| firefox.settings.services.mozilla.com/v1/ | 143.204.55.35 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.35:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash2d12f67fe57a87e7366b662d153a5582 d7b02d81cc74f24a251d9363e0f4b0a149264ec1 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 29 Sep 2022 19:15:52 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Hb54XMcSwry6Kul20H4EVCBkGSJ6eWUpApPVt8T6jpAJExRucDugUg==
Age: 1418
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash7fb7c70f7f4e2cee27eb0e7d875931f7 98fca3817a551b1daecebae103a48e718b8b5a53 2a40f957a6b1734aa3f87cff51b673f0536732db15b09033dd604879692df349
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8763
Expires: Thu, 29 Sep 2022 22:05:33 GMT
Date: Thu, 29 Sep 2022 19:39:30 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain | 143.204.55.110 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain IP143.204.55.110:0
File typePEM certificate\012- , ASCII text Hash6113f8408c59aebe188d6af273b90743 7398873bf00f99944eaa77ad3ebc0d43c23dba6b b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 29 Sep 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: up2NC4ZsCI-orehW6pMxwTKHfiD6yIO5hBdpNnPNlpf9ltE8MzdbwQ==
age: 51063
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 19:39:30 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/ | 192.185.16.114 | 301 Moved Permanently | 0 B |
IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET / HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 29 Sep 2022 19:39:30 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Redirect-By: WordPress
Set-Cookie: PHPSESSID=e39aee7fe881be76e8b608e851a621e6; path=/
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://doulosforchrist.org/
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 143.204.55.35 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP143.204.55.35:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 29 Sep 2022 19:29:33 GMT
Expires: Thu, 29 Sep 2022 19:46:28 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3_Xd5oDgZcUXuiOZZnVY0UKU-Xzdq_LTGSOOpc33nJ7ehnDi-_69Gw==
Age: 598
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashf09cb223e3dc028c58cf32c2274c3766 ca7f1663a1200941986e786353ed2f3ff50bd0b2 9b89a5534b1a84f0a86f150dc7f1f699bb972f7b8e151b29c02454dd939066ca
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1258
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:31 GMT
Last-Modified: Thu, 29 Sep 2022 19:18:33 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashfe068ac6bc15214d600d86718ebe3013 5d7db7a7e67e6d464bae0f53e078bd35bdeb7204 cd690a294c1cb0176106a10d4cbd71f36db68eeaa77f92a980fce1cfcf965a4b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CD690A294C1CB0176106A10D4CBD71F36DB68EEAA77F92A980FCE1CFCF965A4B"
Last-Modified: Thu, 29 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21584
Expires: Fri, 30 Sep 2022 01:39:15 GMT
Date: Thu, 29 Sep 2022 19:39:31 GMT
Connection: keep-alive
|
|
| push.services.mozilla.com/ | 35.164.183.116 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP35.164.183.116:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8CmI2bvCBeZrwWUrSwtXDQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: uIofc1gnNc+gAKOIFlyyeSDb1/M=
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash3e9d3eab1fba386c4fdf3af9a757cfa9 b50127a1072c95ed71110b07dd58eab72747e6f8 869e09d135cff97a1073e32fa1808d0068195421369d138ad6bba86cfef18091
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash3e9d3eab1fba386c4fdf3af9a757cfa9 b50127a1072c95ed71110b07dd58eab72747e6f8 869e09d135cff97a1073e32fa1808d0068195421369d138ad6bba86cfef18091
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| doulosforchrist.org/wp-content/themes/enfold/css/grid.css?ver=4.1 | 192.185.16.114 | 200 OK | 2.6 kB |
URL HTTP/2doulosforchrist.org/wp-content/themes/enfold/css/grid.css?ver=4.1 IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
Hash825d6a58ea9a7d5cdaa5d64c1f8294d5 c07d975eb7a186fbf6e3b758af1afeb25aa9e401 20f87706dfa22c15473a8dd85208baa549def4762f1def358962c5dd7181eeb0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/enfold/css/grid.css?ver=4.1 HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 01 Mar 2020 03:51:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2609
content-type: text/css
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-includes/css/dist/block-library/style.min.css?ver=5.5.10 | 192.185.16.114 | 200 OK | 10 kB |
URL HTTP/2doulosforchrist.org/wp-includes/css/dist/block-library/style.min.css?ver=5.5.10 IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (27100) Hashb650e5ddf81930091a075380ccc8c5b1 0ab1a085f80e5dea10ac546ce874e50bbf356adc 82ec65bdf3e49407d0cfbeb82aba8c5af94296015ff9ef5ddcebd4fa2d4b40cc
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.5.10 HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Sep 2020 00:58:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10450
content-type: text/css
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/themes/enfold/js/aviapopup/magnific-popup.css?ver=4.1 | 192.185.16.114 | 200 OK | 2.3 kB |
URL HTTP/2doulosforchrist.org/wp-content/themes/enfold/js/aviapopup/magnific-popup.css?ver=4.1 IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
Hashff34b1578d37d78f5749f88a66dd57c8 c69a3faba46cbddb1d69a04d5736bc2edc2856e9 5a1b9898841128d789a4d239c4be879a23c62213128044817c8fd907ed2461df
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/enfold/js/aviapopup/magnific-popup.css?ver=4.1 HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 01 Mar 2020 03:51:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2314
content-type: text/css
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/themes/enfold/css/custom.css?ver=4.1 | 192.185.16.114 | 200 OK | 325 B |
URL HTTP/2doulosforchrist.org/wp-content/themes/enfold/css/custom.css?ver=4.1 IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
Hash712b456a13d44b811d2d1717a9f5612a 7c1756c1ac2cde779cffbea1402e4c7a28bbaaaf 4d123778016ce146032d877b9e58d279b9afc18ded2106f49d6cff8d218084b3
GET /wp-content/themes/enfold/css/custom.css?ver=4.1 HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 01 Mar 2020 03:51:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 325
content-type: text/css
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/themes/enfold/js/mediaelement/skin-1/mediaelementplayer.css?ver=4.1 | 192.185.16.114 | 200 OK | 4.9 kB |
URL HTTP/2doulosforchrist.org/wp-content/themes/enfold/js/mediaelement/skin-1/mediaelementplayer.css?ver=4.1 IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
Hash3978e2e704f0f2548563c800ad47b56a 5988b67f59bd430f7bc854e45574cc5121253f53 f3d3a537cea3d86c36080eae7c211ae419eab3555df9d7b639e09c35ae4aefea
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/enfold/js/mediaelement/skin-1/mediaelementplayer.css?ver=4.1 HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 01 Mar 2020 03:51:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4896
content-type: text/css
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/themes/enfold-child/style.css?ver=4.1 | 192.185.16.114 | 200 OK | 617 B |
URL HTTP/2doulosforchrist.org/wp-content/themes/enfold-child/style.css?ver=4.1 IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
Hash5baf8ee9e831f4458715ab3d112b9190 9a99cc8cecc10d65e71edf51a030939864e2a3d4 4e66e18e60fce4af35dfbc7bc570510c46fc1763afeffe877ae652e1e5ac3fdb
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/enfold-child/style.css?ver=4.1 HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 01 Mar 2020 03:51:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 617
content-type: text/css
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/themes/enfold/css/base.css?ver=4.1 | 192.185.16.114 | 200 OK | 5.0 kB |
URL HTTP/2doulosforchrist.org/wp-content/themes/enfold/css/base.css?ver=4.1 IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (492) Hash453d9d15c1e7ccf3e043a3918d29f6cc ee7c86d4b43ae196eb3fdf0203c311d82b94f033 35f4bea9fff8e4d9d043f86ab90a5bb29dc21adb711aef829b30bfbccf318fe1
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/enfold/css/base.css?ver=4.1 HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 01 Mar 2020 03:51:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4960
content-type: text/css
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/themes/enfold/css/layout.css?ver=4.1 | 192.185.16.114 | 200 OK | 34 kB |
URL HTTP/2doulosforchrist.org/wp-content/themes/enfold/css/layout.css?ver=4.1 IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
Hash68ff1b62edb80231985ac91773e60d2d 149b80889f0501923900a392234b7b3d71002e21 1f342f0d6a27c864ddff3a246454cb93729576ad17e96cdcc97e12518fb95b46
GET /wp-content/themes/enfold/css/layout.css?ver=4.1 HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 01 Mar 2020 03:51:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/themes/enfold/css/shortcodes.css?ver=4.1 | 192.185.16.114 | 200 OK | 50 kB |
URL HTTP/2doulosforchrist.org/wp-content/themes/enfold/css/shortcodes.css?ver=4.1 IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
Hashbdcfe38a8408cecb1ae6e2034cf5b409 54c3df3059fe42a21a8a0578ddc6717dcafcf7d7 afeae2ad3615bbe0c3874f431113580111edb7dd68dfeddeff64527fa6490f04
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/enfold/css/shortcodes.css?ver=4.1 HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 01 Mar 2020 03:51:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash47f245f9a098439e59436f81d4c03415 950b3eadfd6fc7f859130fa2c63934c6ccd49889 25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14806
Expires: Thu, 29 Sep 2022 23:46:18 GMT
Date: Thu, 29 Sep 2022 19:39:32 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F783cca30-851d-4c3b-97b3-dfc92f711d23.jpeg | 34.120.237.76 | 200 OK | 4.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F783cca30-851d-4c3b-97b3-dfc92f711d23.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashaed4d25286420a1405c3274931194002 c17c7bdfa4b40f9a0634da65c610869e5c410bf1 f32058bdd49930b927d1f9fdfd204ed054b4f85e0d679eff067d522d42ac504a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F783cca30-851d-4c3b-97b3-dfc92f711d23.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4093
x-amzn-requestid: 4275d743-8507-4fbe-83d1-cc0da2adef7b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMKoPHCMIAMF7wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be34-5ddb717430e7b38e3ee53657;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:35:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: H713oiiX6wslZytV_P5NblH5vT7KZ2fv1G3DLKLrH5nw0lHOquia4w==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 21:40:48 GMT
etag: "c17c7bdfa4b40f9a0634da65c610869e5c410bf1"
content-type: image/jpeg
age: 79124
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/uploads/dynamic_avia/enfold_child.css?ver=5edf7dfd230ab | 192.185.16.114 | 200 OK | 30 kB |
URL HTTP/2doulosforchrist.org/wp-content/uploads/dynamic_avia/enfold_child.css?ver=5edf7dfd230ab IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
Hash17f91212e178431fa437b1d3a74958dd 41c47ae390d72548b6ac8971ecf7b0e99831dbce 04be5fda4fff154d3d922fc9e2de6bab31361f59a76c2c8863d09aabc3d4a05d
GET /wp-content/uploads/dynamic_avia/enfold_child.css?ver=5edf7dfd230ab HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 09 Jun 2020 12:18:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Open+Sans:400,600 | 216.58.211.10 | 200 OK | 10 kB |
URL HTTP/2fonts.googleapis.com/css?family=Open+Sans:400,600 IP216.58.211.10:0
Hashc5f2e3469d149ec0a928e9a9badae747 4247b4dad2d0ab5027db6dc918e51c2dc5b68431 d04b0bdd7ad964eb5096ced449cf7d871d88ad46088a351cf7351a65616db417
GET /css?family=Open+Sans:400,600 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 29 Sep 2022 19:39:32 GMT
date: Thu, 29 Sep 2022 19:39:32 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75de31dd-bbf0-4a21-bfac-94f0062f4da4.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75de31dd-bbf0-4a21-bfac-94f0062f4da4.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashf4505f57697072468da82e0b536d0d5b e1067a2dfbc22e7eb196046d57bd1e17604dba75 b5e79054f165f38b99f93a8128284f82076523988aeb102b85dd8ff1a2870d00
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75de31dd-bbf0-4a21-bfac-94f0062f4da4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10023
x-amzn-requestid: 0cb6b9a1-0707-4094-b197-5a0add2df717
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMK4dHJLIAMFWmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be9c-2d8bbb17157900f126c5bb3c;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:37:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wZ2hBqHAdwimAVV3p-CJFrb9zQ-CTN5ar9CB-cu0mZoENYUFTKKPWQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ddaf46a95abcfc80e8eae76235e2127c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 21:40:43 GMT
age: 79129
etag: "e1067a2dfbc22e7eb196046d57bd1e17604dba75"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9d0e9057-f203-4080-95b8-652ecd15effa.jpeg | 34.120.237.76 | 200 OK | 7.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9d0e9057-f203-4080-95b8-652ecd15effa.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashc62a6368c456e9614ca4c8e360a2ef12 35ec6e80d324bb215796c590a7ffafbaea55d88e 90a37acc6beda1aa98a98cb84e00a7e469d6d919a14f4709c5f67a83ae95278d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9d0e9057-f203-4080-95b8-652ecd15effa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7859
x-amzn-requestid: 34d0718f-46d4-446f-bb06-8449bd8f4287
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZIlO4FcBoAMFy0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63334f2b-58ae81c9077e4f1575750f15;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 19:29:47 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: XwUZAphoqael30FgWCRQlHqBpjBOSG7rnlbPNKyojhONZ625gCUI5g==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 07:36:34 GMT
age: 43378
etag: "35ec6e80d324bb215796c590a7ffafbaea55d88e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg | 34.120.237.76 | 200 OK | 14 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash11594ce7500d8776bfd5162b17f87d72 72603efba82d649ce5a7a0ca45dc830c0d9ef012 511f5aa33750cd4a02cf3968bf165ffa521e77cb4fb7135b516d7ad14e8b9d01
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14073
x-amzn-requestid: 4ff72590-e28d-4d4b-af1a-4d62e75e3d66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMKnpEsJoAMFlBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be30-38b014a25551aa0a2ab04ccf;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:35:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gP4V4fq53Z5BFfjDlx1LCR9AhUPTq0qusBaOY_UEXjJjM6SByqDgXg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 21:41:45 GMT
etag: "72603efba82d649ce5a7a0ca45dc830c0d9ef012"
content-type: image/jpeg
age: 79067
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/plugins/youtube-embed-plus/images/playhover.png | 192.185.16.114 | 200 OK | 3.7 kB |
URL HTTP/2doulosforchrist.org/wp-content/plugins/youtube-embed-plus/images/playhover.png IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typePNG image data, 256 x 192, 8-bit/color RGBA, non-interlaced\012- data Hashe78a551520523afcab5fa8a6be3d94a6 35cb8deee72e028925b4d3f77d8ca154832e5db8 92cc497684b20761d2554b7bbcb8c11fc0ac08da017619eb2e6c22721b6006d8
GET /wp-content/plugins/youtube-embed-plus/images/playhover.png HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 04 Jun 2021 15:21:06 GMT
accept-ranges: bytes
content-length: 3730
content-type: image/png
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/plugins/youtube-embed-plus/images/play-subscribe.png | 192.185.16.114 | 200 OK | 5.5 kB |
URL HTTP/2doulosforchrist.org/wp-content/plugins/youtube-embed-plus/images/play-subscribe.png IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typePNG image data, 256 x 192, 8-bit/color RGBA, non-interlaced\012- data Hash43601a731fc82819be53793edaff9288 4c3cd48d3cf85c18143fa7a44439888c6c255a4f ead42eebe4f2f64dab36c7f8b2add9a55a03f21cfd46df1eed232da660f8c2ce
GET /wp-content/plugins/youtube-embed-plus/images/play-subscribe.png HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 04 Jun 2021 15:21:06 GMT
accept-ranges: bytes
content-length: 5452
content-type: image/png
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/plugins/youtube-embed-plus/images/gallery-page-loader.gif | 192.185.16.114 | 200 OK | 723 B |
URL HTTP/2doulosforchrist.org/wp-content/plugins/youtube-embed-plus/images/gallery-page-loader.gif IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeGIF image data, version 89a, 16 x 11\012- data Hashd2522fcf3526bf02dde8247c80c537e3 7f4aed1842371f6cc3831d84ffa3b7331e11e750 0cc9ef29c363de46bf7ec289bb5ba61982d28ffa7ea0b05a3861d6b0294c4a62
GET /wp-content/plugins/youtube-embed-plus/images/gallery-page-loader.gif HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 04 Jun 2021 15:21:06 GMT
accept-ranges: bytes
content-length: 723
content-type: image/gif
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/uploads/2019/11/BishopandPastora1-1-951x430.jpg | 192.185.16.114 | 200 OK | 72 kB |
URL HTTP/2doulosforchrist.org/wp-content/uploads/2019/11/BishopandPastora1-1-951x430.jpg IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 951x430, components 3\012- data Hashcf063ff39ee6df8d4d31a83ea4012db4 fbb17be3e07ab51915f26376deb2afabadd1d547 cb2c64b8ab762664ce944aa5b306a91b7b27eb72f11a125fc4218f1bd53d0026
GET /wp-content/uploads/2019/11/BishopandPastora1-1-951x430.jpg HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 01 Mar 2020 03:50:59 GMT
accept-ranges: bytes
content-length: 71658
content-type: image/jpeg
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.5.10 | 192.185.16.114 | 200 OK | 544 B |
URL HTTP/2doulosforchrist.org/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.5.10 IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (1193), with no line terminators Hashf5a258ea9f1581ecbb0e72cc6665c1c3 a85af53230df5278128438f9dd3539356d65b92f c91bcf01aa9b5858ce368bdf176b93ebe701ce72ee09f4ef132e7fa3df1b1d98
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.5.10 HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 06:34:41 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 544
content-type: application/javascript
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=13.4.2 | 192.185.16.114 | 200 OK | 1.1 kB |
URL HTTP/2doulosforchrist.org/wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=13.4.2 IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeHTML document, ASCII text, with very long lines (2734) Hash5c02ce9949d375d1c2b6d39cf6bccb21 993582d2f2b113449f4d04b2ba11c579fb611b6c 3615e1f9cfbd431501bbc8d5a924c5df811e95b0b07df41b16c2306aab2a2cbe
GET /wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=13.4.2 HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 04 Jun 2021 15:21:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1050
content-type: application/javascript
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/themes/enfold/js/avia-compat.js?ver=4.1 | 192.185.16.114 | 200 OK | 969 B |
URL HTTP/2doulosforchrist.org/wp-content/themes/enfold/js/avia-compat.js?ver=4.1 IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
Hash1ca12adcca7aaed5b7650a836ed02ec9 5841f93f096ab336414092bed681b293051aa8df e7821b1f2d4095db0092aeb3b243bffbed2cccff2b5e3680d3b037a0596223b7
GET /wp-content/themes/enfold/js/avia-compat.js?ver=4.1 HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 01 Mar 2020 03:51:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 969
content-type: application/javascript
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-includes/js/wp-embed.min.js?ver=5.5.10 | 192.185.16.114 | 200 OK | 777 B |
URL HTTP/2doulosforchrist.org/wp-includes/js/wp-embed.min.js?ver=5.5.10 IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (1391) Hash06ece4d01ee88297957c9f4cdcaa4df5 2b3321654a8ead1e1493eac9b5f1fdfb65e2037f 0b17eb6ab02e69f50ac52ca157375bd69853ae4f4796eb48a35eb4a12fc7af8b
GET /wp-includes/js/wp-embed.min.js?ver=5.5.10 HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 06:34:41 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 777
content-type: application/javascript
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/plugins/youtube-embed-plus/styles/ytprefs.min.css?ver=13.4.2 | 192.185.16.114 | 200 OK | 1.7 kB |
URL HTTP/2doulosforchrist.org/wp-content/plugins/youtube-embed-plus/styles/ytprefs.min.css?ver=13.4.2 IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (6027) Hashd1e38cd928c954aff2f469d618843e6c c056b4e696bfec7c022784a3a5a28ac7995d17f2 c75526ba08b4c24aee6cbc7d75ab30963c5c81319b0eaab6438cc1b2c2edf72b
GET /wp-content/plugins/youtube-embed-plus/styles/ytprefs.min.css?ver=13.4.2 HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 04 Jun 2021 15:21:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1680
content-type: text/css
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend.min.js?ver=6.2.2 | 192.185.16.114 | 200 OK | 3.1 kB |
URL HTTP/2doulosforchrist.org/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend.min.js?ver=6.2.2 IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (1019) Hashe88a42209d882f86af729b73a58ab924 4eda6fd82ac6a5fb31b007ba69096f980ac7e7f5 64a01412a3b2d9a19f677242f9d7d1533cc5f2884b67ce58ce4af7ce8492d0e2
GET /wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend.min.js?ver=6.2.2 HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Aug 2020 00:53:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3139
content-type: application/javascript
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=13.4.2 | 192.185.16.114 | 200 OK | 3.9 kB |
URL HTTP/2doulosforchrist.org/wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=13.4.2 IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (9868) Hash5da500aa0d53425093ce94b7c927be2e 05753d9d8e466e7dba67fd496b56a40b024ea9b4 8f5f811785a383241de0b90bf7ef738aba4e8a631f3ae0537e7b97d2b8727f7f
GET /wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=13.4.2 HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 04 Jun 2021 15:21:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3915
content-type: application/javascript
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=5.5.10 | 192.185.16.114 | 200 OK | 483 B |
URL HTTP/2doulosforchrist.org/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=5.5.10 IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeHTML document, ASCII text, with very long lines (906), with no line terminators Hash961b384bf5b28ac673051be024563f79 606ebba9fa8aec74cf413098b084500c8b16b85c a9c17b0e5a9c12428c6ed8d0c4622ddbae112a9ac19bccf451f125972cd91935
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=5.5.10 HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 06:34:41 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 483
content-type: application/javascript
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-includes/js/comment-reply.min.js?ver=5.5.10 | 192.185.16.114 | 200 OK | 1.5 kB |
URL HTTP/2doulosforchrist.org/wp-includes/js/comment-reply.min.js?ver=5.5.10 IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (2949) Hash2758412411a9bec9055c038b049ebf3b 7dfd2d35de1e8c1c5b21bc8523b108c691ee7d76 8f0191fcced17d7eb5cee3633bb87e74f496a045ba1038ab7a2ef14a08cf1b4c
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-includes/js/comment-reply.min.js?ver=5.5.10 HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 06:34:41 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1472
content-type: application/javascript
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-includes/js/wp-emoji-release.min.js?ver=5.5.10 | 192.185.16.114 | 200 OK | 4.9 kB |
URL HTTP/2doulosforchrist.org/wp-includes/js/wp-emoji-release.min.js?ver=5.5.10 IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (11272) Hashd357bf65a33b527651ede445f3cc2fb7 0b1af6c31af2583294d25a5269b73c9eceb24851 86f79b7820407cf77a47da5f70b2406efdd9521e1c2c664641f22b6d9a9fd0d4
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.5.10 HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 06:34:41 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4942
content-type: application/javascript
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/themes/enfold/js/aviapopup/jquery.magnific-popup.min.js?ver=4.1 | 192.185.16.114 | 200 OK | 9.5 kB |
URL HTTP/2doulosforchrist.org/wp-content/themes/enfold/js/aviapopup/jquery.magnific-popup.min.js?ver=4.1 IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeASCII text, with very long lines (20818) Hash0f25b6574697c12b3b127be4b61d35da 0570b00329512e491bb88e778cc63c7c1219bb45 f878b5e1f300d7a8a55d103a19a8b6959bcfef0d74b8e781db091a8b24eda449
GET /wp-content/themes/enfold/js/aviapopup/jquery.magnific-popup.min.js?ver=4.1 HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 01 Mar 2020 03:51:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9465
content-type: application/javascript
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash15cc1791864e78e4f2d1219e1bc4e4af 4be1a8496350a8144ae81e10bfe413930628c41e 4fe223392c71727585b3e429b7042d076263242036179a1d5fcc812a3c6cee10
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.googletagmanager.com/gtm.js?id=GTM-N87D2LJ | 142.250.74.72 | 200 OK | 44 kB |
URL HTTP/2www.googletagmanager.com/gtm.js?id=GTM-N87D2LJ IP142.250.74.72:0
File typeASCII text, with very long lines (2039) Hash3bdc80fee28fd8e3a84ecbbb735e4789 0f809afb9328ef8d2b8d30cd16b1db5dc377ae76 4cb310442d780083a447d96ff924451b4aa8af9d64a7bc586090bdce4740149c
GET /gtm.js?id=GTM-N87D2LJ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 29 Sep 2022 19:39:33 GMT
expires: Thu, 29 Sep 2022 19:39:33 GMT
cache-control: private, max-age=900
last-modified: Thu, 29 Sep 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43936
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash68332d861224030707a1e197a1851d3b 8f94bee805e1d462bd22ff076890500aea641650 9dcf9756d49b596989a5025b18b21f105184acda7060f7f8556c5531b74789f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash594f0a9ef9f70a7bcb19d8616c204db9 6f16d912f97126acd80ca4aee11d9181a50b4795 c96936d1982f933606f20f56b8ae3bfc7805c166c7f5a8a23792a0d9a2aaab86
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash594f0a9ef9f70a7bcb19d8616c204db9 6f16d912f97126acd80ca4aee11d9181a50b4795 c96936d1982f933606f20f56b8ae3bfc7805c166c7f5a8a23792a0d9a2aaab86
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash594f0a9ef9f70a7bcb19d8616c204db9 6f16d912f97126acd80ca4aee11d9181a50b4795 c96936d1982f933606f20f56b8ae3bfc7805c166c7f5a8a23792a0d9a2aaab86
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| i.ytimg.com/vi/mgcd84vJCeQ/hqdefault.jpg | 216.58.207.214 | 200 OK | 14 kB |
URL HTTP/2i.ytimg.com/vi/mgcd84vJCeQ/hqdefault.jpg IP216.58.207.214:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data Hashc20140741575762707636601893a020a 200bb2df7b04aa0ca13ca50fd8d298a01ce32525 efc5c259ea9c981da13c4e881443105b978395b575bfd5502c7a66663bb698e5
GET /vi/mgcd84vJCeQ/hqdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 14327
date: Thu, 29 Sep 2022 19:39:33 GMT
expires: Thu, 29 Sep 2022 19:44:33 GMT
cache-control: public, max-age=300
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash594f0a9ef9f70a7bcb19d8616c204db9 6f16d912f97126acd80ca4aee11d9181a50b4795 c96936d1982f933606f20f56b8ae3bfc7805c166c7f5a8a23792a0d9a2aaab86
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| i.ytimg.com/vi/zMNyKi-cCUI/hqdefault.jpg | 216.58.207.214 | 200 OK | 19 kB |
URL HTTP/2i.ytimg.com/vi/zMNyKi-cCUI/hqdefault.jpg IP216.58.207.214:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data Hash7a0a783284a8f48dcb9e56b539123cfc 12a49919eb10b17f126b13a9fd6dbe85fcebba97 75565b4a7b34ee499c80f2a5e02a16369408d1cd08c141fa9930b3c064140a86
GET /vi/zMNyKi-cCUI/hqdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 19203
date: Thu, 29 Sep 2022 19:39:33 GMT
expires: Thu, 29 Sep 2022 21:39:33 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashdd28406cfc9ec5eb2d8926c1789eaceb 7ba8db83543b0fbc550ea54ed04a81c5c21c55e7 865b9d78033bdd9e9a4409ce9d597705d1d3c47f70f97f442aad6aaa57eebed7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| doulosforchrist.org/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp | 192.185.16.114 | 200 OK | 58 kB |
URL HTTP/2doulosforchrist.org/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
Hash6773abf3925df63bf6dc80c8dae41e08 25bbe01d24a79fd84de1d1b7a9b0e0c8796447dd e9a80a561b1ade6d3bb1975cb5ebfe78bd33edd57b8783688e3c3f490e2542c2
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 01 Mar 2020 03:51:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash15cc1791864e78e4f2d1219e1bc4e4af 4be1a8496350a8144ae81e10bfe413930628c41e 4fe223392c71727585b3e429b7042d076263242036179a1d5fcc812a3c6cee10
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| i.ytimg.com/vi/vfbpL36ZSxY/hqdefault.jpg | 216.58.207.214 | 200 OK | 23 kB |
URL HTTP/2i.ytimg.com/vi/vfbpL36ZSxY/hqdefault.jpg IP216.58.207.214:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data Hash7acaa1e9ef967720c6605c1ef0bb6616 42c7ae693b757517e639fb358776d207544ab87a bca6a373b5c78f1130c827b6ed26413fd6d830612d1ed10c57516936e7c07450
GET /vi/vfbpL36ZSxY/hqdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 23448
date: Thu, 29 Sep 2022 19:39:33 GMT
expires: Thu, 29 Sep 2022 21:39:33 GMT
cache-control: public, max-age=7200
etag: "1662805351"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi/0WsSa7_VyK8/hqdefault.jpg | 216.58.207.214 | 200 OK | 6.4 kB |
URL HTTP/2i.ytimg.com/vi/0WsSa7_VyK8/hqdefault.jpg IP216.58.207.214:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data Hashc1d70a0b193adf9c3a69e35b3e7b2c61 37ad788c01b54fae7d474df2f354dfa1074c5153 a270d320f70e600eceeeabfe72e7d48903b98f4bf092f5ac017cd31d534fc914
GET /vi/0WsSa7_VyK8/hqdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 6413
date: Thu, 29 Sep 2022 19:39:33 GMT
expires: Thu, 29 Sep 2022 21:39:33 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi/ujiPF0mrnPk/hqdefault.jpg | 216.58.207.214 | 200 OK | 13 kB |
URL HTTP/2i.ytimg.com/vi/ujiPF0mrnPk/hqdefault.jpg IP216.58.207.214:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data Hash97eaa7a6ed77288d26af3022163fd117 8fa7685843962b9ea16d497b4c4b60d755cadee0 dad5d8ea451a9f2b74b3e9a09598e6ae5042eb00dda24d1394d39f2d179c5269
GET /vi/ujiPF0mrnPk/hqdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 13074
date: Thu, 29 Sep 2022 19:39:33 GMT
expires: Thu, 29 Sep 2022 21:39:33 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi/YHh3fjjbaOM/hqdefault.jpg | 216.58.207.214 | 200 OK | 14 kB |
URL HTTP/2i.ytimg.com/vi/YHh3fjjbaOM/hqdefault.jpg IP216.58.207.214:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data Hash4e9472a85f0ccc23c4f75318ca8def66 c8df60686c9d2c2f70950ef187c20f4fb7374537 caca6807fa0b20cc8d0fe1d3fbf2820f54c91cb15d356aed2d72db1dfae2e5be
GET /vi/YHh3fjjbaOM/hqdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 14408
date: Thu, 29 Sep 2022 19:39:33 GMT
expires: Thu, 29 Sep 2022 21:39:33 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi/lucmD3Wntq8/hqdefault.jpg | 216.58.207.214 | 200 OK | 30 kB |
URL HTTP/2i.ytimg.com/vi/lucmD3Wntq8/hqdefault.jpg IP216.58.207.214:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data Hash5c352afd9a101e479573297a733e4e34 8c12aa245de8c32a6391b7ce81dc9dd4e69ae3ac 21c7d2f13c00c9b766d78ce574fa790fd551eb37c567950c23739698ee3d1dce
GET /vi/lucmD3Wntq8/hqdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 29529
date: Thu, 29 Sep 2022 19:39:33 GMT
expires: Thu, 29 Sep 2022 21:39:33 GMT
cache-control: public, max-age=7200
etag: "1662807060"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi/kWCdwbd9-p4/hqdefault.jpg | 216.58.207.214 | 200 OK | 8.8 kB |
URL HTTP/2i.ytimg.com/vi/kWCdwbd9-p4/hqdefault.jpg IP216.58.207.214:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data Hash453341abc2847ae149e1b4573dc701a5 59e20207bc08f04a62a6405a1c0ebf4046c107b4 4b98dca30b5ef71331693635cf69017a96468684006771af5a528644d93c7740
GET /vi/kWCdwbd9-p4/hqdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 8790
date: Thu, 29 Sep 2022 19:39:33 GMT
expires: Thu, 29 Sep 2022 21:39:33 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash033e9c00dfd7c059f1bdef095e090c95 3d2ae4c5be8d2278ccbc3ad918960b88579a3abd 8217c2c21cb0961523c529faf6582a341617e83e4cd01bd64c8715765551299b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| i.ytimg.com/vi/6vcRMPkB3as/hqdefault.jpg | 216.58.207.214 | 200 OK | 18 kB |
URL HTTP/2i.ytimg.com/vi/6vcRMPkB3as/hqdefault.jpg IP216.58.207.214:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data Hash620ca145534cf0202131a005b2e6b53c b5ae986299ee1b67d94e2d7e991931a881b58493 045cf1731f60a14b172a9e32e60f9b928e4b58533837b42e6f5cc0fd9ac9c4ae
GET /vi/6vcRMPkB3as/hqdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 17560
date: Thu, 29 Sep 2022 19:39:33 GMT
expires: Thu, 29 Sep 2022 21:39:33 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi/bQtkDxXkGc4/hqdefault.jpg | 216.58.207.214 | 200 OK | 9.7 kB |
URL HTTP/2i.ytimg.com/vi/bQtkDxXkGc4/hqdefault.jpg IP216.58.207.214:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data Hash78083397bcacc271037d9b876591f4ad dee914599beee69cfa06b959cc8bb444c1527d84 f2f9fe9d56068a8edc915d79855d5a51f41bc8624238c6817beda12efa16a18f
GET /vi/bQtkDxXkGc4/hqdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 9677
date: Thu, 29 Sep 2022 19:39:33 GMT
expires: Thu, 29 Sep 2022 21:39:33 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi/_Q1wXF1sAN0/hqdefault.jpg | 216.58.207.214 | 200 OK | 27 kB |
URL HTTP/2i.ytimg.com/vi/_Q1wXF1sAN0/hqdefault.jpg IP216.58.207.214:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data Hash6d7c724157ba897f4c9d27f08119caa5 fe12c2638313ed304927189ca07e9e36b5d89372 a32732068b4e84df2c6b4d2614384f687d4f64737756f7f53e6e499b0281f359
GET /vi/_Q1wXF1sAN0/hqdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 27258
date: Thu, 29 Sep 2022 19:39:33 GMT
expires: Thu, 29 Sep 2022 21:39:33 GMT
cache-control: public, max-age=7200
etag: "1662137271"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi/rMl4Vs0_tNU/hqdefault.jpg | 216.58.207.214 | 200 OK | 10 kB |
URL HTTP/2i.ytimg.com/vi/rMl4Vs0_tNU/hqdefault.jpg IP216.58.207.214:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data Hash9dc1dbed0a14e0c23bc081450234b36d 44b19c43871d0db5be02c82f7ed9e6c14ea895e9 1c0393bce0e2330e10a410208dcb99956bea8534167fac075d8911017951e3ff
GET /vi/rMl4Vs0_tNU/hqdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 10278
date: Thu, 29 Sep 2022 19:39:33 GMT
expires: Thu, 29 Sep 2022 21:39:33 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi/Fsvje25n-5M/hqdefault.jpg | 216.58.207.214 | 200 OK | 19 kB |
URL HTTP/2i.ytimg.com/vi/Fsvje25n-5M/hqdefault.jpg IP216.58.207.214:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data Hashf40c03a68c03083c3cca4004ad9ad512 ff4676714498ae98aa0c872bc91fe16ab34981e0 1223080bc64e064b9b4d22f66734b9f8d63c392d8658b526084c1b66d0fb5a11
GET /vi/Fsvje25n-5M/hqdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 19079
date: Thu, 29 Sep 2022 19:39:33 GMT
expires: Thu, 29 Sep 2022 21:39:33 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi/wFAXwHeIsA4/hqdefault.jpg | 216.58.207.214 | 200 OK | 11 kB |
URL HTTP/2i.ytimg.com/vi/wFAXwHeIsA4/hqdefault.jpg IP216.58.207.214:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data Hash0ba5de78ad7195ec2836c8648a66c1d0 14e86ab64c1e2c0cde7564ce6321e41f77cf9679 c1aaacb1f20c70ae4b90d6d4b61d5b53cf994204964781f89e5e2537f0f083c9
GET /vi/wFAXwHeIsA4/hqdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 11267
date: Thu, 29 Sep 2022 19:39:33 GMT
expires: Thu, 29 Sep 2022 21:39:33 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 142.250.74.163 | 200 OK | 45 kB |
URL HTTP/2fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data Hash565ce506190ad3af920b40baf1794cec ad3cba5d06100e09449a864d3b5e58403b478b3d 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://doulosforchrist.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Sep 2022 18:01:25 GMT
expires: Sun, 24 Sep 2023 18:01:25 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 437888
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash594f0a9ef9f70a7bcb19d8616c204db9 6f16d912f97126acd80ca4aee11d9181a50b4795 c96936d1982f933606f20f56b8ae3bfc7805c166c7f5a8a23792a0d9a2aaab86
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash033e9c00dfd7c059f1bdef095e090c95 3d2ae4c5be8d2278ccbc3ad918960b88579a3abd 8217c2c21cb0961523c529faf6582a341617e83e4cd01bd64c8715765551299b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.youtube.com/s/player/5248e50a/www-player.css | 172.217.21.174 | 200 OK | 50 kB |
URL HTTP/2www.youtube.com/s/player/5248e50a/www-player.css IP172.217.21.174:0
File typeASCII text, with very long lines (65536), with no line terminators Hashcc646a7986a47f1d11f5c9e88bdd1c8c 8180d1408b9cae9385f26bb829572697b6c4143d 0972e1f4438c1a29d68feae99ee9d60c751702c833d637456b8b896ec8083406
GET /s/player/5248e50a/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/mgcd84vJCeQ?enablejsapi=1&autoplay=0&cc_load_policy=0&iv_load_policy=3&loop=0&modestbranding=0&fs=0&playsinline=0&controls=1&color=red&cc_lang_pref=&rel=0&autohide=2&theme=dark&&wmode=opaque
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49798
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 14:48:12 GMT
expires: Thu, 28 Sep 2023 14:48:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 28 Sep 2022 00:24:52 GMT
content-type: text/css
age: 103881
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash68332d861224030707a1e197a1851d3b 8f94bee805e1d462bd22ff076890500aea641650 9dcf9756d49b596989a5025b18b21f105184acda7060f7f8556c5531b74789f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.163 | 200 OK | 15 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Sep 2022 12:31:58 GMT
expires: Sun, 24 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 457655
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/5248e50a/www-embed-player.vflset/www-embed-player.js | 172.217.21.174 | 200 OK | 97 kB |
URL HTTP/2www.youtube.com/s/player/5248e50a/www-embed-player.vflset/www-embed-player.js IP172.217.21.174:0
File typeASCII text, with very long lines (570) Hash5c12e56d9aa76c36cc367d8ee02ed4b5 6dc7e01808e6589cb1b04fc30b7d6482b0a6749b d8e4e109f178614f3afbd73ab3fc385ce1145bb3265bebba392eacbec47a5157
GET /s/player/5248e50a/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/mgcd84vJCeQ?enablejsapi=1&autoplay=0&cc_load_policy=0&iv_load_policy=3&loop=0&modestbranding=0&fs=0&playsinline=0&controls=1&color=red&cc_lang_pref=&rel=0&autohide=2&theme=dark&&wmode=opaque
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97166
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 14:48:12 GMT
expires: Thu, 28 Sep 2023 14:48:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 28 Sep 2022 00:24:52 GMT
content-type: text/javascript
age: 103881
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 142.250.74.163 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Sep 2022 00:48:31 GMT
expires: Sat, 23 Sep 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 586262
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/5248e50a/fetch-polyfill.vflset/fetch-polyfill.js | 172.217.21.174 | 200 OK | 2.8 kB |
URL HTTP/2www.youtube.com/s/player/5248e50a/fetch-polyfill.vflset/fetch-polyfill.js IP172.217.21.174:0
File typeAlgol 68 source text\012- Pascal source, ASCII text, with very long lines (555) Hash80fe2d229007996c8397073b00755dc7 121f82c77bcf2a297a1085e3b092415c463fcafe 033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/5248e50a/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/mgcd84vJCeQ?enablejsapi=1&autoplay=0&cc_load_policy=0&iv_load_policy=3&loop=0&modestbranding=0&fs=0&playsinline=0&controls=1&color=red&cc_lang_pref=&rel=0&autohide=2&theme=dark&&wmode=opaque
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 14:48:12 GMT
expires: Thu, 28 Sep 2023 14:48:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 28 Sep 2022 00:24:52 GMT
content-type: text/javascript
age: 103881
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.13-9993131 | 192.185.16.114 | 200 OK | 650 kB |
URL HTTP/2doulosforchrist.org/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.13-9993131 IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
Size650 kB (649483 bytes) Hash9d1180e7626c728de7fc1c7918a48861 0fa3f3b65f0eb128393bad7e908246ffc5071d74 f1a44dccdb03c341c23ae4aebcec01418bfab8292ac6fac936e260312ba286a7
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.13-9993131 HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 01 Mar 2020 03:51:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/themes/enfold/css/print.css?ver=4.1 | 192.185.16.114 | 200 OK | 1.8 kB |
URL HTTP/2doulosforchrist.org/wp-content/themes/enfold/css/print.css?ver=4.1 IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
Hashc15b504d3fe84c5e5ff57e06185b5352 d1e10a607dcf4753d2405c0fd2359084448a1da2 b8bafbc43951480e4877c4c5c671bf902374c1e45abf7511a518c69ba66b8c01
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/enfold/css/print.css?ver=4.1 HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 01 Mar 2020 03:51:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1768
content-type: text/css
date: Thu, 29 Sep 2022 19:39:33 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/uploads/2020/02/DFC-2019-New-Logo-1.png | 192.185.16.114 | 200 OK | 4.3 MB |
URL HTTP/2doulosforchrist.org/wp-content/uploads/2020/02/DFC-2019-New-Logo-1.png IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typePNG image data, 3829 x 4178, 8-bit/color RGBA, non-interlaced\012- data Size4.3 MB (4311889 bytes) Hashfebad18a78a8f57767c0a62584c0e175 d6933b903edbccc12323b87728ba036104628a93 daf7119440f253141c67ee5465ee3c4121d7596f8fc95c3e1672f07cbefd3489
GET /wp-content/uploads/2020/02/DFC-2019-New-Logo-1.png HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 01 Mar 2020 03:50:54 GMT
accept-ranges: bytes
content-length: 4311889
content-type: image/png
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/plugins/wp-content-copy-protector/images/warning.png | 192.185.16.114 | 200 OK | 483 B |
URL HTTP/2doulosforchrist.org/wp-content/plugins/wp-content-copy-protector/images/warning.png IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data Hashdc5512924fdd1df2b9158f11d6c07a05 eec0f42e817e235c12588a85f9145af0437b9b17 b0a8bd74d2a1ff5ccd5a18c2d054a74b9b260258861a358b5faddc4f8a62f703
GET /wp-content/plugins/wp-content-copy-protector/images/warning.png HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Aug 2020 00:53:39 GMT
accept-ranges: bytes
content-length: 483
content-type: image/png
date: Thu, 29 Sep 2022 19:39:33 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/themes/enfold/js/avia.js?ver=4.1 | 192.185.16.114 | 200 OK | 78 kB |
URL HTTP/2doulosforchrist.org/wp-content/themes/enfold/js/avia.js?ver=4.1 IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
Hashc8449f668d72dfdd88e131afb2b17368 331ca23bacb601b434c90bdc7dd3b4b6c6e0bcfb a7e27d4a816c2c3251f66470d1b54fa486b89b8ef1d2f29bb380c0928486e51e
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/enfold/js/avia.js?ver=4.1 HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 01 Mar 2020 03:51:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 29 Sep 2022 19:39:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/themes/enfold-child/fonts/Avenir-Roman.ttf | 192.185.16.114 | 200 OK | 101 kB |
URL HTTP/2doulosforchrist.org/wp-content/themes/enfold-child/fonts/Avenir-Roman.ttf IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeTrueType Font data, 17 tables, 1st "FFTM", 32 names, Macintosh\012- data Size101 kB (101228 bytes) Hash7f9734301cda9aacab684b863c6d0983 fdd2454785b8b5b297b0ca8734a9ae2032eb6e60 dafa4fa91f71c94f73a228b8bacf03bc9bb50f5285a72396eff5cf2b2e39a915
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/enfold-child/fonts/Avenir-Roman.ttf HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/wp-content/themes/enfold-child/style.css?ver=4.1
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 01 Mar 2020 03:51:09 GMT
accept-ranges: bytes
content-length: 101228
content-type: font/ttf
date: Thu, 29 Sep 2022 19:39:33 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/themes/enfold-child/fonts/Avenir-Heavy.ttf | 192.185.16.114 | 200 OK | 134 kB |
URL HTTP/2doulosforchrist.org/wp-content/themes/enfold-child/fonts/Avenir-Heavy.ttf IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeTrueType Font data, 17 tables, 1st "FFTM", 32 names, Macintosh\012- data Size134 kB (134548 bytes) Hash1e6ff980d506c612364ea213e3e1227c 712e61a127ed8a1d655d0adaa71f4a3dfa30dabe be18f57c6dd615cfe3b2f03c712a83b2e42777b59a2b11d929c8e639aa2c1e2f
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/enfold-child/fonts/Avenir-Heavy.ttf HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/wp-content/themes/enfold-child/style.css?ver=4.1
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 01 Mar 2020 03:51:09 GMT
accept-ranges: bytes
content-length: 134548
content-type: font/ttf
date: Thu, 29 Sep 2022 19:39:33 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/themes/enfold/images/background-images/grunge-dark.png | 192.185.16.114 | 200 OK | 112 kB |
URL HTTP/2doulosforchrist.org/wp-content/themes/enfold/images/background-images/grunge-dark.png IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typePNG image data, 500 x 500, 8-bit colormap, non-interlaced\012- data Size112 kB (112512 bytes) Hasha66957b0d2c48eed453e0f42bb65404d c7510fe081960163fdfd41a5a97db004dec85170 4e696b64c0b8ed6695128b032ecc06024be87206e8828fafb4a22a9c096c0519
GET /wp-content/themes/enfold/images/background-images/grunge-dark.png HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 01 Mar 2020 03:51:05 GMT
accept-ranges: bytes
content-length: 112512
content-type: image/png
date: Thu, 29 Sep 2022 19:39:33 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/uploads/2019/09/tajmia-loiacono-Zc4y1upPN00-unsplash-1500x1000.jpg | 192.185.16.114 | 200 OK | 115 kB |
URL HTTP/2doulosforchrist.org/wp-content/uploads/2019/09/tajmia-loiacono-Zc4y1upPN00-unsplash-1500x1000.jpg IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1500x1000, components 3\012- data Size115 kB (114795 bytes) Hash638407fbd6aae1915a53aa47fb9329d5 a0984da3eaf38a8c39dfc49f6ee769cfe097f13d c44feee940aa470faf1dc36cbfbab196fc8b5a6d80cb9f0c64e59fea7e31163f
GET /wp-content/uploads/2019/09/tajmia-loiacono-Zc4y1upPN00-unsplash-1500x1000.jpg HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 01 Mar 2020 03:50:59 GMT
accept-ranges: bytes
content-length: 114795
content-type: image/jpeg
date: Thu, 29 Sep 2022 19:39:33 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/uploads/2020/05/Doulos-App-promo-for-web.png | 192.185.16.114 | 200 OK | 790 kB |
URL HTTP/2doulosforchrist.org/wp-content/uploads/2020/05/Doulos-App-promo-for-web.png IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typePNG image data, 2048 x 500, 8-bit/color RGBA, non-interlaced\012- data Size790 kB (789764 bytes) Hash206a81b4c49bfd8ee7905459f8527222 f5262db94a786cf049f2acb9a3a167dedf7efa11 5c6953c4f09924060bd28a3b83b97549a11dc556893d0d507806d552dd5589c4
GET /wp-content/uploads/2020/05/Doulos-App-promo-for-web.png HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 May 2020 18:48:36 GMT
accept-ranges: bytes
content-length: 789764
content-type: image/png
date: Thu, 29 Sep 2022 19:39:33 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/wp-content/uploads/2020/05/DFC-logo-3d-with-shadow-2048-x-1368-1.png | 192.185.16.114 | 200 OK | 846 kB |
URL HTTP/2doulosforchrist.org/wp-content/uploads/2020/05/DFC-logo-3d-with-shadow-2048-x-1368-1.png IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typePNG image data, 2048 x 1368, 8-bit colormap, non-interlaced\012- data Size846 kB (845988 bytes) Hash563f59b1b8af3b0e07f1cf16d394937e 05536b631115fce58a87d6758ebcbc8e9e9a7f7a 2106a790cf8821617518ba17b86231068c5c9871a675f31127aea4bd6776e71c
GET /wp-content/uploads/2020/05/DFC-logo-3d-with-shadow-2048-x-1368-1.png HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 May 2020 18:56:37 GMT
accept-ranges: bytes
content-length: 845988
content-type: image/png
date: Thu, 29 Sep 2022 19:39:33 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashf4cac07a6b43c2c45dbdd3dcbf8856e4 985130ebc2d64abc30a0673061e6f73e5a4f02a4 8945a690f41c23b6411950f9bbdb51becf8c48e363a715af38984d45085f9904
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash3499488d099934e02c894c15f11025ed f0436afc962b71d22959b7607dd9e19ee53b99cb c1375cff21e4f3c7bf53c8938829342f4901e48ff190080e6995f73c82c06460
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| static.doubleclick.net/instream/ad_status.js | 216.58.207.230 | 200 OK | 29 B |
URL HTTP/2static.doubleclick.net/instream/ad_status.js IP216.58.207.230:0
Hash1fa71744db23d0f8df9cce6719defcb7 e4be9b7136697942a036f97cf26ebaf703ad2067 eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Sep 2022 19:33:02 GMT
expires: Thu, 29 Sep 2022 19:48:02 GMT
cache-control: public, max-age=900
age: 392
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash8eb56ca84ce38713c2575c9d5506eabe 294a9ea859390bfe5d73cf810eefae10bf0f2f5e 6e7141f2c597344a55bf1d3a3ca0b9f0bf02f32a6046b3bfa03b64048a1d7002
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash8eb56ca84ce38713c2575c9d5506eabe 294a9ea859390bfe5d73cf810eefae10bf0f2f5e 6e7141f2c597344a55bf1d3a3ca0b9f0bf02f32a6046b3bfa03b64048a1d7002
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| googleads.g.doubleclick.net/pagead/id | 142.250.74.66 | 302 Found | 0 B |
URL HTTP/2googleads.g.doubleclick.net/pagead/id IP142.250.74.66:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Thu, 29 Sep 2022 19:39:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.74 | 200 OK | 0 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.74:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 29 Sep 2022 19:39:34 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashed8d6ec40376562f5bb4fae1652cc110 6910ffb0c6a68c3a33faa6151e3f1951a7ec389b d66a2981e24e1a88da3f0beadd60cd744826719b4e39cfa3b2194993969534a5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| doulosforchrist.org/wp-content/uploads/2020/02/cropped-DFC-2019-New-Logo-1-192x192.png | 192.185.16.114 | 200 OK | 15 kB |
URL HTTP/2doulosforchrist.org/wp-content/uploads/2020/02/cropped-DFC-2019-New-Logo-1-192x192.png IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data Hashcd642fde59e58973c29664c007666bc1 6a4a0b2b5ef7d987b43fcbfe5825b45c90fcb0a6 cf986e976de048ebb55513f10ae46cf9254759d61ac96d7b6448d257d44d0dbc
GET /wp-content/uploads/2020/02/cropped-DFC-2019-New-Logo-1-192x192.png HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 01 Mar 2020 05:11:10 GMT
accept-ranges: bytes
content-length: 15419
content-type: image/png
date: Thu, 29 Sep 2022 19:39:34 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash3499488d099934e02c894c15f11025ed f0436afc962b71d22959b7607dd9e19ee53b99cb c1375cff21e4f3c7bf53c8938829342f4901e48ff190080e6995f73c82c06460
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| doulosforchrist.org/wp-content/uploads/2020/02/cropped-DFC-2019-New-Logo-1-32x32.png | 192.185.16.114 | 200 OK | 1.7 kB |
URL HTTP/2doulosforchrist.org/wp-content/uploads/2020/02/cropped-DFC-2019-New-Logo-1-32x32.png IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data Hashffd313bdcfadc6844453478735033ee1 9bb2c0395af8be7f10f30f0f95f5336e66ebda3c 4cd31a3f03e51715d1fd07e7abfe7454366e7e78548f2f032a641d6335f037cb
GET /wp-content/uploads/2020/02/cropped-DFC-2019-New-Logo-1-32x32.png HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 01 Mar 2020 05:11:10 GMT
accept-ranges: bytes
content-length: 1693
content-type: image/png
date: Thu, 29 Sep 2022 19:39:34 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.74 | 200 OK | 31 kB |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.74:0
File typeJSON data\012- , ASCII text, with very long lines (65536), with no line terminators Hash812fd457260de5ce935130116fa43074 580d2ee5840ba792a2f1db5f825aea46cdf56f7a 846f2fa45bf8f3e020165a1c85d791f69fb95e28d4f4a4a348e064b03bbc3e93
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 29 Sep 2022 19:39:34 GMT
server: ESF
cache-control: private
content-length: 30940
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.google.com/js/th/7f2HzU_eRiWxv--cAX3t_q7u4Wt7MOcmPwwdepX4QRg.js | 142.250.74.164 | 200 OK | 14 kB |
URL HTTP/2www.google.com/js/th/7f2HzU_eRiWxv--cAX3t_q7u4Wt7MOcmPwwdepX4QRg.js IP142.250.74.164:0
File typeASCII text, with very long lines (36070) Hash28927abcfde9bc160e5533df57badd7e 2ff255edc304fe9acd5d8453f58e5614b02bd770 a4a7d879f3ebc1659299d5f08fef4b4bd4c5a67940191d3a871fd60b77e1105c
GET /js/th/7f2HzU_eRiWxv--cAX3t_q7u4Wt7MOcmPwwdepX4QRg.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14287
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 08:57:18 GMT
expires: Mon, 25 Sep 2023 08:57:18 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 15:00:00 GMT
content-type: text/javascript
age: 384136
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash253e735983d6b98808235295de508f8b e47aa9e4c679c5215cd2d20cd3dcd7ce58fde86d c4e13af46f6ab54af9a8d5a68fe5c12d8a5c41ed829568380bdeca8c729f1da5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash9de589812cbbb75efbcbb1ddadd63bc7 291278b3e1cce78d217fb87e36bd0a79f33465ca dc206b730948f82a9b161a9ae57406c376d16dca79e6ee867008957fe682c0c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| googleads.g.doubleclick.net/pagead/id?slf_rd=1 | 142.250.74.66 | 200 OK | 120 B |
URL HTTP/2googleads.g.doubleclick.net/pagead/id?slf_rd=1 IP142.250.74.66:0
Hashbe8077bfb0fe3ea87f08a36c81d5c115 b172ccc5d33d1768c473efec2ff08495e034d74d df7386b24d06da4d9e83ad4bb0613d11715003c9126ff813e9e3e0a577fa2f56
GET /pagead/id?slf_rd=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Referer: https://www.youtube.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
content-type: application/json; charset=UTF-8
date: Thu, 29 Sep 2022 19:39:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 120
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash86e0fe14ac54b7b9131a460fd65d73fd 49ec80657f4183e2ad7e906583b94cbf48a94809 9f30a1437666225f096d72763cf89a4e5ae9e5f501ffed4becc51b08c515cf6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| yt3.ggpht.com/ytc/AMLnZu8n-4k0BgVTus89Yb2CXgNLLlNIKVPjG11UHrMQmQ=s68-c-k-c0x00ffffff-no-rj | 142.250.74.161 | 200 OK | 2.7 kB |
URL HTTP/2yt3.ggpht.com/ytc/AMLnZu8n-4k0BgVTus89Yb2CXgNLLlNIKVPjG11UHrMQmQ=s68-c-k-c0x00ffffff-no-rj IP142.250.74.161:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data Hash21b5d91b8b0f1023c297a9dc89e30b3e a0e39d57dec0ec721641322d044498bc29a0ec02 31b9c519df5c950b4240e9202ef4e0cb1574ce70bcad505ef5e7c02995541a83
GET /ytc/AMLnZu8n-4k0BgVTus89Yb2CXgNLLlNIKVPjG11UHrMQmQ=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2689
x-xss-protection: 0
date: Thu, 29 Sep 2022 17:38:26 GMT
expires: Sun, 25 Sep 2022 20:29:08 GMT
cache-control: public, max-age=86400, no-transform
age: 7268
etag: "v16c"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-163328039-1&cid=918452825.1664480371&jid=828127308&gjid=195515098&_gid=1212829196.1664480371&_u=aGBAgUAjCAAAAE~&z=17504767 | 64.233.165.156 | 200 OK | 1 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-163328039-1&cid=918452825.1664480371&jid=828127308&gjid=195515098&_gid=1212829196.1664480371&_u=aGBAgUAjCAAAAE~&z=17504767 IP64.233.165.156:0
File typevery short file (no magic) Hashc4ca4238a0b923820dcc509a6f75849b 356a192b7913b04c54574d18c28d46e6395428ab 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-163328039-1&cid=918452825.1664480371&jid=828127308&gjid=195515098&_gid=1212829196.1664480371&_u=aGBAgUAjCAAAAE~&z=17504767 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://doulosforchrist.org
Connection: keep-alive
Referer: https://doulosforchrist.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://doulosforchrist.org
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 29 Sep 2022 19:39:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash9de589812cbbb75efbcbb1ddadd63bc7 291278b3e1cce78d217fb87e36bd0a79f33465ca dc206b730948f82a9b161a9ae57406c376d16dca79e6ee867008957fe682c0c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 19:39:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-163478864-1&cid=918452825.1664480371&jid=178186320&gjid=1742916437&_gid=1212829196.1664480371&_u=aGDAAUAjCAAAAG~&z=87512131 | 64.233.165.156 | 200 OK | 1 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-163478864-1&cid=918452825.1664480371&jid=178186320&gjid=1742916437&_gid=1212829196.1664480371&_u=aGDAAUAjCAAAAG~&z=87512131 IP64.233.165.156:0
File typevery short file (no magic) Hashc4ca4238a0b923820dcc509a6f75849b 356a192b7913b04c54574d18c28d46e6395428ab 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-163478864-1&cid=918452825.1664480371&jid=178186320&gjid=1742916437&_gid=1212829196.1664480371&_u=aGDAAUAjCAAAAG~&z=87512131 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://doulosforchrist.org
Connection: keep-alive
Referer: https://doulosforchrist.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://doulosforchrist.org
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 29 Sep 2022 19:39:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.74 | 200 OK | 0 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.74:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 29 Sep 2022 19:39:34 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.74 | 200 OK | 114 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.74:0
File typeJSON data\012- , ASCII text, with no line terminators Hash0d2d82652588d91ea546b14d48c8da90 59e1c259438785e36766f24e6cd9d4fd5df9e758 7c8e5dde8ba011a76fd6d83f96587b9bf986f161e5538174bfb7e10e95d6a1c5
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 944
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 29 Sep 2022 19:39:34 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2016911-a1a6-4bdf-a8f3-89e94a0aaff7.jpeg | 34.120.237.76 | 200 OK | 7.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2016911-a1a6-4bdf-a8f3-89e94a0aaff7.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash456968f691ae9464d69a37bffe9bd7ce 31b8538deb0f00d5b4182739a4a2fcc1b956a998 5cde1e3158e6c6c0b7a01d3bd32f2aa292b3b205f604e5c4ed71cafedad06bf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2016911-a1a6-4bdf-a8f3-89e94a0aaff7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7810
x-amzn-requestid: 7f6d92e1-c7b1-4dd2-9efa-52ad324ca19d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMK6pFvkoAMF_yA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334beaa-362b7368566955966db78385;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:37:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TbPFEVDpMOjK26iu1UGcx56vtP7Pywq05VAylNubOIfbMgo1qGsA-w==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 04:12:40 GMT
age: 55619
etag: "31b8538deb0f00d5b4182739a4a2fcc1b956a998"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| doulosforchrist.org/ | 192.185.16.114 | 200 OK | 0 B |
IP192.185.16.114:0 ASN#46606 UNIFIEDLAYER-AS-1
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET / HTTP/1.1
Host: doulosforchrist.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
link: <https://doulosforchrist.org/wp-json/>; rel="https://api.w.org/", <https://doulosforchrist.org/wp-json/wp/v2/pages/17>; rel="alternate"; type="application/json", <https://doulosforchrist.org/>; rel=shortlink
set-cookie: PHPSESSID=562da66a578474096a23b1b1c40b515e; path=/
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Thu, 29 Sep 2022 19:39:31 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.youtube.com/embed/mgcd84vJCeQ?enablejsapi=1&autoplay=0&cc_load_policy=0&iv_load_policy=3&loop=0&modestbranding=0&fs=0&playsinline=0&controls=1&color=red&cc_lang_pref=&rel=0&autohide=2&theme=dark&&wmode=opaque | 172.217.21.174 | 200 OK | 0 B |
URL HTTP/2www.youtube.com/embed/mgcd84vJCeQ?enablejsapi=1&autoplay=0&cc_load_policy=0&iv_load_policy=3&loop=0&modestbranding=0&fs=0&playsinline=0&controls=1&color=red&cc_lang_pref=&rel=0&autohide=2&theme=dark&&wmode=opaque IP172.217.21.174:0
GET /embed/mgcd84vJCeQ?enablejsapi=1&autoplay=0&cc_load_policy=0&iv_load_policy=3&loop=0&modestbranding=0&fs=0&playsinline=0&controls=1&color=red&cc_lang_pref=&rel=0&autohide=2&theme=dark&&wmode=opaque HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doulosforchrist.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 29 Sep 2022 19:39:33 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=mx_ClA73lqE; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=ClkJl5amO0I; Domain=.youtube.com; Expires=Tue, 28-Mar-2023 19:39:33 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+188; expires=Sat, 28-Sep-2024 19:39:33 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|