.1 
Host: www.nato.int
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.19
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: Web Server 1.443
content-length: 14574
strict-transport-security: max-age=63072000; includeSubDomains; preload;
last-modified: Tue, 30 Apr 2013 16:58:02 GMT
etag: "38ee-4db96e7827557"
accept-ranges: bytes
x-frame-options: SAMEORIGIN
x-xss-protection: 1
x-content-type-options: nosniff
cache-control: max-age=300
expires: Thu, 06 Oct 2022 00:40:03 GMT
date: Thu, 06 Oct 2022 00:35:03 GMT
set-cookie: WCM-WWW-PROD=ffffffff098dc30945525d5f4f58455e445a4a423660;Version=1;Max-Age=120;path=/;httponly
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 226x150, components 3\012- data
Size:   14574
Md5:    be5007c210ce483b8821f36acb83b647
Sha1:   91fd32344f154f413ab7b9e33117ea214f5c393d
Sha256: 6e174829a9d985fa207d382833b220681aa3697c8a71574207745120bab6234c
                                        
                                            GET /nato_static_fl2014/assets/pictures/stock_2013/20130322_130322-niag-logo_rdax_226x150.jpg HTTP/1.1 
Host: www.nato.int
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.19
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: Web Server 1.443
content-length: 35412
strict-transport-security: max-age=63072000; includeSubDomains; preload;
last-modified: Fri, 22 Mar 2013 11:04:11 GMT
etag: "8a54-4d8816a40c02f"
accept-ranges: bytes
x-frame-options: SAMEORIGIN
x-xss-protection: 1
x-content-type-options: nosniff
cache-control: max-age=300
expires: Thu, 06 Oct 2022 00:40:03 GMT
date: Thu, 06 Oct 2022 00:35:03 GMT
set-cookie: WCM-WWW-PROD=ffffffff098dc30945525d5f4f58455e445a4a423660;Version=1;Max-Age=120;path=/;httponly
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2013:03:22 12:04:06], baseline, precision 8, 226x150, components 3\012- data
Size:   35412
Md5:    65651523d2acc5f6d76469fa663025e0
Sha1:   8c2e5520f180f3da83200348ef0cc69439f3d568
Sha256: e7e39038538c12ba3fd0b7158de1f31d700f58fba9488bc73ea6d72d0fe07b50
                                        
                                            GET /css?family=Montserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CPoppins%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CLato%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&subset=latin HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nato-intl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 06 Oct 2022 00:34:59 GMT
date: Thu, 06 Oct 2022 00:34:59 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---