r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12929
Expires: Thu, 22 Sep 2022 10:27:44 GMT
Date: Thu, 22 Sep 2022 06:52:15 GMT
Connection: keep-alive
sabbverification.net/wp-content/themes/woocommerce
209.182.211.200301 Moved Permanently 266 B URL HTTP/1.1 sabbverification.net/wp-content/themes/woocommerce
IP 209.182.211.200:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3fc32a4a039c10490a8f6ec9599daf67
d7213bdbf1cea8134ddd6199070f3768465b60e5
0baa27316ad115552604eaca30a6546d1b958fa27320d9e355a576a4612b500d
Analyzer Verdict Alert openphish Generic/Spear Phishing
fortinet Phishing
GET /wp-content/themes/woocommerce HTTP/1.1
Host: sabbverification.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.21.6
Date: Thu, 22 Sep 2022 06:52:15 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 266
Connection: keep-alive
Location: http://sabbverification.net/wp-content/themes/woocommerce/
X-Proxy-Cache: MISS
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Retry-After, Content-Type, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 22 Sep 2022 06:13:57 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: RHPxZlQ13JrvNpy0iXvJzdWsEqfk5EmXw0jnYcTs-UoFj4zhHRWyyw==
Age: 2298
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash afb65a07bf7214addf83d17a53acba32
a8e973204431320aa7b362a4e73944520c4b51b9
46e1a9e6c98245afb7fa84bc6d9ba6844105024e2d3f56e28748e6c321475d02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "46E1A9E6C98245AFB7FA84BC6D9BA6844105024E2D3F56E28748E6C321475D02"
Last-Modified: Wed, 21 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6750
Expires: Thu, 22 Sep 2022 08:44:45 GMT
Date: Thu, 22 Sep 2022 06:52:15 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: lPzNiWntXrPY/EI2W6+A+/R5lWZN5mtg9krGhn+BP6eRc65FQgyJOdBnwxsfGvhXX8VgiSrVw/0=
x-amz-request-id: C2WPGC73J6BVSTC5
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 22 Sep 2022 06:46:08 GMT
age: 367
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
sabbverification.net/wp-content/themes/woocommerce/
209.182.211.200200 OK 1.8 kB URL HTTP/1.1 sabbverification.net/wp-content/themes/woocommerce/
IP 209.182.211.200:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash dc1c152849f46de28b6cb0073b6944b5
a8f093775a3c5f8b9774a293bc174ecaa34c157d
824077feb212f1013286182707a106bc782487ff6e81a52e6cfeb6568416d104
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/woocommerce/ HTTP/1.1
Host: sabbverification.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 22 Sep 2022 06:52:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Proxy-Cache: HIT
Content-Encoding: gzip
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 06:52:15 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e26b7ba66d58890c79c1cb53b36e7f8c
2a8f2788a5263dd704104a1af53f34b5719ffa33
fec31864e4cd5c3397ccb00d887a78a11dbfac9f43a40367326e9b03be392fec
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4848
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 06:52:15 GMT
Last-Modified: Thu, 22 Sep 2022 05:31:28 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
sabbverification.net/wp-content/themes/woocommerce/css/test.css
209.182.211.200200 OK 644 B URL HTTP/1.1 sabbverification.net/wp-content/themes/woocommerce/css/test.css
IP 209.182.211.200:0
File type ASCII text, with CRLF line terminators
Hash 04e3de6729ce12d3368cf90f5c794388
fdd1cdf2544420c166066b2fdf48abb65b7b051e
b103c9a64cdfcea9aabe8b50015224972cbb314d0361006539d37903ae8c7c14
GET /wp-content/themes/woocommerce/css/test.css HTTP/1.1
Host: sabbverification.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sabbverification.net/wp-content/themes/woocommerce/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 22 Sep 2022 06:52:15 GMT
Content-Type: text/css
Last-Modified: Tue, 07 Dec 2021 11:04:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61af3fd2-5f3"
Expires: Thu, 29 Sep 2022 06:52:15 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
sabbverification.net/wp-content/themes/woocommerce/js/html5shiv.min.js
209.182.211.200200 OK 1.4 kB URL HTTP/1.1 sabbverification.net/wp-content/themes/woocommerce/js/html5shiv.min.js
IP 209.182.211.200:0
File type HTML document, ASCII text, with very long lines (2639)
Hash 71add61e63b645d7d73eb076cc7a1453
69db1fb0e843b7b852d603f5183efae8e8416e22
02fe7ddafc1cbb8e671a3060fbf2aad2ec69d63190144615ae431d5cd3b91eb3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/woocommerce/js/html5shiv.min.js HTTP/1.1
Host: sabbverification.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sabbverification.net/wp-content/themes/woocommerce/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 22 Sep 2022 06:52:15 GMT
Content-Type: application/javascript
Last-Modified: Tue, 22 Aug 2017 02:37:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"599b98f2-aaa"
Expires: Thu, 29 Sep 2022 06:52:15 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
sabbverification.net/wp-content/themes/woocommerce/css/bootstrap.css
209.182.211.200200 OK 30 kB URL HTTP/1.1 sabbverification.net/wp-content/themes/woocommerce/css/bootstrap.css
IP 209.182.211.200:0
File type Unicode text, UTF-8 text, with very long lines (560)
Hash 1ab45d0c69f40ab18195c8c89476a426
c77f5603ffce862a3c4b7b925bca3177c07b10c3
44ad4d1d76b0bf57dbbeb58e93baff39c58169ae2e76bb93b79502176fb0bece
GET /wp-content/themes/woocommerce/css/bootstrap.css HTTP/1.1
Host: sabbverification.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sabbverification.net/wp-content/themes/woocommerce/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 22 Sep 2022 06:52:15 GMT
Content-Type: text/css
Last-Modified: Mon, 06 Dec 2021 12:36:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61ae03c6-2f178"
Expires: Thu, 29 Sep 2022 06:52:15 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
sabbverification.net/wp-content/themes/woocommerce/js/respond.min.js
209.182.211.200200 OK 2.3 kB URL HTTP/1.1 sabbverification.net/wp-content/themes/woocommerce/js/respond.min.js
IP 209.182.211.200:0
File type HTML document, ASCII text, with very long lines (4453)
Hash 0fde7a1d664d26865d79b6d0d00e4b8a
48dacd1789a9407bdae864b346ac478fff854ca0
6cf38408a4670128c2399972003cb96cb95f42f4c715c2a50bc98fc2c655f984
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/woocommerce/js/respond.min.js HTTP/1.1
Host: sabbverification.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sabbverification.net/wp-content/themes/woocommerce/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 22 Sep 2022 06:52:15 GMT
Content-Type: application/javascript
Last-Modified: Fri, 27 Jan 2017 11:50:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"588b33fa-11f1"
Expires: Thu, 29 Sep 2022 06:52:15 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
sabbverification.net/wp-content/themes/woocommerce/image/menu.png
209.182.211.200200 OK 867 B URL HTTP/1.1 sabbverification.net/wp-content/themes/woocommerce/image/menu.png
IP 209.182.211.200:0
File type PNG image data, 62 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash afb8f8cda9c3f714207a543f7db36dd9
d688eeff36322b3834649ad8b396c6c55c375c10
73d0257f6024ef6f53834099a5fc651aae14e19f87a8a76b4204b8ced328006a
GET /wp-content/themes/woocommerce/image/menu.png HTTP/1.1
Host: sabbverification.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sabbverification.net/wp-content/themes/woocommerce/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 22 Sep 2022 06:52:15 GMT
Content-Type: image/png
Content-Length: 867
Last-Modified: Tue, 07 Dec 2021 10:24:42 GMT
Connection: keep-alive
ETag: "61af366a-363"
Expires: Thu, 29 Sep 2022 06:52:15 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Accept-Ranges: bytes
sabbverification.net/wp-content/themes/woocommerce/image/remeber.png
209.182.211.200200 OK 3.4 kB URL HTTP/1.1 sabbverification.net/wp-content/themes/woocommerce/image/remeber.png
IP 209.182.211.200:0
File type PNG image data, 179 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 4e011d6cd7afcd4c7ca4701c4786da8b
5af0e02ead2d6dcbc68c1dbf2f5aaf66c8c79923
04de83a4dba4fbfacbbb3da5036f0fae95793069c000ff3e9fb9abb3f0ca14f7
GET /wp-content/themes/woocommerce/image/remeber.png HTTP/1.1
Host: sabbverification.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sabbverification.net/wp-content/themes/woocommerce/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 22 Sep 2022 06:52:15 GMT
Content-Type: image/png
Content-Length: 3388
Last-Modified: Tue, 07 Dec 2021 09:17:02 GMT
Connection: keep-alive
ETag: "61af268e-d3c"
Expires: Thu, 29 Sep 2022 06:52:15 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Accept-Ranges: bytes
sabbverification.net/wp-content/themes/woocommerce/js/bootstrap.min.js
209.182.211.200200 OK 18 kB URL HTTP/1.1 sabbverification.net/wp-content/themes/woocommerce/js/bootstrap.min.js
IP 209.182.211.200:0
File type ASCII text, with very long lines (62126)
Hash ebb2bdd34c503b4d70bec5d87c0efb7b
d0ab88a9cfccf1e8b67a1b763ff45126759f4e44
fb3677f6c306ab191a6a786a7cf173bcd93771fc48149d58da78c0138faf4dde
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/woocommerce/js/bootstrap.min.js HTTP/1.1
Host: sabbverification.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sabbverification.net/wp-content/themes/woocommerce/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 22 Sep 2022 06:52:15 GMT
Content-Type: application/javascript
Last-Modified: Mon, 07 Dec 2020 21:50:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5fcea394-f3cb"
Expires: Thu, 29 Sep 2022 06:52:15 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
sabbverification.net/wp-content/themes/woocommerce/image/logo.gif
209.182.211.200200 OK 2.2 kB URL HTTP/1.1 sabbverification.net/wp-content/themes/woocommerce/image/logo.gif
IP 209.182.211.200:0
File type GIF image data, version 87a, 207 x 32\012- data
Hash 485df7823ed65bc55205c85ba7934616
d33e2b9e60f5e6e01973e37683e0072b82dcbfff
cab78213e8c945c10cae355403260048dad7936a706febbacf3782fb0b15f059
GET /wp-content/themes/woocommerce/image/logo.gif HTTP/1.1
Host: sabbverification.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sabbverification.net/wp-content/themes/woocommerce/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 22 Sep 2022 06:52:15 GMT
Content-Type: image/gif
Content-Length: 2225
Last-Modified: Tue, 07 Dec 2021 08:12:38 GMT
Connection: keep-alive
ETag: "61af1776-8b1"
Expires: Thu, 29 Sep 2022 06:52:15 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Accept-Ranges: bytes
sabbverification.net/wp-content/themes/woocommerce/js/jquery-3.5.1.min.js
209.182.211.200200 OK 34 kB URL HTTP/1.1 sabbverification.net/wp-content/themes/woocommerce/js/jquery-3.5.1.min.js
IP 209.182.211.200:0
File type ASCII text, with very long lines (65451)
Hash ff1037a1d2a4771524779f84aae868a9
87e4f66a83e3137e444f4bbb73981d1f05026560
7f3f9b7d773043eac67457f2911f809006a35b55fefd4758c074ec4b3dc483c0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/woocommerce/js/jquery-3.5.1.min.js HTTP/1.1
Host: sabbverification.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sabbverification.net/wp-content/themes/woocommerce/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 22 Sep 2022 06:52:15 GMT
Content-Type: application/javascript
Last-Modified: Tue, 24 Nov 2020 06:18:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5fbca5b0-15d84"
Expires: Thu, 29 Sep 2022 06:52:15 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 22 Sep 2022 06:03:22 GMT
Cache-Control: max-age=3600
Expires: Thu, 22 Sep 2022 06:05:10 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: J7Tow-RD5VzMquqUZXm_5AJZ2vj3wA5CUImEq5Sc_ruWQKSM_nVrRA==
Age: 2933
sabbverification.net/wp-content/themes/woocommerce/image/btn.gif
209.182.211.200200 OK 2.6 kB URL HTTP/1.1 sabbverification.net/wp-content/themes/woocommerce/image/btn.gif
IP 209.182.211.200:0
File type GIF image data, version 89a, 500 x 35\012- data
Hash 4ceae5b5a017b352b131ac11ed952562
335403a51ea5ec44a742de9d98a91cbc02262951
f2d04f19fe518e0201f68d3a0b0e6979c06848a95d84f3f07c32b000fc621367
GET /wp-content/themes/woocommerce/image/btn.gif HTTP/1.1
Host: sabbverification.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sabbverification.net/wp-content/themes/woocommerce/css/test.css
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 22 Sep 2022 06:52:15 GMT
Content-Type: image/gif
Content-Length: 2563
Last-Modified: Tue, 07 Dec 2021 09:13:28 GMT
Connection: keep-alive
ETag: "61af25b8-a03"
Expires: Thu, 29 Sep 2022 06:52:15 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Accept-Ranges: bytes
sabbverification.net/wp-content/themes/woocommerce/image/1.png
209.182.211.200200 OK 1.7 kB URL HTTP/1.1 sabbverification.net/wp-content/themes/woocommerce/image/1.png
IP 209.182.211.200:0
File type PNG image data, 301 x 29, 8-bit/color RGBA, non-interlaced\012- data
Hash 1f3bbe040f55f2f1a3bc9c11f776fafe
0af72ebc2218dd471fd28daa73f4ae081f2c9ceb
33a9c5b7300fddb6ced5853fc001470f3eb615e0c4d9b59058a17f947c74e63c
GET /wp-content/themes/woocommerce/image/1.png HTTP/1.1
Host: sabbverification.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sabbverification.net/wp-content/themes/woocommerce/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 22 Sep 2022 06:52:15 GMT
Content-Type: image/png
Content-Length: 1708
Last-Modified: Tue, 07 Dec 2021 09:38:42 GMT
Connection: keep-alive
ETag: "61af2ba2-6ac"
Expires: Thu, 29 Sep 2022 06:52:15 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Accept-Ranges: bytes
sabbverification.net/wp-content/themes/woocommerce/image/3.png
209.182.211.200200 OK 1.3 kB URL HTTP/1.1 sabbverification.net/wp-content/themes/woocommerce/image/3.png
IP 209.182.211.200:0
File type PNG image data, 244 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 94af55d1e23185c7b63a5c8f70e054f9
4444e7d1050e2d27098b7d94848f36e7d748f2e0
b52ab67633eda703096205d52b00899f6c0d6258272f07b239ed322a3d34df05
GET /wp-content/themes/woocommerce/image/3.png HTTP/1.1
Host: sabbverification.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sabbverification.net/wp-content/themes/woocommerce/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 22 Sep 2022 06:52:15 GMT
Content-Type: image/png
Content-Length: 1250
Last-Modified: Tue, 07 Dec 2021 09:38:56 GMT
Connection: keep-alive
ETag: "61af2bb0-4e2"
Expires: Thu, 29 Sep 2022 06:52:15 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Accept-Ranges: bytes
sabbverification.net/wp-content/themes/woocommerce/image/2.png
209.182.211.200200 OK 2.0 kB URL HTTP/1.1 sabbverification.net/wp-content/themes/woocommerce/image/2.png
IP 209.182.211.200:0
File type PNG image data, 353 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash d220a59bb361b280ad6d34e4591223af
521efd281e9ef68811eb13b8e00b2742609f43e6
7bcb111cc3a9155f581bd6f6e2c54c0f63e5ad05f806de19204747e58f4c17a9
GET /wp-content/themes/woocommerce/image/2.png HTTP/1.1
Host: sabbverification.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sabbverification.net/wp-content/themes/woocommerce/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 22 Sep 2022 06:52:15 GMT
Content-Type: image/png
Content-Length: 1988
Last-Modified: Tue, 07 Dec 2021 09:38:48 GMT
Connection: keep-alive
ETag: "61af2ba8-7c4"
Expires: Thu, 29 Sep 2022 06:52:15 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Accept-Ranges: bytes
sabbverification.net/wp-content/themes/woocommerce/image/4.png
209.182.211.200200 OK 1.7 kB URL HTTP/1.1 sabbverification.net/wp-content/themes/woocommerce/image/4.png
IP 209.182.211.200:0
File type PNG image data, 207 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash ae590b48df2d0a0f2452583a4bc3927f
912e4dfa1ed788b39e387a3155ee1f4dffb21986
febd6d6dc8e864bd600a611bd836ff58f9498a31a9f184d7c357041839770bd4
GET /wp-content/themes/woocommerce/image/4.png HTTP/1.1
Host: sabbverification.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sabbverification.net/wp-content/themes/woocommerce/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 22 Sep 2022 06:52:15 GMT
Content-Type: image/png
Content-Length: 1681
Last-Modified: Tue, 07 Dec 2021 09:39:08 GMT
Connection: keep-alive
ETag: "61af2bbc-691"
Expires: Thu, 29 Sep 2022 06:52:15 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ff6d50919e56aed75c47feb45ee2f2ec
98f558a4b2d4f3c271abc93d0b74ece4ad7a59ef
b1b6f0e78b5a1e2092cba6d71d0d5a918066c0486176cef0a19f51e2d5a9962e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3864
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 06:52:15 GMT
Last-Modified: Thu, 22 Sep 2022 05:47:51 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
sabbverification.net/wp-content/themes/woocommerce/image/zx.png
209.182.211.200200 OK 159 kB URL HTTP/1.1 sabbverification.net/wp-content/themes/woocommerce/image/zx.png
IP 209.182.211.200:0
File type PNG image data, 527 x 274, 8-bit/color RGBA, non-interlaced\012- data
Size 159 kB (158697 bytes)
Hash ab7a710465d149f24d413bea4e15ee55
5ab7ed19355dc47370ccf36a2374c4d850adf186
b941adb10fcdeeafca5a5e0496b5f54448fd898e03ee87319e00f25233c94da3
GET /wp-content/themes/woocommerce/image/zx.png HTTP/1.1
Host: sabbverification.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sabbverification.net/wp-content/themes/woocommerce/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 22 Sep 2022 06:52:15 GMT
Content-Type: image/png
Content-Length: 158697
Last-Modified: Tue, 07 Dec 2021 09:18:52 GMT
Connection: keep-alive
ETag: "61af26fc-26be9"
Expires: Thu, 29 Sep 2022 06:52:15 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Accept-Ranges: bytes
push.services.mozilla.com/
34.218.168.248101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.218.168.248:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +ApW0Agb90bftqaiCuqsIQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: NxKk5kJs2HFUPvePbxvRAJCXp6A=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1499730aa473823504678b55e5ddcfdf
fb4559449320eb3889bec7c730b2913de2b27970
4f7465ee49438a23aea033e811a0dd759a5bb49c509e708fb4fcb909bb4d856c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4F7465EE49438A23AEA033E811A0DD759A5BB49C509E708FB4FCB909BB4D856C"
Last-Modified: Tue, 20 Sep 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13050
Expires: Thu, 22 Sep 2022 10:29:46 GMT
Date: Thu, 22 Sep 2022 06:52:16 GMT
Connection: keep-alive
www.paintingandpatronage.com/wp-content/uploads/2011/02/SABB_logo-350x300.png
192.254.236.38200 OK 30 kB URL HTTP/2 www.paintingandpatronage.com/wp-content/uploads/2011/02/SABB_logo-350x300.png
IP 192.254.236.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 350 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 2be74e04f53ded101e72a43805115020
f3900e4b9347f556822a31b82bbccc0c08bf7499
0404073a4696ff35edd52d21c676b9a11390847e1c7b736b6a3fe6bf40df2a3c
GET /wp-content/uploads/2011/02/SABB_logo-350x300.png HTTP/1.1
Host: www.paintingandpatronage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sabbverification.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 12 Mar 2021 00:04:13 GMT
accept-ranges: bytes
content-length: 30094
vary: User-Agent
content-type: image/png
date: Thu, 22 Sep 2022 06:52:16 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11462
Expires: Thu, 22 Sep 2022 10:03:19 GMT
Date: Thu, 22 Sep 2022 06:52:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11462
Expires: Thu, 22 Sep 2022 10:03:19 GMT
Date: Thu, 22 Sep 2022 06:52:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11462
Expires: Thu, 22 Sep 2022 10:03:19 GMT
Date: Thu, 22 Sep 2022 06:52:17 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash af5773255351157d72c28a670a355c60
c803e5866edbe6c9baec14e93677f610bdf09bff
3229b4aa1c698647ad96d114174782549ad240f1b2c4ba8c268165a16afc84f0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10754
x-amzn-requestid: 2d03531d-6055-477f-9cb6-9ea9fa27eeb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vHJ4IAMF42Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-692620e80d5b2efe1d0e3a82;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: eYUP9NfAkmU4A-mZvysejq1228Qfb8vbfdXOaHQvr6mjXhnVoWdqJw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:09 GMT
etag: "c803e5866edbe6c9baec14e93677f610bdf09bff"
content-type: image/jpeg
age: 33488
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa5fccb8-005e-4a27-aee2-802639e26592.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa5fccb8-005e-4a27-aee2-802639e26592.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 095da54b533e1dbad223f820b7018ff5
d0859402a9e0c61d6193995130db553995c1be9d
aadbdba88629367686d44a660ff1bf3969643bed29546553d0d22837aba38543
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa5fccb8-005e-4a27-aee2-802639e26592.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7206
x-amzn-requestid: cb23bf7a-e726-44c8-8952-c3edc9411989
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1Gu-EyEoAMFtFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b84c6-2d9be9e7136d8223377efa43;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:40:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: S1pxBVRSjKELqBLhf1JDSrHfK49tRMGaTjeXHDCuildb4A0knsTEow==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:48:19 GMT
age: 32638
etag: "d0859402a9e0c61d6193995130db553995c1be9d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4ee5bbd-73ba-4da9-bcfc-b6aa9ce9eb86.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4ee5bbd-73ba-4da9-bcfc-b6aa9ce9eb86.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 069a8e60288777306e90e53763f87811
e5bb6dd623282f8db053604a852dda28e6f6de8f
48acd402e55b65f5bbde1bc7b13b604f07b58742712c3e50b07c5a57c6c109a0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4ee5bbd-73ba-4da9-bcfc-b6aa9ce9eb86.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10670
x-amzn-requestid: 5c5bf01a-3f05-4afe-9f13-61f7d4e0901c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1GPFHSDoAMFXww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b83f9-11818e616f4e330e714fc44f;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:36:57 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KxP2AbGmfJBn-tJOQ5EE658LMbwd3euUkKqnJhbtJiFIlJgT6PJ9xw==
via: 1.1 0800f067ff646622f3e8e507cb9b52e8.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:48:19 GMT
age: 32638
etag: "e5bb6dd623282f8db053604a852dda28e6f6de8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91c56f0b9810bfdd84e10a626b89e389
15d83e44d568938b6c9c87201e898cedb3edec0a
942de9764e1c408f7512759774aab0479db201e6fae15ccc39e653adae4cb86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8678
x-amzn-requestid: c671a9ab-c5d0-4743-b13e-cc9a47e3d2fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vEThIAMFSwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-17ed13811d3833ea00a34423;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2Oem-Kw-aCUa2rA9B9-7CDYcZ-G968tFPnsrL5wJ9Dia43T5u6RDtg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:09 GMT
etag: "15d83e44d568938b6c9c87201e898cedb3edec0a"
content-type: image/jpeg
age: 33488
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0f33332-2080-459e-ab54-a452b2278994.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0f33332-2080-459e-ab54-a452b2278994.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 888247c1153f8770b880395734749107
7c27c02029eb49e726a076679be2c793da696e45
515852e0d38cdaf86bce45fa5e0df453d08ca36cf6ecfa0c4b868c2143afe333
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0f33332-2080-459e-ab54-a452b2278994.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8748
x-amzn-requestid: 83c28267-4d10-476d-8b11-08b48b046985
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YzG6CGtroAMFyqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ab840-1167c5285b6837d311bfe2a9;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 07:07:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: xo0ilY8z0C3rDISFOM5EixEK7HAelSut4hgNNwGYAVQIfPP8C6pUCg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 07:08:33 GMT
age: 85424
etag: "7c27c02029eb49e726a076679be2c793da696e45"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2a425d5-4fbd-4af0-a85b-75f0878759cb.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2a425d5-4fbd-4af0-a85b-75f0878759cb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4d98acc059a69d51165fb5e0c7430ea3
09bd3300d710c3212483159f8398b84cde09da26
6e38bbb5c79c4f714973e10961d7bad9e7ae8711cf24d68b13a77206f474d2a6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2a425d5-4fbd-4af0-a85b-75f0878759cb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7507
x-amzn-requestid: 2a40c792-8b1b-4476-92de-1fce3df48fc1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcCmaHefoAMF4Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217e28-6b05350006b7f3fb73d1e37a;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:09:28 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: gZ8I075ljJuPvMcsyyRU3m09P9z7mL3WNBiex99pwXtoWDzt_jWP0A==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 22:25:13 GMT
age: 30424
etag: "09bd3300d710c3212483159f8398b84cde09da26"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
pro.fontawesome.com/releases/v5.10.0/css/all.css
104.18.23.52200 OK 0 B URL HTTP/2 pro.fontawesome.com/releases/v5.10.0/css/all.css
IP 104.18.23.52:0
GET /releases/v5.10.0/css/all.css HTTP/1.1
Host: pro.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://sabbverification.net
Connection: keep-alive
Referer: http://sabbverification.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 06:52:15 GMT
content-type: text/css
x-amz-id-2: Kg6+gryd93WFyzFkfFW16WDxARMqK5YJX2r5b8B9j6pcOumZHP2H+6I485XKZKxBlZJ3GUKlVic=
x-amz-request-id: 6DQT0H4CYYKCKK23
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 28 Jun 2021 16:54:32 GMT
etag: W/"aa1272633e7e552395d147a499bad186"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 8550
server: cloudflare
cf-ray: 74e91de45d66fab4-OSL
content-encoding: gzip
X-Firefox-Spdy: h2