flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
89.117.188.25301 Moved Permanently 707 B URL HTTP/1.1 flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
IP 89.117.188.25:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET /wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg== HTTP/1.1
Host: flowerdaleschool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Fri, 03 Feb 2023 09:09:45 GMT
server: LiteSpeed
location: https://flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
platform: hostinger
content-security-policy: upgrade-insecure-requests
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10686
Expires: Fri, 03 Feb 2023 12:07:51 GMT
Date: Fri, 03 Feb 2023 09:09:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8535
Expires: Fri, 03 Feb 2023 11:32:00 GMT
Date: Fri, 03 Feb 2023 09:09:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13356
Expires: Fri, 03 Feb 2023 12:52:21 GMT
Date: Fri, 03 Feb 2023 09:09:45 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 08:36:10 GMT
content-type: application/json
age: 2015
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: EClmqAam0eZtQdI1i4oWPz31hLZ6OkM4cLvrcBjXNAiRIFWVS3RUckLjbYlpQcRvWGokECEDPWk=
x-amz-request-id: 3XS7J8WVZ9SVP9E4
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 08:23:28 GMT
age: 2777
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 09:09:45 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 08:49:06 GMT
age: 1239
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9437
Expires: Fri, 03 Feb 2023 11:47:03 GMT
Date: Fri, 03 Feb 2023 09:09:46 GMT
Connection: keep-alive
flowerdaleschool.com/wp-includes/css/classic-themes.min.css?ver=1
89.117.188.25200 OK 217 B URL HTTP/2 flowerdaleschool.com/wp-includes/css/classic-themes.min.css?ver=1
IP 89.117.188.25:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: flowerdaleschool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:09:46 GMT
content-type: text/css
last-modified: Mon, 21 Nov 2022 20:29:38 GMT
etag: "d9-637bdfb2-7b3e3c9630444e9d;;;"
accept-ranges: bytes
content-length: 217
date: Fri, 03 Feb 2023 09:09:46 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
flowerdaleschool.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2
89.117.188.25200 OK 869 B URL HTTP/2 flowerdaleschool.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2
IP 89.117.188.25:0
Hash 6288d6d52253c18598b740ee1169d4f1
dc364cb90c2b1b076bea4e347554d3bd9fd8a475
8d7330cc7b18dc516b54c96d17296a3d4d475bacc165078441d7aad844b12621
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2 HTTP/1.1
Host: flowerdaleschool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:09:46 GMT
content-type: text/css
last-modified: Mon, 02 Jan 2023 20:55:21 GMT
etag: "af3-63b344b9-79d9ac909cd9f176;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 869
date: Fri, 03 Feb 2023 09:09:46 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
flowerdaleschool.com/wp-content/fonts/0abbcee7b40c7d7bb2efebc4dcb2fc39.css
89.117.188.25200 OK 722 B URL HTTP/2 flowerdaleschool.com/wp-content/fonts/0abbcee7b40c7d7bb2efebc4dcb2fc39.css
IP 89.117.188.25:0
Hash 9ccd69116cfe7977123dc244458d11fc
0de571dc0ea85206b7b0d9ec5f0a036b8bfd0ae5
03371b727038b8af52ab835c835ff348b8aa60ec67e8ca9fc8ae49b230fc07cb
GET /wp-content/fonts/0abbcee7b40c7d7bb2efebc4dcb2fc39.css HTTP/1.1
Host: flowerdaleschool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:09:46 GMT
content-type: text/css
last-modified: Mon, 21 Nov 2022 20:28:13 GMT
etag: "4f1f-637bdf5d-f63d858792d98ad8;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 722
date: Fri, 03 Feb 2023 09:09:46 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
flowerdaleschool.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
89.117.188.25200 OK 11 kB URL HTTP/2 flowerdaleschool.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 89.117.188.25:0
File type ASCII text, with very long lines (47826)
Hash ba5eac37229008eef8a48bb9c12da241
95a3100a0d65a7bd0ebeba66a7ef01146cf96a24
60a4012feb8a3fb3b7f5d411ee9241e12c9ef0e5b33f249aea1b1ad103a71c0f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: flowerdaleschool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:09:46 GMT
content-type: text/css
last-modified: Mon, 21 Nov 2022 20:29:38 GMT
etag: "172a9-637bdfb2-c4940b4e9bb83c84;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11353
date: Fri, 03 Feb 2023 09:09:46 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.40.156.208101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.40.156.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gPtoRf5qiPyCimaK4zstcA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: vQBBwlbCSv04vUmKB2qkR9KnkDc=
flowerdaleschool.com/wp-content/themes/play-school-kindergarten/style.css?ver=6.1.1
89.117.188.25200 OK 12 kB URL HTTP/2 flowerdaleschool.com/wp-content/themes/play-school-kindergarten/style.css?ver=6.1.1
IP 89.117.188.25:0
File type assembler source, ASCII text, with very long lines (1440)
Hash ed024618623c1e989df05516ad9c2473
bf6b19836fae183d63334cdd536c77e3edb5814c
200040169fd6efd01899ec10f8c12996ca319aa8d2fe9d01cf61daa8da1b01dd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/play-school-kindergarten/style.css?ver=6.1.1 HTTP/1.1
Host: flowerdaleschool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:09:46 GMT
content-type: text/css
last-modified: Mon, 21 Nov 2022 20:43:37 GMT
etag: "ed10-637be2f9-e83478f737b729a1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12162
date: Fri, 03 Feb 2023 09:09:46 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
flowerdaleschool.com/wp-content/themes/play-school-kindergarten/assets/css/fontawesome-all.css?ver=6.1.1
89.117.188.25200 OK 7.6 kB URL HTTP/2 flowerdaleschool.com/wp-content/themes/play-school-kindergarten/assets/css/fontawesome-all.css?ver=6.1.1
IP 89.117.188.25:0
File type ASCII text, with very long lines (317), with CRLF line terminators
Hash 549b58d871db43edeb686fd965553d1e
b0aa40fa2b325f35fc0416dcd8d1a407711d83a8
0c3c0d4abf5d776464b6f6a38659e95a1bd14aa7712efbe192fa7e76588e9931
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/play-school-kindergarten/assets/css/fontawesome-all.css?ver=6.1.1 HTTP/1.1
Host: flowerdaleschool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:09:46 GMT
content-type: text/css
last-modified: Mon, 21 Nov 2022 20:27:59 GMT
etag: "b350-637bdf4f-eb9c0ac77009308c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7642
date: Fri, 03 Feb 2023 09:09:46 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
flowerdaleschool.com/wp-content/themes/play-school-kindergarten/assets/css/bootstrap.css?ver=6.1.1
89.117.188.25200 OK 20 kB URL HTTP/2 flowerdaleschool.com/wp-content/themes/play-school-kindergarten/assets/css/bootstrap.css?ver=6.1.1
IP 89.117.188.25:0
File type ASCII text, with very long lines (683), with CRLF line terminators
Hash ab747687f500dcfebdf2455803dd020b
bcf9991611fdf4ae8805d58ef09c0ed4e4b34176
cab3fb9ab5cd630cedc64b0627cfd2e8b788619e7203d6c8450227b425a5994e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/play-school-kindergarten/assets/css/bootstrap.css?ver=6.1.1 HTTP/1.1
Host: flowerdaleschool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:09:46 GMT
content-type: text/css
last-modified: Mon, 21 Nov 2022 20:27:59 GMT
etag: "31136-637bdf4f-78828b74aa0c5266;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 19591
date: Fri, 03 Feb 2023 09:09:46 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
flowerdaleschool.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.9.2
89.117.188.25200 OK 587 B URL HTTP/2 flowerdaleschool.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.9.2
IP 89.117.188.25:0
File type ASCII text, with very long lines (9895)
Hash d61cb6d6c0e5df9a7c96bf2186c6967c
c2c642b05f62040cc1a6cb11d9e55433d7337077
f08dd7f11b2368cd351a9bc5b9c615eebd71aef38825a305048e99425fef3c1a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.9.2 HTTP/1.1
Host: flowerdaleschool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:09:46 GMT
content-type: text/css
last-modified: Mon, 02 Jan 2023 20:54:52 GMT
etag: "26ce-63b3449c-fc29fe0bcfe550f2;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 587
date: Fri, 03 Feb 2023 09:09:46 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
flowerdaleschool.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.5.2
89.117.188.25200 OK 724 B URL HTTP/2 flowerdaleschool.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.5.2
IP 89.117.188.25:0
File type ASCII text, with very long lines (3508)
Hash 1a25f9a00de0acbe1750b464badb4a68
290223483c93391f2c3cff81a9de74b53af12d06
6c09058c3dc67c6810173c9990f1909f08328e3f3ea05347b6cb1b568d1f812c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.5.2 HTTP/1.1
Host: flowerdaleschool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:09:46 GMT
content-type: text/css
last-modified: Mon, 02 Jan 2023 20:55:11 GMT
etag: "db5-63b344af-da0077b13930e8bd;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 724
date: Fri, 03 Feb 2023 09:09:46 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
flowerdaleschool.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.9.2
89.117.188.25200 OK 17 kB URL HTTP/2 flowerdaleschool.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.9.2
IP 89.117.188.25:0
File type ASCII text, with very long lines (65497)
Hash 841a3780cf1b5db5063c357037c3a53e
4aa46a3bb6492ff4404133e6c7d40f8c07e66280
8f70ac57aa8cb0d2cebe24c69f782376052546ea67f9069bc95b2630cc3a7f34
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.9.2 HTTP/1.1
Host: flowerdaleschool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:09:46 GMT
content-type: text/css
last-modified: Mon, 02 Jan 2023 20:54:52 GMT
etag: "21a96-63b3449c-aae806bdcf98629c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 16602
date: Fri, 03 Feb 2023 09:09:46 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
flowerdaleschool.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
89.117.188.25200 OK 4.0 kB URL HTTP/2 flowerdaleschool.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 89.117.188.25:0
File type ASCII text, with very long lines (11126)
Hash 4116c2be947ecf205a0c7fc117ca55f0
0cd8efc9fe349d67a86b49d1e5582a9b21d05add
6b1970b536b88a18b0eb4fe138e677b9736294057660676507fabee57cb0462c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: flowerdaleschool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:09:46 GMT
content-type: application/x-javascript
last-modified: Mon, 21 Nov 2022 20:29:38 GMT
etag: "2bd8-637bdfb2-62a62cdbdf0c04d4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3984
date: Fri, 03 Feb 2023 09:09:46 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
flowerdaleschool.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2
89.117.188.25200 OK 2.9 kB URL HTTP/2 flowerdaleschool.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2
IP 89.117.188.25:0
File type ASCII text, with very long lines (10565), with no line terminators
Hash 26308da90821868735e3981674b3cb5a
a31e9fc36e3560191a08581e66f0d6ba985ddf69
980e60d92951ef0cb5acf9e92919573e20387eef2d14bbfc35e2d9f99b12ab6c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2 HTTP/1.1
Host: flowerdaleschool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:09:46 GMT
content-type: application/x-javascript
last-modified: Mon, 02 Jan 2023 20:55:21 GMT
etag: "2945-63b344b9-a120d09bb5000ba5;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2898
date: Fri, 03 Feb 2023 09:09:46 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
flowerdaleschool.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2
89.117.188.25200 OK 3.8 kB URL HTTP/2 flowerdaleschool.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2
IP 89.117.188.25:0
File type HTML document, ASCII text, with very long lines (12652), with no line terminators
Hash cd0eced22a64629c058f64561017e982
26e5dbbc20363b23f616b2a80a4f6b65d83d9df7
0e0e6912cb42930a5802fd0fc9b37f93d1f55bbb18b9e482e11a1808bdc0328b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2 HTTP/1.1
Host: flowerdaleschool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:09:46 GMT
content-type: application/x-javascript
last-modified: Mon, 02 Jan 2023 20:55:21 GMT
etag: "316c-63b344b9-af32f9c88ff81d33;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3819
date: Fri, 03 Feb 2023 09:09:46 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
flowerdaleschool.com/wp-content/themes/play-school-kindergarten/assets/js/navigation.js?ver=2.1.2
89.117.188.25200 OK 1.2 kB URL HTTP/2 flowerdaleschool.com/wp-content/themes/play-school-kindergarten/assets/js/navigation.js?ver=2.1.2
IP 89.117.188.25:0
File type ASCII text, with CRLF line terminators
Hash 1150899c4c269c0035a976992347a099
0a35b11ed1d5ce144a7955019bb8ec007e0180e8
7e00b8ecee12b7e9b66268f136217f1373105d29e9dee30ca689f849d987f41d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/play-school-kindergarten/assets/js/navigation.js?ver=2.1.2 HTTP/1.1
Host: flowerdaleschool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:09:46 GMT
content-type: application/x-javascript
last-modified: Mon, 21 Nov 2022 20:27:59 GMT
etag: "ee8-637bdf4f-e921f8174a28145e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1177
date: Fri, 03 Feb 2023 09:09:46 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
flowerdaleschool.com/wp-content/themes/play-school-kindergarten/assets/js/jquery.superfish.js?ver=6.1.1
89.117.188.25200 OK 2.2 kB URL HTTP/2 flowerdaleschool.com/wp-content/themes/play-school-kindergarten/assets/js/jquery.superfish.js?ver=6.1.1
IP 89.117.188.25:0
Hash c2e9382baa2b8a767e1e90cbe6b061ab
923d614195509673d10da9b649480477689b6af2
be43ae41b0b1648cffff821a3b15823f063203f99de876c5737877b2abc97049
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/play-school-kindergarten/assets/js/jquery.superfish.js?ver=6.1.1 HTTP/1.1
Host: flowerdaleschool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:09:46 GMT
content-type: application/x-javascript
last-modified: Mon, 21 Nov 2022 20:27:59 GMT
etag: "1cff-637bdf4f-3b28feaa9549d67;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2177
date: Fri, 03 Feb 2023 09:09:46 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
flowerdaleschool.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.5.2
89.117.188.25200 OK 2.9 kB URL HTTP/2 flowerdaleschool.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.5.2
IP 89.117.188.25:0
File type ASCII text, with very long lines (8741), with no line terminators
Hash 1b7754e6b71728a8c714b74f9b80b367
1fd82826e82ad5995cb3326a456566da0a55f1cf
7eb7c9e57c6741a888e7a09c6874d83dbffacd63d9179eae95d2620d3356fe4c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.5.2 HTTP/1.1
Host: flowerdaleschool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:09:46 GMT
content-type: application/x-javascript
last-modified: Mon, 02 Jan 2023 20:55:12 GMT
etag: "2225-63b344b0-c43ba27de720022d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2915
date: Fri, 03 Feb 2023 09:09:46 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
flowerdaleschool.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
89.117.188.25200 OK 4.6 kB URL HTTP/2 flowerdaleschool.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 89.117.188.25:0
File type ASCII text, with very long lines (15660)
Hash 4402e98c197d70e9bc78b1da062e658a
b1d2477c6b1dfa9283d79a0a3944098dde573f68
4e646c55a8c057d08458aed4f913f5ae713e1351aadc0bcdf947bc48fb6a73ed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: flowerdaleschool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:09:46 GMT
content-type: application/x-javascript
last-modified: Mon, 21 Nov 2022 20:29:38 GMT
etag: "48b9-637bdfb2-1258d01756a4875b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4572
date: Fri, 03 Feb 2023 09:09:46 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
flowerdaleschool.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
89.117.188.25200 OK 30 kB URL HTTP/2 flowerdaleschool.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 89.117.188.25:0
File type ASCII text, with very long lines (65447)
Hash cdbbc979b5a5de31a3ac8296e0ef489e
b83000eb74956c3404fb58c87e95aed5bab2ed19
48a6489945365cddb4c75af60f1e6a8a15d6598a1596ef18eb1b4aaad33e96f3
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: flowerdaleschool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:09:46 GMT
content-type: application/x-javascript
last-modified: Mon, 21 Nov 2022 20:29:38 GMT
etag: "15e54-637bdfb2-65461d38d1cf08f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30075
date: Fri, 03 Feb 2023 09:09:46 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
flowerdaleschool.com/wp-content/themes/play-school-kindergarten/assets/js/bootstrap.js?ver=1.0
89.117.188.25200 OK 19 kB URL HTTP/2 flowerdaleschool.com/wp-content/themes/play-school-kindergarten/assets/js/bootstrap.js?ver=1.0
IP 89.117.188.25:0
File type ASCII text, with very long lines (315), with CRLF line terminators
Hash 01051fe837ab6969d131c5c4600fc392
ac179213f58a9b1f2be7d39cb614e72853a928e8
90c7118786e31a81b1ac15661e5ff09d5238999d2966e20971e4a43d7f674b4b
GET /wp-content/themes/play-school-kindergarten/assets/js/bootstrap.js?ver=1.0 HTTP/1.1
Host: flowerdaleschool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:09:46 GMT
content-type: application/x-javascript
last-modified: Mon, 21 Nov 2022 20:27:59 GMT
etag: "1d09e-637bdf4f-e6de7d8ee38ebab3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18735
date: Fri, 03 Feb 2023 09:09:46 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4cf0ccf2909be74efd7a89dbe4228ffb
b4993da334b48312584d116a3de4be4cd71962cf
e81c8aa45d0707079d9eba798fb447059042453be4834d14467839688ca66f5d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:09:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d3442.9263198086974!2d78.0218872349644!3d30.353043829567227!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0x81330cb4f41c6409!2sFlowerdale%20School!5e0!3m2!1sen!2sin!4v1583195396772!5m2!1sen!2sin
216.58.211.4200 OK 1.4 kB URL HTTP/2 www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d3442.9263198086974!2d78.0218872349644!3d30.353043829567227!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0x81330cb4f41c6409!2sFlowerdale%20School!5e0!3m2!1sen!2sin!4v1583195396772!5m2!1sen!2sin
IP 216.58.211.4:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2378)
Hash f21803706e724d0b19b8916f669b4b74
f87fec84fa999e0643a0124bfb2e1a4207a37d09
598d70b7a984530f05fc1322b738a10ef7005c3ac305977fdfd345f68b21ec72
GET /maps/embed?pb=!1m14!1m8!1m3!1d3442.9263198086974!2d78.0218872349644!3d30.353043829567227!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0x81330cb4f41c6409!2sFlowerdale%20School!5e0!3m2!1sen!2sin!4v1583195396772!5m2!1sen!2sin HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flowerdaleschool.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
pragma: no-cache
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-qtCO7qhjdFr4waOM_Bfo4A' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 03 Feb 2023 09:09:47 GMT
server: scaffolding on HTTPServer2
content-length: 1366
x-xss-protection: 0
x-content-type-options: nosniff
server-timing: gfet4t7; dur=144
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0c15fd84f4711d994724c35236542194
c47d77fe5b373a86bd9a116bd8baac07ec746add
a210a4599baaa980674b456f020282cd470559b319be263fdcf9eaec7cff0d3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:09:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:09:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en®ion=in&callback=onApiLoad
172.217.21.170200 OK 56 kB URL HTTP/2 maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en®ion=in&callback=onApiLoad
IP 172.217.21.170:0
File type ASCII text, with very long lines (2546)
Hash c615baa95a4e2d7c86bc2d1c9b4bf12c
1bfac650dafdd172b35e0d9715004e1f1bf5be72
b97d11b44aacdc1a27e7fb824a38618af67f7e906437650764d821e6ceb75db0
GET /maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en®ion=in&callback=onApiLoad HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 56425
x-xss-protection: 0
x-frame-options: SAMEORIGIN
date: Fri, 03 Feb 2023 09:06:49 GMT
expires: Fri, 03 Feb 2023 09:36:49 GMT
cache-control: public, max-age=1800
content-type: text/javascript; charset=UTF-8
age: 178
server-timing: gfet4t7; dur=0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:09:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:09:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.gstatic.com/maps-api-v3/embed/js/51/8/init_embed.js
142.250.74.35200 OK 69 kB URL HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/51/8/init_embed.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (2599)
Hash 9f0a3f9fed6887ce6314b636d8c25d57
ce6d3f4a45e049462adf2451ab41f98ec8e74cd4
f6e5810c3995e3cb4eac797a1d6fe9b03000687328c1f277a93a2b87bf407a93
GET /maps-api-v3/embed/js/51/8/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 69355
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 00:53:06 GMT
expires: Fri, 02 Feb 2024 00:53:06 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 31 Jan 2023 18:44:31 GMT
content-type: text/javascript
age: 116201
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:09:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9847
Expires: Fri, 03 Feb 2023 11:53:54 GMT
Date: Fri, 03 Feb 2023 09:09:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9847
Expires: Fri, 03 Feb 2023 11:53:54 GMT
Date: Fri, 03 Feb 2023 09:09:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9869
Expires: Fri, 03 Feb 2023 11:54:16 GMT
Date: Fri, 03 Feb 2023 09:09:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9869
Expires: Fri, 03 Feb 2023 11:54:16 GMT
Date: Fri, 03 Feb 2023 09:09:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9847
Expires: Fri, 03 Feb 2023 11:53:54 GMT
Date: Fri, 03 Feb 2023 09:09:47 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 352e4166a431e781e56cc7f169c7f8ca
866b76c34076cf2e18c6a071336fcf4f581f3c4d
75ba13b601f4b00c5b091eb29e7f6739ffee3e127bd6d3c4b35cc967bb6d354a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9779
x-amzn-requestid: 101b984b-9c04-4d07-b1fe-3d888f4bcd49
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ftcNRFV_oAMF2_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dba721-72679ba0378015034e17b8ca;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 12:05:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: p74tt3doRE9DKoD5cpPKriYPFEQhq7f3Xf8vhgNNz7QhZNIvdc6NQQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:05:18 GMT
age: 39869
etag: "866b76c34076cf2e18c6a071336fcf4f581f3c4d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fde7081-1c8d-41df-98c8-c063731c6202.jpeg
34.120.237.76200 OK 3.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fde7081-1c8d-41df-98c8-c063731c6202.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 703c7834618fd34f3d7ce5c82a51abc0
4bdaa7e9e8d6408b73ea457e7aabb26fa2a5c81c
1f467ce5825e3f8b8f841293d1ce945dc7a577abbe2cb8a2caa16ace165f4857
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fde7081-1c8d-41df-98c8-c063731c6202.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3385
x-amzn-requestid: 30717e1a-7a08-4b11-90e7-cd175aa667d9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuvzrEo4oAMF1qg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ce4-3bc1302b4cf47fa2520e3033;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AnMRlC-rgJLk6OwzHDFeaGBuDfEuRj_n0S2o1o7QSTZqMwCIr-20-A==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:46:35 GMT
age: 40992
etag: "4bdaa7e9e8d6408b73ea457e7aabb26fa2a5c81c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 1350cdd1-10c2-44e0-993d-2335a082fb91
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fstgNH0moAMF3OA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63db5c67-02211c3d5ca147c718348860;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 06:47:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: t7OYoLCzzQakW2lqiAUaeKA00Beq4J5elQ5qF7yGUb2L7JSNUJCPNA==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 05:40:54 GMT
age: 12533
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d4041f3b5316bc84c9e6d88ddbc85b89
4978a4a20836b6f5d863d331bcedad782b7b4ac6
549b62d2c4ec965b8bec62010c0ce338dfea7992ee83eb7af61ff1a30d21f8b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5641
x-amzn-requestid: b53b54b1-3b00-47cf-a25c-e93910c2ebfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuvzpHsXoAMFsuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ce3-0c4fc8154763febb44460ac2;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: x4-BZdG4JGRKCSdKynnuweZfo9l0XZtDB-MiANy7C2Yz1URYMHP4sQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:28:50 GMT
age: 38457
etag: "4978a4a20836b6f5d863d331bcedad782b7b4ac6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15f2ebc9-82b4-4f1b-b0b8-978571cb123b.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15f2ebc9-82b4-4f1b-b0b8-978571cb123b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02123eef9faa8560ff66b058d4e13a28
decf26282993d7f0b14cf4112d14fa39c97fa89f
28889ff20f1b2fe0b73f8f97e6569f1d68d77fe436eeb47cc06ee4f0822ff239
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15f2ebc9-82b4-4f1b-b0b8-978571cb123b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9130
x-amzn-requestid: 09ad3fbb-1e71-4455-82df-6e59f65239a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuxiYEkqIAMFVZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2fa8-1dca116e4317f9bd14f6d45a;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:48:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _Bc2svrG-wX63DK9RPUyjh-n6AHVHaQe3QRmEL27L-amwCH2I_f_9g==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:05:17 GMT
age: 39870
etag: "decf26282993d7f0b14cf4112d14fa39c97fa89f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 114e345e134986d7451148fcea31b29d
541e878afee68c8802bb52b0cbbe5a5a0a185392
5030244d4babd1023166f39c935029d789a91ba90aa3a44c6f4c88ddc947b678
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8211
x-amzn-requestid: 2df5779a-a808-46ec-9246-1a9b9bddd9e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmKLVHwroAMF72Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bd7b-3cfe97e07d17958836425784;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:04:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _VFg0FMYa1Dg55fLpJTwdX2uZXkYjZSFdbdAKqGQu7GF2dPiawKh1g==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 05:59:16 GMT
age: 11431
etag: "541e878afee68c8802bb52b0cbbe5a5a0a185392"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:0
File type gzip compressed data, max compression\012- data
Hash 22e27fab98a5e664c0495b6bb4fabc91
d1b94d9e9c6eb4b3909693657259552ba6ae4291
61b065cd0a958708917ca97f7ae4ef3ff65e4a8466f96d99eaf5e2f047a40a9b
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 07:51:59 GMT
expires: Thu, 01 Feb 2024 07:51:59 GMT
cache-control: public, max-age=31536000
age: 177469
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type gzip compressed data, max compression\012- data
Hash 2c5e576c986fa3babe2c32f4a7ca3f3c
2f9f0aaf63ec000b07fc073c26fddfb6ab4e4466
f560931ec3844307c32fb2b1503925261fc99f30ecd22d27664b104e13e5567c
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 385668
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
89.117.188.25404 Not Found 0 B URL HTTP/2 flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
IP 89.117.188.25:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg== HTTP/1.1
Host: flowerdaleschool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
x-powered-by: PHP/7.4.33
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://flowerdaleschool.com/wp-json/>; rel="https://api.w.org/"
content-encoding: br
vary: Accept-Encoding
date: Fri, 03 Feb 2023 09:09:46 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
flowerdaleschool.com/wp-content/uploads/2020/03/cropped-logo.png
89.117.188.25200 OK 0 B URL HTTP/2 flowerdaleschool.com/wp-content/uploads/2020/03/cropped-logo.png
IP 89.117.188.25:0
GET /wp-content/uploads/2020/03/cropped-logo.png HTTP/1.1
Host: flowerdaleschool.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flowerdaleschool.com/wp-admin/Bank/Chase.com/signin/email_identification.php?MTY2NzA1NTQ5NTE3OGQyMGY1MGRkZjYzNDYwN2EyODEwODVjZTc5ZTE2NDRlMTFhNmQ1OWQ0MjgzNzk5OTAzNDdjNDg4ZWU4MjQ5YWMwOGZhNg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:09:46 GMT
content-type: image/png
last-modified: Mon, 21 Nov 2022 20:12:00 GMT
etag: "1c78b-637bdb90-b722f80ce7ee60e7;;;"
accept-ranges: bytes
content-length: 116619
date: Fri, 03 Feb 2023 09:09:46 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2