r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12545
Expires: Sat, 26 Nov 2022 05:21:29 GMT
Date: Sat, 26 Nov 2022 01:52:24 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 10730f388c028d64e19b8a48d414768f
e43b104e57e5ea7ff8568835776858cf2ede6f00
f3c30c6d139288f1bfe13fce85c6ddc1514e1639fcf4d31a6012a3309ed1d50d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6335
Cache-Control: max-age=123865
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 01:52:24 GMT
Etag: "63809972-1d7"
Expires: Sun, 27 Nov 2022 12:16:49 GMT
Last-Modified: Fri, 25 Nov 2022 10:31:14 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8c63b226725ca6e92e3ef586ac19e603
d21ae42a1927501e5293ff3564f52b49f6b0decc
141ac47acc3800e5d35a82012fa4b044277abad3a95dc24415f66fb72c972ae6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14925
Expires: Sat, 26 Nov 2022 06:01:09 GMT
Date: Sat, 26 Nov 2022 01:52:24 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 01:19:10 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1994
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 530+uLjzMZsnRTtvm0R5xm9pAh500TQ2xrGd9qCEucfIstdQTciZUR06VHNypPTF1tr3UDoNLcs=
x-amz-request-id: SSQY585SWQT1P3MT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 01:44:03 GMT
age: 501
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 01:52:24 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
108.167.183.254200 OK 17 kB URL HTTP/1.1 safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6694), with CRLF, LF line terminators
Hash 65291f5a286e2501dc5c04d08776a96d
a29c3d83726d8de47248f79da7327316cceeba67
1436b00f1f603d22c68e9f74e884208388cb79334c24d575c665734ccad67aaa
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:24 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Accept-Ranges: none
Content-Length: 16933
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 01:52:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
safetymethod.net/wp-content/plugins/cleanco-plugin/assets/css/plugins.min.css?ver=5.8.6
108.167.183.254200 OK 2.3 kB URL HTTP/1.1 safetymethod.net/wp-content/plugins/cleanco-plugin/assets/css/plugins.min.css?ver=5.8.6
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9944)
Hash ecdd90326bf75e4535d9af3c834df4f0
dbe269406f783a9bc1b90d56c51de3288a514ecb
afb8d94dc68e1f4bb0f106dd9e52f04082ac769913081fdd1bcf2400d27bcced
GET /wp-content/plugins/cleanco-plugin/assets/css/plugins.min.css?ver=5.8.6 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:24 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:27 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2253
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
safetymethod.net/wp-content/plugins/cleanco-plugin/assets/css/social-icons.css?ver=5.8.6
108.167.183.254200 OK 662 B URL HTTP/1.1 safetymethod.net/wp-content/plugins/cleanco-plugin/assets/css/social-icons.css?ver=5.8.6
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5bb58626bcb1a0d8227081fe1c118ae8
5c72217be5bbec05cd5b75bee9fadf1b1aa4c5e9
1a2fca3705697fd1f0a8259b70df6d3051cd23266d28f3486c174a1a6c943714
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cleanco-plugin/assets/css/social-icons.css?ver=5.8.6 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 17 Apr 2020 10:02:27 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 662
Keep-Alive: timeout=5, max=75
Content-Type: text/css
safetymethod.net/wp-content/plugins/cleanco-plugin/assets/css/simple-line-icons.css?ver=5.8.6
108.167.183.254200 OK 2.6 kB URL HTTP/1.1 safetymethod.net/wp-content/plugins/cleanco-plugin/assets/css/simple-line-icons.css?ver=5.8.6
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2276)
Hash bdae26cb133698e8ab54dcdc91583c3b
77155948a7a55690ad5cb868de21227d989e673f
0609b1b3eeb335cdcaac0b800b9967fd2442efcf20723af1fb3e2b997bb24623
GET /wp-content/plugins/cleanco-plugin/assets/css/simple-line-icons.css?ver=5.8.6 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 17 Apr 2020 10:02:27 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2593
Keep-Alive: timeout=5, max=75
Content-Type: text/css
safetymethod.net/wp-includes/css/dist/block-library/style.min.css?ver=5.8.6
108.167.183.254200 OK 15 kB URL HTTP/1.1 safetymethod.net/wp-includes/css/dist/block-library/style.min.css?ver=5.8.6
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (33376)
Hash 6ebc7a4d773cb1f29a93f605933fba76
b113ca39afc5fd44cbc06dca58945bb5e9fb771e
7a12133f8cb48c1b5b4631ee9e9a0eebe36bbf2bbe1eb792b0f9fc630c18bd76
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.8.6 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:24 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 08 Sep 2021 11:36:51 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14560
Keep-Alive: timeout=5, max=75
Content-Type: text/css
safetymethod.net/wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=2.3.6
108.167.183.254200 OK 8.4 kB URL HTTP/1.1 safetymethod.net/wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=2.3.6
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (33230), with no line terminators
Hash 26448e34aeb9208575e55af095e5727f
e122c4fbaf66085275630341afa59e6b25e1afd9
d28eb9983475f0ff8e399dc861719842ec2fa5eb6f99af96daf5bcd5e55182ad
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=2.3.6 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 17 Apr 2020 10:02:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8425
Keep-Alive: timeout=5, max=75
Content-Type: text/css
safetymethod.net/wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=2.3.6
108.167.183.254200 OK 2.4 kB URL HTTP/1.1 safetymethod.net/wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=2.3.6
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash c4793d4c5f37223118865b6a8b93d546
ac6045f732cd75b8218df26ee33bd099aa2fd3bb
c4d3046b4ee1e66a3363225cb0ffb5d7d4400c19f15d39d8b2f41c12555c5dc4
GET /wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=2.3.6 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:31 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2441
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/ladda.min.css?ver=17.9
108.167.183.254200 OK 1.6 kB URL HTTP/1.1 safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/ladda.min.css?ver=17.9
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9022)
Hash 7a8ffc891e391d2599e2295109c1eed7
f0e834eb0eb3b93ea22fbe1e29c2a2e9de25a767
79119d0987be4165e5d2fd5e82c2031717ef7480330684b2f08fab5f0c2d23a9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/ladda.min.css?ver=17.9 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:24 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1587
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/intlTelInput.css?ver=17.9
108.167.183.254200 OK 3.2 kB URL HTTP/1.1 safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/intlTelInput.css?ver=17.9
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (20761), with no line terminators
Hash 695205ecb44a5906d054040d382055e2
e33ef605b5a11539eac3b101a64920c37bd86eb0
98864a8edd54e970784087c240e7921d4fb245621ba668671a08ff64f9ce3ea4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/intlTelInput.css?ver=17.9 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3173
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/picker.classic.css?ver=17.9
108.167.183.254200 OK 603 B URL HTTP/1.1 safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/picker.classic.css?ver=17.9
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1208)
Hash 130de38568e19bc15656a949fd51b5dd
e521556481eb8d1a329b3f5edbd93cfcf850ab72
98e1d518a87ea5eed9aa0b35a764a8287b2a998aec10a7ffeff509870e9077d1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/picker.classic.css?ver=17.9 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 603
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/picker.classic.date.css?ver=17.9
108.167.183.254200 OK 1.4 kB URL HTTP/1.1 safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/picker.classic.date.css?ver=17.9
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4370), with no line terminators
Hash ef3f6d40a7b2ee7df68e3770b2b7cddd
41f81370666ba6edac6fc5ec0c5a8d1c4f7ebb3a
bb3db802399d3ac722e92c50e03f6a738a188af6386dd1209c566750fe3c21a0
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/picker.classic.date.css?ver=17.9 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:24 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1366
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/css
safetymethod.net/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.7
108.167.183.254409 Conflict 83 B URL HTTP/1.1 safetymethod.net/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.7
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.7 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 409 Conflict
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 01:11:11 GMT
cache-control: public,max-age=3600
age: 2474
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%7CMontserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CMerriweather%3A300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i&ver=5.8.6
142.250.74.10200 OK 2.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%7CMontserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CMerriweather%3A300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i&ver=5.8.6
IP 142.250.74.10:0
Hash e6c86b2557f723bef37fc60311231d29
4132592ffff630e45c7450264c3535057d34077a
53f8feacbb6f816efedd5cb767bc78c829978992257bfd752f327a7792801de7
GET /css?family=Lato%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%7CMontserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CMerriweather%3A300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i&ver=5.8.6 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://safetymethod.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 26 Nov 2022 01:52:25 GMT
date: Sat, 26 Nov 2022 01:52:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
safetymethod.net/wp-content/plugins/slider-revolution/public/assets/css/rs6.css?ver=6.2.2
108.167.183.254200 OK 16 kB URL HTTP/1.1 safetymethod.net/wp-content/plugins/slider-revolution/public/assets/css/rs6.css?ver=6.2.2
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 3980c3137a9d0133b1fd0a3dd8580387
a7d7990f45b3522f6409691ea8f27ca7f14109e2
423edfee2513e72270467d1497e83b8de6f18ea0ff65c7b246182a1fd6a18c40
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/slider-revolution/public/assets/css/rs6.css?ver=6.2.2 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:40 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16208
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/bookly-main.css?ver=17.9
108.167.183.254200 OK 8.6 kB URL HTTP/1.1 safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/bookly-main.css?ver=17.9
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 01530cce72efb3ab6f8b18f3dba10121
8da54d9e9c38016f14c9c91288af217ca41cb41f
18e37fe32eb4a8e1d90869fece049db1fe1dfeb1a665f3976f105df42d454259
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/css/bookly-main.css?ver=17.9 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:24 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8588
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
safetymethod.net/wp-content/themes/cleanco/assets/vendors/selectize/css/selectize.css
108.167.183.254200 OK 2.6 kB URL HTTP/1.1 safetymethod.net/wp-content/themes/cleanco/assets/vendors/selectize/css/selectize.css
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 4420193a7e9ec9e3bdcdfd503e3614cd
cc6aa013036ab120dbf67664877835de61b2f827
a3596e2d729f7ea00d14b8973375b52d06d57ea6a3a568c8c31b4b0f6a9f3b98
GET /wp-content/themes/cleanco/assets/vendors/selectize/css/selectize.css HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2634
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
safetymethod.net/wp-content/plugins/kingcomposer/assets/frontend/css/kingcomposer.min.css?ver=2.9.5
108.167.183.254200 OK 19 kB URL HTTP/1.1 safetymethod.net/wp-content/plugins/kingcomposer/assets/frontend/css/kingcomposer.min.css?ver=2.9.5
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65412)
Hash 81b309f337fb64d7ce75f243c7c231f9
689813bbc44d093f2e75fb0c09c8928420030e7c
bd00a6ae7e2a468b05d9be3b2349ebd048e0a342912ca1035d5747f344c723df
GET /wp-content/plugins/kingcomposer/assets/frontend/css/kingcomposer.min.css?ver=2.9.5 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Sat, 11 Jul 2020 14:06:28 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash df06e70fc8a35facf1d8db463d18e231
fa8a2975566cc792898f870e48ae7518d3657326
4cef7e704f4d575ce6733f6f2d803d241b597be51ff3fb03f72e5c33a893b504
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6260
Cache-Control: max-age=118726
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 01:52:25 GMT
Etag: "638085ab-1d7"
Expires: Sun, 27 Nov 2022 10:51:11 GMT
Last-Modified: Fri, 25 Nov 2022 09:06:51 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
safetymethod.net/wp-content/themes/cleanco/assets/css/bootstrap.min.css
108.167.183.254200 OK 22 kB URL HTTP/1.1 safetymethod.net/wp-content/themes/cleanco/assets/css/bootstrap.min.css
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6c116ed6bc855709227f407e24bdcf89
0659edb23968b27365f33e6595e8bbaee9bdc8ab
a887701343e9f4f329ccca187b09349b4bff658728779a0b449665620fc93170
GET /wp-content/themes/cleanco/assets/css/bootstrap.min.css HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
safetymethod.net/wp-content/themes/cleanco/assets/css/theme.min.css?ver=3.1.0
108.167.183.254200 OK 39 kB URL HTTP/1.1 safetymethod.net/wp-content/themes/cleanco/assets/css/theme.min.css?ver=3.1.0
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash c4d30cfd8a63449dfe62020db32f3cd6
20759b94c2e893c0fe3a2e912e3f9aafecb2f173
f0ac8f44607f77bd3fe3e8e2d62dfb53f193c93ac987778a3915c494e30c16ca
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/cleanco/assets/css/theme.min.css?ver=3.1.0 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:00 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
safetymethod.net/wp-content/plugins/kingcomposer/assets/css/animate.css?ver=2.9.5
108.167.183.254200 OK 3.7 kB URL HTTP/1.1 safetymethod.net/wp-content/plugins/kingcomposer/assets/css/animate.css?ver=2.9.5
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (36512)
Hash e3f6e578fe7ca5362fccbfcce94ce996
b1deba8d80cae941d22051fda096e49d6274af3b
eb202c9ec2bc15da2ea3e218313eb25628179671965ed043c49fb711a63dfbfe
GET /wp-content/plugins/kingcomposer/assets/css/animate.css?ver=2.9.5 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Sat, 11 Jul 2020 14:06:28 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3656
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/css
safetymethod.net/wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.9.5
108.167.183.254200 OK 11 kB URL HTTP/1.1 safetymethod.net/wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.9.5
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (35475)
Hash 0ee2565319bdc28b2f5edac9826f40ae
79c05f008f3ff3f96fd97b94a1ea13de34b72afa
11457f8c739cb2b78f0a6cfd63e263390b53d8a566489dc1cb15198c0d8299a0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.9.5 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Sat, 11 Jul 2020 14:06:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11214
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/css
safetymethod.net/wp-content/themes/cleanco/style.css
108.167.183.254200 OK 462 B URL HTTP/1.1 safetymethod.net/wp-content/themes/cleanco/style.css
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 283c8d89df9bc5629e052968a1ced3da
3b5dba176245329a4ee531f7f39570b41c52a14f
db6c7bb4aa661de4d44bbda22d528b3a122106dcbc256478a4c60f66cde91873
GET /wp-content/themes/cleanco/style.css HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 17 Apr 2020 10:02:00 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 462
Keep-Alive: timeout=5, max=75
Content-Type: text/css
safetymethod.net/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
108.167.183.254200 OK 39 kB URL HTTP/1.1 safetymethod.net/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65447)
Hash feb933ceca72e1d76b471ed9db278b0d
6179e8f9c9876a6c4df5e3138e9f8ee2ac25bcd1
9a525fa92f98fd5ac754d60ea6f3676bcaa3870dd9bf057c8c668399922c9bd0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Wed, 08 Sep 2021 11:36:51 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
safetymethod.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
108.167.183.254200 OK 4.6 kB URL HTTP/1.1 safetymethod.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Wed, 08 Sep 2021 11:36:51 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4618
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
safetymethod.net/wp-content/plugins/slider-revolution/public/assets/js/rbtools.min.js?ver=6.0
108.167.183.254200 OK 57 kB URL HTTP/1.1 safetymethod.net/wp-content/plugins/slider-revolution/public/assets/js/rbtools.min.js?ver=6.0
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (54175), with CRLF line terminators
Hash be6ee73c11c8ba997f3e209cb4c03014
422cf8ee9c978a0310c6430356199a4a37a76d29
c85d88d44911dd351df34c36f23d5196f1975a85921191b98d0b18eeb0cc4ec3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/slider-revolution/public/assets/js/rbtools.min.js?ver=6.0 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:40 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/spin.min.js?ver=17.9
108.167.183.254200 OK 2.2 kB URL HTTP/1.1 safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/spin.min.js?ver=17.9
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4247)
Hash 994a9291cbba8a125c2de344eccbff91
898c31406134a3a07c69dae29b44e358d827d857
510d6828d366a575692c2b6151fa5fc7c51a2c94073cebd2cf590347cae4d893
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/spin.min.js?ver=17.9 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2212
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/ladda.min.js?ver=17.9
108.167.183.254200 OK 1.7 kB URL HTTP/1.1 safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/ladda.min.js?ver=17.9
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3607)
Hash 0670f85198107dd57129430f905e9775
53837f9c4f99ff06b6fe6056fbd51f15e86e9362
78ff9d2b555e76f5e28bb3f6953f5641d089c9c9d5d63b5364045e79811f7815
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/ladda.min.js?ver=17.9 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:24 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1705
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/hammer.min.js?ver=17.9
108.167.183.254200 OK 7.9 kB URL HTTP/1.1 safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/hammer.min.js?ver=17.9
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19579)
Hash 92049a2b3c1b994cb7d3c001bedd7159
29678903f8762326c126bee9423f1aa7e4003b32
226c717b5d7e987ae2f5cabe35397fbd00eada1c8b12a3db527767857b982a93
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/hammer.min.js?ver=17.9 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:24 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7949
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/jquery.hammer.min.js?ver=17.9
108.167.183.254200 OK 414 B URL HTTP/1.1 safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/jquery.hammer.min.js?ver=17.9
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5e969a4415897775483f015c0c15e0fc
3d51a7a1ff14eb2250d296424d5454391f8471cf
5ead375701abdfb5ddbf68acf5911474320cfe5cda2c30d5edd46d3658de1c24
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/jquery.hammer.min.js?ver=17.9 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 414
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/picker.js?ver=17.9
108.167.183.254200 OK 3.8 kB URL HTTP/1.1 safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/picker.js?ver=17.9
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8031)
Hash 9433193318594749d283f9f6f2ba277d
8c738d4abb892175c40bb830530566cd221b1108
771e21a8566f0fa2b009032f9d0fb1a67151a9eb97b7ca84a0b9097f23a55993
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/picker.js?ver=17.9 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:24 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3766
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: application/javascript
safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/picker.date.js?ver=17.9
108.167.183.254200 OK 5.0 kB URL HTTP/1.1 safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/picker.date.js?ver=17.9
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12692)
Hash cc88fe383d95877e74d5d1eed9833745
45f2742d4790a3590f8b326584b8b4f98a66fe1b
9eaf95d5a219bf3d40854dfd8403cd45eea9108dcac867e2a1033840784be7c6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/picker.date.js?ver=17.9 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4972
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript
safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/intlTelInput.min.js?ver=17.9
108.167.183.254200 OK 11 kB URL HTTP/1.1 safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/intlTelInput.min.js?ver=17.9
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (22399)
Hash e6a20115dd84d8cfa912833ffa93d550
ee40e2ff9bf131a7594bbc1a04b2fe912a5ade33
6489bc93c2645294631b91e78632a87f4f078b1c9b6ae58960cf150219df54ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/intlTelInput.min.js?ver=17.9 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:24 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 10582
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
push.services.mozilla.com/
35.161.136.21101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.136.21:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: SFaA8wtJMdssM4yhdQsbWg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 6mFONVfZ2a8E7Xd0wEPYd5Mgldg=
safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/bookly.min.js?ver=17.9
108.167.183.254200 OK 21 kB URL HTTP/1.1 safetymethod.net/wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/bookly.min.js?ver=17.9
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (58408)
Hash 64df0576b36277b5942a913d8efce542
eb7af5ffd6609cd85b9b22bf460295484849047e
2f66b52b36793cc7adae1187e8144c64874b7012bbf46fa22cb8146c99bbad70
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/bookly-responsive-appointment-booking-tool/frontend/resources/js/bookly.min.js?ver=17.9 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:24 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
safetymethod.net/wp-content/plugins/slider-revolution/public/assets/js/rs6.min.js?ver=6.2.2
108.167.183.254200 OK 98 kB URL HTTP/1.1 safetymethod.net/wp-content/plugins/slider-revolution/public/assets/js/rs6.min.js?ver=6.2.2
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (63491)
Hash f3de7f6a070ee163c3c05ca6960e31f3
20f25596dbe711c4c578b7fa23877441f3217dde
7e553e7c2b17e888e579993f2f126597bb32d241e96d62f35ea6cd35cdcfd999
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/slider-revolution/public/assets/js/rs6.min.js?ver=6.2.2 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:40 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
safetymethod.net/wp-includes/js/wp-emoji-release.min.js?ver=5.8.6
108.167.183.254200 OK 5.2 kB URL HTTP/1.1 safetymethod.net/wp-includes/js/wp-emoji-release.min.js?ver=5.8.6
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15224)
Hash 00af0ddf324f69fcb25f0d2e5d08910a
df0379ab0e1b2902957c8aba77f89d88e1239b59
f0a06ed3b8d3917b358def04d87668001cd1c6da31a5cb4bb452313feb64a2a7
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8.6 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Wed, 08 Sep 2021 11:36:50 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5243
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript
safetymethod.net/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.7
108.167.183.254409 Conflict 83 B URL HTTP/1.1 safetymethod.net/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.7
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.7 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 409 Conflict
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
safetymethod.net/wp-content/themes/cleanco/assets/vendors/selectize/js/selectize.min.js
108.167.183.254200 OK 20 kB URL HTTP/1.1 safetymethod.net/wp-content/themes/cleanco/assets/vendors/selectize/js/selectize.min.js
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (32007)
Hash 686775259e6b3d641ead778b9f8ec267
12e0340f259d5b7e065c42878208dda119b25e9a
6c694d37b1cccb5d8b62ec82da386851bb6fa5811e267aa2e320a2cd56e984f0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/cleanco/assets/vendors/selectize/js/selectize.min.js HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:00 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
safetymethod.net/wp-content/themes/cleanco/assets/vendors/selectize/js/dropdown.js
108.167.183.254200 OK 327 B URL HTTP/1.1 safetymethod.net/wp-content/themes/cleanco/assets/vendors/selectize/js/dropdown.js
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5cd9ca84ba0ef089a3305d7327132f82
2fbd5f3422b0f0511346de0261d108c011365594
2c3ffb08de63fff6e496a92b5911a6b921329506e134ab0a6055af6be1578de5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/cleanco/assets/vendors/selectize/js/dropdown.js HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:00 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 327
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: application/javascript
safetymethod.net/wp-content/themes/cleanco/assets/vendors/selectize/js/dropdownhover.js
108.167.183.254200 OK 416 B URL HTTP/1.1 safetymethod.net/wp-content/themes/cleanco/assets/vendors/selectize/js/dropdownhover.js
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 05d34f354bc2693f25f7bc8f0eca6434
524e9ce2b13f7e5baffa9ef890810a48f995db5e
285bb0e43565bb41483510894c6d19c406f29930162b59e06505d69e6bca00dd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/cleanco/assets/vendors/selectize/js/dropdownhover.js HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:00 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 416
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript
safetymethod.net/wp-content/themes/cleanco/assets/vendors/headroom/headroom.min.js
108.167.183.254200 OK 1.8 kB URL HTTP/1.1 safetymethod.net/wp-content/themes/cleanco/assets/vendors/headroom/headroom.min.js
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5172)
Hash 63e475fe05bacc175406750785bbf869
c237649b4db2de92c8928ac37c2462be69787380
97676be4d21a49877789bdb70a22430a4384394b82a7255c6719c405c59d3e5d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/cleanco/assets/vendors/headroom/headroom.min.js HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1803
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: application/javascript
safetymethod.net/wp-content/themes/cleanco/assets/vendors/rellax/rellax.min.js
108.167.183.254200 OK 1.4 kB URL HTTP/1.1 safetymethod.net/wp-content/themes/cleanco/assets/vendors/rellax/rellax.min.js
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3241)
Hash 531f28a76708679957b0f24fb751606e
42ef20658168ee343d644a0a2a2ceea8770fe294
8416eefaa341114426fbcc980176eab3bebceed5c535c583f7f866b85559c903
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/cleanco/assets/vendors/rellax/rellax.min.js HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:00 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1403
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: application/javascript
safetymethod.net/wp-content/themes/cleanco/assets/js/bootstrap.min.js
108.167.183.254200 OK 20 kB URL HTTP/1.1 safetymethod.net/wp-content/themes/cleanco/assets/js/bootstrap.min.js
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (48664)
Hash 41c54b1bd6691f6bb34afdc5e4272b52
b4333fd2b2c3ba7b2c38af182b3daf4231d69df8
43d6b75b97bf0636c69ea8c48e16dafefe3c602428b22fb4f11384eae7234b2d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/cleanco/assets/js/bootstrap.min.js HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:25 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:00 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 01:52:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 01:52:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://safetymethod.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 21:11:39 GMT
expires: Sun, 19 Nov 2023 21:11:39 GMT
cache-control: public, max-age=31536000
age: 535247
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 01:52:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 01:52:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2
216.58.207.195200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 24408, version 1.0\012- data
Hash efee2d080d7bebdd2e0aeb2e030813a0
f8d38f9f9584e48c2e469877ebd94232265585f1
bca1d88ada544d9c80872d4da27133fab6d347361fa26e932b47ec9559088fd0
GET /s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://safetymethod.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24408
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 20:02:02 GMT
expires: Tue, 21 Nov 2023 20:02:02 GMT
cache-control: public, max-age=31536000
age: 366624
last-modified: Tue, 26 Apr 2022 15:50:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.195200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://safetymethod.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 17:10:21 GMT
expires: Wed, 22 Nov 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 290525
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.195200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://safetymethod.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 16:40:18 GMT
expires: Fri, 24 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 119528
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
safetymethod.net/wp-content/themes/cleanco/assets/js/theme.min.js?ver=3.1.0
108.167.183.254200 OK 913 B URL HTTP/1.1 safetymethod.net/wp-content/themes/cleanco/assets/js/theme.min.js?ver=3.1.0
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2291)
Hash c723cd4a28f6fedcfdde14724623487f
edf43c2422a4c81e504d1d7249e6f8977a885dde
75f402a608990c3171292727d81b83a00cc82cac0a297b04a8fb152609ebc518
GET /wp-content/themes/cleanco/assets/js/theme.min.js?ver=3.1.0 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:26 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:00 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 913
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2
216.58.207.195200 OK 22 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 22504, version 1.0\012- data
Hash 1c6c65523675abc6fcd78e804325bd77
898d9808304dc157f5dcb18ca169ec6e2b96b3d7
08664859baab5ed98f0bf818ed77e38464ff1826dc6406d5ecbd651409afbd92
GET /s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://safetymethod.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 17:15:33 GMT
expires: Wed, 22 Nov 2023 17:15:33 GMT
cache-control: public, max-age=31536000
age: 290213
last-modified: Tue, 26 Apr 2022 16:04:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 01:52:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
safetymethod.net/wp-includes/js/wp-embed.min.js?ver=5.8.6
108.167.183.254200 OK 777 B URL HTTP/1.1 safetymethod.net/wp-includes/js/wp-embed.min.js?ver=5.8.6
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1391)
Hash 06ece4d01ee88297957c9f4cdcaa4df5
2b3321654a8ead1e1493eac9b5f1fdfb65e2037f
0b17eb6ab02e69f50ac52ca157375bd69853ae4f4796eb48a35eb4a12fc7af8b
GET /wp-includes/js/wp-embed.min.js?ver=5.8.6 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:26 GMT
Server: Apache
Last-Modified: Wed, 08 Sep 2021 11:36:50 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 777
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: application/javascript
safetymethod.net/wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.min.js?ver=2.9.5
108.167.183.254200 OK 8.2 kB URL HTTP/1.1 safetymethod.net/wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.min.js?ver=2.9.5
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (17655)
Hash 11d4c4aee8377d4057c00cc8097f0db5
2482d8f9b4ef0c9a9fd1f8cc657f80339447b49f
bfaeec0efe3b3b01f4a216159d6ce191c8068c628046fa89002be14087f04600
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.min.js?ver=2.9.5 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:26 GMT
Server: Apache
Last-Modified: Sat, 11 Jul 2020 14:06:28 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8231
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: application/javascript
safetymethod.net/wp-content/themes/cleanco/assets/vendors/rellax/banner.js
108.167.183.254200 OK 219 B URL HTTP/1.1 safetymethod.net/wp-content/themes/cleanco/assets/vendors/rellax/banner.js
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 15fa195b874601bd06a82be351155022
c4f16dcada1a2b03fb26fb7533e760225b14049a
21379abc0a5f13eadc244e0ae5fe57911e9abd50706e54dc10fc41c1976eda76
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/cleanco/assets/vendors/rellax/banner.js HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:26 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 17 Apr 2020 10:02:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 219
Keep-Alive: timeout=5, max=75
Content-Type: application/javascript
safetymethod.net/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.7
108.167.183.254409 Conflict 83 B URL HTTP/1.1 safetymethod.net/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.7
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.7 HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 409 Conflict
Date: Sat, 26 Nov 2022 01:52:26 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
safetymethod.net/wp-content/themes/cleanco/assets/fonts/uf-font-v102.ttf?zfb0uc
108.167.183.254200 OK 20 kB URL HTTP/1.1 safetymethod.net/wp-content/themes/cleanco/assets/fonts/uf-font-v102.ttf?zfb0uc
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, uf-font-v102\012- data
Hash f6739488fd39c681522ee46c819229a6
4a2f4c808d24663d282032ebe44d7ecb335453d5
98848ac1f0635f2376a2d763b4695c7e4a22786d5b4a5524bff5888b2a4be4a0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/cleanco/assets/fonts/uf-font-v102.ttf?zfb0uc HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-content/themes/cleanco/assets/css/theme.min.css?ver=3.1.0
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:26 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 10:02:00 GMT
Accept-Ranges: bytes
Content-Length: 20152
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: font/ttf
safetymethod.net/wp-content/uploads/2020/05/oman.png
108.167.183.254200 OK 363 B URL HTTP/1.1 safetymethod.net/wp-content/uploads/2020/05/oman.png
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 57 x 32, 8-bit colormap, non-interlaced\012- data
Hash e4c7a02f27d9cf80a60294d6af4b0221
d65e899b832ec5dd10374c338df1385c70d10500
e3a7eb0acccb97657d4f9b82e382c693b89db08fe1a9dcfcc78758aee19f282f
GET /wp-content/uploads/2020/05/oman.png HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:26 GMT
Server: Apache
Last-Modified: Thu, 14 May 2020 08:47:11 GMT
Accept-Ranges: bytes
Content-Length: 363
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/png
safetymethod.net/wp-content/uploads/2020/05/usa.png
108.167.183.254200 OK 1.5 kB URL HTTP/1.1 safetymethod.net/wp-content/uploads/2020/05/usa.png
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 57 x 32, 8-bit/color RGB, non-interlaced\012- data
Hash 4d8f6d04b4796ca93dae7d835597649e
0bf142e62de623f0b34d8ec37ef7f9545b0571c7
6733648e810028f57053d538652f9ef3c8bf701238476a9f1f4635e456cdae3a
GET /wp-content/uploads/2020/05/usa.png HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:26 GMT
Server: Apache
Last-Modified: Thu, 14 May 2020 08:47:13 GMT
Accept-Ranges: bytes
Content-Length: 1535
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/png
safetymethod.net/wp-content/plugins/kingcomposer/assets/css/fonts/Simple-Line-Icons.ttf
108.167.183.254200 OK 53 kB URL HTTP/1.1 safetymethod.net/wp-content/plugins/kingcomposer/assets/css/fonts/Simple-Line-Icons.ttf
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type TrueType Font data, 11 tables, 1st "OS/2", 18 names, Macintosh, type 1 string, simple-line-icons\012- data
Hash b2892aa62b0fb2c21c8d7700e2ef6e56
acb3e2b0f5ba11b8e4e43b7f73223ec048054861
937e59152189ecedb8688efcd8b927fc40d43b5c5225a05a25f4cf537ad8ca7c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/kingcomposer/assets/css/fonts/Simple-Line-Icons.ttf HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.9.5
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:26 GMT
Server: Apache
Last-Modified: Sat, 11 Jul 2020 14:06:28 GMT
Accept-Ranges: bytes
Content-Length: 53368
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: font/ttf
safetymethod.net/wp-content/uploads/2020/05/cropped-safety-logo.png
108.167.183.254200 OK 74 kB URL HTTP/1.1 safetymethod.net/wp-content/uploads/2020/05/cropped-safety-logo.png
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 337 x 328, 8-bit/color RGBA, non-interlaced\012- data
Hash 6fba06c84419b2adc1452d52a48491e9
8ce17652c8aa4c07748be774f7d26ef13a7e6ee2
e358cedb0c2cf9659c2e77eab4c45a8e8b8093d1309d6be87b93ca309260095c
GET /wp-content/uploads/2020/05/cropped-safety-logo.png HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:26 GMT
Server: Apache
Last-Modified: Fri, 08 May 2020 09:59:00 GMT
Accept-Ranges: bytes
Content-Length: 74542
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png
safetymethod.net/wp-content/uploads/2020/04/cropped-safetymethod-1-32x32.png
108.167.183.254200 OK 1.9 kB URL HTTP/1.1 safetymethod.net/wp-content/uploads/2020/04/cropped-safetymethod-1-32x32.png
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 452e22f8e34e5365b892025bf48f693d
b8e8522d9c72a01510238d5dedcf5df769f0ce2b
60006ea8b2d5890aadc985ff0a783a37cf192466448ad0a338cc04cce4b027ee
GET /wp-content/uploads/2020/04/cropped-safetymethod-1-32x32.png HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:26 GMT
Server: Apache
Last-Modified: Fri, 24 Apr 2020 04:26:37 GMT
Accept-Ranges: bytes
Content-Length: 1935
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/png
safetymethod.net/wp-content/uploads/2020/04/cropped-safetymethod-1-192x192.png
108.167.183.254200 OK 29 kB URL HTTP/1.1 safetymethod.net/wp-content/uploads/2020/04/cropped-safetymethod-1-192x192.png
IP 108.167.183.254:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 3b57267662942195569392a3d2f29d5a
45197856434360a633f8217ac93a35307fc3674c
22e3123abd8862b0f7bb1581afa43b44329f1b1c892358d414029d932738d494
GET /wp-content/uploads/2020/04/cropped-safetymethod-1-192x192.png HTTP/1.1
Host: safetymethod.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://safetymethod.net/wp-includes/js/crop/bofa-18237847958745769865739/yahoologin/login.php
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 01:52:26 GMT
Server: Apache
Last-Modified: Fri, 24 Apr 2020 04:26:37 GMT
Accept-Ranges: bytes
Content-Length: 29028
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/png
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2821
Expires: Sat, 26 Nov 2022 02:39:28 GMT
Date: Sat, 26 Nov 2022 01:52:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2821
Expires: Sat, 26 Nov 2022 02:39:28 GMT
Date: Sat, 26 Nov 2022 01:52:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2821
Expires: Sat, 26 Nov 2022 02:39:28 GMT
Date: Sat, 26 Nov 2022 01:52:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2821
Expires: Sat, 26 Nov 2022 02:39:28 GMT
Date: Sat, 26 Nov 2022 01:52:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2821
Expires: Sat, 26 Nov 2022 02:39:28 GMT
Date: Sat, 26 Nov 2022 01:52:27 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8dc4b8a7e9f7f4f84f0da568b43392b
3d32bff85cb7ec118c4496d0c3802829fdc9af3b
4b0ffde427085c796a7a5823604b29a4af43dbb93e99ec41f34feb37f52ac7d9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9049
x-amzn-requestid: 6cbd9639-c29d-4ff4-8091-3168f64f4c78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVGHzKoAMFSuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135ba-100ea4235fdf1df8491041c8;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: utbUF-6Z7rMqPNdRKHJyI-IZoyTy6HpkNBY-60xcZ-6NDXBz1XN6-Q==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:48:40 GMT
age: 14627
etag: "3d32bff85cb7ec118c4496d0c3802829fdc9af3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 04:38:44 GMT
age: 76423
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
34.120.237.76200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a783df85f30f9c555f9df6b99f61744d
61f9bed607e81606be78285596acdc5e0e4f4994
19db42201d0fa059f680d890ede6683c04e893e6308a2256d0203f826a7f34de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: SRN-oOfa8Z0mQZFYkWAv32XFiXChfGjfwZkfWz-IzHubwrKgzwoTxQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 06:35:07 GMT
age: 69440
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88ca6be9-2485-4243-a3fe-1e61449736dd.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88ca6be9-2485-4243-a3fe-1e61449736dd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 801dd70f0c591086062e2a9054f78efc
6a2f4d4bfec41d16fa84b0a9b0b13f7dcff2be3d
ba28f27ea906aaa6db1fbdca53ecbd4366b99d2696fb888e47b731e21c0f82da
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88ca6be9-2485-4243-a3fe-1e61449736dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6431
x-amzn-requestid: 0daa58b7-3fd8-463f-85f5-6f84fdb17661
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVOBEpEIAMF87A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381358c-3f8b9c18598ba2532518668d;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:37:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: FyVMZKsBMppWLcVlLTcWdr_HSifdSnU2IuE3dLHqFD9EgSEZSue5AA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:52:00 GMT
age: 14427
etag: "6a2f4d4bfec41d16fa84b0a9b0b13f7dcff2be3d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30fddcf4-c88b-41c3-90f7-a4530639de73.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30fddcf4-c88b-41c3-90f7-a4530639de73.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e0c5064718601e80b7bfc931120ff70
741e5e48c4fb170efee9b611be5638d999a09bd2
d0b1537f43277e7f59152e6272d4f3888ab4618fa7fe0e4b24e2f851dbf0f4cd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30fddcf4-c88b-41c3-90f7-a4530639de73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7025
x-amzn-requestid: 2c9cd3bc-80d4-4578-a0aa-4f1ff7f19d30
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVNYGwaIAMFU8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813588-0c66a293144f894f001ae0cf;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:37:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: r2feThcq6D5u1ptiBnSuA5ZC00_W8moa4pb6xSxxeIEMbgoPtQdUyQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:51:02 GMT
age: 14485
etag: "741e5e48c4fb170efee9b611be5638d999a09bd2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b25450-4da4-45fe-97c4-620a26a2ac8f.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b25450-4da4-45fe-97c4-620a26a2ac8f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f470fab0957e148a9c58dfeedc72463
2f88534696701cfdaf7e2aa78f6d4b8766a2b77f
c2c5617f8fbf3860578a9bcf821dea13e3225ccd02774f29f4bf022e4abd9ff9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b25450-4da4-45fe-97c4-620a26a2ac8f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11186
x-amzn-requestid: 67dbfbd2-ba7f-4540-8d2c-5c2c4de21cae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLUf7HGdIAMFhow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813465-36b0d8fc4bdb5faf328bd99d;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:32:21 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: vFbudY9zvK4DwTVXff4-nDPTFtYqktJb4n9wrLx4zL4nsz_bc6U4qA==
via: 1.1 7b00c3fd9220034414107b03e53b1b8e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:03:28 GMT
age: 13739
etag: "2f88534696701cfdaf7e2aa78f6d4b8766a2b77f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2