firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 25 Sep 2022 11:14:56 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 1DOyFCmYBMV086RQLJ-K7KCR7rPIkMiy9reIRZxpIBMlBKnXWjEFqA==
Age: 1365
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9219
Expires: Sun, 25 Sep 2022 14:11:20 GMT
Date: Sun, 25 Sep 2022 11:37:41 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: N_AKEL_AqWrlpNNsiH4gDbArXq4KKm7YdMraDo1Iny7VnEygnOZRkw==
age: 25347
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 11:37:41 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
walk-a-thon.ca/
207.102.64.45200 OK 12 kB IP 207.102.64.45:0
ASN #852 TELUS Communications
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13336), with CRLF, LF line terminators
Hash 92c323fc8eaa18d62271c3a4efb7a8cd
3017e3f47c0e900ed3d1d7e0cfe0f042824194c5
3df2ddaefe7b967889cde55c8c55ea054e02f35d441fd86f8a3c1f2919934651
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:41 GMT
Server: Apache/2.4.10
Link: <https://walk-a-thon.ca/index.php?rest_route=/>; rel="https://api.w.org/", <https://walk-a-thon.ca/>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sun, 25 Sep 2022 11:04:17 GMT
Expires: Sun, 25 Sep 2022 11:11:47 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: A9AAst-UPN1qfJq5BOwwTxOZ3c_adfCPMAgnordi98qiWj-Cqp9stg==
Age: 2005
fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C700%7CYanone+Kaffeesatz&ver=4.9.21
142.250.74.10200 OK 799 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C700%7CYanone+Kaffeesatz&ver=4.9.21
IP 142.250.74.10:0
Hash b58a0305d9086c9704e5c7c4ea0eca8f
3389086fbea48d7b405dcc1f699c471536002a39
1bd24d54b39e76338bd97dd421a97f5d486585d9c263dd3c2c05aa4a304804ec
GET /css?family=Open+Sans%3A300%2C400%2C700%7CYanone+Kaffeesatz&ver=4.9.21 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 25 Sep 2022 11:37:42 GMT
Date: Sun, 25 Sep 2022 11:37:42 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
walk-a-thon.ca/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.0.4
207.102.64.45200 OK 671 B URL HTTP/1.1 walk-a-thon.ca/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.0.4
IP 207.102.64.45:0
ASN #852 TELUS Communications
Hash 63dc88a9eaede6fccb60583f4a6e94df
45ba9e7d20aee8b8379dc57add7598b733f33dbb
6b89fca44b725e09dbb37f64eceea968703689f34bf2bc0183dab84699b2a395
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.0.4 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:42 GMT
Server: Apache/2.4.10
Last-Modified: Fri, 19 Oct 2018 02:26:28 GMT
ETag: "6cf-5788ba17fb93a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 671
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
walk-a-thon.ca/wp-content/plugins/onetone-companion/assets/css/front.css?ver=1.1.1
207.102.64.45200 OK 1.1 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/plugins/onetone-companion/assets/css/front.css?ver=1.1.1
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with CRLF line terminators
Hash b865081c569e4aa67695ac9fa4e05306
df3bcdc1b9a2b0d495de54cfe079e7e7ee51f89a
4f8e9882f9be1f9c2d52bd46f7430ac86240287303324f375d44efccb830d797
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/onetone-companion/assets/css/front.css?ver=1.1.1 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:42 GMT
Server: Apache/2.4.10
Last-Modified: Fri, 19 Oct 2018 02:19:06 GMT
ETag: "15db-5788b8720dd7e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1101
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
walk-a-thon.ca/wp-content/themes/onetone/plugins/owl-carousel/assets/owl.carousel.css?ver=2.2.0
207.102.64.45200 OK 1.2 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/plugins/owl-carousel/assets/owl.carousel.css?ver=2.2.0
IP 207.102.64.45:0
ASN #852 TELUS Communications
Hash 14b2547cfdb1143298f771affd519ad6
e2ddbb2a662d0069436ad8946a05cf6fa59941a4
57375d29ebc00b35d63375e4dbefbfe6831300c15225dcd552069935a6af9df5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/onetone/plugins/owl-carousel/assets/owl.carousel.css?ver=2.2.0 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:42 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "1010-578897760abf5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1159
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
walk-a-thon.ca/wp-content/themes/onetone/css/onetone.css?ver=3.0.6
207.102.64.45200 OK 1.7 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/css/onetone.css?ver=3.0.6
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with CRLF line terminators
Hash e9f07528001aa3a11a4f3c2aa7945842
b8b7a08402f3a7317c6df94af006fd550ed9c33e
996313ee16b5ed424e1a8d63de2f6bf382e7ed3c030e83565b394df16611e735
GET /wp-content/themes/onetone/css/onetone.css?ver=3.0.6 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:42 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "1984-578897766a735-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1660
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
walk-a-thon.ca/wp-content/themes/onetone/css/animate.css?ver=3.5.1
207.102.64.45200 OK 4.4 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/css/animate.css?ver=3.5.1
IP 207.102.64.45:0
ASN #852 TELUS Communications
Hash b2d34f77af61287dbb241bc0dac5f1f7
28683f9ea3db7a1948d1fe46dac3205e82dae022
fa94f672744e7493127791a1f264ea1a4d22fc72e2f10140397ea2b0fbabc0ad
GET /wp-content/themes/onetone/css/animate.css?ver=3.5.1 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:42 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "11a43-5788977669795-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4430
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
walk-a-thon.ca/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
207.102.64.45200 OK 7.1 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with very long lines (30837)
Hash 52f1a8a2ce85fa8432308b33bc1a2e79
fd80917af5371c8ecad0198592a1e7cce4b77b0e
07bd6a9ea0213e20f362485aadc17a88c486ecfb394004b41b8b38db6e6a35f6
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:42 GMT
Server: Apache/2.4.10
Last-Modified: Fri, 19 Oct 2018 02:25:52 GMT
ETag: "7918-5788b9f54e9e6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7053
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
walk-a-thon.ca/wp-content/themes/onetone/style.css?ver=3.0.6
207.102.64.45200 OK 11 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/style.css?ver=3.0.6
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with very long lines (1102), with CRLF line terminators
Hash dfc8142a08c2c5a70666bbdc039c1223
554be863e110fbb83bccc59eaf252ed65565c84e
e8cc77431adf4932bdc7b982d0b6820f4609fe1a79eab220ce39843a7b58ce2e
GET /wp-content/themes/onetone/style.css?ver=3.0.6 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:42 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "e3f5-57889775ea855-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11418
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
walk-a-thon.ca/wp-content/themes/onetone/css/onetone-ms.css?ver=3.0.6
207.102.64.45200 OK 123 B URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/css/onetone-ms.css?ver=3.0.6
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with CRLF line terminators
Hash 6ad640b37c86dbd568587b77dfd7406f
0e45ef4afd41c2f32d91704e495f76eaa9c1d51a
13c821e3b7c111f35510f4924be2f6bf1f531fa1e926fc3c69e23be62e177eb9
GET /wp-content/themes/onetone/css/onetone-ms.css?ver=3.0.6 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:42 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "a2-578897766a735-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 123
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
walk-a-thon.ca/wp-content/themes/onetone/css/home.css?ver=3.0.6
207.102.64.45200 OK 401 B URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/css/home.css?ver=3.0.6
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with CRLF line terminators
Hash 75c93e314c3904e93baed6923f44f32e
1212e7115dd476f3107cf6a45114868663775bd9
58842a94b5929d3b693d9325f5621d3728d3feefdb10dd5482563605187073a7
GET /wp-content/themes/onetone/css/home.css?ver=3.0.6 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:42 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "3bd-578897766a735-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 401
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
walk-a-thon.ca/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=3.8.0
207.102.64.45200 OK 2.4 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=3.8.0
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with very long lines (10857)
Hash c97dab55ce1628a33a96a4915c3e4a63
c56479e511e713be5ce263598c75406dd4705970
0d324ea6ff82686849055a1ca49f82cc7c422c83cb224215a8fa8b768747b1a1
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=3.8.0 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:42 GMT
Server: Apache/2.4.10
Last-Modified: Fri, 19 Oct 2018 02:25:52 GMT
ETag: "2a96-5788b9f5595c6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2425
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
walk-a-thon.ca/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=2.2.5
207.102.64.45200 OK 2.6 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=2.2.5
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with very long lines (10019)
Hash 0ea81c35141c6a4692506e4fe8d36edb
392c5f96995e66d74c27ed5a42f93169c2f32d18
b7488fd21ad73e483cdcaf42097ea7787ffe0616477e29a537f53f6064e321ab
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=2.2.5 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:42 GMT
Server: Apache/2.4.10
Last-Modified: Fri, 19 Oct 2018 02:25:52 GMT
ETag: "4824-5788b9f550926-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2592
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash cfbe772bfdcc656e94ceed53256863ca
34055ed3761ab4b69af25a2cb70ca7a337a9f79b
7464464772c70e6a9f1b516b9fc3b60f4e567c10f968c573d5a187f5f22d0722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 11:37:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
walk-a-thon.ca/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=2.2.5
207.102.64.45200 OK 12 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=2.2.5
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with very long lines (65497)
Hash 92da023f7fff738706b2a04b7132392f
719df6c7e08f00c59014c678eddc0d823baf175d
a13d9309ea9a143ef33542486042ccc10c1ca400b16e483eacc6b967771b1a2a
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=2.2.5 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:42 GMT
Server: Apache/2.4.10
Last-Modified: Fri, 19 Oct 2018 02:25:52 GMT
ETag: "1505b-5788b9f562266-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11988
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd3b36dc2b620b48de491a8d9ba00fc0
be67ba7db5215dcb7c9225876e35a5e0a5005c9e
28205ee62c77b1caad6cc24c1ce98ddb92d26f67d41270f7d5278208a907c62f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2803
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 11:37:42 GMT
Last-Modified: Sun, 25 Sep 2022 10:50:59 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
walk-a-thon.ca/wp-content/themes/onetone/plugins/bootstrap/css/bootstrap.min.css?ver=3.3.4
207.102.64.45200 OK 20 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/plugins/bootstrap/css/bootstrap.min.css?ver=3.3.4
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with very long lines (65371)
Hash f6fd8790f1d560aab890a85a78b6d67d
98adac8aece45e55b10c8d0d645038a990b0ee00
ceae5c3fdd35600e1de72b94f59efb2fc3b51163640a180431c8d59b95e2ef0f
GET /wp-content/themes/onetone/plugins/bootstrap/css/bootstrap.min.css?ver=3.3.4 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:42 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "1d970-5788977604e35-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 19744
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 604abe85634f70e1803b2816a5501bec
73d9ff467442723f9d676bc60ad6811a2317e2b8
b7814295621a677da1f16e6efd8beeed32395020239a3c0e37759feb95ebc366
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7814295621A677DA1F16E6EFD8BEEED32395020239A3C0E37759FEB95EBC366"
Last-Modified: Sun, 25 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21536
Expires: Sun, 25 Sep 2022 17:36:38 GMT
Date: Sun, 25 Sep 2022 11:37:42 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash cfbe772bfdcc656e94ceed53256863ca
34055ed3761ab4b69af25a2cb70ca7a337a9f79b
7464464772c70e6a9f1b516b9fc3b60f4e567c10f968c573d5a187f5f22d0722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 11:37:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
walk-a-thon.ca/wp-content/uploads/elementor/css/global.css?ver=1539917261
207.102.64.45200 OK 630 B URL HTTP/1.1 walk-a-thon.ca/wp-content/uploads/elementor/css/global.css?ver=1539917261
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with very long lines (4677), with no line terminators
Hash 226de7331d8389fc9c0111eddeb018cc
ae6b1745fb8cfb97972b50cfe0982139fc9b40b9
e38b49328e0b2f649668ecc841f1c267fee8c847d1e0597a01895f88e93c374b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/global.css?ver=1539917261 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:42 GMT
Server: Apache/2.4.10
Last-Modified: Fri, 19 Oct 2018 02:47:41 GMT
ETag: "1245-5788bed5b1a96-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 630
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
walk-a-thon.ca/wp-content/uploads/elementor/css/post-2595.css?ver=1614469974
207.102.64.45200 OK 1.7 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/uploads/elementor/css/post-2595.css?ver=1614469974
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with very long lines (15380), with no line terminators
Hash 2b0d8d88671b80506fb35c08ae971618
90dc080fe7802cca89eede0242c94d5758bf6634
a7226ea8c4a5f179ff2b6cce7d21c6bcdf6606147286758b0f638b3c7148be41
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-2595.css?ver=1614469974 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:42 GMT
Server: Apache/2.4.10
Last-Modified: Sat, 27 Feb 2021 23:52:54 GMT
ETag: "3c14-5bc5a154d1a5c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1728
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
walk-a-thon.ca/wp-content/themes/onetone/lib/kirki/assets/css/kirki-styles.css?ver=4.9.21
207.102.64.45200 OK 0 B URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/lib/kirki/assets/css/kirki-styles.css?ver=4.9.21
IP 207.102.64.45:0
ASN #852 TELUS Communications
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/onetone/lib/kirki/assets/css/kirki-styles.css?ver=4.9.21 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:42 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "0-5788977661a95"
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 604abe85634f70e1803b2816a5501bec
73d9ff467442723f9d676bc60ad6811a2317e2b8
b7814295621a677da1f16e6efd8beeed32395020239a3c0e37759feb95ebc366
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7814295621A677DA1F16E6EFD8BEEED32395020239A3C0E37759FEB95EBC366"
Last-Modified: Sun, 25 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 25 Sep 2022 17:37:43 GMT
Date: Sun, 25 Sep 2022 11:37:43 GMT
Connection: keep-alive
walk-a-thon.ca/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
207.102.64.45200 OK 4.0 kB URL HTTP/1.1 walk-a-thon.ca/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with very long lines (9959)
Hash a6c81e2f02bd04160d2de88c4e8f3559
e3f3c91427d785820ca97dabe738f01faf041f36
b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:49:59 GMT
ETag: "2748-5788971d8a800-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4014
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
walk-a-thon.ca/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.0.4
207.102.64.45200 OK 4.0 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.0.4
IP 207.102.64.45:0
ASN #852 TELUS Communications
Hash cc76150566e288ba52c395d105fc43e1
512f5dd7dd49dc388f095dcde797f442b66b98d1
ab81562eb44e8846c82a44f1157ad551e3c6cd33a4b7e55c32be48a00d0a5565
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.0.4 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Fri, 19 Oct 2018 02:26:28 GMT
ETag: "3976-5788ba17fa99a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4047
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
push.services.mozilla.com/
34.213.92.18101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.213.92.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: jONFAfDPJlAHgDIuVM55Dg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XQYDz0Rw3hj1xhtI/LeQBpcG+Ts=
walk-a-thon.ca/wp-content/plugins/onetone-companion/assets/js/main.js?ver=1.1.1
207.102.64.45200 OK 813 B URL HTTP/1.1 walk-a-thon.ca/wp-content/plugins/onetone-companion/assets/js/main.js?ver=1.1.1
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with CRLF line terminators
Hash 5ae9d8ed738903bb1243e990438be789
387956eb062c6f9b91be988c05c191de9db5f8c7
9398d6e17fa937f107b37a331a4acd493071871d341c2c3a456fda1eab8641ef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/onetone-companion/assets/js/main.js?ver=1.1.1 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Fri, 19 Oct 2018 02:19:06 GMT
ETag: "864-5788b8720cdde-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 813
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
walk-a-thon.ca/wp-content/themes/onetone/plugins/bootstrap/js/bootstrap.min.js?ver=3.3.4
207.102.64.45200 OK 9.8 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/plugins/bootstrap/js/bootstrap.min.js?ver=3.3.4
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with very long lines (32033)
Hash c83dab682eea0b37ac9522e2856cbb6b
db1fb35549a4ac9cc12811f09bc4b07b48c51434
a9611bc805de07c98225bb878876a24b063fa52559adaf2ba4e997566d5cf3a1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/onetone/plugins/bootstrap/js/bootstrap.min.js?ver=3.3.4 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "90b5-5788977604e35-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9833
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
walk-a-thon.ca/wp-content/themes/onetone/plugins/YTPlayer/jquery.mb.YTPlayer.js?ver=4.9.21
207.102.64.45200 OK 18 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/plugins/YTPlayer/jquery.mb.YTPlayer.js?ver=4.9.21
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 5d6cf00a8e75a771a75ada5036027e35
74270cbec91c1a46e851ec2fa41db548f1db835e
a0568b2e4bfb10996187ba1698d924797073d71a813dd045fe48b4e73c194c19
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/onetone/plugins/YTPlayer/jquery.mb.YTPlayer.js?ver=4.9.21 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "1654c-5788977606d75-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 17729
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
walk-a-thon.ca/wp-includes/js/jquery/jquery.js?ver=1.12.4
207.102.64.45200 OK 34 kB URL HTTP/1.1 walk-a-thon.ca/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with very long lines (31997)
Hash 6b2ceda6218e6810713286b29db017fb
71175271d84c90ca5f05ecc04d7f7a1052873380
de7a4d9a1cb75f0d1a4bf1a71907a44b85b9356da5c4f9e7f6729b8e69a38974
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:42 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 05 Sep 2019 13:37:33 GMT
ETag: "17a6a-591ce6c8bff23-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 33776
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
walk-a-thon.ca/wp-content/themes/onetone/plugins/jquery.scrollTo.js?ver=1.4.14
207.102.64.45200 OK 2.3 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/plugins/jquery.scrollTo.js?ver=1.4.14
IP 207.102.64.45:0
ASN #852 TELUS Communications
Hash e3261dad67c34334d1eb27238e6be8da
9373d445ede14c9868f2f43bfc32be0eb0a7e658
a3082fbf93625d615bc1744f1cdb02768e68ee2809ab0dd9b061d6080767ce1e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/onetone/plugins/jquery.scrollTo.js?ver=1.4.14 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "15bf-5788977606d75-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2277
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
walk-a-thon.ca/wp-content/themes/onetone/plugins/jquery.nav.js?ver=1.4.14%20
207.102.64.45200 OK 2.4 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/plugins/jquery.nav.js?ver=1.4.14%20
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with CRLF line terminators
Hash c4c62c93cf20ba771c42c78864cf9fa6
14404271f618514cf05a4a04974a3b52a0b1a922
3ba2172b703999ab10d419ff70fb114c8292ee2b86e214c8226d64cd67d988b7
GET /wp-content/themes/onetone/plugins/jquery.nav.js?ver=1.4.14%20 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "1c53-5788977601f55-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2418
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
walk-a-thon.ca/wp-content/themes/onetone/plugins/jquery.parallax-1.1.3.js?ver=1.1.3
207.102.64.45200 OK 807 B URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/plugins/jquery.parallax-1.1.3.js?ver=1.1.3
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with CRLF line terminators
Hash 9b4d0e5636302995bf9efec59876f6dd
c05710cecaa740774277cef1fec2fd5ba1ab8bf8
cc8be434a8c69d47ae7adb41c035826977e70392b7698c0c882d38c6003a268a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/onetone/plugins/jquery.parallax-1.1.3.js?ver=1.1.3 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "72d-5788977606d75-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 807
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
walk-a-thon.ca/wp-content/themes/onetone/plugins/respond.min.js?ver=4.9.21
207.102.64.45200 OK 2.1 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/plugins/respond.min.js?ver=4.9.21
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type HTML document, ASCII text, with very long lines (3180)
Hash 442e8bd0aea7e94599a4627a08aaaf45
6f959d54406a6e261e0f72c8728e77539eeb6c49
f90b54a40b3bde1c5491d1c245d58e2ac585ce0773237a05eb37269ba7ea73c3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/onetone/plugins/respond.min.js?ver=4.9.21 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "fcf-57889775ff075-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2058
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
walk-a-thon.ca/wp-content/themes/onetone/plugins/magnific-popup/jquery.magnific-popup.min.js?ver=3.1.5
207.102.64.45200 OK 7.3 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/plugins/magnific-popup/jquery.magnific-popup.min.js?ver=3.1.5
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with very long lines (20087)
Hash efa6db60af1529649bd3b95c4220e9ba
4b6b8cd07ee784e67c7702c147e0c80e0bb3bd90
5723d10c2697c434b25b904f2fcec179ad231ccaebc4c77daa7732c7949a1e99
GET /wp-content/themes/onetone/plugins/magnific-popup/jquery.magnific-popup.min.js?ver=3.1.5 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "4ef8-578897760abf5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7346
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
walk-a-thon.ca/wp-includes/js/imagesloaded.min.js?ver=3.2.0
207.102.64.45200 OK 2.4 kB URL HTTP/1.1 walk-a-thon.ca/wp-includes/js/imagesloaded.min.js?ver=3.2.0
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with very long lines (7855), with no line terminators
Hash d32403263bb01c17b9b69d3f9d01f3fc
6a7810f026de39a8d37516d2ec56aabaf4f39cab
9c50bd091d05620a8c6678d800cb50bf64c862102a33b4ad19f914ceaa0b02cd
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/imagesloaded.min.js?ver=3.2.0 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 15 Apr 2021 11:57:31 GMT
ETag: "1eaf-5c001916f43e5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2435
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
walk-a-thon.ca/wp-includes/js/masonry.min.js?ver=3.3.2
207.102.64.45200 OK 8.5 kB URL HTTP/1.1 walk-a-thon.ca/wp-includes/js/masonry.min.js?ver=3.3.2
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with very long lines (28817)
Hash 25309b355cc141316c0cc8040bc53ec4
fa8fe7646937a6bae2204aa0b099a498c4d84766
2401e0a375cf7f6a4a278bd0ed84ac2b16c8e17d672634944a7f8c3934042f1c
GET /wp-includes/js/masonry.min.js?ver=3.3.2 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:49:59 GMT
ETag: "711a-5788971d77f20-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8525
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
walk-a-thon.ca/wp-content/themes/onetone/plugins/jquery.waypoints.js
207.102.64.45200 OK 3.7 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/plugins/jquery.waypoints.js
IP 207.102.64.45:0
ASN #852 TELUS Communications
Hash 139a3c4795f732a5ec8aaba73c36fddf
e45c6e14a6acb71644f09e2b49db39026a654beb
e498759cbb3d9584cd996a90cb5a843f6d43fdad4343ec74ddf3e387752971e3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/onetone/plugins/jquery.waypoints.js HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "461a-578897760bb95-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3682
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
walk-a-thon.ca/wp-content/themes/onetone/plugins/jquery.counterup.js?ver=2.1.0
207.102.64.45200 OK 1.4 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/plugins/jquery.counterup.js?ver=2.1.0
IP 207.102.64.45:0
ASN #852 TELUS Communications
Hash d13cf600fde8d297161492ea8cea13b1
52fbbb3f2c3f5b95840b567e93646d5123a2496c
e38ca013336ecaa14d2cfd3e47fbb5d4ece3d4aa469742abc671a61d32fb120f
GET /wp-content/themes/onetone/plugins/jquery.counterup.js?ver=2.1.0 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "128b-578897760abf5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1431
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
walk-a-thon.ca/wp-content/themes/onetone/js/onetone.js?ver=3.0.6
207.102.64.45200 OK 3.3 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/js/onetone.js?ver=3.0.6
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 530ce1eaa3b09ba3ec9756c003cdb0af
7c17073290437af08e70dbd30a4625df013cbd90
b66b8f59070c5f5bcfba4c77efe3a9a88ad8b4b358aeabb7b29ad125018c35e7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/onetone/js/onetone.js?ver=3.0.6 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "2d54-578897760bb95-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3299
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
walk-a-thon.ca/wp-content/themes/onetone/plugins/owl-carousel/owl.carousel.js?ver=2.2.0
207.102.64.45200 OK 19 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/plugins/owl-carousel/owl.carousel.js?ver=2.2.0
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with very long lines (360), with CRLF line terminators
Hash 48b48b6c0c901fb90b4d0e713a920e90
9b31bee2ebb8e222eff5ba4699d350cc889c2d9e
e5bd7a8eff86bb57087ee8b05ae5971a30b8c1f06335285f02889eea9b7816e5
GET /wp-content/themes/onetone/plugins/owl-carousel/owl.carousel.js?ver=2.2.0 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "15a74-5788977608cb5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 18741
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
walk-a-thon.ca/wp-includes/js/wp-embed.min.js?ver=4.9.21
207.102.64.45200 OK 739 B URL HTTP/1.1 walk-a-thon.ca/wp-includes/js/wp-embed.min.js?ver=4.9.21
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with very long lines (1391), with no line terminators
Hash 60d8829560031a011771efa2f39708af
a4689c3b70f773deb896eec78028e0902ef15097
a0176bd4cc53bd2e920b0dfd10f56d2a4a3820d671539414ef4b3e2b3e50b9b7
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-embed.min.js?ver=4.9.21 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 15 Apr 2021 11:57:31 GMT
ETag: "56f-5c00191701ea5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 739
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
walk-a-thon.ca/wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1
207.102.64.45200 OK 740 B URL HTTP/1.1 walk-a-thon.ca/wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with very long lines (1801), with no line terminators
Hash bd12ee216064ef934647790b1b00fb8e
3e1641ca3a862fbc43f270b0196fb1e1eb55adfa
511d1d3b63a21f0fac62d77bfb6b3cb3cd354b4546318736b87a7e08c7b5b9ef
GET /wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Fri, 19 Oct 2018 02:25:52 GMT
ETag: "709-5788b9f552866-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 740
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
walk-a-thon.ca/wp-includes/js/jquery/ui/position.min.js?ver=1.11.4
207.102.64.45200 OK 2.5 kB URL HTTP/1.1 walk-a-thon.ca/wp-includes/js/jquery/ui/position.min.js?ver=1.11.4
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with very long lines (6219)
Hash 16add6298eb37fed5715cf0bf288913e
37ba35ef7cb0890d6cc69231624f42d0368f1a49
f6317065a3a12ae27cd8f7221480d76dfd8ef873c6ded2dbbf2d482b07e7e5aa
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/position.min.js?ver=1.11.4 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 15 Apr 2021 11:57:31 GMT
ETag: "1928-5c0019170ab45-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2471
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
walk-a-thon.ca/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.5.0
207.102.64.45200 OK 3.3 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.5.0
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with very long lines (10036)
Hash e4cd108490a97f813d7e7d28aabc3ef3
c4609deb5828c8ed1104d150c2e2fdbe744d52e7
b1d0202e2b613334115d42699e6805083237ed45dce202306929802c24d62208
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.5.0 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Fri, 19 Oct 2018 02:25:52 GMT
ETag: "27bd-5788b9f55b506-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3337
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
walk-a-thon.ca/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
207.102.64.45200 OK 3.0 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with very long lines (12198), with no line terminators
Hash cfea3c51880820f2962a7773fbc864f9
45aa7ddc9b0c4201097d0df36791ab346470b734
12296ac9ef200103f8eea198a2bcd92692119dacece39538499758a0349035fb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Fri, 19 Oct 2018 02:25:52 GMT
ETag: "2fa6-5788b9f5518c6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2993
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
walk-a-thon.ca/wp-content/plugins/elementor/assets/lib/swiper/swiper.jquery.min.js?ver=4.4.3
207.102.64.45200 OK 31 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/plugins/elementor/assets/lib/swiper/swiper.jquery.min.js?ver=4.4.3
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with very long lines (65275)
Hash 6141bbe09a95c1b70d5c016960ce93f7
ec31391a5488e31aaa93687c27d12bdb414ec44c
1461cd7c9e2e97443dedc9321355bf3394c34bfda82443d4a0426e14afd871bf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.jquery.min.js?ver=4.4.3 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Fri, 19 Oct 2018 02:25:52 GMT
ETag: "1df47-5788b9f5547a6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 31322
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
walk-a-thon.ca/wp-content/themes/onetone/plugins/magnific-popup/magnific-popup.css?ver=3.1.5
207.102.64.45200 OK 1.8 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/plugins/magnific-popup/magnific-popup.css?ver=3.1.5
IP 207.102.64.45:0
ASN #852 TELUS Communications
Hash 24d43b806e85342a40e2da6970fdfaa0
b365e6daf45244233ffac6681aa3dad08a26f2c5
dcf879e6dd283fcbef1dc4a0392fbd2ec5ea512b31a97f64ea3076fc392d784e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/onetone/plugins/magnific-popup/magnific-popup.css?ver=3.1.5 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "1b27-578897760abf5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1816
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
walk-a-thon.ca/wp-includes/js/wp-emoji-release.min.js?ver=4.9.21
207.102.64.45200 OK 4.3 kB URL HTTP/1.1 walk-a-thon.ca/wp-includes/js/wp-emoji-release.min.js?ver=4.9.21
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with very long lines (9063)
Hash bc89387b6a6f886f99511cca233b5071
77c1103c6d84263a73bff007bd635750d5b26296
baf8e3410e57e5650ad72f25eb93d82ea36ac8bd51904948e3d2f2a05faa3e78
GET /wp-includes/js/wp-emoji-release.min.js?ver=4.9.21 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 15 Apr 2021 11:57:31 GMT
ETag: "2ea7-5c001916fff65-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4347
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
walk-a-thon.ca/wp-content/themes/onetone/css/shortcode.css?ver=3.0.6
207.102.64.45200 OK 14 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/css/shortcode.css?ver=3.0.6
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type assembler source, ASCII text, with CRLF line terminators
Hash 6959cc369bda46172d900d307251ab4d
cc00efe3804182b8bee8f2c3c0f57b70193aa818
b545f2452f952e6e2f28895cf7cc2803173c753ddbd675906aedbf736a55c68e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/onetone/css/shortcode.css?ver=3.0.6 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:43 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "18d23-578897766a735-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14382
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 267300d587831dda7559c30c40cc614e
d7ff0b9754e61f5d4178eddb5e63c3390ab559c8
ec7aad1a3116ce8ef5258b49de87cf3456c8c4890206fa5d46c8e510ded80ac0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 11:37:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
walk-a-thon.ca/wp-content/themes/onetone/images/overlay-logo.png
207.102.64.45200 OK 4.3 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/images/overlay-logo.png
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type PNG image data, 181 x 77, 8-bit/color RGBA, non-interlaced\012- data
Hash f0eecde4ac89af67eedbb238ba4d69c8
8e3133eb42669c6e1ba316f183f12413d89bba37
bb27d903f1bc072576d4a128c4173ea286c3abcbd2ad584be1e1b82991c9d35d
GET /wp-content/themes/onetone/images/overlay-logo.png HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:44 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "10f5-57889775f8315"
Accept-Ranges: bytes
Content-Length: 4341
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 11:37:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
walk-a-thon.ca/wp-content/themes/onetone/plugins/YTPlayer/css/jquery.mb.YTPlayer.min.css?ver=4.9.21
207.102.64.45200 OK 5.1 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/plugins/YTPlayer/css/jquery.mb.YTPlayer.min.css?ver=4.9.21
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type ASCII text, with very long lines (8657), with no line terminators
Hash 57d9799f9cdb9904ad3dbd5b10b0066f
a30a3c625301374298b4ea1e1029c0b5aa5ec02e
d2dd1b43fb3ce5f650a3e6d0808228a530ae5d16c41b3a9db2cd384d176bdda1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/onetone/plugins/YTPlayer/css/jquery.mb.YTPlayer.min.css?ver=4.9.21 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:44 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "21d1-5788977607d15-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5098
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
walk-a-thon.ca/wp-content/themes/onetone/images/logo.png
207.102.64.45200 OK 2.7 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/themes/onetone/images/logo.png
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type PNG image data, 181 x 77, 8-bit/color RGBA, non-interlaced\012- data
Hash ed14bd26824d888c029c93f334f59c50
60212687042e34d39c459f9eda2f2b6a142d1b91
24a657c19773e901cb725cbaafeeeb3762b8e1ad445d02f9bd44fe4b53e97312
GET /wp-content/themes/onetone/images/logo.png HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:44 GMT
Server: Apache/2.4.10
Last-Modified: Thu, 18 Oct 2018 23:51:32 GMT
ETag: "aa6-57889775f8315"
Accept-Ranges: bytes
Content-Length: 2726
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 11:37:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 11:37:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://walk-a-thon.ca
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Sep 2022 18:01:25 GMT
expires: Sun, 24 Sep 2023 18:01:25 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 63379
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://walk-a-thon.ca
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 317016
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 11:37:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4413
Expires: Sun, 25 Sep 2022 12:51:17 GMT
Date: Sun, 25 Sep 2022 11:37:44 GMT
Connection: keep-alive
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://walk-a-thon.ca
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 14:52:00 GMT
expires: Thu, 21 Sep 2023 14:52:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 333944
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
142.250.74.163200 OK 33 kB URL HTTP/2 fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 32860, version 1.0\012- data
Hash d010a9f2d5c7a0374b3b84706a43d2ec
c1fe465db08785c3f115555d39db23838960cb66
9a3993918629dfd6a59c4563e9b4d464152b51d4113957ab8ebfbdcbcdc7f536
GET /s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://walk-a-thon.ca
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Sep 2022 15:39:46 GMT
expires: Sat, 23 Sep 2023 15:39:46 GMT
cache-control: public, max-age=31536000
age: 158278
last-modified: Mon, 11 Jul 2022 19:12:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd81dd9e4-90be-4864-999a-d4ef740cdc24.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd81dd9e4-90be-4864-999a-d4ef740cdc24.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 37139ae1fd49662f05b8e3a0925f31b4
d355033b77ce3f76f800f8c90ddd624f1fda9005
0d76bfa4c37391d08e5f354e7a927b9216f06b8d5e90d7a5cfb3e08df00dcf94
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd81dd9e4-90be-4864-999a-d4ef740cdc24.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8675
x-amzn-requestid: e640ba03-d4f9-48eb-8ff7-39d81cef1eb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBGgYIAMFdKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-61d21eb86e987d4367afe3f2;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jSk2CZfXfsiwVx2mcrAXxtGe9SOUsHkjGyDnZNTfF5IwDazoyDEiwA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 22:01:10 GMT
age: 48994
etag: "d355033b77ce3f76f800f8c90ddd624f1fda9005"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ff2e4f2-f486-42c3-8a19-b33169da91f3.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ff2e4f2-f486-42c3-8a19-b33169da91f3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14f002009f65f578b930d04203ba700a
7191af2da71fc0c7e3ca17b9f0b0132fc3cdc5b5
fafe43cbdfc56b72318d77bd5d30886bc4370a3f087df3bbbcb61b18ea0bbf81
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ff2e4f2-f486-42c3-8a19-b33169da91f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10627
x-amzn-requestid: f765ace2-73b4-493e-bf09-de605d64f283
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_Z3EfXoAMFRFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f790b-564393940c6453de719f30a0;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:39:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zYwkYYb6vxPU2kAKvbKNpWkil9OsWKTDOgSlI79kR4Ysvo5BE6PTlw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:56:29 GMT
age: 49275
etag: "7191af2da71fc0c7e3ca17b9f0b0132fc3cdc5b5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0737a7ae-3ae7-4fe5-b739-e988b295c795.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0737a7ae-3ae7-4fe5-b739-e988b295c795.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a89e7161745036637a66e8ab5b7efdf9
79c83cc27996b2339bd63764dbb2ae9744db6d70
13b990c3c6a9bee6def25d007e14628c52e427b6f4c718895b1817d5e8e59760
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0737a7ae-3ae7-4fe5-b739-e988b295c795.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8715
x-amzn-requestid: d5e237f4-4c0e-4e3b-b3ae-ea1eb5b7cafc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y5JmTEAwIAMF_Mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632d22f4-48a975a866edc1755858600f;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 03:07:33 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: IVWTWArqWNBCHmVFP9mQm4bAi4f5pq7wJX2ve-ksyx2xmNqHz5pX8A==
via: 1.1 44cd593d82a2d200a94217033c614c6a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 05:31:50 GMT
age: 21954
etag: "79c83cc27996b2339bd63764dbb2ae9744db6d70"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dfdacc8edea3c24dad020d7e9c11b3f4
2b6e37596e88b62f288dc8e8c937fd904fae28d5
338a44f3bcc01bdd197f037dd8f8bf58a18dea00127465488efe76fb72a6fdff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8914
x-amzn-requestid: 8cfdc32e-f04a-4fd6-a1f1-632934a682fd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_EUHqJoAMF7MQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7881-14a6d8ef126409964607e0aa;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kdF6En2vbJhRH1bkYMOuNm5XOIsT1qs3FE281N1SKn1FbyW-oNZsEw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:06 GMT
age: 50438
etag: "2b6e37596e88b62f288dc8e8c937fd904fae28d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30df3bb6-8eae-49ae-ba75-f6dd462463ac.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30df3bb6-8eae-49ae-ba75-f6dd462463ac.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8abddb2cad9c262667f358ecb9b084ae
2d97861b35e3d0ffe6a614037e4ff7946018b4ef
9b4878cf451b7bc5c7467d1e35e2fa12f54e516c878dd54d0293a4ef4947ba5b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30df3bb6-8eae-49ae-ba75-f6dd462463ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4237
x-amzn-requestid: ae2729cb-a956-4214-b3be-b510a3f62698
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y9FNDGu7oAMF7oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632eb586-097d52637dc131002d4ac57d;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 07:45:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TUT-wNEcMOArWarvrWvtkVVf4ZfrTv6CtG7a_aBZN9mZ6L-GawZkZA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 01:14:25 GMT
age: 37399
etag: "2d97861b35e3d0ffe6a614037e4ff7946018b4ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4413
Expires: Sun, 25 Sep 2022 12:51:17 GMT
Date: Sun, 25 Sep 2022 11:37:44 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 11:37:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/s/player/abfb84fe/www-player.css
216.58.211.14200 OK 50 kB URL HTTP/2 www.youtube.com/s/player/abfb84fe/www-player.css
IP 216.58.211.14:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash ecb64b067159be151c0c39f352469f8e
4b21a75947495235f6a389dabaec2db5eef0f1be
a5f047981dbccc524d124a02def835945ef10deaa34f47b49f906d3f9dadebbe
GET /s/player/abfb84fe/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/VdWXDv16sgY?feature=oembed&start&end&wmode=opaque&loop=0&controls=1&mute=0&showinfo=1&rel=0&modestbranding=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49730
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 08:56:31 GMT
expires: Mon, 25 Sep 2023 08:56:31 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 22 Sep 2022 00:22:49 GMT
content-type: text/css
age: 9673
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4413
Expires: Sun, 25 Sep 2022 12:51:17 GMT
Date: Sun, 25 Sep 2022 11:37:44 GMT
Connection: keep-alive
www.youtube.com/s/player/abfb84fe/www-embed-player.vflset/www-embed-player.js
216.58.211.14200 OK 98 kB URL HTTP/2 www.youtube.com/s/player/abfb84fe/www-embed-player.vflset/www-embed-player.js
IP 216.58.211.14:0
File type ASCII text, with very long lines (570)
Hash faf7cb6fdef7f573ad65139bd560afed
e01ff9c1ab3e3a94d92db4c8580b18558256c5ba
e0912caa0cba25c0e92c231d528c723f7bf7d7479c53a8505858c79284013e9e
GET /s/player/abfb84fe/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/VdWXDv16sgY?feature=oembed&start&end&wmode=opaque&loop=0&controls=1&mute=0&showinfo=1&rel=0&modestbranding=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97978
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 14:50:00 GMT
expires: Fri, 22 Sep 2023 14:50:00 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 22 Sep 2022 00:22:49 GMT
content-type: text/javascript
age: 247664
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
walk-a-thon.ca/wp-content/uploads/2018/10/canadahelps-en.svg
207.102.64.45200 OK 40 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/uploads/2018/10/canadahelps-en.svg
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2890)
Hash 32176a925937d8bd0339d1c199093b0b
07cbcda945943c73c739d4adb373accd2fd9194d
b49cac414125045b8c26d228ef951a01db6531af595b788fc6dfe684fa7d0ce8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2018/10/canadahelps-en.svg HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://walk-a-thon.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:44 GMT
Server: Apache/2.4.10
Last-Modified: Fri, 19 Oct 2018 03:19:44 GMT
ETag: "9a40-5788c5ff5dc00"
Accept-Ranges: bytes
Content-Length: 39488
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml
www.youtube.com/s/player/abfb84fe/fetch-polyfill.vflset/fetch-polyfill.js
216.58.211.14200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/abfb84fe/fetch-polyfill.vflset/fetch-polyfill.js
IP 216.58.211.14:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/abfb84fe/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/VdWXDv16sgY?feature=oembed&start&end&wmode=opaque&loop=0&controls=1&mute=0&showinfo=1&rel=0&modestbranding=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 06:27:53 GMT
expires: Mon, 25 Sep 2023 06:27:53 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 22 Sep 2022 00:22:49 GMT
content-type: text/javascript
age: 18591
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Sep 2022 12:31:58 GMT
expires: Sun, 24 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 83146
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
walk-a-thon.ca/wp-content/uploads/2018/10/Thankyou-300x207.jpg
207.102.64.45200 OK 15 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/uploads/2018/10/Thankyou-300x207.jpg
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x207, components 3\012- data
Hash da1756aa401c99113f3d65485b64db42
9396d5d47fe9a33c8f75dec27f311e02ec1ce96f
6cd3667386fd55cc36e1f1fd70c08f17265f19f5304c4a5873c727a5cff03463
GET /wp-content/uploads/2018/10/Thankyou-300x207.jpg HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://walk-a-thon.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:44 GMT
Server: Apache/2.4.10
Last-Modified: Fri, 19 Oct 2018 03:08:30 GMT
ETag: "3903-5788c37d48a19"
Accept-Ranges: bytes
Content-Length: 14595
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
www.youtube.com/s/player/abfb84fe/player_ias.vflset/en_US/base.js
216.58.211.14200 OK 592 kB URL HTTP/2 www.youtube.com/s/player/abfb84fe/player_ias.vflset/en_US/base.js
IP 216.58.211.14:0
File type ASCII text, with very long lines (554)
Size 592 kB (591484 bytes)
Hash f6b28b22a5f2e47964b6b5c32af48276
b6d9d5a49d45411191061e83010d785041092261
17b8660161314c54f5573c141d12d99ffe1e0c1dd139680efe3a464e48621ddc
GET /s/player/abfb84fe/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/VdWXDv16sgY?feature=oembed&start&end&wmode=opaque&loop=0&controls=1&mute=0&showinfo=1&rel=0&modestbranding=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 591484
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 14:49:10 GMT
expires: Fri, 22 Sep 2023 14:49:10 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 22 Sep 2022 00:22:49 GMT
content-type: text/javascript
age: 247714
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
walk-a-thon.ca/wp-content/plugins/contact-form-7/images/ajax-loader.gif
207.102.64.45200 OK 847 B URL HTTP/1.1 walk-a-thon.ca/wp-content/plugins/contact-form-7/images/ajax-loader.gif
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type GIF image data, version 89a, 16 x 16\012- data
Hash af962b37779a443a77ab836b3b7a93f5
cad7feb11183c71b87470e11e022b16ecdcc7ac9
65b72e15d975f67fbd1cb126d57772c06c21fa016e5651b6ce213b26ce0e6877
GET /wp-content/plugins/contact-form-7/images/ajax-loader.gif HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://walk-a-thon.ca/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.0.4
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:44 GMT
Server: Apache/2.4.10
Last-Modified: Fri, 19 Oct 2018 02:26:28 GMT
ETag: "34f-5788ba17fb93a"
Accept-Ranges: bytes
Content-Length: 847
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/gif
walk-a-thon.ca/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
207.102.64.45200 OK 77 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://walk-a-thon.ca/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:44 GMT
Server: Apache/2.4.10
Last-Modified: Fri, 19 Oct 2018 02:25:52 GMT
ETag: "12d68-5788b9f54caa6"
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 267300d587831dda7559c30c40cc614e
d7ff0b9754e61f5d4178eddb5e63c3390ab559c8
ec7aad1a3116ce8ef5258b49de87cf3456c8c4890206fa5d46c8e510ded80ac0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 11:37:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
walk-a-thon.ca/wp-content/uploads/2018/11/Marty-Osipov-227x300.jpg
207.102.64.45200 OK 14 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/uploads/2018/11/Marty-Osipov-227x300.jpg
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 180x180, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=9, manufacturer=Canon, model=Canon PowerShot SD750, xresolution=150, yresolution=158, resolutionunit=2, software=Adobe Photoshop Album Starter Edition 3.2, datetime=2009:09:26 13:53:33], baseline, precision 8, 227x300, components 3\012- data
Hash 4dbffa81f6ae843ec8ef1d6f7f004453
67f24e91d60048fff15ddc5df4b30bc7bd73c6df
0f91560fd0b7cdd969c93e0b000836a01a686454bbc6fadbb400d58047a959b9
GET /wp-content/uploads/2018/11/Marty-Osipov-227x300.jpg HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://walk-a-thon.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:44 GMT
Server: Apache/2.4.10
Last-Modified: Sat, 10 Nov 2018 23:07:53 GMT
ETag: "3793-57a57899c0b4b"
Accept-Ranges: bytes
Content-Length: 14227
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
walk-a-thon.ca/wp-content/uploads/2018/11/IMG_0070-300x201.jpg
207.102.64.45200 OK 29 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/uploads/2018/11/IMG_0070-300x201.jpg
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=16, height=4032, bps=0, PhotometricIntepretation=RGB, manufacturer=Apple, model=iPhone 6s, orientation=upper-left, width=3024], baseline, precision 8, 300x201, components 3\012- data
Hash 90abaa091e6ee43bd4ef8317817c7ac7
40bcda3ddc37c6f2d477277302ab4e50eb55bffd
eb1891a1e3e025a872bc1ba722236c10dd602d094329905b781d39ef0fdbcec4
GET /wp-content/uploads/2018/11/IMG_0070-300x201.jpg HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://walk-a-thon.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:44 GMT
Server: Apache/2.4.10
Last-Modified: Sat, 10 Nov 2018 23:31:49 GMT
ETag: "72ef-57a57df3fa38b"
Accept-Ranges: bytes
Content-Length: 29423
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
walk-a-thon.ca/wp-content/uploads/2018/11/Greg-headshot-4-20181107-125231-234x300.jpg
207.102.64.45200 OK 20 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/uploads/2018/11/Greg-headshot-4-20181107-125231-234x300.jpg
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 234x300, components 3\012- data
Hash f72aa78a6928b11e261bffac1a7cc371
85bf59860de27e450515e9313e4866cb29978019
3a9177ed4a2172231c600edc2844263cac7a7513be5fc6924047208e7f17d186
GET /wp-content/uploads/2018/11/Greg-headshot-4-20181107-125231-234x300.jpg HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://walk-a-thon.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:44 GMT
Server: Apache/2.4.10
Last-Modified: Sat, 10 Nov 2018 23:11:15 GMT
ETag: "4de8-57a5795aa2aa2"
Accept-Ranges: bytes
Content-Length: 19944
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c6a4a8e3b18e562b4bed71eefd913481
9ed32697f78f7b72531decd850de97499c6f2574
54041ea6df222d529d39122b6e7d2e21b082b7c1f28f5565b088e3941b7788f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 11:37:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cd8e3570655a88b47a20fb93af0fc0c5
6ebbd655af47cbe0788f5ea6a7d9cd457bda2f33
12bc57afd44ddf43fc3802ecc23e743660b146acff0958093fcea30e96b02f6b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 11:37:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
216.58.207.230200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 216.58.207.230:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 11:33:03 GMT
expires: Sun, 25 Sep 2022 11:48:03 GMT
cache-control: public, max-age=900
age: 281
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
walk-a-thon.ca/wp-content/uploads/2018/11/chris-232x300.jpg
207.102.64.45200 OK 9.8 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/uploads/2018/11/chris-232x300.jpg
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 232x300, components 3\012- data
Hash 114468ad4d698acfb5e515d51c0daf02
1a683b53108ebf310ca14978d679659684a34e16
5cd8393c94fc39031af6dd8352e26a894ff3c8a4141e20de2f4c93e212b3cc0b
GET /wp-content/uploads/2018/11/chris-232x300.jpg HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://walk-a-thon.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:44 GMT
Server: Apache/2.4.10
Last-Modified: Sat, 10 Nov 2018 23:11:40 GMT
ETag: "265a-57a579729c5d0"
Accept-Ranges: bytes
Content-Length: 9818
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
googleads.g.doubleclick.net/pagead/id
216.58.207.194302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 216.58.207.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Sun, 25 Sep 2022 11:37:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
walk-a-thon.ca/wp-content/uploads/2017/10/FPO-Walk.jpg
207.102.64.45200 OK 111 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/uploads/2017/10/FPO-Walk.jpg
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 880x587, components 3\012- data
Size 111 kB (110951 bytes)
Hash a062ebda034b316f8e309d7344d71805
90791f8dd2b58b2791533389302c6ee1ee0e9e49
6f56f0e5632323455d875dc38b428a9124a41901543bfe7a362ccdf44a1b1a67
GET /wp-content/uploads/2017/10/FPO-Walk.jpg HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://walk-a-thon.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:44 GMT
Server: Apache/2.4.10
Last-Modified: Fri, 19 Oct 2018 00:13:35 GMT
ETag: "1b167-57889c63b40f3"
Accept-Ranges: bytes
Content-Length: 110951
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
walk-a-thon.ca/wp-content/uploads/2018/11/IMG_0072.jpg
207.102.64.45200 OK 147 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/uploads/2018/11/IMG_0072.jpg
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=16, height=4032, bps=0, PhotometricIntepretation=RGB, manufacturer=Apple, model=iPhone 6s, orientation=upper-left, width=3024], baseline, precision 8, 602x808, components 3\012- data
Size 147 kB (147175 bytes)
Hash 41b66302b5f109754b5fbc38d2919500
a3a21628f45aea22651840fd8280a8ae06657ba8
4f3ee87ac8871d00d00f910efbdde0cb7152aec77243a262e79dfe729581787a
GET /wp-content/uploads/2018/11/IMG_0072.jpg HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://walk-a-thon.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:44 GMT
Server: Apache/2.4.10
Last-Modified: Sat, 10 Nov 2018 23:35:16 GMT
ETag: "23ee7-57a57eb96d2b6"
Accept-Ranges: bytes
Content-Length: 147175
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.138200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sun, 25 Sep 2022 11:37:45 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c6a4a8e3b18e562b4bed71eefd913481
9ed32697f78f7b72531decd850de97499c6f2574
54041ea6df222d529d39122b6e7d2e21b082b7c1f28f5565b088e3941b7788f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 11:37:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 23ba09c14e337ac70d877d2ed33dc795
175d5155889b45711d0a9050116591ad25e74891
cb117ac56fe205bfca3b512ed3d8ddb46a7115446d099739cc4d111c853696ae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 11:37:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.138200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.138:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash c9bb6d891eff076e3240a078469b4f11
5729459217d827ce1e9678c2e3b61d5925e53726
33cc66d8c49d74bd6ea397d843a51702d2b9b444c8001cdab70e727992390c37
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 25 Sep 2022 11:37:45 GMT
server: ESF
cache-control: private
content-length: 30919
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cd8e3570655a88b47a20fb93af0fc0c5
6ebbd655af47cbe0788f5ea6a7d9cd457bda2f33
12bc57afd44ddf43fc3802ecc23e743660b146acff0958093fcea30e96b02f6b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 11:37:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/nrTPYF1MeWhW5u-1uricHJVJdskICRuFTkjv60UEiAs.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/nrTPYF1MeWhW5u-1uricHJVJdskICRuFTkjv60UEiAs.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (35828)
Hash 1ed889cab64ed21b731024b197a7a51c
ac82dc07537c66a13443af1b52503291de1ade7e
253b4a86a0907fa19514319f0238b813391fde9211a048823cae7220a432442e
GET /js/th/nrTPYF1MeWhW5u-1uricHJVJdskICRuFTkjv60UEiAs.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14144
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 05:04:51 GMT
expires: Thu, 21 Sep 2023 05:04:51 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 15:00:00 GMT
content-type: text/javascript
age: 369174
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 2d6b384162abb715786693222b341a43
2a68f142c91b5700b9481a64e6c6aa23070b3839
2a2e9dfac0cf910ec76692a5d6fa3462422b1cb9b804934b275baca7b0cf1ebc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 11:37:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 64b39684d4c80b63458f11ed8b8c5d17
6abc0bd0c0318d9e7a362eb3949bfe81a48c6343
c307464d222c4a9e1206586f0ebd7155de49baa84bbce8c8d0d4ce5e122cb076
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 11:37:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/VdWXDv16sgY/hqdefault.webp
142.250.74.54200 OK 20 kB URL HTTP/2 i.ytimg.com/vi_webp/VdWXDv16sgY/hqdefault.webp
IP 142.250.74.54:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 480x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 66f6907c25d2256c410c64aad7220b0e
50333979c5e9e61cd29b2c9fc5a0e3f3d56695e7
b7a309838d9490e2ec09c5716cc98faa9bbf96db48fc6e15685a7ac143c11a5f
GET /vi_webp/VdWXDv16sgY/hqdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 20238
date: Sun, 25 Sep 2022 11:37:45 GMT
expires: Sun, 25 Sep 2022 13:37:45 GMT
cache-control: public, max-age=7200
etag: "1509072551"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
yt3.ggpht.com/ytc/AMLnZu9YEuUE7HY7u3XHhkoltAxt9tH-Qrx4AxQCd5YenQ=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 4.5 kB URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu9YEuUE7HY7u3XHhkoltAxt9tH-Qrx4AxQCd5YenQ=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 6986f30e18c3e69902bb7d6f0065f515
3333b5794148436ccccc6f4bb3fa592985524d4a
6b431703bbcd0fb115db17988e6468528928bc2ef654cfd78fc4ad4ce6156c40
GET /ytc/AMLnZu9YEuUE7HY7u3XHhkoltAxt9tH-Qrx4AxQCd5YenQ=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 4510
x-xss-protection: 0
date: Sun, 25 Sep 2022 09:49:38 GMT
expires: Sun, 31 Jul 2022 20:04:50 GMT
cache-control: public, max-age=86400, no-transform
age: 6487
etag: "v13c"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 2d6b384162abb715786693222b341a43
2a68f142c91b5700b9481a64e6c6aa23070b3839
2a2e9dfac0cf910ec76692a5d6fa3462422b1cb9b804934b275baca7b0cf1ebc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 11:37:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 64b39684d4c80b63458f11ed8b8c5d17
6abc0bd0c0318d9e7a362eb3949bfe81a48c6343
c307464d222c4a9e1206586f0ebd7155de49baa84bbce8c8d0d4ce5e122cb076
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 11:37:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
walk-a-thon.ca/wp-content/uploads/2018/10/003.jpg
207.102.64.45200 OK 211 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/uploads/2018/10/003.jpg
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2018:07:17 09:15:27], baseline, precision 8, 1920x1280, components 3\012- data
Size 211 kB (211403 bytes)
Hash 65f706df30cf34eb71f33aded77a9be5
59cf7e3d89ac7e61ea6ecf2a5626d910e81cc8f8
24f025a598615d4a077514aa971d2abf2ad74235e5275e8aaa9634902dcd841b
GET /wp-content/uploads/2018/10/003.jpg HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://walk-a-thon.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:44 GMT
Server: Apache/2.4.10
Last-Modified: Fri, 19 Oct 2018 02:27:52 GMT
ETag: "339cb-5788ba6808c08"
Accept-Ranges: bytes
Content-Length: 211403
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
walk-a-thon.ca/wp-content/uploads/2018/11/cropped-WalkaThon_Logo_Hz-1024x545-32x32.png
207.102.64.45200 OK 2.0 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/uploads/2018/11/cropped-WalkaThon_Logo_Hz-1024x545-32x32.png
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 73140277b2bba05cd82261ad5fcdea94
a72968f0b161ec9984a7407d506a0554ac993119
f3f2ae0b9fd1e695e2ea85be79b7a7b189398294428804883132bfc0346d4178
GET /wp-content/uploads/2018/11/cropped-WalkaThon_Logo_Hz-1024x545-32x32.png HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://walk-a-thon.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:45 GMT
Server: Apache/2.4.10
Last-Modified: Sat, 10 Nov 2018 23:52:50 GMT
ETag: "7da-57a582a6b244c"
Accept-Ranges: bytes
Content-Length: 2010
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
walk-a-thon.ca/wp-content/uploads/2018/11/cropped-WalkaThon_Logo_Hz-1024x545-192x192.png
207.102.64.45200 OK 28 kB URL HTTP/1.1 walk-a-thon.ca/wp-content/uploads/2018/11/cropped-WalkaThon_Logo_Hz-1024x545-192x192.png
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 433b640b910c8c705cb5049cddbaf3f0
a9c762b8dec7483e1ec16ce001c270ba87850ede
0dfc874a85bf297176f715519ff799439d674654bdc9f39d504d5c08507bef6f
GET /wp-content/uploads/2018/11/cropped-WalkaThon_Logo_Hz-1024x545-192x192.png HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://walk-a-thon.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:45 GMT
Server: Apache/2.4.10
Last-Modified: Sat, 10 Nov 2018 23:52:50 GMT
ETag: "6c96-57a582a6a1aac"
Accept-Ranges: bytes
Content-Length: 27798
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
walk-a-thon.ca/wp-content/uploads/2018/11/mike.jpg
207.102.64.45200 OK 1.1 MB URL HTTP/1.1 walk-a-thon.ca/wp-content/uploads/2018/11/mike.jpg
IP 207.102.64.45:0
ASN #852 TELUS Communications
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=13], baseline, precision 8, 2399x3199, components 3\012- data
Size 1.1 MB (1097668 bytes)
Hash 4f25fff7a71d860ec7c40dcd566a4082
7cc880de8e2d76422ee267d5906053ba593369ba
0fd238c59ced8ffebca12e94ae4bf202762749c9f0bd26257eb6c8ba70e01134
GET /wp-content/uploads/2018/11/mike.jpg HTTP/1.1
Host: walk-a-thon.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://walk-a-thon.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 11:37:44 GMT
Server: Apache/2.4.10
Last-Modified: Fri, 16 Nov 2018 21:58:36 GMT
ETag: "10bfc4-57acf44ec75f5"
Accept-Ranges: bytes
Content-Length: 1097668
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.138200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sun, 25 Sep 2022 11:37:45 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.138200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.138:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 88e1f68007d32aec13c662c325dc7e2a
74a2a9524c9dd5572a1594a0db7d0700ebba185b
61ae6fe6940c30da225f80ef645fd26c04c1b41efa205d766279a06a7cceb1de
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1280
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 25 Sep 2022 11:37:45 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/VdWXDv16sgY?feature=oembed&start&end&wmode=opaque&loop=0&controls=1&mute=0&showinfo=1&rel=0&modestbranding=1
216.58.211.14200 OK 0 B URL HTTP/2 www.youtube.com/embed/VdWXDv16sgY?feature=oembed&start&end&wmode=opaque&loop=0&controls=1&mute=0&showinfo=1&rel=0&modestbranding=1
IP 216.58.211.14:0
GET /embed/VdWXDv16sgY?feature=oembed&start&end&wmode=opaque&loop=0&controls=1&mute=0&showinfo=1&rel=0&modestbranding=1 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://walk-a-thon.ca/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 25 Sep 2022 11:37:44 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=5EvzrsYq2yc; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=Mr5RBWv0WOg; Domain=.youtube.com; Expires=Fri, 24-Mar-2023 11:37:44 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+032; expires=Tue, 24-Sep-2024 11:37:44 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COpen+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=4.9.21
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COpen+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=4.9.21
IP 142.250.74.10:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COpen+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=4.9.21 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://walk-a-thon.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 25 Sep 2022 11:37:42 GMT
date: Sun, 25 Sep 2022 11:37:42 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2