Overview

URL dmmc-usa.com/?p=12406
IP162.241.218.220
ASNUNIFIEDLAYER-AS-1
Location United States
Report completed2022-09-07 13:29:46 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-07 2 dmmc-usa.com/?p=12406 Phishing
2022-09-07 2 dmmc-usa.com/wp-content/themes/constructions/inc/woocommerce/woo-css.css?ve (...) Phishing
2022-09-07 2 dmmc-usa.com/wp-content/themes/constructions/css/default.css?ver=6.0.2 Phishing
2022-09-07 2 dmmc-usa.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 Phishing
2022-09-07 2 dmmc-usa.com/wp-content/themes/constructions/css/animate.css?ver=6.0.2 Phishing
2022-09-07 2 dmmc-usa.com/wp-includes/css/dashicons.min.css?ver=6.0.2 Phishing
2022-09-07 2 dmmc-usa.com/wp-content/themes/constructions/style.css?ver=6.0.2 Phishing
2022-09-07 2 dmmc-usa.com/wp-content/plugins/jetpack/css/jetpack.css?ver=11.3 Phishing
2022-09-07 2 dmmc-usa.com/wp-content/themes/constructions/inc/woocommerce/quantity/quant (...) Phishing
2022-09-07 2 dmmc-usa.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 Phishing
2022-09-07 2 dmmc-usa.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2 Phishing
2022-09-07 2 dmmc-usa.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 Phishing
2022-09-07 2 dmmc-usa.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 Phishing
2022-09-07 2 dmmc-usa.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1 Phishing
2022-09-07 2 dmmc-usa.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1 Phishing
2022-09-07 2 dmmc-usa.com/wp-content/themes/constructions/js/navigation.js?ver=6.0.2 Phishing
2022-09-07 2 dmmc-usa.com/wp-content/themes/constructions/js/search-button.js?ver=6.0.2 Phishing
2022-09-07 2 dmmc-usa.com/wp-content/themes/constructions/js/viewportchecker.js?ver=6.0.2 Phishing
2022-09-07 2 dmmc-usa.com/wp-content/themes/constructions/js/to-top.js?ver=6.0.2 Phishing
2022-09-07 2 dmmc-usa.com/wp-content/themes/constructions/js/skip-link-focus-fix.js?ver=6.0.2 Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (14)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS i0.wp.com (1) 3021 2013-09-17 06:14:42 UTC 2022-09-07 05:53:39 UTC 192.0.77.2
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-07 05:08:41 UTC 52.27.12.161
mnemonic passive DNS fonts.gstatic.com (1) 0 2014-08-29 13:43:22 UTC 2022-09-07 04:49:31 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-07 12:26:36 UTC 93.184.220.29
mnemonic passive DNS pixel.wp.com (1) 2545 2017-01-30 05:31:40 UTC 2022-09-07 05:53:39 UTC 192.0.76.3
mnemonic passive DNS s.w.org (1) 748 2017-01-30 04:56:16 UTC 2022-09-07 04:54:55 UTC 192.0.77.48
mnemonic passive DNS fonts.googleapis.com (1) 8877 2014-07-21 13:19:55 UTC 2022-09-07 12:27:44 UTC 142.250.74.10
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-07 05:03:48 UTC 143.204.55.25
mnemonic passive DNS dmmc-usa.com (29) 0 2017-11-10 14:16:42 UTC 2022-09-07 09:44:47 UTC 162.241.218.220 Unknown ranking
mnemonic passive DNS stats.wp.com (1) 2711 2017-01-30 05:06:59 UTC 2022-09-07 06:51:36 UTC 192.0.76.3
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-07 04:50:01 UTC 23.36.76.226
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-07 04:49:50 UTC 34.117.237.239
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-07 06:45:34 UTC 34.120.237.76
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-07 05:49:58 UTC 143.204.55.27


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 162.241.218.220

Date UQ / IDS / BL URL IP
2022-11-24 09:49:37 +0000
0 - 0 - 22 dmmc-usa.com/?p=39143 162.241.218.220
2022-10-25 07:02:54 +0000
0 - 0 - 3 dmmc-usa.com/wp-content/uploads/2022/09/ulead (...) 162.241.218.220
2022-10-22 14:34:26 +0000
0 - 0 - 1 www.champcaregivers.com/wp-content/plugins/fo (...) 162.241.218.220
2022-10-21 15:17:33 +0000
0 - 0 - 1 www.champcaregivers.com/wp-content/plugins/fo (...) 162.241.218.220
2022-10-08 15:04:28 +0000
0 - 0 - 1 www.gyorgi.com/downloads/Gyorgi-Thunderfoot.zip 162.241.218.220

Last 5 reports on ASN: UNIFIEDLAYER-AS-1

Date UQ / IDS / BL URL IP
2022-12-03 22:08:54 +0000
0 - 0 - 5 buscardispositivo.in/icf/?c=236&op=392236 162.241.116.155
2022-12-03 22:08:26 +0000
32 - 0 - 0 engagingfaithresources.com/Sev83/Res2/loginwe (...) 162.241.69.245
2022-12-03 22:05:23 +0000
0 - 0 - 6 offer.essayzon.com/1/myprize/boxwin/FNB.php?k (...) 50.116.114.86
2022-12-03 21:57:52 +0000
0 - 0 - 2 fetish-guys.com/.well-known/acme-challenge/w3 (...) 192.254.185.31
2022-12-03 21:55:54 +0000
5 - 0 - 2 jowi-foundation.co.ke/909981/LinkedIn2.0.6/cm (...) 162.241.85.33

Last 5 reports on domain: dmmc-usa.com

Date UQ / IDS / BL URL IP
2022-11-24 09:49:37 +0000
0 - 0 - 22 dmmc-usa.com/?p=39143 162.241.218.220
2022-10-25 07:02:54 +0000
0 - 0 - 3 dmmc-usa.com/wp-content/uploads/2022/09/ulead (...) 162.241.218.220
2022-09-15 16:31:37 +0000
0 - 0 - 2 dmmc-usa.com/wp-content/uploads/2022/07/bialen.pdf 162.241.218.220
2022-09-07 13:29:46 +0000
0 - 0 - 20 dmmc-usa.com/?p=12406 162.241.218.220
2022-09-07 02:06:35 +0000
0 - 0 - 1 dmmc-usa.com/wp-content/plugins/jetpack/css/j (...) 162.241.218.220

Last 1 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-24 09:49:37 +0000
0 - 0 - 22 dmmc-usa.com/?p=39143 162.241.218.220


JavaScript

Executed Scripts (17)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (53)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 07 Sep 2022 13:04:41 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jt-p-vZ59QSKPY9CLrdes0w2tso9ZMZthMuBg4XVo7iWLXtQAGO9Pw==
Age: 1494


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    99b7d23c1748d0526782b9ff9ea45f09
Sha1:   eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
Sha256: 48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2657
Expires: Wed, 07 Sep 2022 14:13:52 GMT
Date: Wed, 07 Sep 2022 13:29:35 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Sep 2022 05:03:17 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: En-oVUPck9oN-wwkdExMkeyXhsPOtG3xD0355xdCd_uwWdxVFBSC1Q==
age: 34981
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 07 Sep 2022 13:29:35 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 07 Sep 2022 12:38:18 GMT
Expires: Wed, 07 Sep 2022 12:58:45 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: dfbyNDzlltY_p0NQR00-qUDaO4hMtLN22gkMAp1HsJKwxXsygHC0CQ==
Age: 3078


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5592
Cache-Control: 'max-age=158059'
Date: Wed, 07 Sep 2022 13:29:36 GMT
Last-Modified: Wed, 07 Sep 2022 11:56:24 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /?p=12406 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 07 Sep 2022 13:29:36 GMT
Server: nginx/1.21.6
Content-Length: 14820
Link: <https://dmmc-usa.com/index.php?rest_route=/>; rel="https://api.w.org/", <https://dmmc-usa.com/index.php?rest_route=/wp/v2/posts/12406>; rel="alternate"; type="application/json", <https://dmmc-usa.com/?p=12406>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Server-Cache: true
X-Proxy-Cache: MISS
Connection: close


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Size:   14820
Md5:    3e45b3153ad459eb349ea48b74abb54a
Sha1:   81ccfec01c1e32c0235211bb2043d9516d21915b
Sha256: c1b475dc90456b5ac99205e9d3cb4b654d9f0336b979a37796ffa2ffacff0d57

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /css?family=Farro%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&ver=6.0.2 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/

                                         
                                         142.250.74.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Wed, 07 Sep 2022 13:29:36 GMT
Date: Wed, 07 Sep 2022 13:29:36 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   402
Md5:    57fc005c4865e51ebddfe9950605f36a
Sha1:   8725460a793d272cffe9a73a0c9f6b87c67e1b98
Sha256: 76fa4e43bbeede544687812732e167ad4c2bc8334bd395755a7b74c45953e5d9
                                        
                                            GET /whatismymovie.com/t/images/329133.jpg?w=640 HTTP/1.1 
Host: i0.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dmmc-usa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.0.77.2
HTTP/2 200 OK
content-type: image/webp
                                        
server: nginx
date: Wed, 07 Sep 2022 13:29:36 GMT
content-length: 101530
last-modified: Wed, 07 Sep 2022 13:29:36 GMT
expires: Sat, 07 Sep 2024 01:29:36 GMT
cache-control: public, max-age=63115200
link: <http://whatismymovie.com/t/images/329133.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "b6f652d3c2408796"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 500x750, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   101530
Md5:    9097edbc88921b416f29be6ead926198
Sha1:   77c7c10b2a2e38a3bfbc874ef67b8a07878553ec
Sha256: 84160b7432f1cb72d4a7c5501fde5021705da5c9f221aa50e2cf2e7eed6ff518
                                        
                                            GET /wp-content/themes/constructions/inc/woocommerce/woo-css.css?ver=6.0.2 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 07 Sep 2022 13:29:36 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Mon, 22 Aug 2022 18:33:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 1681


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1681
Md5:    e9b6e019a5cb4ff2c801ffacd999ccc8
Sha1:   249bd513262b784e4426b65bd8c141a635382c62
Sha256: 0e66662d89b21fabe494b69e7f763441545136a05e11466c0b0eccb2cbfddabb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/constructions/css/default.css?ver=6.0.2 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 07 Sep 2022 13:29:36 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Mon, 22 Aug 2022 18:33:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 910


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   910
Md5:    207c2fa4b6bdf1a8fd07b11e1fbb5ce2
Sha1:   ac4fa42dc73083a077c2f0b0b348362d04c9c436
Sha256: 6a345422188c227f77a68c0c5e237a9553baa2fdfb65ba848584ac0673941332

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 07 Sep 2022 13:29:36 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Tue, 12 Jul 2022 18:35:47 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 16594


--- Additional Info ---
Magic:  ASCII text, with very long lines (43771)
Size:   16594
Md5:    2a67a4888baa44de739f3fe56203ce07
Sha1:   da175eae57f26b655747d79f055477e3fee1abb9
Sha256: 3a4d7627476a0099ca4bcc101685f27de04cb49dd66ef842d72c6cda270599dd

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/constructions/css/animate.css?ver=6.0.2 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 07 Sep 2022 13:29:36 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Mon, 22 Aug 2022 18:33:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 7134


--- Additional Info ---
Magic:  ASCII text
Size:   7134
Md5:    f147970a8d5450168b0320b3b0216edf
Sha1:   91b691f0bc293e270f8484619d6829ad39322153
Sha256: df5e4b41d811e935acaee5f428025bd767a28a81d98dbb05a7ed0b54b107e417

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NFZ/Bti63pt4E0nqmeY4Xw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.27.12.161
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: RCGysqovzr9B9nX6PuOESQcu3Oc=

                                        
                                            GET /wp-includes/css/dashicons.min.css?ver=6.0.2 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 07 Sep 2022 13:29:36 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Thu, 15 Apr 2021 15:13:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (58981)
Size:   35623
Md5:    ff6c9e677e54008818f72708ab0f9382
Sha1:   32746d4ae1f8fbeccb280d16fee8fc192f403aeb
Sha256: 88d3e64209eb0f3fb5098328ddfcb0da5bd11711f144d811536674b2ed36b1f3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/constructions/style.css?ver=6.0.2 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 07 Sep 2022 13:29:36 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Mon, 22 Aug 2022 18:33:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 15414


--- Additional Info ---
Magic:  ASCII text, with very long lines (599)
Size:   15414
Md5:    97c5974936e488ea830d5b841819cde2
Sha1:   07ac04e8175b7495352dc814cb25f045a4c004d1
Sha256: 32e188068d336ede2abf0fee2d9997fe6f6da220de8d4e0b540332d9666d496c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/constructions/css/font-awesome.css?ver=4.7.0 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 07 Sep 2022 13:29:36 GMT
Server: Apache
Last-Modified: Mon, 22 Aug 2022 18:33:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 7524


--- Additional Info ---
Magic:  troff or preprocessor input, ASCII text, with very long lines (372)
Size:   7524
Md5:    425b9c5bb524774d7f30160c36771785
Sha1:   af60c1059fb990e6e86ff744f9c286e78f9966e8
Sha256: a1dfafaf50ffe1e3996576f74f6e0e9dccee46d19aaf562fbe6e5575171b8062
                                        
                                            GET /wp-content/themes/constructions/inc/woocommerce/quantity/quantity-increment.css?ver=6.0.2 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 07 Sep 2022 13:29:36 GMT
Server: Apache
Last-Modified: Mon, 22 Aug 2022 18:33:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 941


--- Additional Info ---
Magic:  ASCII text
Size:   941
Md5:    c225f29d169ab067dbb4c136f3340f86
Sha1:   d0cdbcc1381e38bd376e33c2cb05977125f30d8b
Sha256: 477f566e68b7a00ed836a4d2a4bf4311d6084fe24f86c6a2a289dbdf15eec98a
                                        
                                            GET /wp-content/plugins/jetpack/css/jetpack.css?ver=11.3 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 07 Sep 2022 13:29:36 GMT
Server: Apache
Last-Modified: Tue, 06 Sep 2022 18:33:23 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Size:   23535
Md5:    e962be8e78625364b9e496c1ad936bcd
Sha1:   1772184401a4faffb97f1bd8f51f9f809ca25932
Sha256: e5b407ef97d631244fe033ba1b4640d414562e57b7b614f68dcdaf7f2b91ec9f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/constructions/js/mobile-menu.js?ver=6.0.2 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 07 Sep 2022 13:29:37 GMT
Server: Apache
Last-Modified: Mon, 22 Aug 2022 18:33:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 215


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   215
Md5:    cb1add407cff3f7c22f29f7cecda7bdb
Sha1:   c1339d27db4c54fcb58bce0983814d9d517b90b7
Sha256: 4156e2a225bd3f0540c8abc4b5d16063505eee3d143d2f2ea9824bb26d3f182a
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 07 Sep 2022 13:29:37 GMT
Server: Apache
Last-Modified: Wed, 09 Dec 2020 10:46:49 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 4618


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   4618
Md5:    acdb97105af28a7066790c6748ae2e1e
Sha1:   65794d2c5a9d04f747faf370bc8bacd330e69e5a
Sha256: dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
                                        
                                            GET /wp-content/themes/constructions/inc/woocommerce/quantity/quantity-increment.js?ver=6.0.2 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 07 Sep 2022 13:29:37 GMT
Server: Apache
Last-Modified: Mon, 22 Aug 2022 18:33:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 743


--- Additional Info ---
Magic:  ASCII text
Size:   743
Md5:    ccc53c0102c72fbaaf07355a5de8c089
Sha1:   41679ace91ea350df4646edd1fb3fdf95f4d7d1d
Sha256: e4cc00ef6369e985492b913768628de9ad7816c85acd450cd50c647edcb5fdec

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 07 Sep 2022 13:29:37 GMT
Server: Apache
Last-Modified: Wed, 09 Dec 2020 10:46:49 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 3239


--- Additional Info ---
Magic:  ASCII text, with very long lines (11256), with no line terminators
Size:   3239
Md5:    1054d0d53548e8bae51665b11acc6413
Sha1:   2eea6a05fe18db61fff58c431d34a86b3e0b7ade
Sha256: cb8b0f0f3f871d9776da32ee6d9e1af9277a211be61e97a831c7f8c98fbebfae
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 07 Sep 2022 13:29:36 GMT
Server: Apache
Last-Modified: Wed, 21 Jul 2021 00:20:23 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   39066
Md5:    feb933ceca72e1d76b471ed9db278b0d
Sha1:   6179e8f9c9876a6c4df5e3138e9f8ee2ac25bcd1
Sha256: 9a525fa92f98fd5ac754d60ea6f3676bcaa3870dd9bf057c8c668399922c9bd0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 07 Sep 2022 13:29:37 GMT
Server: Apache
Last-Modified: Thu, 28 May 2020 18:33:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 1298


--- Additional Info ---
Magic:  ASCII text, with very long lines (4186), with no line terminators
Size:   1298
Md5:    91bab39b98d7e5c1632717b9ebe349e4
Sha1:   e639a447d06fc7827be5b5b35d603ff16b5f7bb1
Sha256: 47ff151faeb23a5654f6ec58b404e51193f6714849a69de241c2ee79662f74c6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/jetpack/_inc/build/photon/photon.min.js?ver=20191001 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 07 Sep 2022 13:29:37 GMT
Server: Apache
Last-Modified: Tue, 06 Sep 2022 18:33:23 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 369


--- Additional Info ---
Magic:  ASCII text, with very long lines (685), with no line terminators
Size:   369
Md5:    accd80b294f42169b1e447e68bacfffe
Sha1:   40847092d82d78897a8219b270b22838fcc0bb95
Sha256: 35e8294d38f054cd6fbcdef72076443685888546d93b41a596e981a5e9a61552
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 07 Sep 2022 13:29:37 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 19:51:03 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 5321


--- Additional Info ---
Magic:  ASCII text, with very long lines (15660)
Size:   5321
Md5:    710f8b142ea44c0682dc2c30f318f065
Sha1:   49144e9b3a76d3d383b1d4359cf7a25e947f4233
Sha256: 708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 07 Sep 2022 13:29:37 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 19:51:03 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 8169


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (8189)
Size:   8169
Md5:    a0a1c8194f131320e1798f90a7b1262a
Sha1:   3346d35be1f2e4886f19e7fcc0cc96ee4753d9ed
Sha256: 7f618ab13cec0933ec2c61fa2b580ad77ca41522028649677494219fa9ce56db

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 07 Sep 2022 13:29:37 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 19:51:03 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 3296


--- Additional Info ---
Magic:  ASCII text, with very long lines (8632)
Size:   3296
Md5:    0854bc2e341421e5257c78ad60231a92
Sha1:   fc947dd5273cb9755f7e8a4617d49f3ba8af972c
Sha256: 756d9691bb6f38e4706fc3d894c86be4947b818e54f5f84c4b9ce4831681ce16

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 07 Sep 2022 13:29:37 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 19:51:03 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 4756


--- Additional Info ---
Magic:  ASCII text, with very long lines (11760)
Size:   4756
Md5:    4af14b203f9813b040aea697cea02b02
Sha1:   681533e342bf32a0da3331c5806bb58dff5cdcf4
Sha256: 13e8ccf22646def4ed18be46dcb2dcef91900d52d26afb651c9c66dcb74ca649

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/constructions/js/navigation.js?ver=6.0.2 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 07 Sep 2022 13:29:37 GMT
Server: Apache
Last-Modified: Mon, 22 Aug 2022 18:33:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 1168


--- Additional Info ---
Magic:  ASCII text
Size:   1168
Md5:    28b80aaf2ae2ef0de0d59144ea1a723b
Sha1:   b2d3ad6f06985a17a600b1b5fe2d160eee947303
Sha256: aaa489d95f9aa848c37d2c39cd96ddcb82e881d69a14965f79692f90cc8ecf3b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/farro/v14/i7dJIFl3byGNHa3xM665UEM.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://dmmc-usa.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 18712
Date: Wed, 07 Sep 2022 13:29:37 GMT
Expires: Thu, 07 Sep 2023 13:29:37 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Thu, 21 Apr 2022 17:16:14 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 18712, version 1.0\012- data
Size:   18712
Md5:    08c554b7b9e25d0c337ec48efe60e905
Sha1:   650a7c2b7a8a189681d0c769fe497cba8b5af34a
Sha256: 3b93f1408c56fb48d3599339abecdf64a48653a9d6d91cbf230871e5f5b2293b
                                        
                                            GET /wp-content/themes/constructions/js/search-button.js?ver=6.0.2 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 07 Sep 2022 13:29:37 GMT
Server: Apache
Last-Modified: Mon, 22 Aug 2022 18:33:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 147


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   147
Md5:    11134e46ea106c03e340516a2b167b2d
Sha1:   001df60125a3e8e5aec45ae00c3df7755febb23b
Sha256: c62d99beb6af409db1e2c2c81c337b2c4efbea7f2928a9195e8765b228a2497a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/constructions/js/viewportchecker.js?ver=6.0.2 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 07 Sep 2022 13:29:37 GMT
Server: Apache
Last-Modified: Mon, 22 Aug 2022 18:33:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 2433


--- Additional Info ---
Magic:  ASCII text
Size:   2433
Md5:    7ab94c6f320780d6ef6fea6f83f390e0
Sha1:   ff7b605a205d493353a5136e241ec0d52f75ee71
Sha256: c9dc4af68d36448d867accefbf048ce1dceb9fef9cf77d2b958fa2fce637d64b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/constructions/js/to-top.js?ver=6.0.2 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 07 Sep 2022 13:29:37 GMT
Server: Apache
Last-Modified: Mon, 22 Aug 2022 18:33:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 206


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   206
Md5:    60c6c0bf1c57d6b074ed9b00846a4901
Sha1:   d72867a66016ffd3243059bb6e9db3dffeb6a824
Sha256: 40303ac1025c3b78c3f9b728086d116614a0e8c081e2ef65499221da76af6571

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/constructions/js/skip-link-focus-fix.js?ver=6.0.2 HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 07 Sep 2022 13:29:37 GMT
Server: Apache
Last-Modified: Mon, 22 Aug 2022 18:33:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 417


--- Additional Info ---
Magic:  ASCII text
Size:   417
Md5:    73f7704398d8f6be9748d30791950984
Sha1:   3231f3786c364c7665cd7123d8fae0f42bbfd836
Sha256: c1d9b23aff05fb52e5d6e68aff86d808097185c6dbaac6c3fc3ec6e5bea31ef4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2020/07/cropped-Handshake-04.30.2020.jpg HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 07 Sep 2022 13:29:37 GMT
Server: Apache
Last-Modified: Wed, 01 Jul 2020 21:41:08 GMT
Accept-Ranges: bytes
Content-Length: 32329
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 220x220, segment length 16, baseline, precision 8, 1000x377, components 3\012- data
Size:   32329
Md5:    6335f74578da4d3a3956b58c639dbb38
Sha1:   e6baa37310fb49a5a33c82f54bf73ebde2aec039
Sha256: 78976cee17bcfab989e92eb9ab5d9a547df0677489936d70c50d4dc5ad81c580
                                        
                                            GET /g.gif?v=ext&j=1%3A11.3&blog=176528867&post=12406&tz=-4&srv=dmmc-usa.com&host=dmmc-usa.com&ref=&fcp=1794&rand=0.882640628530649 HTTP/1.1 
Host: pixel.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/

                                         
                                         192.0.76.3
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 07 Sep 2022 13:29:37 GMT
Content-Length: 50
Connection: keep-alive
Cache-Control: no-cache
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  GIF image data, version 89a, 6 x 5\012- data
Size:   50
Md5:    e4d673a55c5656f19ef81563fb10884c
Sha1:   1f2d8ed221d39329251ad3a6ff1edb20b7219443
Sha256: f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
                                        
                                            GET /images/core/emoji/14.0.0/svg/2705.svg HTTP/1.1 
Host: s.w.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dmmc-usa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.0.77.48
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Wed, 07 Sep 2022 13:29:37 GMT
content-length: 482
last-modified: Tue, 12 Apr 2022 03:53:44 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (482), with no line terminators
Size:   482
Md5:    212e30e47232be03033a87dc58edaa95
Sha1:   4d69c4a3dc57503e08b76c774135bfe83e8b1f51
Sha256: 1f026beb67630abcdbc341651b1c17591aa76261296a9fb118793765964eb4e9
                                        
                                            GET /wp-content/themes/constructions/images/mobile.jpg HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 07 Sep 2022 13:29:37 GMT
Server: Apache
Last-Modified: Mon, 22 Aug 2022 18:33:09 GMT
Accept-Ranges: bytes
Content-Length: 1944
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 4.2.5], baseline, precision 8, 80x70, components 3\012- data
Size:   1944
Md5:    a9569c9ad9c05faf10407ef2b4c0cb5a
Sha1:   a8143abeed9221422d7cb7fc2571a89ed79219b4
Sha256: 7c839a7fd4edc4b751c76a4a80933c7be2af87a5ce4d9bc01551dbea00598e06
                                        
                                            GET /e-202236.js HTTP/1.1 
Host: stats.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dmmc-usa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.0.76.3
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 07 Sep 2022 13:29:36 GMT
vary: Accept-Encoding
etag: W/"6197c5cf-3508"
content-encoding: br
expires: Mon, 28 Aug 2023 02:01:00 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2690)
Size:   80147
Md5:    ec8ca64e96154358c263b150f61006f7
Sha1:   0b3678b44cde408803262d265a36eeaf1f01ec88
Sha256: e5be4a6c88cf14543154c9da2522d5ce7fe0acba0747cde7ac6ab95a3152df9d
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: dmmc-usa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dmmc-usa.com/?p=12406

                                         
                                         162.241.218.220
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Wed, 07 Sep 2022 13:29:37 GMT
Server: nginx/1.21.6
Content-Length: 315
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3450
Expires: Wed, 07 Sep 2022 14:27:08 GMT
Date: Wed, 07 Sep 2022 13:29:38 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3450
Expires: Wed, 07 Sep 2022 14:27:08 GMT
Date: Wed, 07 Sep 2022 13:29:38 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3450
Expires: Wed, 07 Sep 2022 14:27:08 GMT
Date: Wed, 07 Sep 2022 13:29:38 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3450
Expires: Wed, 07 Sep 2022 14:27:08 GMT
Date: Wed, 07 Sep 2022 13:29:38 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3450
Expires: Wed, 07 Sep 2022 14:27:08 GMT
Date: Wed, 07 Sep 2022 13:29:38 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0766520-2dbc-4f52-b0e2-1a908af4cd29.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11778
x-amzn-requestid: 0054ce27-72f6-4161-90d0-eeb20d9c9537
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDqcrEczIAMFqlg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317bdea-0c3e511533c91b783a458f2b;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:38:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Q4n9f959aCshN6qgQ2LWVSUTmSd4hvjWyF2GNdsR1_asVSdFKxXsqw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:41:08 GMT
age: 56910
etag: "55154c3878e9650f463805c3829f03a1603f14c1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11778
Md5:    1462b0c8fff091f29c7c5145031c08aa
Sha1:   55154c3878e9650f463805c3829f03a1603f14c1
Sha256: 62f913a6498b21da33451e7cf0e37c5fdef565324bcd35d93cb536527394a3d5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba86944-df9f-4d50-9b10-d50644b978e3.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4805
x-amzn-requestid: 270858f2-c94d-4047-8e3b-c49a5a603610
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XjbiJHuZoAMFpSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630ad940-3ba2164762e4f74227b6a23b;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 02:56:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: do30zKZmrP_j4feGGu8G39ibskE4dXxTL8YzpAR7PCFpQuJalYeJqA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:57:13 GMT
age: 55945
etag: "5200b601017ce86614783b76fd2a775c1c48d4e9"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4805
Md5:    4f29d8aaae2d67c27c58001e7553dea7
Sha1:   5200b601017ce86614783b76fd2a775c1c48d4e9
Sha256: 6b55c4d692cf584e0319b07251d9845749fe8954062dab66e003dd2706451504
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b220c7c-ed68-4f56-82a7-5748d044635a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8462
x-amzn-requestid: 1a501a0a-2671-468b-885b-2a2efb73bc2e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDq64HbCIAMFjGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317beab-395f6d1436b027ee60d00abd;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ZWf6CXKcClMXAXmFXNp0sxVCMUFyZqhhh7B83tJMX_jvteLRDzG8QA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:42:04 GMT
etag: "cde85fbe83c9e29618edf4e05002bd623e3ab965"
age: 56854
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8462
Md5:    70c964498818242b742575cfa1769b67
Sha1:   cde85fbe83c9e29618edf4e05002bd623e3ab965
Sha256: bdb0e76fe216f742789ba5a77645c640fe0c7f207707181e618fa31d4cf58605
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8510bf06-7808-4fda-a5d9-b75fc73021c9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12661
x-amzn-requestid: 71ef9e09-ccf1-4930-865d-665ece4bf3a6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X3hXnFnXIAMFqKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312e296-627daf7c7ad3e23a60b183cd;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 05:13:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: xwunW741LulZXvM0har5nqrcCiyYoUwvhCWiPsEvs5P2VKSe476_Cw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 22:14:32 GMT
etag: "dd9cd9b711d7112efa85eff8a798346dbd7d5f5f"
age: 54906
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12661
Md5:    79f4356c488498012cc7fc03be21e3df
Sha1:   dd9cd9b711d7112efa85eff8a798346dbd7d5f5f
Sha256: ebd84bf1db6b39b92be1020c7ea5c32eaa23dfb347ec83941d5bc56e80855ebc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe12fd665-3bdf-498a-98f0-c69e29204995.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6919
x-amzn-requestid: 36c39d63-51c8-45c1-a0c1-4aab3f27da78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDqzaELSIAMFeiA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317be7c-08ed1df52818a79115c15e71;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:41:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: C2WbN-Trv1uxf1ya8kCZ6PBlH550lTv1c2OOiJuOKm4eFLywKPUmBA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:41:16 GMT
age: 56902
etag: "9cf78c7901f15b194592efb0db560af569e9470f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6919
Md5:    78bacb8692b8f5a5b5b628335778adc0
Sha1:   9cf78c7901f15b194592efb0db560af569e9470f
Sha256: 871fe5479807b985202b776b60378918e89e04d7da9b9a546a0ce72857a01b90
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6214
x-amzn-requestid: 46a44af0-e547-49e8-bc39-f6c49d94e375
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj_0HFKbIAMFRbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b134d-0297c83c305422fa51b86dcf;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 07:03:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _ZKcuRO8Z6wBMdm79iDZj5uRYk4YYpYJqOoG8hZqY81O0R7hfbe5bQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 05:12:06 GMT
age: 29852
etag: "50f1459de01174e594e03e7df4dfaa8eb1798672"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6214
Md5:    f922505178de0cea92eedcfda85a9f67
Sha1:   50f1459de01174e594e03e7df4dfaa8eb1798672
Sha256: 981cd58768d6ad841673add855ddcc7106fbc85de05db9a1bd2d6bc8928b4c2c