Overview

URL globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
IP50.87.145.168
ASNUNIFIEDLAYER-AS-1
Location United States
Report completed2022-09-15 16:13:19 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-15 2 globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf Phishing
2022-09-15 2 globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf Phishing
2022-09-15 2 globalunionllc.com/wp-content/themes/astra/assets/css/minified/menu-animati (...) Phishing
2022-09-15 2 globalunionllc.com/wp-content/plugins/elementor/assets/lib/animations/anima (...) Phishing
2022-09-15 2 globalunionllc.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 Phishing
2022-09-15 2 globalunionllc.com/wp-content/plugins/elementor/assets/lib/eicons/css/eleme (...) Phishing
2022-09-15 2 globalunionllc.com/wp-content/uploads/elementor/css/post-516.css?ver=1630668800 Phishing
2022-09-15 2 globalunionllc.com/wp-content/plugins/header-footer-elementor/assets/css/he (...) Phishing
2022-09-15 2 globalunionllc.com/wp-content/plugins/elementor/assets/css/frontend-legacy. (...) Phishing
2022-09-15 2 globalunionllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css (...) Phishing
2022-09-15 2 globalunionllc.com/wp-content/plugins/svg-favicon/public/js/svg-favicon-pub (...) Phishing
2022-09-15 2 globalunionllc.com/wp-includes/js/wp-util.min.js?ver=6.0.2 Phishing
2022-09-15 2 globalunionllc.com/wp-content/plugins/elementor/assets/lib/share-link/share (...) Phishing
2022-09-15 2 globalunionllc.com/wp-content/plugins/wpforms-lite/assets/js/integrations/e (...) Phishing
2022-09-15 2 globalunionllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css (...) Phishing
2022-09-15 2 globalunionllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/ (...) Phishing
2022-09-15 2 globalunionllc.com/wp-content/plugins/header-footer-elementor/inc/widgets-c (...) Phishing
2022-09-15 2 globalunionllc.com/wp-content/uploads/2020/12/GLOBAL_UNION_WHITE.svg Phishing
2022-09-15 2 globalunionllc.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoi (...) Phishing
2022-09-15 2 globalunionllc.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.mi (...) Phishing
2022-09-15 2 globalunionllc.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 Phishing
2022-09-15 2 globalunionllc.com/wp-includes/js/underscore.min.js?ver=1.13.3 Phishing
2022-09-15 2 globalunionllc.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 Phishing
2022-09-15 2 globalunionllc.com/wp-content/themes/astra/assets/fonts/astra.woff Phishing
2022-09-15 2 globalunionllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/web (...) Phishing
2022-09-15 2 globalunionllc.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 Phishing
2022-09-15 2 globalunionllc.com/wp-content/plugins/elementor/assets/js/frontend-modules. (...) Phishing
2022-09-15 2 globalunionllc.com/wp-content/themes/astra/assets/css/minified/style.min.cs (...) Phishing
2022-09-15 2 globalunionllc.com/wp-content/plugins/elementor/assets/js/frontend.min.js?v (...) Phishing
2022-09-15 2 globalunionllc.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.mi (...) Phishing
2022-09-15 2 globalunionllc.com/wp-content/plugins/elementor/assets/css/frontend.min.css (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (13)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-09-15 12:06:25 UTC 143.204.55.115
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-15 04:50:53 UTC 34.117.237.239
mnemonic passive DNS globalunionllc.com (43) 0 2020-12-15 20:50:36 UTC 2022-09-15 15:32:14 UTC 50.87.145.168 Unknown ranking
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-15 05:55:58 UTC 52.40.161.235
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-15 12:49:11 UTC 142.250.74.174
mnemonic passive DNS fonts.googleapis.com (2) 8877 2014-07-21 13:19:55 UTC 2022-09-15 14:39:02 UTC 142.250.74.10
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-15 04:51:36 UTC 23.36.77.32
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-15 05:55:39 UTC 143.204.55.49
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-15 11:12:10 UTC 93.184.220.29
mnemonic passive DNS ocsp.pki.goog (8) 175 2017-06-14 07:23:31 UTC 2022-09-15 04:51:27 UTC 142.250.74.3
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-15 04:51:39 UTC 142.250.74.72
mnemonic passive DNS img-getpocket.cdn.mozilla.net (7) 1631 2017-09-01 03:40:57 UTC 2022-09-15 04:47:36 UTC 34.120.237.76
mnemonic passive DNS fonts.gstatic.com (2) 0 2014-08-29 13:43:22 UTC 2022-09-15 04:52:00 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540


Recent reports on same IP/ASN/Domain/Screenshot

Last 3 reports on IP: 50.87.145.168

Date UQ / IDS / BL URL IP
2022-09-26 06:55:27 +0000
0 - 0 - 31 globalunionllc.com/here-are-10-ways-to-how-gu (...) 50.87.145.168
2022-09-15 16:13:19 +0000
0 - 0 - 31 globalunionllc.com/wp-content/uploads/2022/06 (...) 50.87.145.168
2022-09-01 15:49:12 +0000
0 - 0 - 2 globalunionllc.com/wp-content/uploads/2022/06 (...) 50.87.145.168

Last 5 reports on ASN: UNIFIEDLAYER-AS-1

Date UQ / IDS / BL URL IP
2022-11-27 14:41:31 +0000
0 - 0 - 3 digifloat.com/snon.mca/login.jsp.php?session_ (...) 192.254.232.235
2022-11-27 14:40:59 +0000
0 - 0 - 3 digifloat.com/snon.mca/login.jsp.php?session_ (...) 192.254.232.235
2022-11-27 14:40:44 +0000
0 - 0 - 3 digifloat.com/snon.mca/login.jsp.php?session_ (...) 192.254.232.235
2022-11-27 14:27:55 +0000
0 - 0 - 3 digifloat.com/snon.mca/login.jsp.php?session_ (...) 192.254.232.235
2022-11-27 14:02:39 +0000
0 - 0 - 11 free-cashback.store/get 162.241.85.73

Last 3 reports on domain: globalunionllc.com

Date UQ / IDS / BL URL IP
2022-09-26 06:55:27 +0000
0 - 0 - 31 globalunionllc.com/here-are-10-ways-to-how-gu (...) 50.87.145.168
2022-09-15 16:13:19 +0000
0 - 0 - 31 globalunionllc.com/wp-content/uploads/2022/06 (...) 50.87.145.168
2022-09-01 15:49:12 +0000
0 - 0 - 2 globalunionllc.com/wp-content/uploads/2022/06 (...) 50.87.145.168

No other reports with similar screenshot



JavaScript

Executed Scripts (27)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (75)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "06AF9AE9FC72A3AEB4BE2B742128A0CB8EA4AFF348AFE2E4490D3639B3B377D9"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4434
Expires: Thu, 15 Sep 2022 17:27:02 GMT
Date: Thu, 15 Sep 2022 16:13:08 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 15 Sep 2022 16:10:28 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NGLTRM4QFTc69bkuLEalRUNs_guybYwq1Iso3qQdItatJnv6ZIgWiw==
Age: 160


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.49
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 15 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HAU6Do6XJ4OxYVvcJuhxbYafY_hyvGXnMHaej0V3xbOQaQnDwBI5HQ==
age: 41873
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 15 Sep 2022 16:13:08 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 15 Sep 2022 16:03:22 GMT
Expires: Thu, 15 Sep 2022 16:03:50 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: BAd1jD0dihouPT3Xy72pQeKz-PVnR7_eEx3JsvTi1PvZvkNI1li-Hw==
Age: 586


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 375
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 16:13:09 GMT
Last-Modified: Thu, 15 Sep 2022 16:06:54 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         50.87.145.168
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 15 Sep 2022 16:13:08 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade
Location: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 0


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: j2YwqAwuX5DE9+NDqzkRvQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.40.161.235
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: e9dLTg111xBntohvZpOJZM0mnJo=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DBA8CE49D9A98C4B43C80A636CA1B45B630841F9E985824167A092CD426BB027"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21590
Expires: Thu, 15 Sep 2022 22:12:59 GMT
Date: Thu, 15 Sep 2022 16:13:09 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 16:13:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         50.87.145.168
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://globalunionllc.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 16371
date: Thu, 15 Sep 2022 16:13:09 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (17609), with CRLF, LF line terminators
Size:   16371
Md5:    0c1f73c0fb54cf89ccc03ff84c3bdf0c
Sha1:   cb0c230d650466da33349fb7fcc7e35c6273391d
Sha256: 678ecf74d7c2b0a667774ce89cad9fa357f3a14a88b5a2818de295247e317fbc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 16:13:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 16:13:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtag/js?id=UA-59120151-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 15 Sep 2022 16:13:10 GMT
expires: Thu, 15 Sep 2022 16:13:10 GMT
cache-control: private, max-age=900
last-modified: Thu, 15 Sep 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42432
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1720)
Size:   42432
Md5:    680304f52c81b428ae30c022755e0af9
Sha1:   91e854a00e4bdca2240952db885a6cda51647851
Sha256: a4609464f6c1715e341ec020e078c571f05d0be262f9e42bebaade49dbcddc0e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 16:13:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/astra/assets/css/minified/menu-animation.min.css?ver=2.6.2 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Wed, 16 Dec 2020 19:33:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 468
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3412), with no line terminators
Size:   468
Md5:    f88a6a529851c8ed1ffe2bd83219e490
Sha1:   597ff167b702900ee4473e31e390808b8de95664
Sha256: ae20c6ea52a0534fdda58a7ae13839ac66194434406e00a3bb5f4538f9909886

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 16:13:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.1.4 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Sat, 20 Mar 2021 14:29:09 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 2997
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10019)
Size:   2997
Md5:    c2b5af6052f630a96e450e5e2a3cea52
Sha1:   00ca76a8828a1bbec1534eb10786804fd36492f2
Sha256: 58f6cc2d4fa3e528622102975fb62949dc0170bd47b588a67318d18552a57d59

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17203
Expires: Thu, 15 Sep 2022 20:59:53 GMT
Date: Thu, 15 Sep 2022 16:13:10 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17203
Expires: Thu, 15 Sep 2022 20:59:53 GMT
Date: Thu, 15 Sep 2022 16:13:10 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17203
Expires: Thu, 15 Sep 2022 20:59:53 GMT
Date: Thu, 15 Sep 2022 16:13:10 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e9a2626-acb3-4c73-9ff9-e09ad82d489e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8447
x-amzn-requestid: 3237c2fa-bc17-4b8d-8afd-bacfaa90ca71
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7FypF7KIAMFd7A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63145010-7052273b184685c83569c712;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 07:13:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wzi_WnjJW5XjIfj8kyVL4LcQEjcuw1_zwrDiJegEZ2r8GOZcQahPEw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:46:45 GMT
age: 66385
etag: "14131148fda4e8d85b582fd20e76bcc814341bf1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8447
Md5:    5a6939786c9343412c9af87efd3f44e0
Sha1:   14131148fda4e8d85b582fd20e76bcc814341bf1
Sha256: 8412c50f0fdc131d9c4422f2d7307fc1ee062c3580a1d754ef71cf84f9727d49
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb035d64b-46a7-4c49-b95b-e454aa90f817.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9071
x-amzn-requestid: b450f7cf-6cc7-4d1f-aef3-4496f0971727
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeIxuEq6oAMF9jQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632254d7-6912ef8731d81fa43b805e5b;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:25:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 6LDUuDX1W8-Q88pDJma0xCAd5QuJ0YV-VpJ_8LVyDHX9YN1k0fQZ8Q==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 22:36:39 GMT
etag: "d37ad0f40bc1f3f0022467dd0af2478980bd858a"
age: 63391
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9071
Md5:    1633672fad0b564108cf81ad711dc881
Sha1:   d37ad0f40bc1f3f0022467dd0af2478980bd858a
Sha256: cc7176a297f6009f07074fb9af796132b4452833be675bf378cc950fe81a582a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F706eea65-3ba8-43f4-85c3-967026936660.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9922
x-amzn-requestid: de1e3e45-74ff-41b2-986f-e78473cb6d98
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YVc1SGM7IAMFw0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631edb54-2099524d6f2c338b41eea101;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 07:10:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MtgQUzYMa3mT0lxPhQ5ZCp9XVVyBH8T0dlx_0wSLMZlaFEiCikTXMw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 22:25:51 GMT
age: 64039
etag: "c7cf1f6a259cece60a34261ec83ee00736e1d72b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9922
Md5:    3ef9865421a37eae9a4df04083d27485
Sha1:   c7cf1f6a259cece60a34261ec83ee00736e1d72b
Sha256: 723b65ba660f22281f85d6caceea23e9cd932ee9084dc905a08a585746c4c4cc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafb10f81-8409-401c-bd62-3ec01954600c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6770
x-amzn-requestid: b7c9513c-b8ba-41c7-9f9a-0a9d2266172d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7FlpEVRIAMFygA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63144fbd-7a4408363cdc46c9355a9f47;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 07:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fqj5PljprRruE1jwYAVwKoHkjys-RakUjzuV67_Ued6T4et99JPxPg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:45:05 GMT
age: 66485
etag: "f6b742549ea35a4b1345cffb937a8bbcceee08ef"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6770
Md5:    2e5f57ba37fac4e6047a9a321a8ec084
Sha1:   f6b742549ea35a4b1345cffb937a8bbcceee08ef
Sha256: f8c67c54806e47089b9ba297599e3e4cde1fd2e2e38b76acc9e8de0e99d7b77e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1266c973-1bdd-4969-82ca-1106689fe929.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5078
x-amzn-requestid: b6177371-a8ba-4541-a48d-21bd806e866e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X0erUHT-IAMFWKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6311ab15-157ed5b700e0aad5481f5c0f;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 07:04:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MYJf90B8rX8_nPUl4stpbZcQeQDaZ2Hgyu6GmsfdqUh-0Nx5OJJThw==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:54 GMT
age: 71476
etag: "af100925cba1be716fd2200715d6136bd7f0c5bc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5078
Md5:    f50c34bc30a732593e8fe465055a44ff
Sha1:   af100925cba1be716fd2200715d6136bd7f0c5bc
Sha256: 703049736ccc8815945d69634059c4cd39533417e0969107d460c36a6787c761
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9400
x-amzn-requestid: 8cf35176-18a1-427b-870c-bdae465060c8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYM18E-iIAMFcmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ff4f2-427bc0ff6593e71e25b91589;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 03:11:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZVnPAYUOBCRUYD3wEx79lIMjBJCKyVB9CmnTqMJIaFPbQGPoHwB73w==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:37 GMT
age: 71493
etag: "96ab8cd8e14350f730d26731f3445710324e24e2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9400
Md5:    4833535b1650b0ac875704023b650e66
Sha1:   96ab8cd8e14350f730d26731f3445710324e24e2
Sha256: d2b5a51e39a4890ba56e819d4d5d1d57d4d3cfc50dde42efdf23b8e9be17d1c7
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 12 Jul 2022 20:48:49 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 16594
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (43771)
Size:   16594
Md5:    2a67a4888baa44de739f3fe56203ce07
Sha1:   da175eae57f26b655747d79f055477e3fee1abb9
Sha256: 3a4d7627476a0099ca4bcc101685f27de04cb49dd66ef842d72c6cda270599dd

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.11.0 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Sat, 20 Mar 2021 14:29:09 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 3638
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (17186)
Size:   3638
Md5:    562b1fe9af03782de7b696f11e43d784
Sha1:   4c38e4214a286350ea6d9840767b50c163b23028
Sha256: 8fa5310ae9c76dae00fc4aaa446fb64d4b3117df1b21288a95e2965f09bfc275

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/elementor/css/post-516.css?ver=1630668800 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 03 Sep 2021 11:33:20 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 416
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1220), with no line terminators
Size:   416
Md5:    5fbf09d3f5090e4115e2b8d4eb709718
Sha1:   c1481126cd5b7656367a72ed41c0729011e81e2d
Sha256: 3e505c8708897037ac5f93a44c299744f2937ce5908f4f880d34809cf1f34f53

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.5.8 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Sat, 17 Apr 2021 02:52:57 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 323
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   323
Md5:    b24c24b7da3ffeed6ae8ade102a4d317
Sha1:   c4445b3977ce704b927508108e100213eea67a3c
Sha256: 5421ad49b70f379553eaceec744d753e74d4b065966c08aa7c7dd949553ca9a8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/svg-favicon/public/css/svg-favicon-public.css?ver=1.0.3 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Sun, 09 May 2021 11:57:20 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 106
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   106
Md5:    8af7d01cc8f7698605260aa25a37f45e
Sha1:   854439cb106afae13bace1acbdfd03e0ec2daee4
Sha256: 8b46abceed3ee90f0e9053977b5dcb569c09784270d0e5fff5aebf80256501e0
                                        
                                            GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.1.4 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Sat, 20 Mar 2021 14:29:09 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 612
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3815)
Size:   612
Md5:    f029f47a007664c0c56f9c81a7324834
Sha1:   f5cd7bee659c5f002a73cebb418166f268671538
Sha256: a53a4e1a5551ce252ca84b0e6ca203c64c7962d24e3a4a5701e5a7fc2b2937dc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/elementor/css/post-1049.css?ver=1630668801 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 03 Sep 2021 11:33:21 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 1592
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10218), with no line terminators
Size:   1592
Md5:    e6cc41c515ecfac1743cb3d28587ac2d
Sha1:   6749660908122f1cfe8483cd6b262cfc512af48a
Sha256: 1e8a2f7b35a24c844ce1a6cff0fe1372f0a2e46f2c444f8df56a01e16413300a
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.1 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Sat, 20 Mar 2021 14:29:09 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 310
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (483)
Size:   310
Md5:    2787accb505c197c9bbff06a38d5c931
Sha1:   c7fa986bdb2f6972caa0d003705098aeb644b8f6
Sha256: 86ba4a954e110a614b9174dbe21466c45acebec05115e606d9fbfe3175624074
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.1 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Sat, 20 Mar 2021 14:29:09 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 308
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (489)
Size:   308
Md5:    3b6ace6afa17a2615db7e96ed5bccbbc
Sha1:   43382ed6741ca36e7479916d82c7e3f3f6a4af1f
Sha256: 84a12534a686c238982043c08f6c3fa2502b7a4c171dbaf0e464a3bc777f9263

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/svg-favicon/public/js/svg-favicon-public.js?ver=1.0.3 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Sun, 09 May 2021 11:57:20 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 479
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   479
Md5:    5850a4d6be478b5a5c29526a957840c4
Sha1:   1854bff2c967f028cf8c1f53b3c7878fb605e329
Sha256: 654a9a69300dd841ea2bc14d36c346377cee298b126463cc844fb26929260843

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/wp-util.min.js?ver=6.0.2 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 20 Jul 2021 21:14:49 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 709
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1305)
Size:   709
Md5:    e9edb7bac979409cf7dbc48d7ab8aca7
Sha1:   ed3f941a8fe41e3994a3ca5e620219328628f532
Sha256: 2a0742cad9937c742b2f51c1ea2ae48359ce8d88d8b56f6d8910c0a267d631b5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.1.4 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Sat, 20 Mar 2021 14:29:09 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 1151
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2577)
Size:   1151
Md5:    159281ac01a46f042b38d0d44cf3eb7a
Sha1:   54677be6b1cf85899d2ab1a6fada531ca5613d29
Sha256: 0738d3f931e8df2b67f3be1ec216b103560266c56cc38fdafae055bcb807ffea

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 19 Nov 2020 21:01:14 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4618
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   4618
Md5:    acdb97105af28a7066790c6748ae2e1e
Sha1:   65794d2c5a9d04f747faf370bc8bacd330e69e5a
Sha256: dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
                                        
                                            GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.1.4 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Sat, 20 Mar 2021 14:29:09 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 2110
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4587)
Size:   2110
Md5:    6ea4dcd73ec66788e65f6566f90066f0
Sha1:   57dee0cf23bf29d6e3daea78a7643f33dc71930e
Sha256: 5fb3574934985c199d6c7b5dc691b974fd61330fb1e566a111e59cece2c3e191
                                        
                                            GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.6.3.1 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 16 Dec 2020 20:12:34 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 363
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (705), with no line terminators
Size:   363
Md5:    88ff28909aa83d6595b3009b72347b10
Sha1:   f14fab24923c11167238035ef9adb3d0f3b572ca
Sha256: b66707f37fb9b6904e5f595271d0a64854192876938dc86ea2dd8f261e776973

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.1.4 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Sat, 20 Mar 2021 14:29:09 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 12862
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (59158)
Size:   12862
Md5:    76ce564e380846e68aef544c866cfd17
Sha1:   8148b9861bfe9bfe667c9d8ca01f605fa63f8873
Sha256: 30529979bc56ece1d2e6a51ceaf2daca4e598123f48d482fceaf19cabc46e639

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.1 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Sat, 20 Mar 2021 14:29:09 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 12576
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (57726)
Size:   12576
Md5:    9e1402f4301abf62dead70303a02d64d
Sha1:   8d4b851d6fd7db716aae3640fac34fa53ecd5de3
Sha256: 15b535c20b222f5135a738e15f0487808fa0888ee6d37a8e2e9f42b963dd3a09
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.1.4 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Sat, 20 Mar 2021 14:29:09 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4359
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (14869)
Size:   4359
Md5:    7bab7ad64ffbd7846dd6819250b93e2e
Sha1:   c924918d540389aff62220088b6761f38a5da272
Sha256: 045250efe67364c953a91f6a60cf407ebb5cfdb2da04e84c3d98e5bab5eca9ba

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.1.4 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Sat, 20 Mar 2021 14:29:09 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4435
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (26516)
Size:   4435
Md5:    a46b5e03a48f889196c3354741011be0
Sha1:   7c25efaa496eb1f2113bfdf2a2f27b58b72fa9e1
Sha256: e850c766767667b180e9361d4c77f08a53d956fe87ebc68a87e9b4c639fb16af
                                        
                                            GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.5.8 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Sat, 17 Apr 2021 02:52:57 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 11537
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (1646)
Size:   11537
Md5:    c6e9d77524605c7e3303d3915073913b
Sha1:   b331a445df00ccfdda50c9cbb0e3c7b44ed1120f
Sha256: e47d964691f518d80b41b0afab8c1aa56b2f57f00abd89454c916a5557ebc2f0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2020/12/GLOBAL_UNION_WHITE.svg HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: image/svg+xml
                                        
last-modified: Thu, 17 Dec 2020 08:05:10 GMT
accept-ranges: bytes
content-length: 8090
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   8090
Md5:    97e5e8a6940f572952962705f9802495
Sha1:   628d2efe70138e9abf63b9723037922182da7535
Sha256: 2aa8b1f0cfa4def1a2620c40cf7a45279c454a85ba6a353084b98c7babb493a4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/astra/assets/js/minified/style.min.js?ver=2.6.2 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 16 Dec 2020 19:33:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 3642
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10594), with no line terminators
Size:   3642
Md5:    5c244ddd3d5b81f943cc06bb3d39eae0
Sha1:   937bc56733f05985e8b6bad6e6ccd11e106c59eb
Sha256: 7f4883c7ab2bb307c921ae27ce4821017e907b8361b421883f61495c40cf9965
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Sat, 20 Mar 2021 14:29:09 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 3747
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12198), with no line terminators
Size:   3747
Md5:    e2a8decccf4d0a6b925af707a36077a9
Sha1:   26a0febc9c3d91e75410f74b9ec62099ba1cbe90
Sha256: 09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Sat, 20 Mar 2021 14:29:09 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4275
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10725)
Size:   4275
Md5:    253da788125c58bc387c3db6cc404bad
Sha1:   6b90ddf84c234155eae1487d2f950ea079c2382c
Sha256: 12055a1176f887f9be83e2637de50ca41173101397cd42431d7c8df3e2757d6d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 24 May 2022 21:04:29 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 5321
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15660)
Size:   5321
Md5:    710f8b142ea44c0682dc2c30f318f065
Sha1:   49144e9b3a76d3d383b1d4359cf7a25e947f4233
Sha256: 708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 24 May 2022 21:04:28 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 8313
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18876)
Size:   8313
Md5:    61a4a3c276f704185a925bfa0f4d8b1b
Sha1:   0176eb701bb114d9cb170193f6208ec4fbb35f71
Sha256: f0875cbb46e9eeb5e497dd52d8c33725509228193c2dbe9ab464f62a15c2f0e2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 24 May 2022 21:04:29 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 8169
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (8189)
Size:   8169
Md5:    a0a1c8194f131320e1798f90a7b1262a
Sha1:   3346d35be1f2e4886f19e7fcc0cc96ee4753d9ed
Sha256: 7f618ab13cec0933ec2c61fa2b580ad77ca41522028649677494219fa9ce56db

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/js/preloaded-elements-handlers.min.js?ver=3.1.4 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Sat, 20 Mar 2021 14:29:09 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 15317
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (37990)
Size:   15317
Md5:    d90e34c9e73e8edff188b8666abb7f87
Sha1:   1481d55fba6a5f1bd8776a8a7ce9f6997f41706a
Sha256: fa31812310e9a04d7852708ab466e3b7f0da276fa67e136cd7c8c976d9581bc6
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 16:13:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 16:13:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://globalunionllc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21144
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 22:36:55 GMT
expires: Wed, 13 Sep 2023 22:36:55 GMT
cache-control: public, max-age=31536000
age: 149776
last-modified: Tue, 19 Apr 2022 19:43:23 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 21144, version 1.0\012- data
Size:   21144
Md5:    2bc7630144496092dc786ce63109e560
Sha1:   723df3658078cfed03c85e47f15fc439eb4331be
Sha256: 7c9c80a6c32c0619d61c28f28723e68c5f8f75163e77ee5cf64c39e640e0d71e
                                        
                                            GET /s/barlow/v12/7cHqv4kjgoGqM7E3t-4s51os.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://globalunionllc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21724
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 22:36:56 GMT
expires: Wed, 13 Sep 2023 22:36:56 GMT
cache-control: public, max-age=31536000
age: 149775
last-modified: Tue, 19 Apr 2022 19:29:44 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 21724, version 1.0\012- data
Size:   21724
Md5:    c3609c36a150ce088ea4dcab92b7c00b
Sha1:   0c18236a183e962533a4f61bff3ae2581313561a
Sha256: 65a47caa5183b035bf78d0f93adbe5cea500333410259c54abf2de356740df7e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 16:13:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/astra/assets/fonts/astra.woff HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: font/woff
                                        
last-modified: Wed, 16 Dec 2020 19:33:05 GMT
accept-ranges: bytes
content-length: 3304
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:11 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
date: Thu, 15 Sep 2022 16:13:11 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 3304, version 1.0\012- data
Size:   3304
Md5:    bfe0ed8503c926d68f58ed0408dfe0d0
Sha1:   0346d02d96ff7d2a0278bc10f4dfdf365c80eac3
Sha256: ec7ef7aa5fd1e019f1c26193e95e46d481d4983673936a9dda086705ada6e3d5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: font/woff2
                                        
last-modified: Sat, 20 Mar 2021 14:29:09 GMT
accept-ranges: bytes
content-length: 78460
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:11 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
date: Thu, 15 Sep 2022 16:13:11 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 78460, version 331.-31392\012- data
Size:   78460
Md5:    f075c50f89795e4cdb4d45b51f1a6800
Sha1:   f726c4275bb494a045fde059175f072de06c01df
Sha256: 71b3ce72680f4183d28db86b184542051fd533bb1146933233e4f6a20cf98cba

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 20 Jul 2021 21:14:49 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   119366
Md5:    60586bb50c4f6ace0940ced8340ba664
Sha1:   3dec900bf04faae6b444067f8089998bfa86d5be
Sha256: 8d7a2878062476011a90ad43389537a0fc03c102ed1db56ffece562b3687cdf5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2021/09/freighter-cargo-ship-industry-315201-1024x1024.jpg HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Fri, 03 Sep 2021 11:33:06 GMT
accept-ranges: bytes
content-length: 132585
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:11 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
date: Thu, 15 Sep 2022 16:13:11 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1024x1024, components 3\012- data
Size:   132585
Md5:    a30aaec614dbdd399068256e1bcc337f
Sha1:   690d348004bfbddbc8fb7d914f7c6bb1be0a13f2
Sha256: 4a3bbaefb0a0a5012ee419c7f399ef108a02e1a941e33a437be67a3ff21e6650
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Thu, 15 Sep 2022 14:41:12 GMT
expires: Thu, 15 Sep 2022 16:41:12 GMT
cache-control: public, max-age=7200
age: 5519
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20006
Md5:    56f5d7f608e25d64207135f045f988cb
Sha1:   901eb59372ae330ae85e1384da93479b21ae1082
Sha256: 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
                                        
                                            GET /wp-content/uploads/2021/05/cropped-FAVICON-512px--32x32.png HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Sat, 15 May 2021 12:34:10 GMT
accept-ranges: bytes
content-length: 1230
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:11 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
date: Thu, 15 Sep 2022 16:13:11 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Size:   1230
Md5:    83122b5d80bf0acd72b8dc4fc9294f79
Sha1:   252aab02c0b6dc54ae9e960990cfab41c8c34735
Sha256: 1d711abf8f8c6f64c12044603e2233aa1b747b8ae00dcc4d743b11d2e656d4c6
                                        
                                            GET /wp-content/uploads/2021/05/cropped-FAVICON-512px--192x192.png HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Sat, 15 May 2021 12:34:10 GMT
accept-ranges: bytes
content-length: 8379
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:11 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
date: Thu, 15 Sep 2022 16:13:11 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size:   8379
Md5:    3c785a71be9d269d69445e0879457315
Sha1:   04ae1fff077f599ef115244b356d74e2251b5a54
Sha256: 1f1889634f59ff2239aae7d941c9dd1f6ca2b20446c8b2c9f2f3085d46464301
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3b68b0a4-3ef2-47f6-b961-eb36f3ed8dc8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9989
x-amzn-requestid: 2cc5f037-cdcb-43ac-a613-67e68d93340f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeDF6E2XoAMFs6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63224bbf-1ff5541d74c3665e50613df7;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 21:46:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: XA3SbeUsblm91EW_yakass2HV7vgTrvux_HFwEnmmwzST2lR0jP6Jg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:56:29 GMT
age: 65808
etag: "765d006daafb904930cf3484390b2876c2c590e8"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9989
Md5:    7c3e495b1e7dfdfbbe17f2bb41a038e9
Sha1:   765d006daafb904930cf3484390b2876c2c590e8
Sha256: 585756b5f5c9b3244857e18a8f162fa25a710e13eb8266d875dc9f8027a484cb
                                        
                                            GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=6.0.2 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 15 Sep 2022 16:13:10 GMT
date: Thu, 15 Sep 2022 16:13:10 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.1.4 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Sat, 20 Mar 2021 14:29:09 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /css?family=Barlow%3A400%2C%2C700&display=fallback&ver=2.6.2 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 15 Sep 2022 16:13:10 GMT
date: Thu, 15 Sep 2022 16:13:10 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/astra/assets/css/minified/style.min.css?ver=2.6.2 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Wed, 16 Dec 2020 19:33:05 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.1.4 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Sat, 20 Mar 2021 14:29:09 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Sat, 20 Mar 2021 14:29:09 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.1.4 HTTP/1.1 
Host: globalunionllc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://globalunionllc.com/wp-content/uploads/2022/06/madagascar_1_dual_audio_720p.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         50.87.145.168
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Sat, 20 Mar 2021 14:29:09 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Fri, 16 Sep 2022 16:13:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
date: Thu, 15 Sep 2022 16:13:10 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing