Overview

URLthelacypost.com/
IP 162.241.224.230 (United States)
ASN#46606 UNIFIEDLAYER-AS-1
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-27 07:29:28 UTC
StatusLoading report..
IDS alerts0
Blocklist alert43
urlquery alerts No alerts detected
Tags None

Domain Summary (29)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-26 05:33:20 UTC 34.102.187.140
www.googletagmanager.com (2) 75 2013-05-22 02:07:37 UTC 2022-11-26 11:26:18 UTC 142.250.74.168
i0.wp.com (4) 3021 2013-09-17 06:14:42 UTC 2022-11-26 06:58:18 UTC 192.0.77.2
stats.wp.com (1) 2711 2017-01-30 05:06:59 UTC 2022-11-26 06:58:18 UTC 192.0.76.3
fonts.gstatic.com (5) 0 2014-09-09 00:40:21 UTC 2022-11-26 10:10:14 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
m.addthis.com (1) 1448 2013-11-06 20:12:22 UTC 2020-03-27 07:44:36 UTC 23.38.200.123
r3.o.lencr.org (6) 344 No data No data 23.36.77.32
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
assets.pinterest.com (1) 2560 2014-11-19 16:42:27 UTC 2020-05-14 16:33:09 UTC 23.38.200.197
thelacypost.com (56) 0 2019-07-19 01:22:12 UTC 2022-11-27 01:57:10 UTC 162.241.224.230 Unknown ranking
www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-11-26 11:34:11 UTC 142.250.74.174
s.w.org (4) 748 2017-01-30 04:56:16 UTC 2022-11-26 07:26:25 UTC 192.0.77.48
ocsp.sca1b.amazontrust.com (1) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 54.230.245.39
ocsp.digicert.com (6) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-26 05:33:16 UTC 34.117.237.239
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 52.13.173.34
s7.addthis.com (2) 1504 2012-05-21 03:34:04 UTC 2020-04-01 20:53:06 UTC 23.38.200.123
ocsp.pki.goog (2) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.35
pixel.wp.com (1) 2545 2017-01-30 05:31:40 UTC 2022-11-26 05:58:52 UTC 192.0.76.3
api.viglink.com (4) 4397 2012-05-23 13:47:26 UTC 2022-11-26 11:32:14 UTC 34.241.86.223
fonts.googleapis.com (5) 8877 2013-06-10 20:14:26 UTC 2022-11-26 07:22:52 UTC 142.250.74.10
connect.facebook.net (2) 139 2012-05-22 02:51:28 UTC 2020-02-17 13:26:09 UTC 31.13.72.12
static.xx.fbcdn.net (7) 661 2012-12-01 13:12:13 UTC 2020-04-26 08:40:46 UTC 31.13.72.12
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
cdn.viglink.com (2) 4113 2012-10-26 15:59:48 UTC 2020-04-11 02:25:48 UTC 54.230.111.60
z.moatads.com (1) 374 2014-02-11 16:19:47 UTC 2020-02-15 21:59:06 UTC 23.38.201.146
log.pinterest.com (1) 3464 2015-02-16 23:42:31 UTC 2020-04-15 21:05:05 UTC 151.101.84.84
use.fontawesome.com (1) 942 2018-09-18 10:26:26 UTC 2020-03-18 00:09:30 UTC 172.64.133.15
www.facebook.com (1) 99 2012-05-21 00:23:41 UTC 2021-06-08 06:38:51 UTC 31.13.72.36

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-27 2 thelacypost.com/wp-content/plugins/wysija-newsletters/css/validationEngine. (...) Phishing
2022-11-27 2 thelacypost.com/ Phishing
2022-11-27 2 thelacypost.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1 Phishing
2022-11-27 2 thelacypost.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1 Phishing
2022-11-27 2 thelacypost.com/wp-includes/css/classic-themes.min.css?ver=1 Phishing
2022-11-27 2 thelacypost.com/wp-content/plugins/amazon-associates-link-builder/css/aalb_ (...) Phishing
2022-11-27 2 thelacypost.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 Phishing
2022-11-27 2 thelacypost.com/wp-content/plugins/revslider/public/assets/css/settings.css (...) Phishing
2022-11-27 2 thelacypost.com/wp-content/plugins/wp-recipe-maker/templates/recipe/legacy/ (...) Phishing
2022-11-27 2 thelacypost.com/wp-content/plugins/feed-them-social/feeds/css/styles.css?ve (...) Phishing
2022-11-27 2 thelacypost.com/wp-content/plugins/contact-form-7/includes/css/styles.css?v (...) Phishing
2022-11-27 2 thelacypost.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 Phishing
2022-11-27 2 thelacypost.com/wp-content/plugins/feed-them-social/admin/js/admin.js?ver=3.0.2 Phishing
2022-11-27 2 thelacypost.com/wp-content/plugins/jetpack/css/jetpack.css?ver=11.5.1 Phishing
2022-11-27 2 thelacypost.com/wp-content/themes/marjetka/style.css?ver=6.1.1 Phishing
2022-11-27 2 thelacypost.com/wp-content/plugins/google-analytics-for-wordpress/assets/js (...) Phishing
2022-11-27 2 thelacypost.com/wp-content/plugins/essential-grid/public/assets/js/lightbox (...) Phishing
2022-11-27 2 thelacypost.com/wp-content/plugins/essential-grid/public/assets/js/jquery.t (...) Phishing
2022-11-27 2 thelacypost.com/wp-content/plugins/revslider/public/assets/js/jquery.themep (...) Phishing
2022-11-27 2 thelacypost.com/wp-content/themes/marjetka/js/jquery.fitvids.js?ver=1 Phishing
2022-11-27 2 thelacypost.com/wp-content/themes/marjetka/js/jquery.bxslider.js?ver=1 Phishing
2022-11-27 2 thelacypost.com/wp-content/themes/marjetka/js/pmc_infinity.js?ver=1 Phishing
2022-11-27 2 thelacypost.com/wp-content/plugins/pinterest-pin-it-button-on-image-hover-a (...) Phishing
2022-11-27 2 thelacypost.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 Phishing
2022-11-27 2 thelacypost.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 Phishing
2022-11-27 2 thelacypost.com/wp-content/plugins/pinterest-pin-it-button-on-image-hover-a (...) Phishing
2022-11-27 2 thelacypost.com/wp-content/plugins/print-o-matic/js/printomat.js?ver=2.0.11 Phishing
2022-11-27 2 thelacypost.com/wp-content/plugins/print-o-matic/js/print_elements.js?ver=1.1 Phishing
2022-11-27 2 thelacypost.com/wp-content/themes/marjetka/js/jquery.scrollTo.js?ver=1 Phishing
2022-11-27 2 thelacypost.com/wp-content/themes/marjetka/js/jquery.cycle.all.min.js?ver=1 Phishing
2022-11-27 2 thelacypost.com/wp-content/themes/marjetka/js/gistfile_pmc.js?ver=1 Phishing
2022-11-27 2 thelacypost.com/wp-content/themes/marjetka/js/jquery.isotope.min.js?ver=1 Phishing
2022-11-27 2 thelacypost.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 Phishing
2022-11-27 2 thelacypost.com/wp-content/themes/marjetka/js/custom.js?ver=1 Phishing
2022-11-27 2 thelacypost.com/wp-content/themes/marjetka/js/jquery.easing.1.3.js?ver=1 Phishing
2022-11-27 2 thelacypost.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2 Phishing
2022-11-27 2 thelacypost.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 Phishing
2022-11-27 2 thelacypost.com/wp-content/plugins/facebook-page-feed-graph-api/js/responsi (...) Phishing
2022-11-27 2 thelacypost.com/wp-content/plugins/revslider/public/assets/js/extensions/re (...) Phishing
2022-11-27 2 thelacypost.com/wp-content/plugins/revslider/public/assets/js/extensions/re (...) Phishing
2022-11-27 2 thelacypost.com/wp-content/plugins/revslider/public/assets/js/extensions/re (...) Phishing
2022-11-27 2 thelacypost.com/wp-content/plugins/revslider/public/assets/css/openhand.cur Phishing
2022-11-27 2 thelacypost.com/wp-content/ Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 3 reports on IP: 162.241.224.230
Date UQ / IDS / BL URL IP
2023-01-14 09:56:02 +0000 0 - 0 - 39 thelacypost.com/10-latest-android-8-1-feature (...) 162.241.224.230
2022-11-27 07:29:28 +0000 0 - 0 - 43 thelacypost.com/ 162.241.224.230
2022-10-23 09:50:23 +0000 0 - 0 - 37 thelacypost.com/descargar-facturaplus-2004-129311/ 162.241.224.230


Last 5 reports on ASN: UNIFIEDLAYER-AS-1
Date UQ / IDS / BL URL IP
2023-02-09 01:55:19 +0000 5 - 0 - 1 servizitaliagroup.com.br/vi/excelz/bizmail.ph (...) 162.144.238.235
2023-02-09 01:54:56 +0000 0 - 0 - 3 blackrockkiteboarding.com/om/perfect/ 162.241.70.188
2023-02-09 01:50:18 +0000 15 - 30 - 22 id9271-trackups.servehttp.com/ 162.241.124.229
2023-02-09 01:49:16 +0000 0 - 0 - 2 inspirebusinesslawgroup.co.uk/1/index.php 69.49.229.176
2023-02-09 01:48:58 +0000 14 - 2 - 20 id9271-trackups.servehttp.com/Find?sslchannel (...) 162.241.124.229


Last 3 reports on domain: thelacypost.com
Date UQ / IDS / BL URL IP
2023-01-14 09:56:02 +0000 0 - 0 - 39 thelacypost.com/10-latest-android-8-1-feature (...) 162.241.224.230
2022-11-27 07:29:28 +0000 0 - 0 - 43 thelacypost.com/ 162.241.224.230
2022-10-23 09:50:23 +0000 0 - 0 - 37 thelacypost.com/descargar-facturaplus-2004-129311/ 162.241.224.230


No other reports with similar screenshot

JavaScript

Executed Scripts (84)

Executed Evals (2)
#1 JavaScript::Eval (size: 8) - SHA256: 3c4b9b06fe520e9d07b2150eebd412a59c91d789706d99a2b2dc9bf217604d1f
_ate.cbs
#2 JavaScript::Eval (size: 11) - SHA256: 8ee784d797ce97ed9716bb42682346deb0c7ae8ff75d7ad8ae60508907054c16
addthis.cbs

Executed Writes (0)


HTTP Transactions (128)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "72937C756D3FEEAE6D04A6F445398B0436BDF559F8C7437E3A3233263943900E"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9514
Expires: Sun, 27 Nov 2022 10:07:50 GMT
Date: Sun, 27 Nov 2022 07:29:16 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2435
Cache-Control: 'max-age=158059'
Date: Sun, 27 Nov 2022 07:29:16 GMT
Last-Modified: Sun, 27 Nov 2022 06:48:41 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12606
Expires: Sun, 27 Nov 2022 10:59:22 GMT
Date: Sun, 27 Nov 2022 07:29:16 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 07:19:21 GMT
cache-control: public,max-age=3600
age: 595
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    567df7db606cf5d0871aa5bc9311b6da
Sha1:   4263faac7cbab2fcaf6661911dcad5091c06be17
Sha256: e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: N20tT2kwBXFzjN1o33ClPNZkEFTGzriwv+7bEioBbniqklKu0cOQBqXhTEc82It59/7H2uk8oag=
x-amz-request-id: E624PDR844Z7Z713
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 06:41:32 GMT
age: 2864
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sun, 27 Nov 2022 07:29:16 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 07:08:54 GMT
cache-control: public,max-age=3600
age: 1223
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5663
Cache-Control: max-age=97917
Date: Sun, 27 Nov 2022 07:29:17 GMT
Etag: "6381d72b-1d7"
Expires: Mon, 28 Nov 2022 10:41:14 GMT
Last-Modified: Sat, 26 Nov 2022 09:06:51 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Px29H1ge4rN4GAsq29KvBA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         52.13.173.34
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: gY+g+21Qg/hzNUiKaWJSy91j3SI=

                                        
                                            GET /css?family=Fira+Sans:500%7CFira+Sans:regular,500,700%7CRaleway:300,500,500italic,700,700italic%7CRochester:regular HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         142.250.74.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 27 Nov 2022 07:29:17 GMT
Date: Sun, 27 Nov 2022 07:29:17 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   931
Md5:    52a1cc0da7288d0cec38e56269ac60ba
Sha1:   ab7f963ef17403a21c3b64b40c703256b5e0512f
Sha256: 70a127e69b34f29591fd0a08df4d3c4cb8f87852a68c5a784cb6702d59ec779a
                                        
                                            GET /gtag/js?id=UA-121411721-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         142.250.74.168
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Location: https://www.googletagmanager.com/gtag/js?id=UA-121411721-1
Cross-Origin-Resource-Policy: cross-origin
Date: Sun, 27 Nov 2022 07:29:17 GMT
Server: Google Tag Manager
Content-Length: 255
X-XSS-Protection: 0


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size:   255
Md5:    0ead54c148cb9d92172750c98588c34d
Sha1:   97a98094ef8e40a70c87ced0735ed540cd4741b3
Sha256: 95bf2a3be8c7d1070c53477ba180429ed7220053cd7bbd4ee8b29ac74e5a0e90
                                        
                                            GET /css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800&ver=6.1.1 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         142.250.74.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 27 Nov 2022 07:29:17 GMT
Date: Sun, 27 Nov 2022 07:29:17 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   766
Md5:    d71ac876718b3fde556fc24de7f2eb10
Sha1:   018c76462bcae6729b565a9574eef581eda66e2c
Sha256: a7f9e7d976c649dc7d1131408a0c672cf342113cbab5d826e1d607f7ca6bd169
                                        
                                            GET /css?family=Droid+Serif%3A400%2C700&ver=6.1.1 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         142.250.74.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 27 Nov 2022 07:29:17 GMT
Date: Sun, 27 Nov 2022 07:29:17 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   303
Md5:    a12841952a98d4e00e0ad3ff2a8c60f8
Sha1:   226af6f94b388fcd3950735f8ed630d35c222f91
Sha256: 4ef5233d7a20fdcdcc67930e5d9b7ad760597129df1c2fdab7f2dd78fefbfe9b
                                        
                                            GET /css?family=Raleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&ver=6.1.1 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         142.250.74.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 27 Nov 2022 07:29:17 GMT
Date: Sun, 27 Nov 2022 07:29:17 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   693
Md5:    34f9be8fb0d36cf760d9d042ea50d3dc
Sha1:   7102e685465df51008fedeccdb820a236170e3ee
Sha256: 07766bf2222c090847dab36d3e93cac171eca98c785097dc8ea6694e335f92c3
                                        
                                            GET /js/300/addthis_widget.js?ver=1 HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: "5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 116388
date: Sun, 27 Nov 2022 07:29:17 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (54602)
Size:   116388
Md5:    fef08c9f8bacc1b0eed3950dbe7d0f87
Sha1:   e9a3b98cad1e2d58eab1e2cbaa51cb979dc45075
Sha256: 55b3d5b3acd46444cc1844a676c75ba25209ce371065791cd4fbdc9da60aea34
                                        
                                            GET /css?family=Rochester:400%7COpen+Sans:700%2C900%2C600 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         142.250.74.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 27 Nov 2022 07:29:17 GMT
Date: Sun, 27 Nov 2022 07:29:17 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   687
Md5:    c222831170871b3bbe63b9aab770704f
Sha1:   22388f8371151bd795c2a010bd34805a472b7f2e
Sha256: 4d5fe8dffa60abbed650c0e5b6094989c4f2fc4b5065bbf54b0e3102d06cca94
                                        
                                            GET /wp-content/plugins/wysija-newsletters/css/validationEngine.jquery.css?ver=2.22 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 07:29:17 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Mon, 01 Aug 2022 11:21:41 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Tue, 27 Dec 2022 07:29:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 1328


--- Additional Info ---
Magic:  ASCII text, with very long lines (4684)
Size:   1328
Md5:    b5feb04a64d59ef6e51a5cf881deb05f
Sha1:   92e3d0969dd6c35a67b61353b15f5464b92212df
Sha256: 9c93c62acd2746198f2babcca4ffd3e19784265053accf8b41d948f3e3a80519

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 27 Nov 2022 07:29:15 GMT
Server: nginx/1.21.6
Link: <https://thelacypost.com/wp-json/>; rel="https://api.w.org/", <https://wp.me/a1ubn>; rel=shortlink
Cache-Control: max-age=300
Expires: Sun, 27 Nov 2022 07:34:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
X-Server-Cache: true
X-Proxy-Cache: EXPIRED
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (9381), with CRLF, LF line terminators
Size:   49990
Md5:    9f2fa72d3f3e7dc4d67cb015bfe583bf
Sha1:   6a9ffe5037d3e52d1e7e3dc24ad838a57699f0f0
Sha256: b8148d66ab7bb5282d6a80dbf5df2ac5ed181378f88801bb24687cdea8a4b85d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5107
Cache-Control: max-age=108165
Date: Sun, 27 Nov 2022 07:29:18 GMT
Etag: "63820160-118"
Expires: Mon, 28 Nov 2022 13:32:03 GMT
Last-Modified: Sat, 26 Nov 2022 12:06:56 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 280

                                        
                                            GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Wed, 26 Oct 2022 23:20:48 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Tue, 27 Dec 2022 07:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 4487


--- Additional Info ---
Magic:  ASCII text, with very long lines (21597)
Size:   4487
Md5:    7f01d3c2dd8fdc231241f6a3b10def8c
Sha1:   76646b14e9ce97d384b9adb20c622f09c7ecd140
Sha256: 999c4a983cd4b5a1a7652aa436630a18c1a6dbf91de090c903ab507b07df536a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Wed, 09 Dec 2020 11:23:11 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Tue, 27 Dec 2022 07:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 3239


--- Additional Info ---
Magic:  ASCII text, with very long lines (11256), with no line terminators
Size:   3239
Md5:    1054d0d53548e8bae51665b11acc6413
Sha1:   2eea6a05fe18db61fff58c431d34a86b3e0b7ade
Sha256: cb8b0f0f3f871d9776da32ee6d9e1af9277a211be61e97a831c7f8c98fbebfae
                                        
                                            GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Tue, 12 Nov 2019 23:36:53 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Tue, 27 Dec 2022 07:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 1298


--- Additional Info ---
Magic:  ASCII text, with very long lines (4186), with no line terminators
Size:   1298
Md5:    91bab39b98d7e5c1632717b9ebe349e4
Sha1:   e639a447d06fc7827be5b5b35d603ff16b5f7bb1
Sha256: 47ff151faeb23a5654f6ec58b404e51193f6714849a69de241c2ee79662f74c6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 11:22:06 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Tue, 27 Dec 2022 07:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 189


--- Additional Info ---
Magic:  ASCII text
Size:   189
Md5:    5a18e16eb01cbaa862eb32e6b77bedb2
Sha1:   3abf9b913cc9f558f02cba7c9b822f8d1812cb96
Sha256: d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /gtag/js?id=UA-121411721-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://thelacypost.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 27 Nov 2022 07:29:18 GMT
expires: Sun, 27 Nov 2022 07:29:18 GMT
cache-control: private, max-age=900
last-modified: Sun, 27 Nov 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43595
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1921)
Size:   43595
Md5:    84b08c86e72d532dbd4848388b22a1c6
Sha1:   ba8de9f36e7cb3d61b9f28d09b97961c3ec4b012
Sha256: a79eed4c02e6814c944bf3dd16e1a12966a6022d0ad9a4cb031d3f9350ef3335
                                        
                                            GET /wp-content/plugins/amazon-associates-link-builder/css/aalb_basics.css?ver=1.9.3 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Mon, 05 Aug 2019 23:56:50 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Tue, 27 Dec 2022 07:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 1037


--- Additional Info ---
Magic:  ASCII text
Size:   1037
Md5:    81b3c6341b93e1476c323b9171806ffa
Sha1:   badb29ddbb2402f1de584a5019b61e0547116dfb
Sha256: fd891ac00b04cedd7204db255583e421239fa58e499114f8304d5117bd135b6b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Tue, 15 Nov 2022 23:20:41 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Tue, 27 Dec 2022 07:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (47826)
Size:   17667
Md5:    9415c9562591af7a582c29139621505f
Sha1:   0b12eecf36a48b871a3198550f4f65bb4a6d9b1b
Sha256: 06c70d3232c2ae3ed2aa259eb7a1beb329b654926813935fffa8902cd5ebaa4a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=2.1.6.2.2 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Fri, 18 May 2018 01:56:23 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Tue, 27 Dec 2022 07:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 11930


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (7136), with CRLF line terminators
Size:   11930
Md5:    26a19e830e399779f0b568e20bdf59ac
Sha1:   124248d8ed8252a7b204e8819ce8d08b40f279d9
Sha256: ce896367115c46760c26894017e04601c9d2d8eb07b6cdb092751067b63abccc
                                        
                                            GET /wp-content/plugins/print-o-matic/css/style.css?ver=2.0 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 11:37:36 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Tue, 27 Dec 2022 07:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 329


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   329
Md5:    65f8d47da4dfbdb751bdcb484f8c9b41
Sha1:   f3202a8a870584f244464bbf5a120d7bab3a0ecd
Sha256: e6f51b326be6d9a40d656d0b1beeaadc0dd0cb057daaee73284d7bc0f03ce2ef
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5107
Cache-Control: max-age=108165
Date: Sun, 27 Nov 2022 07:29:18 GMT
Etag: "63820160-118"
Expires: Mon, 28 Nov 2022 13:32:03 GMT
Last-Modified: Sat, 26 Nov 2022 12:06:56 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 280

                                        
                                            GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.6.4 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Fri, 18 May 2018 01:57:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Tue, 27 Dec 2022 07:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 12207


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (5178), with CRLF line terminators
Size:   12207
Md5:    696bb8d5c2502d4dcbe439f97b65b0eb
Sha1:   822be640c89256b0a2efa731ac887e6465c404a7
Sha256: 6700c2e46a465dd21b928167a8184733448f733d4b011e143a842f7b6f299974

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "07BC9CAFB6F4523073ADA90D1310069C38AE01913EF9EECDEB8714F04CD02680"
Last-Modified: Sat, 26 Nov 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 27 Nov 2022 13:29:18 GMT
Date: Sun, 27 Nov 2022 07:29:18 GMT
Connection: keep-alive

                                        
                                            GET /e-202247.js HTTP/1.1 
Host: stats.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.0.76.3
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 07:29:18 GMT
vary: Accept-Encoding
etag: W/"6197c5cf-3508"
content-encoding: br
expires: Mon, 13 Nov 2023 09:17:34 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2690)
Size:   3490
Md5:    84923e40c105d9f2c3411fee339a6941
Sha1:   043b802b97c73da6bf4577cab4fea1d9e368a7a1
Sha256: a1177cb0ae3ee7488bbfa8bd133e3a1af64fe470174c7da1dfef1d01652f0656
                                        
                                            GET /wp-content/plugins/wp-recipe-maker/templates/recipe/legacy/simple/simple.min.css?ver=8.6.0 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Mon, 14 Nov 2022 23:21:33 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Tue, 27 Dec 2022 07:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 749


--- Additional Info ---
Magic:  ASCII text, with very long lines (2872), with no line terminators
Size:   749
Md5:    76d88f2833d08a5aefdbde4a738bc3db
Sha1:   b9352ab8790ce2e06f20d12a0d25317fdc10f237
Sha256: 987197c556be106192317e4c659eea5e75acc6067f81457d1dc1f3df7ba599fe

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/feed-them-social/feeds/css/styles.css?ver=3.0.2 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Sun, 13 Nov 2022 23:20:59 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Tue, 27 Dec 2022 07:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   30684
Md5:    0439eaa52dec0343273a9deccb9378d9
Sha1:   b8c5a1feca09eee91785894be0c601a04dde5e25
Sha256: f9eff2ada9998393afcf94a5003e2b9e2cdc4ef585b88f06fd830c7dd90fe402

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 409 Conflict
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document, ASCII text, with no line terminators
Size:   83
Md5:    26267cd8990f15d3bbea71684a6d5995
Sha1:   ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
Sha256: 769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 11:22:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   39153
Md5:    32f58a61f7c5a7e10f8b2dcf8e9a8e34
Sha1:   865c25589283ab1debd45bdfa6c4d8c6ecf15ad3
Sha256: 481cb2216fbdb0797af8c61b69c0bda2c10d025f7b11f2cdfac382d35dc45d63

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /lh5.ggpht.com/-Fc5Own7NMYM/UMZBu2cvMaI/AAAAAAAACnI/WIC7RldTpSs/1_thumb5.png?w=1180 HTTP/1.1 
Host: i0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.0.77.2
HTTP/2 200 OK
content-type: image/webp
                                        
server: nginx
date: Sun, 27 Nov 2022 07:29:18 GMT
content-length: 49686
last-modified: Sun, 27 Nov 2022 07:29:18 GMT
expires: Tue, 26 Nov 2024 19:29:18 GMT
cache-control: public, max-age=63115200
link: <http://lh5.ggpht.com/-Fc5Own7NMYM/UMZBu2cvMaI/AAAAAAAACnI/WIC7RldTpSs/1_thumb5.png>; rel="canonical"
x-content-type-options: nosniff
etag: "6c4c5bff83bc490a"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   49686
Md5:    ad54c02f081d649cac5a94cdde5ec074
Sha1:   9078d50c96f68229bc61f2d874649136e3248fa1
Sha256: b055b7e57b56acc58c17da6f70736a7fe656e07a61ebd2d5628457c35400b5a5
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Wed, 09 Dec 2020 11:23:11 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 4618


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   4618
Md5:    acdb97105af28a7066790c6748ae2e1e
Sha1:   65794d2c5a9d04f747faf370bc8bacd330e69e5a
Sha256: dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
                                        
                                            GET /wp-content/plugins/feed-them-social/admin/js/admin.js?ver=3.0.2 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Sun, 13 Nov 2022 23:20:59 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 335


--- Additional Info ---
Magic:  ASCII text
Size:   335
Md5:    a9eda11ec52e7ed5b14e1a9cf4cf4af7
Sha1:   df4e81e9b5edddd11d94a23f680e99b09849e079
Sha256: 5da07065ed006d067d3da6d47a450996136554820bb38a1c57fceb0cb99585e7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/jetpack/css/jetpack.css?ver=11.5.1 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 23:23:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Tue, 27 Dec 2022 07:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Size:   23616
Md5:    7b13f42af549f07aa1f05656aa6fccd0
Sha1:   bb380ac1498c4a79020879693821448177b257d1
Sha256: 6e6851c82661c5a68956678e3fd1a0c11f4d298d8659898fe75d54bfbed4b8e6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/marjetka/style.css?ver=6.1.1 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Fri, 18 May 2018 00:36:42 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Tue, 27 Dec 2022 07:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (536)
Size:   31949
Md5:    1c3d307145f5e264a834082d02fb42cf
Sha1:   32a6a7f68ee46e93d1e8bdea365d9f8bea060df1
Sha256: 2431ca1cf97aa4470a997cb36dd3f4f9886b3fa3f90847abfb4a31c32c431436

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.1 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Wed, 09 Nov 2022 23:21:11 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 3861


--- Additional Info ---
Magic:  ASCII text, with very long lines (1577)
Size:   3861
Md5:    0de3f234bf5adf709c64d6a81701e107
Sha1:   ec76e30709d2ac94c86121529768c54b84943872
Sha256: c67075988b28f06061348cebb275f465c608e141f9a00b50c5e4824f57ed10f3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12967
Expires: Sun, 27 Nov 2022 11:05:25 GMT
Date: Sun, 27 Nov 2022 07:29:18 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12967
Expires: Sun, 27 Nov 2022 11:05:25 GMT
Date: Sun, 27 Nov 2022 07:29:18 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12967
Expires: Sun, 27 Nov 2022 11:05:25 GMT
Date: Sun, 27 Nov 2022 07:29:18 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: K2eKLQhrsCdd4ASsfEibRuZAYW4CpPTlO3fZs7xdoKrw1HBxfTGkEA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
age: 35224
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10199
Md5:    2cd887044e91d7ed0f1a8d7119ff7dd0
Sha1:   ae8aa4ce6ddaccba771fe65446926b60fc5628da
Sha256: bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
age: 35224
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4803
Md5:    cc0a257323f882caff067adb86d906e4
Sha1:   cedf2f21be7cd366bd46055b62b5513db3011dfc
Sha256: c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7380
x-amzn-requestid: 18589644-299c-4a39-9376-db1bd1472009
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iEegIAMFeuQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-23990acc0fdc599a75a534e3;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RqsZxAtbOkWBGbXJ3sZHxcS-ZvWOw7Yg2Qd4zj0QLhrp3wAXC8w6jA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "97a135335f5b1b042adeb385718f8808cb78528b"
age: 35224
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7380
Md5:    76c00eceed956377d7469ef58b0815cb
Sha1:   97a135335f5b1b042adeb385718f8808cb78528b
Sha256: 81fb72ab752b2eb39ab6ee015055304490b3b6c3259968703fd07c2a2eed1e61
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15290721-a62e-49b8-80c6-967680cff24f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6883
x-amzn-requestid: 9e3878c9-1817-427e-b121-969a8cbc7ad8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cL1ySF0tIAMFY4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638169a8-5143ffea77b70cf67ef60ad7;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 01:19:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: K4mksi8EQxTxRXDqN-0iWJc-LmiI7joDX5xGmPb1HetziDj4mRCC7Q==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 05:53:37 GMT
age: 5741
etag: "590c34be54c9889eec4ff7993e070fda836f711f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6883
Md5:    f7f16c0f8a8e710210ce77c0e4c1c2a2
Sha1:   590c34be54c9889eec4ff7993e070fda836f711f
Sha256: 4224287ba765da59c877ac4f1dec65accc5bec934b7598d9cbbee669ba4ab12e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a2bb7d-e57c-4751-a56f-0802ae9eaee6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9063
x-amzn-requestid: f00ac8bd-6466-4c92-9b99-0e71b4b2345c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8Jr4ENtoAMFzvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b2318-0e3a57932987e29521388dd7;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:04:56 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: ntfumip5IjOlyoe6ASlwJ1PjPLN1yZHkK_iiDDKfmMCyI__PrrGVMA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 82893cc36087a50f9a150a621d10e740.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 12:27:26 GMT
age: 68512
etag: "71f737c3cee7766494157cd6491ce247a785c09e"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9063
Md5:    e615cdc2e330b5cf76435abce9aa631a
Sha1:   71f737c3cee7766494157cd6491ce247a785c09e
Sha256: 853f68bf79a553b9fbf0e10391424faf0a3c071370d05d369563f7824d1bda84
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4565b77f-3e3b-4410-b35b-b4e9a478ce4f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8145
x-amzn-requestid: 8aaa302d-30b2-4fb0-aafe-e63f3d9bf680
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCSogEkHIAMFtxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d97cf-660d88387db5e9a145718d46;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 03:47:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5XZhJ2zj6Ca5gubdHU0DyM-doTvt2pU38IBKx_vLKtDdN2G8VUW-fg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 19:43:10 GMT
age: 42368
etag: "1021cf938f62cf18466e2ff4d55ce8c52c0f9cf6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8145
Md5:    cc51742200b699c93a6ede66c7997d2a
Sha1:   1021cf938f62cf18466e2ff4d55ce8c52c0f9cf6
Sha256: a7cc50883ac1a59fc14f0467551dec16cef3b033df599b23916427c5e42be1aa
                                        
                                            GET /wp-content/plugins/feed-them-social/admin/js/encrypt.js?ver=3.0.2 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Sun, 13 Nov 2022 23:20:59 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 1395


--- Additional Info ---
Magic:  ASCII text
Size:   1395
Md5:    b67273d68ee263f7d1d0f9036a3a811b
Sha1:   cbd7c64ccf1904ba1c1cb592eb97101f72b62741
Sha256: 2c853bce09ed3d0110bfc2dc597787ebe753d135e0a2356a8c21228d9dd79a73
                                        
                                            GET /wp-content/plugins/feed-them-social/feeds/js/powered-by.js?ver=3.0.2 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Sun, 13 Nov 2022 23:20:59 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 237


--- Additional Info ---
Magic:  ASCII text, with very long lines (316), with no line terminators
Size:   237
Md5:    4b0192d9d319f2ca807abd6b7bf669cf
Sha1:   dc8778380007befcbd5996b481e599ea256df7e7
Sha256: bf7b3b3b2c8558012c3927bd0b0ebf515a57a45f33a2d3606bcbde7e460b47ce
                                        
                                            GET /wp-content/plugins/feed-them-social/feeds/js/fts-global.js?ver=3.0.2 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Sun, 13 Nov 2022 23:20:59 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 6729


--- Additional Info ---
Magic:  ASCII text, with very long lines (542)
Size:   6729
Md5:    6aa7e6c1e80c9eb5ad12d29a83dbcba7
Sha1:   8f68fd65c296522c58db585fa4a1ecab394cc050
Sha256: 5a99afae56d58472725906a5079913d89a77993eaf8ed21595bdc24afb0a57ab
                                        
                                            GET /wp-content/plugins/essential-grid/public/assets/js/lightbox.js?ver=2.1.6.2.2 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Fri, 18 May 2018 01:56:23 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 13239


--- Additional Info ---
Magic:  ASCII text, with very long lines (629), with CRLF line terminators
Size:   13239
Md5:    b61c9e70d7799ef77139bb0cc48fa195
Sha1:   75a52330b6922122ec4b450564397ea86283d0c7
Sha256: 9c66dfd9568f3b94c8dc810301774a5b375cb0535766ac8b9a00812776cac504

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/essential-grid/public/assets/js/jquery.themepunch.tools.min.js?ver=2.1.6.2.2 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Fri, 18 May 2018 01:56:23 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (26857), with CRLF line terminators
Size:   46205
Md5:    125d1c723669e44dac19057819da9b78
Sha1:   f1917b173fd7d89a9e006a349d380856a118a5bf
Sha256: 1e17e5e2a6eaca1ddba08dfe5f0d784c594e57e7dd66d2c0a7c55bc76a421396

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.6.4 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Fri, 18 May 2018 01:57:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (64569), with CRLF line terminators
Size:   24088
Md5:    1f3e651d546bb7cba6c0aa4ed4ba1fd4
Sha1:   d40b2277a68c415d1930301c2e39177d1c29ac80
Sha256: cede29a499a72c1443cf641188785e48fd8df45eebae137f17ffa895b5791f05

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/marjetka/js/jquery.fitvids.js?ver=1 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Fri, 18 May 2018 00:36:42 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 1389


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   1389
Md5:    fb236dc3bbf33a46da12fbe948888240
Sha1:   f357ee2e4026c4037b0db9d33fc01729b57e4cc4
Sha256: 29ee44360bc14c7fbb348571d9d2b5ee3e49ba9b90052ea3ccded20c24004d90

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2018/05/The-Lacy-Post-logo.png HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.241.224.230
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Sat, 19 May 2018 16:34:33 GMT
accept-ranges: bytes
content-length: 46595
cache-control: max-age=31536000
expires: Mon, 27 Nov 2023 07:29:18 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
date: Sun, 27 Nov 2022 07:29:18 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 744 x 365, 8-bit/color RGBA, non-interlaced\012- data
Size:   46595
Md5:    8cfefe44e56c92e92ec90c65ce7f2bba
Sha1:   6335b2c044e54683b3ff840919bf5902a3d1b890
Sha256: 4fa68cf324eac0137fbe1552f2f42bfea8ab5be19f8ae072f91295680bb88afb
                                        
                                            GET /wp-content/themes/marjetka/js/jquery.bxslider.js?ver=1 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Fri, 18 May 2018 00:36:42 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 16362


--- Additional Info ---
Magic:  ASCII text
Size:   16362
Md5:    72346992298fd8fb11250de2d1db1289
Sha1:   d31a85e577411a05c73df5b3284e2682a0bf5892
Sha256: 1aa41fa3022ff3541da323c51832be127b473d2a7e63b8e68eed09b02ef1b6ae

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/marjetka/js/pmc_infinity.js?ver=1 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Fri, 18 May 2018 00:36:42 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 2161


--- Additional Info ---
Magic:  ASCII text, with very long lines (556), with CRLF line terminators
Size:   2161
Md5:    0fd030179cb60e712a18f9db137ab8b1
Sha1:   d2a97054d732da611b3f320a8d8ed46ba1f6d890
Sha256: 46f5e57fac1d9b538f356eaba31ef48e2b406565f33840b9337c8343a8fb6b96

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/pinterest-pin-it-button-on-image-hover-and-post/js/pinit.js HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Fri, 04 Nov 2022 23:22:15 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 383


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   383
Md5:    21dd33b9026b63886450ba469df99359
Sha1:   f5ae5af0cc259d1cab798129cd0c0ea3d511bb03
Sha256: 059d6107a1129636e805e17264dfe2e71f0b8f855abccb1fd4a162d1534177e5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 00:10:07 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 5321


--- Additional Info ---
Magic:  ASCII text, with very long lines (15660)
Size:   5321
Md5:    710f8b142ea44c0682dc2c30f318f065
Sha1:   49144e9b3a76d3d383b1d4359cf7a25e947f4233
Sha256: 708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/jetpack/_inc/build/photon/photon.min.js?ver=20191001 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:18 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 23:23:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 369


--- Additional Info ---
Magic:  ASCII text, with very long lines (685), with no line terminators
Size:   369
Md5:    accd80b294f42169b1e447e68bacfffe
Sha1:   40847092d82d78897a8219b270b22838fcc0bb95
Sha256: 35e8294d38f054cd6fbcdef72076443685888546d93b41a596e981a5e9a61552
                                        
                                            GET /s/firasans/v16/va9E4kDNxMZdWfMOD5Vvl4jL.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://thelacypost.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

search
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 22592
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 06:24:03 GMT
Expires: Sun, 26 Nov 2023 06:24:03 GMT
Cache-Control: public, max-age=31536000
Age: 90316
Last-Modified: Thu, 21 Apr 2022 16:51:36 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 22592, version 1.0\012- data
Size:   22592
Md5:    4528524c7142b4e2d5c0438763223328
Sha1:   d439d881fd8c4f41e77c2fb07678e53fce3e331a
Sha256: ea03bd5d723c75f6d0a9419d4f9651afd78ea2a4abfcee7f926cbde0681a2671
                                        
                                            GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://thelacypost.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

search
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 46524
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 21 Nov 2022 22:52:41 GMT
Expires: Tue, 21 Nov 2023 22:52:41 GMT
Cache-Control: public, max-age=31536000
Age: 462998
Last-Modified: Mon, 18 Jul 2022 19:58:01 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Size:   46524
Md5:    c1fd378f54921c75e4ae1821e7b8fff6
Sha1:   2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
Sha256: 405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
                                        
                                            GET /palingpertama.com/wp-content/uploads/2019/08/cara-membuat-alat-penangkap-sinyal-wifi-untuk-hp.jpg?w=1180 HTTP/1.1 
Host: i0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.0.77.2
HTTP/2 200 OK
content-type: image/webp
                                        
server: nginx
date: Sun, 27 Nov 2022 07:29:19 GMT
content-length: 18908
last-modified: Sun, 27 Nov 2022 07:29:19 GMT
expires: Tue, 26 Nov 2024 19:29:19 GMT
cache-control: public, max-age=63115200
link: <http://palingpertama.com/wp-content/uploads/2019/08/cara-membuat-alat-penangkap-sinyal-wifi-untuk-hp.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "ae69f90fb1834c90"
vary: Accept
x-nc: MISS arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 500x280, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   18908
Md5:    531ac1bcd49c7027c6f7210629c9fe02
Sha1:   f7307f3b4cc8cb4f348d580d6e65c3eaefcc7e02
Sha256: aa273263b8c7cfb41e797257419bf87ec647e53cc3e747de6bdf7f8a9d141a8a
                                        
                                            GET /s/rochester/v18/6ae-4KCqVa4Zy6Fif-UC2FHX.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://thelacypost.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

search
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 19676
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 19:42:28 GMT
Expires: Thu, 23 Nov 2023 19:42:28 GMT
Cache-Control: public, max-age=31536000
Age: 301611
Last-Modified: Tue, 19 Apr 2022 19:33:09 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 19676, version 1.0\012- data
Size:   19676
Md5:    d58677968a4b6a9cae0f63b4ee90ef4e
Sha1:   f43ffeca28e918582de0d7e0f901632850079fdc
Sha256: 92445f666197e1b36fcfc27229933dd7c3162932a24b1b836b830335faf04980
                                        
                                            GET /wp-content/uploads/2018/06/14915635_10207550812074772_8407975264276966710_n-2-e1529613077427.jpg HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.241.224.230
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Thu, 21 Jun 2018 20:31:17 GMT
accept-ranges: bytes
content-length: 52565
cache-control: max-age=31536000
expires: Mon, 27 Nov 2023 07:29:18 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
date: Sun, 27 Nov 2022 07:29:18 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, xresolution=86, yresolution=94, resolutionunit=2, software=Adobe Photoshop Lightroom 6.12 (Windows), datetime=2018:06:08 11:44:54], baseline, precision 8, 300x225, components 3\012- data
Size:   52565
Md5:    d1eb6b623f8d44b618d1588df3c2bf97
Sha1:   08066665e0165874690511c1e9141b7bfc886376
Sha256: 11ad0a52a8c4acfa5eabcb4ac7c684fd9ce42d7a538a144860824dab94e5942a
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 409 Conflict
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sun, 27 Nov 2022 07:29:19 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document, ASCII text, with no line terminators
Size:   83
Md5:    26267cd8990f15d3bbea71684a6d5995
Sha1:   ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
Sha256: 769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
                                        
                                            GET /s/raleway/v28/1Ptsg8zYS_SKggPNyCg4TYFq.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://thelacypost.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

search
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 48620
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 19:05:36 GMT
Expires: Wed, 22 Nov 2023 19:05:36 GMT
Cache-Control: public, max-age=31536000
Age: 390223
Last-Modified: Mon, 18 Jul 2022 19:45:53 GMT


--- Additional Info ---
Magic:  data
Size:   53642
Md5:    b6db7087f9b8781093a5c7d41c5a6953
Sha1:   2dce201904292ea5f436b5b98a0f1d8d01b00df1
Sha256: 96cda4408cfb4e96df4498f878163e4346ecdba03f4c5ded29241aed16d90d0c
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 409 Conflict
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sun, 27 Nov 2022 07:29:19 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document, ASCII text, with no line terminators
Size:   83
Md5:    26267cd8990f15d3bbea71684a6d5995
Sha1:   ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
Sha256: 769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/pinterest-pin-it-button-on-image-hover-and-post/js/main.js?ver=6.1.1 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:19 GMT
Server: Apache
Last-Modified: Fri, 04 Nov 2022 23:22:15 GMT
Accept-Ranges: bytes
Content-Length: 0
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:19 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/print-o-matic/js/printomat.js?ver=2.0.11 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:19 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 11:37:36 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:19 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 991


--- Additional Info ---
Magic:  ASCII text
Size:   991
Md5:    3a76ce75b28ceccea8961885c416ccce
Sha1:   63ceac7b3ac6d34e20a467c6b30bb6981086ee0b
Sha256: 6fae089b70bdef154f8614f005569ff147027a3a658dc5e9d70a3654e3af06fa

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/print-o-matic/js/print_elements.js?ver=1.1 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:19 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 11:37:36 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:19 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 636


--- Additional Info ---
Magic:  ASCII text
Size:   636
Md5:    003bd1b9f0f5d9c98c8dc8ee04e43159
Sha1:   646e7dbcec9c15bef0505d27329481ae5342b69d
Sha256: 747408eb2b43333edc588a113839f09e3e145aa28e97592b94267d6592f3476e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/marjetka/js/jquery.scrollTo.js?ver=1 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:19 GMT
Server: Apache
Last-Modified: Fri, 18 May 2018 00:36:42 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:19 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 1304


--- Additional Info ---
Magic:  ASCII text, with very long lines (2241), with CRLF line terminators
Size:   1304
Md5:    7feaface910a4ccd6a42dba31d6d1520
Sha1:   c5b73ea8245bc9e637395760e5310f5f75d833ef
Sha256: 708fe5ef17c7b52d423841d29d53d84847960b59aab6086ac3478307fee8ef9a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/marjetka/js/jquery.cycle.all.min.js?ver=1 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:19 GMT
Server: Apache
Last-Modified: Fri, 18 May 2018 00:36:42 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:19 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 10075


--- Additional Info ---
Magic:  ASCII text, with very long lines (19701), with CRLF, CR line terminators
Size:   10075
Md5:    01c3e5999715bbf017fcd3726ea009e9
Sha1:   db91a313524fc8972f1b6ac9ffaeab4f5d2ef365
Sha256: ad42bd90144699dedcf867b3bbb5eb212e80f7ce8f3e90786f43a5a9bfeda6fe

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/marjetka/js/gistfile_pmc.js?ver=1 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:19 GMT
Server: Apache
Last-Modified: Fri, 18 May 2018 00:36:42 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:19 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 1411


--- Additional Info ---
Magic:  ASCII text
Size:   1411
Md5:    54a82a0ee1bdb9bb3e34e0a5e5d8b5a7
Sha1:   545387fdd8b8a7b237609d120c093fa75fd22682
Sha256: 5844c75789f0aac9bd0cb8f96cbcda062cbc474744503a0be6547673a6954e3c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/marjetka/js/jquery.isotope.min.js?ver=1 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:19 GMT
Server: Apache
Last-Modified: Fri, 18 May 2018 00:36:42 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:19 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 14894


--- Additional Info ---
Magic:  ASCII text, with very long lines (32031)
Size:   14894
Md5:    28c7f1939c8baa336e5c1d8b8ffa6e18
Sha1:   6ae428111f416af1274fee52cebb223ac3e28c64
Sha256: 65451e256de30ab544716aad99ee27f05f2392b86b6df433fe95a5f1c211a0bc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:19 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 11:22:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:19 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 8344


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (8189)
Size:   8344
Md5:    838560e989767f2ef5951b9eeee20352
Sha1:   6bf8419cb4d68d9beced9e4b79b22b347ae16a46
Sha256: 72e6d275c5229613a59aef94523fc6a96330553976aee003d8544d5806fa0c3d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/marjetka/js/custom.js?ver=1 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:19 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Fri, 18 May 2018 00:36:42 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:19 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 2194


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   2194
Md5:    e7c096ed84c2d0713c30fe4167f7ed9a
Sha1:   17965f870e8f7d9e237e048ef4025415fcac749e
Sha256: 70a20d8d257c26f6d0c968a51c2117881d419e36bfc039bf5dd0377fc6f06146

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/marjetka/js/jquery.easing.1.3.js?ver=1 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:19 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Fri, 18 May 2018 00:36:42 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:19 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 2760


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   2760
Md5:    52660db188ae9fc7f855474931a5ad2d
Sha1:   c7e1fc2cd58262729ea04361fa511fb480949e2f
Sha256: 45279ed1d29b366db3e1020897106e7b7792ff9fbc656b817b65eb66df0a7b23

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:19 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 11:22:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:19 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 4757


--- Additional Info ---
Magic:  ASCII text, with very long lines (11760)
Size:   4757
Md5:    06401577a89308edc33538a5f7508ec2
Sha1:   20269cbcf05f719cb5188b6c33b8039e2bd75613
Sha256: 33a958aae57665e9558d1266012d646ed8c513c32370a821e58fb45b57167af6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/instagram-feed/js/sbi-scripts.min.js?ver=6.1 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:19 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 23:20:48 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:19 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 9776


--- Additional Info ---
Magic:  ASCII text, with very long lines (27578)
Size:   9776
Md5:    0ed40f6324a5b865c2420ef2ee54e122
Sha1:   1f437f4efc895cb01d41aed4bb6fa5cb1c26df15
Sha256: b30f9ec7831aa91b205849c4e45d7ccb20d3fb3a7f157b53bedbed9221f78585
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 409 Conflict
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sun, 27 Nov 2022 07:29:19 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document, ASCII text, with no line terminators
Size:   83
Md5:    26267cd8990f15d3bbea71684a6d5995
Sha1:   ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
Sha256: 769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/facebook-page-feed-graph-api/js/responsive.min.js?ver=1.8.3 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:19 GMT
Server: Apache
Last-Modified: Mon, 21 Mar 2022 11:29:36 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:19 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 440


--- Additional Info ---
Magic:  ASCII text, with very long lines (915)
Size:   440
Md5:    4fda5732bfa7f3933e084b7237bb4301
Sha1:   e7d180541e6ac4867b45f009979ebe4f5483922a
Sha256: 980d458e4ca86791bc1c6f2497d1c0bd58902655223cf780aaa6191cd104e198

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /g.gif?v=ext&blog=148117713&post=0&tz=0&srv=thelacypost.com&j=1%3A11.5.1&host=thelacypost.com&ref=&fcp=2726&rand=0.25972926086794745 HTTP/1.1 
Host: pixel.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         192.0.76.3
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Sun, 27 Nov 2022 07:29:19 GMT
Content-Length: 50
Connection: keep-alive
Cache-Control: no-cache
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  GIF image data, version 89a, 6 x 5\012- data
Size:   50
Md5:    e4d673a55c5656f19ef81563fb10884c
Sha1:   1f2d8ed221d39329251ad3a6ff1edb20b7219443
Sha256: f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
                                        
                                            GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelacypost.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         23.38.200.123
HTTP/2 200 OK
content-type: text/html
                                        
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Sun, 27 Nov 2022 07:29:19 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Size:   26421
Md5:    707317ccaabe08d32d1bd781754e6871
Sha1:   bb82dcd3e044c960e0861c2ce878f5504e628f78
Sha256: d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
                                        
                                            GET /images/core/emoji/14.0.0/svg/1f310.svg HTTP/1.1 
Host: s.w.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.0.77.48
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Sun, 27 Nov 2022 07:29:19 GMT
content-length: 1244
last-modified: Tue, 12 Apr 2022 03:50:59 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1244), with no line terminators
Size:   1244
Md5:    516bf0fae97628e22a3a3ec810a8c4ba
Sha1:   2e01a5172f2b3ca7cc92b68f7d9c08d016b94093
Sha256: 0a1f36fe78a27c58684fa5f70ffa225fe35f3205cf44507736b8379b3b70b505
                                        
                                            GET /wp-content/plugins/revslider/admin/assets/images/dummy.png HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 27 Nov 2022 07:29:19 GMT
Server: Apache
Last-Modified: Fri, 18 May 2018 01:57:51 GMT
Accept-Ranges: bytes
Content-Length: 73
Cache-Control: max-age=31536000
Expires: Mon, 27 Nov 2023 07:29:19 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2


--- Additional Info ---
Magic:  PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size:   73
Md5:    9d08eac154f5b02ef14e612fc25b9bf2
Sha1:   5a1e9121811015fbc274dae72072f874aee3d805
Sha256: 17af9e65317bbbfbbd0bcdc729f14faadf37cd08cf30cc0fe0b72443e78cbffb
                                        
                                            GET /images/core/emoji/14.0.0/svg/1f6a9.svg HTTP/1.1 
Host: s.w.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.0.77.48
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Sun, 27 Nov 2022 07:29:19 GMT
content-length: 278
last-modified: Tue, 12 Apr 2022 03:53:43 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Size:   278
Md5:    f5f43be48e7804a8265947d8dd64e430
Sha1:   16f482eb2be5319e5c9d126b33984c44f15d08ed
Sha256: 567538da8bf3dc5808b82098de8c325527074b36a579ba03549537fd627f3d65
                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://thelacypost.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

search
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 21 Nov 2022 21:39:58 GMT
Expires: Tue, 21 Nov 2023 21:39:58 GMT
Cache-Control: public, max-age=31536000
Age: 467361
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size:   44856
Md5:    565ce506190ad3af920b40baf1794cec
Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d
Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.6.4 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://thelacypost.com/
Cookie: __atuvc=1%7C48; __atuvs=638311cebe7af5ea000

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:19 GMT
Server: Apache
Last-Modified: Fri, 18 May 2018 01:57:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:19 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 8894


--- Additional Info ---
Magic:  ASCII text, with very long lines (25862), with CRLF line terminators
Size:   8894
Md5:    98d9cddc1ea0d3b9555bd1918fb5e065
Sha1:   43a60f276723ce75b69a45f323a4c6a182fb1177
Sha256: d159bcae23379bc0508f43678266819f6a1da328658f023613a76c14b009585a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /images/core/emoji/14.0.0/svg/1f480.svg HTTP/1.1 
Host: s.w.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.0.77.48
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Sun, 27 Nov 2022 07:29:19 GMT
last-modified: Tue, 12 Apr 2022 03:47:50 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (760), with no line terminators
Size:   4544
Md5:    581255eae6944f53b8b502de1f801628
Sha1:   0587577a35d4f58ad0c3263ecadc6a1b1ac5062d
Sha256: e882ac4058c5b2093d6f1794c9ef3343ca426e1da046a8f9603a901afeb5ebd3
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.actions.min.js?version=5.4.6.4 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://thelacypost.com/
Cookie: __atuvc=1%7C48; __atuvs=638311cebe7af5ea000

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:19 GMT
Server: Apache
Last-Modified: Fri, 18 May 2018 01:57:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:19 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 2847


--- Additional Info ---
Magic:  ASCII text, with very long lines (8089), with CRLF line terminators
Size:   2847
Md5:    17499ca32b6ed0f87145e352d16cd9f3
Sha1:   1c42f6c7e75e5dd74844a5fa5be2305d4fb9e67e
Sha256: e481019d7089a625c051062ecb80c5d2c216edb09c7e75309238b7501ebebee5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.carousel.min.js?version=5.4.6.4 HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://thelacypost.com/
Cookie: __atuvc=1%7C48; __atuvs=638311cebe7af5ea000

search
                                         162.241.224.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 27 Nov 2022 07:29:19 GMT
Server: Apache
Last-Modified: Fri, 18 May 2018 01:57:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:19 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
Content-Length: 2941


--- Additional Info ---
Magic:  ASCII text, with very long lines (7370), with CRLF line terminators
Size:   2941
Md5:    e48f5385fe885fef3d2d7f5dd2b89542
Sha1:   2e51acee524cb456b5155280eef7f2d93da76eb6
Sha256: dadc3aa43447e853fb431bbda503f99a7f1845dcfae66bff7f606fd19828620c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /images/core/emoji/14.0.0/svg/1f3f4.svg HTTP/1.1 
Host: s.w.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.0.77.48
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Sun, 27 Nov 2022 07:29:19 GMT
last-modified: Tue, 12 Apr 2022 03:47:26 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (997), with no line terminators
Size:   18857
Md5:    fa03f989bafb42f077f4f5806903345b
Sha1:   523eb7c52938ac1c03ca93b370a162a5989eeada
Sha256: a95e466589610d8dd5812a9e42b88a86bd92fe964d9ac32824ade1e7461d7713
                                        
                                            GET /api/vglnk.js HTTP/1.1 
Host: cdn.viglink.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         54.230.111.60
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Content-Length: 28567
Connection: keep-alive
Last-Modified: Wed, 02 Dec 2020 18:57:12 GMT
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 23 Nov 2022 00:22:48 GMT
Cache-Control: public, max-age=604800
ETag: "072eaf64a771815874455704fca9301b"
X-Cache: Hit from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 74V0kHdmCnFzWKXHd8SsUJCxGFH-rKnsprHByX63EIjjWUS85UcsiQ==
Age: 371192


--- Additional Info ---
Magic:  ASCII text, with very long lines (693)
Size:   28567
Md5:    072eaf64a771815874455704fca9301b
Sha1:   6c6226d00f14bb800cd4390b3cd42df941be43b1
Sha256: bb35c8c300bd1acfe7ed86eb988f74ff2e8d86a4fb0409c5d78a890f9fd14b8e
                                        
                                            GET /api/vglnk.js?key=64fbcc050904ecf173114da81e99a3c7 HTTP/1.1 
Host: cdn.viglink.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         54.230.111.60
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Content-Length: 28567
Connection: keep-alive
Last-Modified: Wed, 02 Dec 2020 18:57:12 GMT
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 23 Nov 2022 00:22:48 GMT
Cache-Control: public, max-age=604800
ETag: "072eaf64a771815874455704fca9301b"
X-Cache: Hit from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: S5lAaP3JRvoOXaoZy8HnBSsLsFZZkWOB9TYTDFHyZTCg9iScW7wL4Q==
Age: 371192


--- Additional Info ---
Magic:  ASCII text, with very long lines (693)
Size:   28567
Md5:    072eaf64a771815874455704fca9301b
Sha1:   6c6226d00f14bb800cd4390b3cd42df941be43b1
Sha256: bb35c8c300bd1acfe7ed86eb988f74ff2e8d86a4fb0409c5d78a890f9fd14b8e
                                        
                                            GET /addthismoatframe568911941483/moatframe.js HTTP/1.1 
Host: z.moatads.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         23.38.201.146
HTTP/2 200 OK
content-type: application/x-javascript
                                        
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=32020
date: Sun, 27 Nov 2022 07:29:19 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (523)
Size:   948
Md5:    f14b4e1f799b14f798a195f43cf58376
Sha1:   b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
Sha256: 92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1679
Cache-Control: max-age=157279
Date: Sun, 27 Nov 2022 07:29:19 GMT
Etag: "6382ce9f-1d7"
Expires: Tue, 29 Nov 2022 03:10:38 GMT
Last-Modified: Sun, 27 Nov 2022 02:42:39 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /thelacypost.com/wp-content/uploads/2018/05/cropped-IMG_3440.jpg?fit=192%2C192&ssl=1 HTTP/1.1 
Host: i0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.0.77.2
HTTP/2 200 OK
content-type: image/webp
                                        
server: nginx
date: Sun, 27 Nov 2022 07:29:19 GMT
content-length: 7544
last-modified: Sat, 26 Nov 2022 10:00:51 GMT
expires: Mon, 25 Nov 2024 22:00:51 GMT
cache-control: public, max-age=63115200
link: <https://thelacypost.com/wp-content/uploads/2018/05/cropped-IMG_3440.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "3ae35c8cd795e635"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 192x192, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   7544
Md5:    21e5d0cdb252a6cd32adcfe16e31d786
Sha1:   b01d4ee44bd8ec57b6010ec8b7595ce7a1adbe7b
Sha256: 51347b1a3c208f9e3c7d66708a1b01a7baa40b12775390a82d8bd6a7aedc5aa9
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 27 Nov 2022 06:41:08 GMT
expires: Sun, 27 Nov 2022 08:41:08 GMT
cache-control: public, max-age=7200
age: 2891
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20039
Md5:    47e6f374ca946fddd5b59871b325736c
Sha1:   baa9282efc8785e84d247c3bff518eaa45f101c4
Sha256: 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
                                        
                                            GET /thelacypost.com/wp-content/uploads/2018/05/cropped-IMG_3440.jpg?fit=32%2C32&ssl=1 HTTP/1.1 
Host: i0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.0.77.2
HTTP/2 200 OK
content-type: image/webp
                                        
server: nginx
date: Sun, 27 Nov 2022 07:29:19 GMT
content-length: 472
last-modified: Mon, 21 Nov 2022 12:19:30 GMT
expires: Thu, 21 Nov 2024 00:19:30 GMT
cache-control: public, max-age=63115200
link: <https://thelacypost.com/wp-content/uploads/2018/05/cropped-IMG_3440.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "c17292302e11ffe8"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

                                        
                                            GET /en_US/sdk.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://thelacypost.com
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 718bd81cc5727632cbe52614cf670d69
etag: "9e9b31ebd5403acf6ddc6cac1c9e2367"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 27 Nov 2022 07:42:35 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: NhTF+BO+1tG8XtCcm0LpWg==
x-fb-debug: FoCwsn+BqZ9tq6kARTxpiXXeC5mfZdg0dYxXUK0lf0QRN64tZ0dm3zlYa4ZnhwB7jeNrEDDAwRlIJVfI6T1r4Q==
priority: u=3,i
content-length: 1686
x-fb-trip-id: 1904183273
date: Sun, 27 Nov 2022 07:29:19 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1957)
Size:   1686
Md5:    3614c5f813bed6d1bc5ed09c9b42e95a
Sha1:   fa725a2d25842fad76e9ff6993a79fa425c1d45e
Sha256: 824ad89ee54212bf1df2fa00803215bc345605e018760cca9d46ca5d9d44776e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1679
Cache-Control: max-age=157279
Date: Sun, 27 Nov 2022 07:29:20 GMT
Etag: "6382ce9f-1d7"
Expires: Tue, 29 Nov 2022 03:10:38 GMT
Last-Modified: Sun, 27 Nov 2022 02:42:39 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /en_US/sdk.js?hash=ef2aaf0e2f65fbff4fb818b720dd1744 HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://thelacypost.com
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 54449d2600c28a098f67a27f2806076c
etag: "10996e842770f52ea077e88f98815e9b"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 27 Nov 2023 07:05:01 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: n8R1OaxrneQ2XK5cU7AoiQ==
x-fb-debug: z29cQLdNHhaj8SN3sZXtyW1nttssm1Kv0mwpMaQwtTm22EDzHSEzzazSL+M+dONfK4mBVatIxSnIH7SF9ktF6Q==
priority: u=3,i
content-length: 86898
x-fb-trip-id: 1904183273
date: Sun, 27 Nov 2022 07:29:20 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13192)
Size:   86898
Md5:    9fc47539ac6b9de4365cae5c53b02889
Sha1:   d2d451e2ac6d4db5e09e8911f33328975e56a276
Sha256: 8971eab2c8f4dc883ac29123c018cebd9e76d44a3c2d45a9c3bf7e7550248511
                                        
                                            GET /live/red_lojson/300lo.json?si=638311ce2fe8154e&bkl=0&bl=1&pdt=1372&sid=638311ce2fe8154e&pub=&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=thelacypost.com&fp=&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1669534159384&jsl=1&uvs=638311cebe7af5ea000&skipb=1&callback=addthis.cbs.jsonp__115788004234925860 HTTP/1.1 
Host: m.addthis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 90
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Sun, 27 Nov 2022 07:29:20 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   90
Md5:    85e33631b714e95e550117a2fc20cefe
Sha1:   1a22a1238ea2462699f58c7a31474989475e600f
Sha256: 22138cfe9b5c0a7ef439baba6e2996e95c1932b9046b71b64e86aa880d928a37
                                        
                                            GET /js/pinit_main.js HTTP/1.1 
Host: assets.pinterest.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/

search
                                         23.38.200.197
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
ETag: "bcecee4a3b1fbb241b3b40f76ca6ccb0"
Content-Encoding: gzip
Accept-Ranges: bytes
Content-Length: 25003
Akamai-X-True-TTL: 300
Cache-Control: max-age=300
Connection: keep-alive
Vary: Accept-Encoding, Origin
X-CDN: akamai
Access-Control-Max-Age: 86400
Access-Control-Expose-Headers: X-CDN
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (32016)
Size:   25003
Md5:    bcecee4a3b1fbb241b3b40f76ca6ccb0
Sha1:   e520a6296ad22a0e68a5f5be27693e20f6277b47
Sha256: 1bf698bcd9cf71d770c485e0eab8ad03b822f303b97c71f313b39633a2b440c7
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         54.230.245.39
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=89551
Date: Sun, 27 Nov 2022 07:29:20 GMT
Etag: "6381c647-1d7"
Expires: Mon, 28 Nov 2022 08:21:51 GMT
Last-Modified: Sat, 26 Nov 2022 07:54:47 GMT
Server: ECS (bsa/EB1C)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qeiecOitQtsnvogWyS8VPrADeanrsTQWFj2vMqQvIaKQ7vIBcX6v0Q==
Age: 1624

                                        
                                            POST /api/ping HTTP/1.1 
Host: api.viglink.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 123
Origin: http://thelacypost.com
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.241.86.223
HTTP/1.1 200 OK
Content-Type: text/javascript;charset=UTF-8
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://thelacypost.com
Cache-Control: no-cache, no-store
Date: Sun, 27 Nov 2022 07:29:20 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 242
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   242
Md5:    f8f24fe1c423a3bb91f35a1d2bedad14
Sha1:   5e81b20a910ef4a922798868532651b215963e49
Sha256: f2b0c72bc8a2c4a33ff1cd629b33af153e3e3d1ae820ec5fd3c4f90bc477cad4
                                        
                                            GET /wp-content/plugins/revslider/public/assets/css/openhand.cur HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelacypost.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.6.4
Cookie: __atuvc=1%7C48; __atuvs=638311cebe7af5ea000; _ga=GA1.2.27499228.1669534160; _gid=GA1.2.1538111565.1669534160; _gat_gtag_UA_121411721_1=1

search
                                         162.241.224.230
HTTP/1.1 200 OK
                                        
Date: Sun, 27 Nov 2022 07:29:17 GMT
Server: nginx/1.21.6
Content-Length: 326
Last-Modified: Fri, 18 May 2018 01:57:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Sun, 27 Nov 2022 13:29:20 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
X-Server-Cache: false


--- Additional Info ---
Magic:  MS Windows cursor resource - 1 icon, 32x32, 2 colors, hotspot @7x5\012- data
Size:   326
Md5:    b06c243f534d9c5461d16528156cd5a8
Sha1:   bb22807a7c23dae7d007673b407850438856bbfa
Sha256: 080627fa359156339e79f118fa66a6937f09ff679fe87e8afa473b95c8168d35

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/ HTTP/1.1 
Host: thelacypost.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.241.224.230
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Sun, 27 Nov 2022 07:29:20 GMT
server: Apache
content-length: 0
cache-control: max-age=300
expires: Sun, 27 Nov 2022 07:34:20 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
x-server-cache: true
x-proxy-cache: EXPIRED
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /api/sync.gif?key=64fbcc050904ecf173114da81e99a3c7 HTTP/1.1 
Host: api.viglink.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.241.86.223
HTTP/1.1 200 OK
Content-Type: image/gif;charset=UTF-8
                                        
Cache-Control: no-cache, no-store
Date: Sun, 27 Nov 2022 07:29:20 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 43
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    221d8352905f2c38b3cb2bd191d630b0
Sha1:   d804b495cb9b84b9007a25b5d85f9ae674004cde
Sha256: 89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
                                        
                                            GET /api/sync.js?key=64fbcc050904ecf173114da81e99a3c7 HTTP/1.1 
Host: api.viglink.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.241.86.223
HTTP/1.1 200 OK
Content-Type: image/gif;charset=UTF-8
                                        
Cache-Control: no-cache, no-store
Date: Sun, 27 Nov 2022 07:29:19 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 43
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    221d8352905f2c38b3cb2bd191d630b0
Sha1:   d804b495cb9b84b9007a25b5d85f9ae674004cde
Sha256: 89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
                                        
                                            POST /api/domains HTTP/1.1 
Host: api.viglink.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1267
Origin: http://thelacypost.com
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.241.86.223
HTTP/1.1 200 OK
Content-Type: text/javascript;charset=UTF-8
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://thelacypost.com
Cache-Control: no-cache, no-store
Date: Sun, 27 Nov 2022 07:29:19 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 41
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   41
Md5:    eda2478ab22908e73ceffe563b381f59
Sha1:   edff71907fd4645b583e27389071dc17d3c33d18
Sha256: 471c10913735ab9ff1da40d64220ad4b73ee501a2bbb1046fbb25b9d2ff4d526
                                        
                                            GET /rsrc.php/v3/yQ/l/0,cross/DECkNS4_9EQ.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         31.13.72.12
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
content-encoding: br
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 26 Nov 2023 18:28:57 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 87zB+4OLuXcrEfYGad/Sgg==
x-fb-debug: NXL4d97CGiVcyXVK+wuMOiJ0g0THfv4oZ6MiY+8V3GQ242SmsNH0Ar2JswXtT+JpCDTf7OTYaLBNJCB1bqpyoQ==
content-length: 5372
x-fb-trip-id: 1904183273
date: Sun, 27 Nov 2022 07:29:20 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4431)
Size:   5372
Md5:    f3bcc1fb838bb9772b11f60669dfd282
Sha1:   889a8267a1c097f8c6aefc0993ff69ff93e60d82
Sha256: 6e9a28865d31f886213a779e9472362e8c7a2542e466551b1ff4f5d817d5ae3f
                                        
                                            GET /rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         31.13.72.12
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
content-encoding: br
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 18 Nov 2023 18:18:38 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-fb-rlafr: 0
content-md5: 1joCzofAf/z6hp/vf8XyMw==
x-fb-debug: vKrIT7bDcuELxUQABfykTxFSmykRoUCEVhYV4TgDJd5oiZgsEJBZyhiv20JBlkWsTGEVyts+Yz2c1cL+WGyqLQ==
priority: u=2
content-length: 830
x-fb-trip-id: 1904183273
date: Sun, 27 Nov 2022 07:29:20 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (724)
Size:   830
Md5:    d63a02ce87c07ffcfa869fef7fc5f233
Sha1:   cae745fef84088abe3525bb77f75c55cd1d4cc2c
Sha256: bf9d4d71541a0a1f31b10be351add847ee935da6de355756314c8ca96512444d
                                        
                                            GET /rsrc.php/v3/y8/r/qc0dVyw0ZD0.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
content-encoding: br
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 17 Nov 2023 16:37:58 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FR6H049PQl5E2chRya7PBQ==
x-fb-debug: 578mKTEkjWrVEys7x3EPigYBAculQ9+xqvoP9TrG2OhBAdzzHHNJrM2CslcbWlUPbOvnx/9TeqgH2B9JTmDk2g==
content-length: 91088
x-fb-trip-id: 1904183273
date: Sun, 27 Nov 2022 07:29:20 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18622)
Size:   91088
Md5:    151e87d38f4f425e44d9c851c9aecf05
Sha1:   762111e5095f5354be95b98ad476f6e7161ce6b1
Sha256: f236f289f38c8081b496e0537ed3b2c66822e7a743f5d9d4959f955c64b0b2b0
                                        
                                            GET /rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
content-encoding: br
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 16 Nov 2023 22:24:40 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FvCDsjtWXbnS8g0a11kzwQ==
x-fb-debug: DPBbprD+WR1JkQp8+12RV5L7aPu0l9wEhB+zyXXmLLBejlnOoB6/sW7YTAqPr0a+bmM8AnZbmMS0hVd638ZZKw==
content-length: 1657
x-fb-trip-id: 1904183273
date: Sun, 27 Nov 2022 07:29:20 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1984)
Size:   1657
Md5:    16f083b23b565db9d2f20d1ad75933c1
Sha1:   6d74ad139c96b1e3fc9d541419788b5b4893ec9a
Sha256: 36b909cd9132a8996a1bbb221d05217c31506a6951bb408deeea6aa612dc4200
                                        
                                            GET /rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
content-encoding: br
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 04:45:50 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: B2XXbXRnFhVtU9Nu5vgINg==
x-fb-debug: 01HAuQilrQz1l0sulnsK+0BR8ONViIeLDTMAqQ3wAdlNmPG4zBCSQLPEDqUoARlbnYccIanwdU3Xn2LwA9VHBA==
content-length: 12369
x-fb-trip-id: 1904183273
date: Sun, 27 Nov 2022 07:29:20 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5542)
Size:   12369
Md5:    0765d76d746716156d53d36ee6f80836
Sha1:   17e1546f87cc6417615caa10dcbbcb699c59471a
Sha256: f1e6af63ae9ff0385126b72a492b0d34709514dd4c00074a1be28272c253d4f8
                                        
                                            GET /rsrc.php/v3/yR/r/bPhRbIw5d4Y.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
content-encoding: br
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 04:54:20 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 37KShYF/ynsGi6DsmKojkg==
x-fb-debug: 1OJX/K81m7XImTplLGw/7ANit8XayK5qe73Ffg7JAY5pCZTbd+j9zpsVmjKxIE8dfQCm3VZyVLLkqeUvbScSuA==
content-length: 16262
x-fb-trip-id: 1904183273
date: Sun, 27 Nov 2022 07:29:20 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  C source, ASCII text, with very long lines (8741)
Size:   16262
Md5:    dfb29285817fca7b068ba0ec98aa2392
Sha1:   78cd49585da28a245a096781c8e0fada59cf2b72
Sha256: 2c4a3a46d7dfaf97bbc16a2b93470d1b3382c0da3f44dca0c987a3384cee43d3
                                        
                                            GET /rsrc.php/v3iEpO4/yt/l/en_US/JGSM2yXjSKh.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
content-encoding: br
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 04:19:31 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: MFGQDQOmV927ya+orBHNvQ==
x-fb-debug: /0Pz55NIiUn/cvYU+yfhqdIUstVvGBjhB3o6xBCg6YLbu5z3E4bj/phElq/tOEXBC1yT2SO31t4LXKWfL41W7A==
content-length: 23455
x-fb-trip-id: 1904183273
date: Sun, 27 Nov 2022 07:29:20 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (42048)
Size:   23455
Md5:    3051900d03a657ddbbc9afa8ac11cdbd
Sha1:   557f26734897e137a6678f6d2a81672fc6a34ad2
Sha256: 038035ce01be57324c7e251c8834229b4910f27e3a042912fd7276947e5750df
                                        
                                            GET /?type=pidget&guid=QnTB3282JWyc&tv=2021110201&event=init&sub=www&button_count=1&follow_count=0&pin_count=0&button_hover=1&profile_count=0&board_count=0&section_count=0&xload=1&lang=en&nvl=en-US&via=https%3A%2F%2Fthelacypost.com%2F&viaSrc=canonical HTTP/1.1 
Host: log.pinterest.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.84.84
HTTP/2 200 OK
                                        
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-envoy-upstream-service-time: 3
server: envoy
x-pinterest-rid: 1342005357856635
accept-ranges: bytes
date: Sun, 27 Nov 2022 07:29:21 GMT
via: 1.1 varnish
x-served-by: cache-bma1680-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669534161.213411,VS0,VE42
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /30ede005b9.js HTTP/1.1 
Host: use.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelacypost.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         172.64.133.15
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Sun, 27 Nov 2022 07:29:18 GMT
x-amz-id-2: Lh+WsiYndG4nYElnie4H2CbvoD25mxrK43A7ijSzunEZ9M5yjR5RTdGJaes/gNG8d8j2Cww8nlM=
x-amz-request-id: SAPD4A941P5Y9F4R
last-modified: Wed, 30 Jun 2021 18:03:21 GMT
etag: W/"b9e2ef19f733fe65561248adb6d9b740"
cache-control: max-age=1800
cf-cache-status: HIT
age: 3299
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nD90Jq6JVkmlW%2Fa2m3yAIWKNBmMDoYWa9oShpCA9O%2BGirCNxyLB%2FDjmCkn2Nhx5adjPgGshY4%2ByugasDeJIAFVRFppcwA4K7TsoXBEKHLiqYbRYvyQqBEfEHc1nRundS72KzNKyX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770926e84b5f7735-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /v11.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df1fa2ea02ee6e9%26domain%3Dthelacypost.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fthelacypost.com%252Ffd8a7eb70ecba6%26relation%3Dparent.parent&container_width=380&height=70&hide_cover=false&hide_cta=false&href=https%3A%2F%2Ffacebook.com%2Fthelacypost%2F&locale=en_US&sdk=joey&show_facepile=true&small_header=true&tabs=timeline%2Cevents%2Cmessages&width=180 HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelacypost.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         31.13.72.36
HTTP/2 200 OK
content-type: text/html; charset="utf-8"
                                        
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;fon